Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / bootable / recovery / 99916f0496cfe37891d40f21a9a0e387620a8a60^! / . / verifier.h
commit99916f0496cfe37891d40f21a9a0e387620a8a60[log] [tgz]
authorDoug Zongker <dougz@android.com>Mon Jan 13 14:16:58 2014 -0800
committerDoug Zongker <dougz@android.com>Thu Jan 16 13:29:28 2014 -0800
tree6b457a65cfdf482fec027386fcd7d197586c67b2
parent0708239c003a1537c9cbf98dea5a490955d667aa [diff] [blame]
do verification and extraction on memory, not files

Changes minzip and recovery's file signature verification to work on
memory regions, rather than files.

For packages which are regular files, install.cpp now mmap()s them
into memory and then passes the mapped memory to the verifier and to
the minzip library.

Support for files which are raw block maps (which will be used when we
have packages written to encrypted data partitions) is present but
largely untested so far.

Bug: 12188746
Change-Id: I12cc3e809834745a489dd9d4ceb558cbccdc3f71

diff --git a/verifier.h b/verifier.h
index 023d3bf..15f8d98 100644
--- a/verifier.h
+++ b/verifier.h

@@ -37,10 +37,13 @@
     ECPublicKey* ec;
 } Certificate;
 
-/* Look in the file for a signature footer, and verify that it
- * matches one of the given keys.  Return one of the constants below.
+/* addr and length define a an update package file that has been
+ * loaded (or mmap'ed, or whatever) into memory.  Verify that the file
+ * is signed and the signature matches one of the given keys.  Return
+ * one of the constants below.
  */
-int verify_file(const char* path, const Certificate *pKeys, unsigned int numKeys);
+int verify_file(unsigned char* addr, size_t length,
+                const Certificate *pKeys, unsigned int numKeys);
 
 Certificate* load_keys(const char* filename, int* numKeys);