Add a checker for signature boundary in verifier am: 54ea136fde
am: 0a34b17c8b
Change-Id: I4dbba92ea717951307dbcb6bf287edf4f6144a38
This commit is contained in:
commit
fb80b4f72d
1 changed files with 6 additions and 0 deletions
|
@ -143,6 +143,12 @@ int verify_file(unsigned char* addr, size_t length,
|
||||||
LOGI("comment is %zu bytes; signature %zu bytes from end\n",
|
LOGI("comment is %zu bytes; signature %zu bytes from end\n",
|
||||||
comment_size, signature_start);
|
comment_size, signature_start);
|
||||||
|
|
||||||
|
if (signature_start > comment_size) {
|
||||||
|
LOGE("signature start: %zu is larger than comment size: %zu\n", signature_start,
|
||||||
|
comment_size);
|
||||||
|
return VERIFY_FAILURE;
|
||||||
|
}
|
||||||
|
|
||||||
if (signature_start <= FOOTER_SIZE) {
|
if (signature_start <= FOOTER_SIZE) {
|
||||||
LOGE("Signature start is in the footer");
|
LOGE("Signature start is in the footer");
|
||||||
return VERIFY_FAILURE;
|
return VERIFY_FAILURE;
|
||||||
|
|
Loading…
Reference in a new issue