Article delegate-en/4538 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A4537@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: OpenBSD 4.5 Compilation Issue
10 Aug 2009 07:50:14 GMT feedback@delegate.org (Yutaka Sato)
The DeleGate Project


Hi,

In message <_A4537@delegate-en.ML_> on 08/10/09(08:32:15)
you Gavin Norman <pweiqbdyi-h5qfbm66uj3r.ml@ml.delegate.org> wrote:
 |the build process seems fine:
 |
 |"src/dg.exe" "-Fsrcmd5" -f srcfiles -type f
 |source MD5 = eac066167e656071852748ab363b5386
 |*** OK, this is the original source from DeleGate.ORG

This shows that the source code is not modified from the original.

 |However when I try to run it:
 |
 |** NG, this executable is not signed

The above "NG" is usual.  It become "OK" only if the binary file
is signed with a certificate (RSA-key) issued by DeleGate.ORG.

 |08/10 09:31:40.09 [9804] 0+0: -- checked integrity:ERROR (0.112) 
 |aedc049437751a11ad74ca3b59356ced 519daabab8e0141c
 |FATAL: seems interpolated: /usr/local/sbin/delegated

This show that the binary is modified after it is build.
The modification might be more serious than that for the source code.

I don't know how you put the binay "delegated" to the /usr/local/bin but
it seems to have been modified somehow after it is made at src/delegated.
You can see the signs in the executable as follows:
 % src/delegated -Fesign
 % /usr/local/sbin/delegated -Fesign

Example:
    openbsd> src/delegated -Fesign
    -- src Sign> 9.9.5-pre2 000000000X a22c083bf99a1ea0 (Author@DeleGate.ORG)
    -- bld Sign> 9.9.5-pre2 000000000X a22c083bf99a1ea0 ()
 1) -- exe Sign? 9.9.5-pre2 2009080916 20430d95296b1c1e ()
 2) -- File MD5: 20430d95296b1c1e87a93905a8c90dcd
    ** NG, this executable is not signed: .../src/delegated

 3) openbsd> echo x >> src/delegated

    openbsd> src/delegated -Fesign
    -- src Sign> 9.9.5-pre2 000000000X a22c083bf99a1ea0 (Author@DeleGate.ORG)
    -- bld Sign> 9.9.5-pre2 000000000X a22c083bf99a1ea0 ()
    -- exe Sign? 9.9.5-pre2 2009080916 20430d95296b1c1e ()
 4) -- File MD5: 1f0bf6362788888cee36e0de5d085f24
    ** NG, this executable is not signed: .../src/delegated

1) the MD5 written in the binary
2) real MD5 of the binary matches with 1)
3) modify the binary
4) the MD5 become unmatched

 |This is despite the fact I haven't even touch the source. Also 
 |regardless of whether I specify an email address or not with ADMIN.

Cheers,
Yutaka
--
  9 9   Yutaka Sato <y.sato@delegate.org> http://delegate.org/y.sato/
 ( ~ )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V