Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / phosphor-bmc-code-mgmt / 92c7e9ebb1892122d4c142d1387eb0c12584f52e^! / .
commit92c7e9ebb1892122d4c142d1387eb0c12584f52e[log] [tgz]
authorLei YU <yulei.sh@bytedance.com>Thu May 20 16:32:28 2021 +0800
committerLei YU <yulei.sh@bytedance.com>Tue Jun 22 09:26:05 2021 +0000
treeb6c52d4e4e77d9ffcdf8e9d00d4b69cb4c14f360
parentfa79914baad339e2624c48afddd9d27457ee0913 [diff]
image_verify: Append .sig instead of replace

For the signature files, the code was using replace_extension() to
replace the extension, it works for files without extension, e.g.
for image-bmc it gets image-bmc.sig.

But for files with existing extensions, e.g. bios.bin, it gets bios.sig
instead of bios.bin.sig, where the latter is valid.

So use fs::path::operator += to append the `.sig` string to get the
expected signature file name.

Signed-off-by: Lei YU <yulei.sh@bytedance.com>
Change-Id: Ia753aaf1e8ae2be285c700efb13770e02166c6d2

diff --git a/image_verify.cpp b/image_verify.cpp
index b92956a..fc0e38f 100644
--- a/image_verify.cpp
+++ b/image_verify.cpp

@@ -167,7 +167,7 @@
             {
                 // Build Signature File name
                 fs::path sigFile(file);
-                sigFile.replace_extension(SIGNATURE_FILE_EXT);
+                sigFile += SIGNATURE_FILE_EXT;
 
                 // Verify the signature.
                 valid = verifyFile(file, sigFile, publicKeyFile, hashType);
@@ -393,7 +393,7 @@
         }
 
         fs::path sigFile(file);
-        sigFile.replace_extension(SIGNATURE_FILE_EXT);
+        sigFile += SIGNATURE_FILE_EXT;
 
         // Verify the signature.
         auto valid = verifyFile(file, sigFile, publicKeyPath, hashType);