kylefang/react-native-code-push
1
0
Fork 0
mirror of https://github.com/zhigang1992/react-native-code-push.git synced 2026-06-13 17:45:34 +08:00
Code Issues Packages Projects Releases Wiki Activity

Add double hash checking support for code signing (#1005)

Browse Source 
Add double hash checking support for code signing for both android and ios SDK
This commit is contained in:
Ruslan Bikkinin
2017-09-18 13:37:44 +03:00
committed by GitHub
parent 32f82e6050
commit e1cdd90e4e
5 changed files with 43 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
ios/CodePush/CodePushUpdateUtils.m
View File

@@ -335,9 +335,10 @@ NSString * const IgnoreCodePushMetadata = @".codepushrelease";
}
}
+ (BOOL)verifySignatureFor:(NSString *)folderPath
withPublicKey:(NSString *)publicKeyString
error:(NSError **)error
+ (BOOL)verifyUpdateSignatureFor:(NSString *)folderPath
expectedHash:(NSString *)newUpdateHash
withPublicKey:(NSString *)publicKeyString
error:(NSError **)error
{
NSLog(@"Verifying signature for folder path: %@", folderPath);
@@ -360,6 +361,8 @@ NSString * const IgnoreCodePushMetadata = @".codepushrelease";
return false;
}
CPLog(@"JWT signature verification succeeded, payload content: %@", envelopedPayload);
if(![envelopedPayload objectForKey:@"contentHash"]){
CPLog(@"The update could not be verified because the signature did not specify a content hash.");
return false;
@@ -367,9 +370,7 @@ NSString * const IgnoreCodePushMetadata = @".codepushrelease";
NSString *contentHash = envelopedPayload[@"contentHash"];
return [self verifyFolderHash:folderPath
expectedHash:contentHash
error:error];
return [contentHash isEqualToString:newUpdateHash];
}
@end