From 6ca598f8418a1ab12ff7353c534d610b4dbac943 Mon Sep 17 00:00:00 2001 From: Mounir IDRASSI Date: Wed, 29 Jul 2015 00:09:14 +0200 Subject: Windows: Implement Evil-Maid-Attack detection mechanism. Write the correct bootloader when changing the system encryption password: this enables to recover if an attack is detected. --- src/Common/BootEncryption.h | 4 ++++ 1 file changed, 4 insertions(+) (limited to 'src/Common/BootEncryption.h') diff --git a/src/Common/BootEncryption.h b/src/Common/BootEncryption.h index 6ac42cd3..c93058ad 100644 --- a/src/Common/BootEncryption.h +++ b/src/Common/BootEncryption.h @@ -140,6 +140,7 @@ namespace VeraCrypt DumpFilter }; + void SetParentWindow (HWND parent) { ParentWindow = parent; } void AbortDecoyOSWipe (); void AbortSetup (); void AbortSetupWait (); @@ -157,6 +158,7 @@ namespace VeraCrypt DWORD GetDriverServiceStartType (); unsigned int GetHiddenOSCreationPhase (); uint16 GetInstalledBootLoaderVersion (); + void GetInstalledBootLoaderFingerprint (byte fingerprint[WHIRLPOOL_DIGESTSIZE + SHA512_DIGESTSIZE]); Partition GetPartitionForHiddenOS (); bool IsBootLoaderOnDrive (char *devicePath); BootEncryptionStatus GetStatus (); @@ -164,7 +166,9 @@ namespace VeraCrypt void GetVolumeProperties (VOLUME_PROPERTIES_STRUCT *properties); SystemDriveConfiguration GetSystemDriveConfiguration (); void Install (bool hiddenSystem); + void InstallBootLoader (Device& device, bool preserveUserConfig = false, bool hiddenOSCreation = false); void InstallBootLoader (bool preserveUserConfig = false, bool hiddenOSCreation = false); + bool CheckBootloaderFingerprint (bool bSilent = false); void InvalidateCachedSysDriveProperties (); bool IsCDDrivePresent (); bool IsHiddenSystemRunning (); -- cgit v1.2.3