File: signature_validator_win.h

package info (click to toggle)
chromium-browser 37.0.2062.120-1~deb7u1
  • links: PTS, VCS
  • area: main
  • in suites: wheezy
  • size: 1,707,260 kB
  • sloc: cpp: 8,976,677; ansic: 3,473,199; python: 586,578; asm: 449,013; xml: 184,195; java: 142,924; sh: 118,496; perl: 81,467; makefile: 27,557; yacc: 10,506; objc: 8,886; tcl: 3,186; cs: 2,252; lex: 2,213; sql: 1,198; pascal: 1,170; lisp: 790; awk: 407; ruby: 155; php: 83; sed: 52; exp: 11
file content (28 lines) | stat: -rw-r--r-- 1,109 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
 
// Copyright 2013 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

#ifndef CHROME_APP_SIGNATURE_VALIDATOR_WIN_H_
#define CHROME_APP_SIGNATURE_VALIDATOR_WIN_H_

#include <string>
#include <vector>

namespace base {
class FilePath;
}

// Verifies that |signed_file| has a valid signature from a trusted software
// publisher. The signing certificate must be valid for code signing, and must
// be issued by a trusted certificate authority (e.g., VeriSign, Inc).
bool VerifyAuthenticodeSignature(const base::FilePath& signed_file);

// Tries to verify the signer by matching the subject name of the
// certificate to |subject_name| and the hash of the public key to
// |expected_hashes|. The cert must be current. If matched, returns true
// otherwise returns false.
bool VerifySignerIsGoogle(const base::FilePath& signed_file,
                          const std::string& subject_name,
                          const std::vector<std::string>& expected_hashes);

#endif  // CHROME_APP_SIGNATURE_VALIDATOR_WIN_H_