Add a checker for signature boundary in verifier am: 54ea136fde am: 0a34b17c8b am: fb80b4f72d am: d3d5e54a45 am: 6ea9888d51

am: a055eb93c3 Change-Id: I8d26eefd2de6b7245a110c27d4210d5fdd2bd151
2017-01-18 22:32:47 +00:00 · 2017-01-18 22:32:47 +00:00 · 15ca2a4763
commit 15ca2a4763
parent 7ceb371048 a055eb93c3
1 changed files with 6 additions and 0 deletions
--- a/verifier.cpp
+++ b/verifier.cpp
@ -144,6 +144,12 @@ int verify_file(unsigned char* addr, size_t length,
    LOGI("comment is %zu bytes; signature %zu bytes from end\n",
         comment_size, signature_start);

+    if (signature_start > comment_size) {
+        LOGE("signature start: %zu is larger than comment size: %zu\n", signature_start,
+             comment_size);
+        return VERIFY_FAILURE;
+    }
+
    if (signature_start <= FOOTER_SIZE) {
        LOGE("Signature start is in the footer");
        return VERIFY_FAILURE;