首頁 探索 說明
登入
pascal
/
innosetup
镜像来自 https://github.com/jrsoftware/issrc.git
2
0
複刻 0
檔案 問題管理 0 Wiki
瀏覽代碼

Make TrustFunc more generic since it's in Components. Can't be moved to Projects\Src instead because Components\ScintInt needs it.

Martijn Laan 5 月之前
父節點
c2ccdf4987
當前提交
203ffa67a5
共有 2 個文件被更改,包括 21 次插入5 次删除
統一視圖 顯示文件統計
  1. 7 1
      Components/TrustFunc.AllowedPublicKeys.inc
  2. 14 4
      Components/TrustFunc.pas

+ 7 - 1
Components/TrustFunc.AllowedPublicKeys.inc
查看文件 

@@ -1,3 +1,9 @@
 
+{ Inno Setup build: the second key in this file should be replaced by your

+  own.

+  

+  Other builds: if you need only one key you can set AllowedPublicKey2Text To

+  an empty string. }

+

 AllowedPublicKey1Text := '''

 AllowedPublicKey1Text := '''

 format issig-public-key

 format issig-public-key

 key-id def0147c3bbc17ab99bf7b7a9c2de1390283f38972152418d7c2a4a7d7131a38

 key-id def0147c3bbc17ab99bf7b7a9c2de1390283f38972152418d7c2a4a7d7131a38

@@ -12,4 +18,4 @@ key-id def020edee3c4835fd54d85eff8b66d4d899b22a777353ca4a114b652e5e7a28
 
 public-x 515dc7d6c16d4a46272ceb3d158c5630a96466ab4d948e72c2029d737c823097

 public-x 515dc7d6c16d4a46272ceb3d158c5630a96466ab4d948e72c2029d737c823097

 public-y f3c21f6b5156c52a35f6f28016ee3e31a3ded60c325b81fb7b1f88c221081a61

 public-y f3c21f6b5156c52a35f6f28016ee3e31a3ded60c325b81fb7b1f88c221081a61

 

 

-''';

+''';

+ 14 - 4
Components/TrustFunc.pas
查看文件 

@@ -5,6 +5,8 @@ unit TrustFunc;
 
   Copyright (C) 1997-2025 Jordan Russell

   Copyright (C) 1997-2025 Jordan Russell

   Portions by Martijn Laan

   Portions by Martijn Laan

   For conditions of distribution and use, see LICENSE.TXT.

   For conditions of distribution and use, see LICENSE.TXT.

+

+  Trust support functons using ISSigFunc and key texts from TrustFunc.AllowedPublicKeys.inc

 }

 }

 

 

 {.$DEFINE TRUSTALL}

 {.$DEFINE TRUSTALL}

@@ -33,16 +35,24 @@ begin
 
         Key1 := TECDSAKey.Create;

         Key1 := TECDSAKey.Create;

         if ISSigImportKeyText(Key1, AllowedPublicKey1Text, False) <> ikrSuccess then

         if ISSigImportKeyText(Key1, AllowedPublicKey1Text, False) <> ikrSuccess then

           raise Exception.Create('ISSigImportKeyText failed');

           raise Exception.Create('ISSigImportKeyText failed');

-        Key2 := TECDSAKey.Create;

-        if ISSigImportKeyText(Key2, AllowedPublicKey2Text, False) <> ikrSuccess then

-          raise Exception.Create('ISSigImportKeyText failed');

+        if AllowedPublicKey2Text <> '' then begin

+          Key2 := TECDSAKey.Create;

+          if ISSigImportKeyText(Key2, AllowedPublicKey2Text, False) <> ikrSuccess then

+            raise Exception.Create('ISSigImportKeyText failed');

+        end;

+

+        var AllowedKeys: array of TECDSAKey;

+        if Key2 <> nil then

+          AllowedKeys := [Key1, Key2]

+        else

+          AllowedKeys := [Key1];

 

 

         const SigFileName = FileName + '.issig';

         const SigFileName = FileName + '.issig';

         const SigText = ISSigLoadTextFromFile(SigFileName);

         const SigText = ISSigLoadTextFromFile(SigFileName);

 

 

         var ExpectedFileSize: Int64;

         var ExpectedFileSize: Int64;

         var ExpectedFileHash: TSHA256Digest;

         var ExpectedFileHash: TSHA256Digest;

-        if ISSigVerifySignatureText([Key1, Key2], SigText, ExpectedFileSize,

+        if ISSigVerifySignatureText(AllowedKeys, SigText, ExpectedFileSize,

            ExpectedFileHash) <> vsrSuccess then

            ExpectedFileHash) <> vsrSuccess then

           raise Exception.CreateFmt('Signature file "%s" is not valid',

           raise Exception.CreateFmt('Signature file "%s" is not valid',

             [SigFileName]);

             [SigFileName]);