How Do I Get an OSX Folder Checksum in Objective C? -


in objective c, how checksum osx folder , contents (which may have several subfolders)? preferably, i'd sha512 value.

in bash, can so:

find /tmp/examplefolder -type f -print | xargs cat | shasum -a 512

...however, 1 can replace shasum command own version , undo i'm trying do.

background:

i'm using native osx webkit widget gui of osx application. pulls file:// out of folder called myapp.app/resources/html. resist virus maliciously hacking myapp.app, plan have info.plist sha512 value in (that encrypted of course). when application boots, calculate sha512 value of myapp.app/resources/html, encrypt in same way info.plist value, , compare 2 values see if identical. if not, application has been compromised. i'll alert user dialog box , shut down application.

questions answered

q1. won't have encrypted in way prevent tampering saved value in info.plist? – mipadi

a1. yes, before storing in info.plist, encrypted. said above. can handle encryption step using crypto library.

q2. files in app (resource directory) not have write permissions. if encrypt save encryption key? – zaph

a2. @ time of compilation, in compilation steps, have bash script calculate sha512 checksum, encrypt it, , update info.plist.

q3. if files in application can't written to, what's point of checksum @ all? – mipadi

a3. application won't write resources/html folder. store session state using typical user settings strategy apple encourages applications. instead, fear virus infects resources/html folder, replacing bad stuff, , causes application appear normal doing harmful in background. checksum can -- can prevent tampering after application installation.

q4. assumed asker not using code signing (for reason), since code signing cover this. – mipadi

a4. if you're asking why don't rely on code signing -- it's because after application marked trusted, virus can resources/html folder , cause havoc. why need checksum mechanism on application boot.

you use filemanager method:

- (nsdirectoryenumerator<nsurl *> *)enumeratoraturl:(nsurl *)url includingpropertiesforkeys:(nsarray<nsstring *> *)keys options:(nsdirectoryenumerationoptions)mask errorhandler:(bool (^)(nsurl *url, nserror *error))handler

see apple documentation example code.
or

- (nsarray<nsstring *> *)subpathsofdirectoryatpath:(nsstring *)path error:(nserror *)error

to enumerator files in path.

create sha512 instance common crypto function:

cc_sha512_init(cc_sha256_ctx *c)

for each file enumerated update:

cc_sha512_update(cc_sha256_ctx *c, const void *data, cc_long len)

complete with:

cc_sha512_final(unsigned char *md, cc_sha256_ctx *c)

there no need encrypt sha512 output since sha one-way function.


Comments

Post a Comment

Popular posts from this blog

php - Wordpress website dashboard page or post editor content is not showing but front end data is showing properly -

Image
recently have uploaded wordpress site onto server. have uploaded wordpress site in sub-folder under root folder ../root(domain root folder)/wordpress (where host wordpress folder). now problem content data in page or post in dashboard of wordpress admin panel not showing - see image. but data showing in front view - see image. if not browser cache issue , not issue happened tinymce editor during upgrade; try add config file: define('concatenate_scripts', false);
Read more

How to get the ip address of VM and use it to configure SSH connection dynamically in Ansible -

i trying ip address of vm , trying use establish ssh vm. following script: --- - hosts: localhost become: yes connection: local gather_facts: false serial: 1 vars_files: - createvmvars.yml tasks: - name: gathering vm info. vsphere_guest: vcenter_hostname: "{{vcenter_hostname}}" username: "{{vcenter_username}}" password: "{{vcenter_password}}" guest: "{{guest_name}}" vmware_guest_facts: yes register: var - debug: msg="{{var.ansible_facts.hw_eth0.ipaddresses[0]}}" - name: establishing ssh connection. script: /home/shasha/devops/scripts/ssh_configure.sh "{{var.ansible_facts.hw_eth0.ipaddresses[0]}}" following content of ssh_configure.sh : #!/bin/sh ssh-keygen -t rsa ssh-copy-id $1 but when running playbook, getting following error while executing third task: error! 'var' undefined but debug module(second task) printin
Read more

javascript - Get parameter of GET request -

i make request: createxhrrequest( "get", fileurl, function( err, response ) { if( err ) { alert( "error get!" ); } alert(response); }); and full response: { "status" : "ok", "message" : "jvberi0xljqkjdduxdgkmy how can jvberi0xlj ? i try response.message , response["message"]. nothing works. just simple access this: var json = json.parse(response); json.message
Read more