On Sat, Jun 09, 2018 at 11:38:05AM -0400, Teddy Reed wrote: > This adds a new config value FIT_SIGNATURE_MAX_SIZE, which controls the > max size of a FIT header's totalsize field. The field is checked before > signature checks are applied to protect from reading past the intended > FIT regions. > > This field is not part of the vboot signature so it should be sanity > checked. If the field is corrupted then the structure or string region > reads may have unintended behavior, such as reading from device memory. > A default value of 256MB is set and intended to support most max storage > sizes. > > Suggested-by: Simon Glass <s...@chromium.org> > Signed-off-by: Teddy Reed <teddy.r...@gmail.com> > Reviewed-by: Simon Glass <s...@chromium.org>
Applied to u-boot/master, thanks! -- Tom
signature.asc
Description: PGP signature
_______________________________________________ U-Boot mailing list U-Boot@lists.denx.de https://lists.denx.de/listinfo/u-boot