Windows: Implement Evil-Maid-Attack detection mechanism. Write the correct bootloader when changing the system encryption password: this enables to recover if an attack is detected.

author: Mounir IDRASSI <mounir.idrassi@idrix.fr> 2015-07-29 00:09:14 +0200
committer: Mounir IDRASSI <mounir.idrassi@idrix.fr> 2015-07-29 00:33:10 +0200
commit: 6ca598f8418a1ab12ff7353c534d610b4dbac943 (patch)
tree: c7c58d7fbd700e3ab4fef078a58c83c2430d847d /src/Common/Volumes.h
parent: 69a8ad5bbaa1be2b3a6548c2b3f930d3aa4379e3 (diff)
download: VeraCrypt-6ca598f8418a1ab12ff7353c534d610b4dbac943.tar.gz
VeraCrypt-6ca598f8418a1ab12ff7353c534d610b4dbac943.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/src/Common/Volumes.h b/src/Common/Volumes.h
index 76a14966..016d989f 100644
--- a/src/Common/Volumes.h
+++ b/src/Common/Volumes.h
@@ -130,6 +130,9 @@ UINT64_STRUCT GetHeaderField64 (byte *header, int offset);
 int ReadVolumeHeader (BOOL bBoot, char *encryptedHeader, Password *password, int pim, PCRYPTO_INFO *retInfo, CRYPTO_INFO *retHeaderCryptoInfo);
 #else
 int ReadVolumeHeader (BOOL bBoot, char *encryptedHeader, Password *password, int pkcs5_prf, int pim, BOOL truecryptMode, PCRYPTO_INFO *retInfo, CRYPTO_INFO *retHeaderCryptoInfo);
+#ifdef _WIN32
+void ComputeBootloaderFingerprint (byte *bootLoaderBuf, unsigned int bootLoaderSize, byte* fingerprint);
+#endif
 #endif
 
 #if !defined (DEVICE_DRIVER) && !defined (TC_WINDOWS_BOOT)
author	Mounir IDRASSI <mounir.idrassi@idrix.fr>	2015-07-29 00:09:14 +0200
committer	Mounir IDRASSI <mounir.idrassi@idrix.fr>	2015-07-29 00:33:10 +0200
commit	6ca598f8418a1ab12ff7353c534d610b4dbac943 (patch)
tree	c7c58d7fbd700e3ab4fef078a58c83c2430d847d /src/Common/Volumes.h
parent	69a8ad5bbaa1be2b3a6548c2b3f930d3aa4379e3 (diff)
download	VeraCrypt-6ca598f8418a1ab12ff7353c534d610b4dbac943.tar.gz VeraCrypt-6ca598f8418a1ab12ff7353c534d610b4dbac943.zip