4bb5e4bad4bb8dc1e0c3210e36f4a21e85acb06a - platform/external/vboot_reference

commit	4bb5e4bad4bb8dc1e0c3210e36f4a21e85acb06a	[log] [tgz]
author	Randall Spangler <rspangler@chromium.org>	Thu Aug 19 09:05:22 2010 -0700
committer	Randall Spangler <rspangler@chromium.org>	Thu Aug 19 09:05:22 2010 -0700
tree	c4cdb51cbd01edd56c6ef8d2556dabee19a9fc1f
parent	4be36c49744aea04844d70d2bc1e405f747a981c [diff]

Security fixes for LoadKernel()

1) kernel_subkey is one of the input parameters; not read off disk.  KeyBlockVerify() now verifies it's not NULL unless we're only using the hash.

2) Added a check for kernel size vs. buffer size.

3) Added a check to make sure kbuf_sectors is nonzero.

BUG=chrome-os-partner:704
TEST=make && make runtests

Review URL: http://codereview.chromium.org/3186013

firmware/lib/vboot_kernel.c[diff]
firmware/version.c[diff]

2 files changed

tree: c4cdb51cbd01edd56c6ef8d2556dabee19a9fc1f

cgpt/
firmware/
host/
msc/
scripts/
tests/
utility/
.gitignore
common.mk
inherit-review-settings-ok
LICENSE
Makefile
README
WATCHLISTS