Fierelier/notepad-plus-plus-legacy
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

[EU-FOSSA] Check Updater's certificate before launching it

Browse Source
This commit is contained in:
Don HO 2019-02-13 19:39:39 +01:00
parent 1ab1624800
commit 501980782f
1 changed files with 25 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
PowerEditor/src/NppCommands.cpp
View File

@ -37,6 +37,7 @@
#include "functionListPanel.h"
#include "fileBrowser.h"
#include "Sorters.h"
#include "verifySignedFile.h"
#include "LongRunningOperation.h"
#include "md5.h"
#include "sha-256.h"
@ -2811,6 +2812,15 @@ void Notepad_plus::command(int id)
generic_string updaterFullPath = updaterDir;
PathAppend(updaterFullPath, TEXT("gup.exe"));
#ifdef DEBUG // if not debug, then it's release
bool isCertifVerified = true;
#else //RELEASE
// check the signature on updater
bool isCertifVerified = VerifySignedLibrary(updaterFullPath.c_str(), NPP_COMPONENT_SIGNER_KEY_ID, NPP_COMPONENT_SIGNER_SUBJECT, NPP_COMPONENT_SIGNER_DISPLAY_NAME, false, false, false);
#endif
if (isCertifVerified)
{
generic_string param;
if (id == IDM_CONFUPDATERPROXY)
{
@ -2830,6 +2840,7 @@ void Notepad_plus::command(int id)
updater.run();
}
}
break;
}