tequilaOS/platform_bootable_recovery
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_bootable_recovery/tests
History
Tianjie Xu f69e6a9475 Add a checker for signature boundary in verifier 
The 'signature_start' variable marks the location of the signature
from the end of a zip archive. And a boundary check is missing where
'signature_start' should be within the EOCD comment field. This causes
problems when sideloading a malicious package. Also add a corresponding
test.

Bug: 31914369
Test: Verification fails correctly when sideloading recovery_test.zip on
angler.

Change-Id: I6ea96bf04dac5d8d4d6719e678d504f957b4d5c1
2016-12-16 16:01:42 -08:00
..
common updater: Add testcase for package_extract_dir(). 2016-11-17 23:02:13 -08:00
component Add a checker for signature boundary in verifier 2016-12-16 16:01:42 -08:00
manual Move recovery_test.cpp out of unit test 2016-11-08 10:42:51 -08:00
testdata Add a checker for signature boundary in verifier 2016-12-16 16:01:42 -08:00
unit updater: Fix the wrong return value for package_extract_file(). 2016-11-15 13:17:52 -08:00
Android.mk tests: Add tests for bootloader_message. 2016-12-14 15:59:32 -08:00