VirtualBox

Changeset 105706 in vbox


Ignore:
Timestamp:
Aug 16, 2024 1:04:03 PM (6 weeks ago)
Author:
vboxsync
Message:

/Config.kmk: Introduce another tricky signing mode on Windows.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/Config.kmk

    r105639 r105706  
    44354435  # @param 4  Set to 2 if the expression will be expanded twice before chopped into commands (for _CMDS).
    44364436  # @param 5  Disables dual & tripple signing if non-empty.
    4437   # @param 6  Disables tripple signing if non-empty.
     4437  # @param 6  Disables triple signing if non-empty.
    44384438  #
    44394439  # @remarks The parameters are the same as VBOX_SIGN_FILE_FN.
     
    44824482        ,)
    44834483
     4484  ## Corp code signing for drivers and catalogs, plan C.
     4485  #
     4486  # This does a local SHA-1 signature before submitting to corp code signing. The end
     4487  # result will have just a SHA-256 signature:
     4488  #   1. Sign $1 using local SHA-1 certificate.
     4489  #   2. Do SHA-256 corp code signing of $1
     4490  #
     4491  # @param 1  The file to sign.
     4492  # @param 2  File description. Optional.
     4493  # @param 3  Additional parameters. Optional.
     4494  # @param 4  Set to 2 if the expression will be expanded twice before chopped into commands (for _CMDS).
     4495  # @param 5  Disables dual signing if non-empty. Ignored because this can't do dual signing.
     4496  # @remarks The parameters are the same as VBOX_SIGN_FILE_FN.
     4497  VBOX_SIGN_IMAGE_PLAN_C_FN = $(VBOX_SIGNTOOL_SHA1) \
     4498        sign /fd sha1 \
     4499        $(VBOX_CROSS_CERTIFICATE_FILE_ARGS) \
     4500        $(VBOX_CERTIFICATE_STORE_ARGS) \
     4501        $(VBOX_CERTIFICATE_SUBJECT_NAME_ARGS) \
     4502        $(VBOX_CERTIFICATE_FINGERPRINT_ARGS) \
     4503        $(VBOX_TSA_URL_ARGS) \
     4504        $(if $(strip $(2)),/d "$(strip $(2))",) \
     4505        $(3) \
     4506        "$(1)" \
     4507        $(if-expr "$4" == "2",$$(NLTAB),$(NLTAB))$(call VBOX_CCS_SIGN_CMD,driver$(if-expr "$3" == "/ph",_pagehash,),$1,,-digest_algo SHA2) \
     4508
    44844509  ## Sign an executable image.
    44854510  # @param 1  The file to sign.
     
    44974522  if $(intersects win_planb,$(VBOX_WITH_CORP_CODE_SIGNING))
    44984523   VBOX_SIGN_DRIVER_CMDS      ?= $(if $(eq $(tool_do),LINK_LIBRARY),,$(call VBOX_SIGN_IMAGE_PLAN_B_FN,$(out),,/ph,2))
     4524   VBOX_SIGN_DRIVER_ORDERDEPS ?= $(if $(eq $(tool_do),LINK_LIBRARY),,$(VBOX_RTSIGNTOOL) $(VBOX_SIGNTOOL_ORDERDEPS))
     4525  else if $(intersects win_planc,$(VBOX_WITH_CORP_CODE_SIGNING))
     4526   VBOX_SIGN_DRIVER_CMDS      ?= $(if $(eq $(tool_do),LINK_LIBRARY),,$(call VBOX_SIGN_IMAGE_FN,$(out),,2,nodual))
    44994527   VBOX_SIGN_DRIVER_ORDERDEPS ?= $(if $(eq $(tool_do),LINK_LIBRARY),,$(VBOX_RTSIGNTOOL) $(VBOX_SIGNTOOL_ORDERDEPS))
    45004528  else
     
    45314559   if defined(VBOX_CERTIFICATE_SUBJECT_NAME) && $(intersects win_planb,$(VBOX_WITH_CORP_CODE_SIGNING))
    45324560    VBOX_SIGN_IMAGE_CMDS           ?= $(if $(eq $(tool_do),LINK_LIBRARY),,$(call VBOX_SIGN_IMAGE_PLAN_B_FN,$(out),,/ph,2))
     4561    VBOX_SIGN_IMAGE_CMDS_ORDERDEPS ?= $(if $(eq $(tool_do),LINK_LIBRARY),,$(VBOX_RTSIGNTOOL) $(VBOX_SIGNTOOL_ORDERDEPS))
     4562   else if defined(VBOX_CERTIFICATE_SUBJECT_NAME) && $(intersects win_planc,$(VBOX_WITH_CORP_CODE_SIGNING))
     4563    VBOX_SIGN_IMAGE_CMDS           ?= $(if $(eq $(tool_do),LINK_LIBRARY),,$(call VBOX_SIGN_IMAGE_PLAN_C_FN,$(out),,/ph,2))
    45334564    VBOX_SIGN_IMAGE_CMDS_ORDERDEPS ?= $(if $(eq $(tool_do),LINK_LIBRARY),,$(VBOX_RTSIGNTOOL) $(VBOX_SIGNTOOL_ORDERDEPS))
    45344565   else
Note: See TracChangeset for help on using the changeset viewer.

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette