diff options
| author | Doug Zongker <dougz@android.com> | 2009-08-12 18:30:03 -0700 |
|---|---|---|
| committer | Doug Zongker <dougz@android.com> | 2009-08-14 17:26:33 -0700 |
| commit | 60151a295ccf726238dc47456d80b427db6d6a38 (patch) | |
| tree | 42fdf22f18dc4097c2f86cbd691fe6b1c8bd3820 /verifier.h | |
| parent | 0cf0e33b5fdb6eb871b64f5325ccd54339f62f01 (diff) | |
| download | bootable_recovery-60151a295ccf726238dc47456d80b427db6d6a38.zip bootable_recovery-60151a295ccf726238dc47456d80b427db6d6a38.tar.gz bootable_recovery-60151a295ccf726238dc47456d80b427db6d6a38.tar.bz2 | |
verify whole-file signature instead of jarsigner signatures
In recovery, verify a signature that covers the entire zip file,
instead of using the jarsigner format to verify individual files.
Bug: 1328985
Diffstat (limited to 'verifier.h')
| -rw-r--r-- | verifier.h | 12 |
1 files changed, 6 insertions, 6 deletions
@@ -17,14 +17,14 @@ #ifndef _RECOVERY_VERIFIER_H #define _RECOVERY_VERIFIER_H -#include "minzip/Zip.h" #include "mincrypt/rsa.h" -/* - * Check the digital signature (as applied by jarsigner) on a Zip archive. - * Every file in the archive must be signed by one of the supplied RSA keys. +/* Look in the file for a signature footer, and verify that it + * matches one of the given keys. Return one of the constants below. */ -bool verify_jar_signature(const ZipArchive *pArchive, - const RSAPublicKey *pKeys, int numKeys); +int verify_file(const char* path, const RSAPublicKey *pKeys, unsigned int numKeys); + +#define VERIFY_SUCCESS 0 +#define VERIFY_FAILURE 1 #endif /* _RECOVERY_VERIFIER_H */ |