Mercurial > trustbridge
comparison common/binverify.h @ 774:44fa5de02b52
(issue43) Finalize and verify binary verification for linux.
| author | Andre Heinecke <andre.heinecke@intevation.de> |
|---|---|
| date | Fri, 11 Jul 2014 16:20:27 +0200 |
| parents | 2798f1869eee |
| children | f89b41fa7048 |
comparison
equal
deleted
inserted
replaced
| 773:2c69298b4188 | 774:44fa5de02b52 |
|---|---|
| 41 * | 41 * |
| 42 * Windows verification is done using Windows crypto API based on | 42 * Windows verification is done using Windows crypto API based on |
| 43 * embedded PKCS 7 "authenticode" signatures embedded into the | 43 * embedded PKCS 7 "authenticode" signatures embedded into the |
| 44 * file. | 44 * file. |
| 45 * | 45 * |
| 46 * On Linux the last pattern of \r\nS: (0x0d0a533A) is looked up and | 46 * On Linux the file is epxected to and with the pattern of |
| 47 * afterwards a 3072 Bit Base64 encoded RSA signature is expected. | 47 * \r\nS: (0x0d0a533A) followed by a 3072 Bit Base64 encoded RSA |
| 48 * signature. | |
| 48 * The signature is verified against the built in codesigning key in | 49 * The signature is verified against the built in codesigning key in |
| 49 * the same certificate that is used for windows verification. | 50 * the same certificate that is used for windows verification. |
| 51 * If the pattern is not found the verification fails. | |
| 50 * | 52 * |
| 51 * @param[in] filename absolute null terminated UTF-8 encoded path to the file. | 53 * @param[in] filename absolute null terminated UTF-8 encoded path to the file. |
| 52 * @param[in] name_len length of the filename. | 54 * @param[in] name_len length of the filename. |
| 53 * | 55 * |
| 54 * @returns the verification result. | 56 * @returns the verification result. |