Merge "makefile: Add VB ATTEST and OSVERSION IN BOOTIMAGE flags"

commit: eaa308e14a6de1030c5f55feec69ecfa1f0e648b [log] [tgz]
author: Linux Build Service Account <lnxbuild@localhost> Fri Jul 22 09:19:46 2016 -0700
committer: Gerrit - the friendly Code Review server <code-review@localhost> Fri Jul 22 09:19:45 2016 -0700
tree: edf7e3848dd7ef7e77fd04c8adf90561b8900221
parent: c1cffa09572cbdca91a3eb02db4dd680a7e3c5e5 [diff]
parent: 2f86905769ffc8cec2824a2467e185ed2ea41560 [diff]
diff --git a/app/aboot/aboot.c b/app/aboot/aboot.c
index 09ba226..0706731 100644
--- a/app/aboot/aboot.c
+++ b/app/aboot/aboot.c

@@ -1167,8 +1167,16 @@
 
 #if DEVICE_TREE
 	dt_actual = ROUND_TO_PAGE(hdr->dt_size, page_mask);
+	if (UINT_MAX < ((uint64_t)kernel_actual + (uint64_t)ramdisk_actual+ (uint64_t)dt_actual + page_size)) {
+		dprintf(CRITICAL, "Integer overflow detected in bootimage header fields at %u in %s\n",__LINE__,__FILE__);
+		return -1;
+	}
 	imagesize_actual = (page_size + kernel_actual + ramdisk_actual + dt_actual);
 #else
+	if (UINT_MAX < ((uint64_t)kernel_actual + (uint64_t)ramdisk_actual + page_size)) {
+		dprintf(CRITICAL, "Integer overflow detected in bootimage header fields at %u in %s\n",__LINE__,__FILE__);
+		return -1;
+	}
 	imagesize_actual = (page_size + kernel_actual + ramdisk_actual);
 #endif
commit	eaa308e14a6de1030c5f55feec69ecfa1f0e648b	[log] [tgz]
author	Linux Build Service Account <lnxbuild@localhost>	Fri Jul 22 09:19:46 2016 -0700
committer	Gerrit - the friendly Code Review server <code-review@localhost>	Fri Jul 22 09:19:45 2016 -0700
tree	edf7e3848dd7ef7e77fd04c8adf90561b8900221
parent	c1cffa09572cbdca91a3eb02db4dd680a7e3c5e5 [diff]
parent	2f86905769ffc8cec2824a2467e185ed2ea41560 [diff]