[CPU] Check patch MediaID if patch signature check failed

This should let us make sure patches are being applied to the right XEX, without needing to rely on the signature.
This commit is contained in:
emoose 2020-01-05 20:44:31 +00:00
parent dc12a5b50d
commit 5cc63480b8
1 changed files with 10 additions and 0 deletions

View File

@ -215,6 +215,16 @@ int XexModule::ApplyPatch(XexModule* module) {
s.finalize(digest); s.finalize(digest);
if (memcmp(digest, patch_header->digest_source, 0x14) != 0) { if (memcmp(digest, patch_header->digest_source, 0x14) != 0) {
// If the signature check failed, check against the MediaID
// (we can forgive signature not matching)
// we won't check MediaID if the sig matches though, since it might not be
// that reliable?
if (memcmp(xex_security_info()->xgd2_media_id,
module->xex_security_info()->xgd2_media_id, 0x10) != 0) {
XELOGE("Patch MediaID doesn't match base XEX MediaID, aborting patch");
return 1;
}
XELOGW( XELOGW(
"XEX patch signature hash doesn't match base XEX signature hash, patch " "XEX patch signature hash doesn't match base XEX signature hash, patch "
"will likely fail!"); "will likely fail!");