Commit 6cd26fbc authored by Rafaël Carré's avatar Rafaël Carré

check if the binary signature was issued by the public key we got in memory,...

check if the binary signature was issued by the public key we got in memory, before real cryptographic verification
parent 0f234aaf
...@@ -1368,6 +1368,18 @@ void update_DownloadReal( update_download_thread_t *p_udt ) ...@@ -1368,6 +1368,18 @@ void update_DownloadReal( update_download_thread_t *p_udt )
goto end; goto end;
} }
if( memcmp( sign.issuer_longid, p_update->p_pkey->longid, 8 ) )
{
utf8_unlink( psz_destfile );
msg_Err( p_udt, "Invalid signature issuer" );
intf_UserFatal( p_udt, VLC_TRUE, _("Invalid signature"),
_("The cryptographic signature for downloaded file \"%s\" was "
"invalid and couldn't be used to securely verify it, and so "
"VLC deleted it."),
psz_destfile );
goto end;
}
if( sign.type != BINARY_SIGNATURE ) if( sign.type != BINARY_SIGNATURE )
{ {
utf8_unlink( psz_destfile ); utf8_unlink( psz_destfile );
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment