On Thu, 2015-01-22 at 18:12 -0800, James Bottomley wrote:
> The authenticode spec is a bit unclear on padding when it comes to computing
> hashes.  However, it is clear that when we add the signature table, we must
> align it and pad to the alignment.  This pad is conventionally zeroes and
> becomes part of the hash.  This means that when computing the hash of an
> unsigned binary you must also zero pad the hash up to the aligned size
> otherwise the hashes of signed and unsigned binaries would differ by the pad.
> 
> Fix this by adding a zero pad into the hash up to where the aligned size of
> the binary would be

Incidentally, what's the tag for stable process?  This bug is present in
both UDK2010 and UDK2014.

James



------------------------------------------------------------------------------
New Year. New Location. New Benefits. New Data Center in Ashburn, VA.
GigeNET is offering a free month of service with a new server in Ashburn.
Choose from 2 high performing configs, both with 100TB of bandwidth.
Higher redundancy.Lower latency.Increased capacity.Completely compliant.
http://p.sf.net/sfu/gigenet
_______________________________________________
edk2-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/edk2-devel

Reply via email to