On Sat, Jun 09, 2018 at 11:38:05AM -0400, Teddy Reed wrote:

> This adds a new config value FIT_SIGNATURE_MAX_SIZE, which controls the
> max size of a FIT header's totalsize field. The field is checked before
> signature checks are applied to protect from reading past the intended
> FIT regions.
> This field is not part of the vboot signature so it should be sanity
> checked. If the field is corrupted then the structure or string region
> reads may have unintended behavior, such as reading from device memory.
> A default value of 256MB is set and intended to support most max storage
> sizes.
> Suggested-by: Simon Glass <s...@chromium.org>
> Signed-off-by: Teddy Reed <teddy.r...@gmail.com>
> Reviewed-by: Simon Glass <s...@chromium.org>

Applied to u-boot/master, thanks!


Attachment: signature.asc
Description: PGP signature

U-Boot mailing list

Reply via email to