Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / lk / c78a320b9cb3f936bc050dc5e46e979e1d880af4
commitc78a320b9cb3f936bc050dc5e46e979e1d880af4[log] [tgz]
authorChannagoud Kadabi <ckadabi@codeaurora.org>Tue Sep 08 14:55:09 2015 -0700
committerSwetha Chikkaboraiah <schikk@codeaurora.org>Mon Nov 30 13:54:04 2015 +0530
tree78ec6e98bea72050f2c4ca51d95ec0f0c0c71235
parent148bb199afcc52cabefaee47b044262dfc232bb4 [diff]
platform: msm_shared: Validate the decrypted signature

For a successful boot image authentication, the RSA decrypt api returns the
size of ASN1 encoded signature (PKCS#1 magic + sha256), compare the size
returned by RSA decrypt API with size of ASN1 if they match the signature is
valid otherwise fail with an error. This check avoids vulnerability due to
trailing data placed at the end of digest.

Change-Id: Ib7077efce6369a253b09a0def8e53d035ee345b8
2 files changed
tree: 78ec6e98bea72050f2c4ca51d95ec0f0c0c71235
  1. app/
  2. arch/
  3. dev/
  4. include/
  5. kernel/
  6. lib/
  7. make/
  8. platform/
  9. project/
  10. scripts/
  11. target/
  12. .gitignore
  13. AndroidBoot.mk
  14. LICENSE
  15. makefile