Fix security vulnerability: potential OOB write in audioserver am: 3f9a6d3bd9 am: 28d8817df3 am: 750a6a4ed8 am: 559dbde531 am: 4654f9ab8b am: 4154f08e79 am: 2ebeab8c6b am: c196433170 am: cd6ebe9b27 am: 21c9c6dc69 am: 3110aeafeb am: c5ced57319 am: 66b8752e83 am: ecab7b6547 Change-Id: I3fb3598eb11bab1860a55762ba26700bece207aa

commit: 25dcc1df86f9304ed147d7a9fc7777d7d3e31379 [log] [tgz]
author: rago <rago@google.com> Wed Nov 30 20:21:30 2016 +0000
committer: android-build-merger <android-build-merger@google.com> Wed Nov 30 20:21:30 2016 +0000
tree: d2e405d316de14e6cdccc938d31e7c8f33bececd
parent: c1ded2afef390c05dd40a271fcca20febf5cf967 [diff]
parent: ecab7b65476d87092ba464bc1b733c0623061148 [diff]
diff --git a/include/hardware/audio_effect.h b/include/hardware/audio_effect.h
index e49980d..8a88414 100644
--- a/include/hardware/audio_effect.h
+++ b/include/hardware/audio_effect.h

@@ -911,6 +911,9 @@
     char        data[];     // Start of Parameter + Value data
 } effect_param_t;
 
+// Maximum effect_param_t size
+#define EFFECT_PARAM_SIZE_MAX       65536
+
 // structure used by EFFECT_CMD_OFFLOAD command
 typedef struct effect_offload_param_s {
     bool isOffload;         // true if the playback thread the effect is attached to is offloaded
commit	25dcc1df86f9304ed147d7a9fc7777d7d3e31379	[log] [tgz]
author	rago <rago@google.com>	Wed Nov 30 20:21:30 2016 +0000
committer	android-build-merger <android-build-merger@google.com>	Wed Nov 30 20:21:30 2016 +0000
tree	d2e405d316de14e6cdccc938d31e7c8f33bececd
parent	c1ded2afef390c05dd40a271fcca20febf5cf967 [diff]
parent	ecab7b65476d87092ba464bc1b733c0623061148 [diff]