On Thu, 2015-01-22 at 18:12 -0800, James Bottomley wrote: > The authenticode spec is a bit unclear on padding when it comes to computing > hashes. However, it is clear that when we add the signature table, we must > align it and pad to the alignment. This pad is conventionally zeroes and > becomes part of the hash. This means that when computing the hash of an > unsigned binary you must also zero pad the hash up to the aligned size > otherwise the hashes of signed and unsigned binaries would differ by the pad. > > Fix this by adding a zero pad into the hash up to where the aligned size of > the binary would be
Incidentally, what's the tag for stable process? This bug is present in both UDK2010 and UDK2014. James ------------------------------------------------------------------------------ New Year. New Location. New Benefits. New Data Center in Ashburn, VA. GigeNET is offering a free month of service with a new server in Ashburn. Choose from 2 high performing configs, both with 100TB of bandwidth. Higher redundancy.Lower latency.Increased capacity.Completely compliant. http://p.sf.net/sfu/gigenet _______________________________________________ edk2-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/edk2-devel
