Google Git
Sign in
android / platform / system / keymaster / e8f854015962ff3c45701f7a8dffe59fbf6f8828
commite8f854015962ff3c45701f7a8dffe59fbf6f8828[log] [tgz]
authorRoberto Pereira <rpere@google.com>Fri Jun 29 16:14:33 2018 -0700
committerRoberto Pereira <rpere@google.com>Thu Aug 09 15:32:43 2018 -0700
tree9d3afa19c04c721812bffc6105e5db433bdcc521
parent79071053e6a5b91c0ea5dfafebf215aa06c82240 [diff]
Fix bugs in authorization set deserialization

Added a value check when deserializing a boolean tag. Booleans are converted to
int when serializing so they should only be 0 or 1 when deserializing. Any
other value means the data is malformed.

Check the entire buffer is consumed after deserializing tags. The total number
of bytes read while deserializing tags must be equal to the number of bytes
reported (elements_size) otherwise the data is malformed.

Bug: 110153632
Test: VtsHalKeymasterV3_0TargetTest
Change-Id: I780caebb8492d15ca6f59b24ab2b03c57a8e2317
1 file changed
tree: 9d3afa19c04c721812bffc6105e5db433bdcc521
  1. android_keymaster/
  2. contexts/
  3. include/
  4. key_blob_utils/
  5. km_openssl/
  6. legacy_support/
  7. ng/
  8. tests/
  9. .clang-format
  10. .gitignore
  11. Android.bp
  12. ec_privkey_pk8.der
  13. km0_sw_rsa_512.blob
  14. km1_sw_ecdsa_256.blob
  15. km1_sw_rsa_512.blob
  16. km1_sw_rsa_512_unversioned.blob
  17. Makefile
  18. MODULE_LICENSE_APACHE2
  19. NOTICE
  20. OWNERS
  21. PREUPLOAD.cfg
  22. rsa_privkey_pk8.der
  23. sw_rsa_attest_root.key.pem
  24. valgrind.supp