验证 system32/drivers 文件夹中的数字签名 [英] Verify digital signature within system32/drivers folder

问题描述

我花了整夜研究这个没有解决方案.

I've spent all night researching this without a solution.

我正在尝试验证驱动器文件夹 (C:\Windows\System32\drivers*.sys) 中文件的数字签名，选择您想要的任何一个.我知道代码是正确的，因为如果您将文件从该文件夹移动到 C:\ 测试有效.

I'm trying to verify the digital signature of a file in the drives folder (C:\Windows\System32\drivers*.sys) pick whatever one you want. I know that the code is correct because if you move the file from that folder to C:\ the test works.

WinVerifyTrust 给出错误 80092003http://pastebin.com/nLR7rvZe

WinVerifyTrust gives error 80092003 http://pastebin.com/nLR7rvZe

CryptQueryObject 给出错误 80092009http://pastebin.com/45Ra6eL4

CryptQueryObject gives error 80092009 http://pastebin.com/45Ra6eL4

这是怎么回事?

推荐答案

0x80092003 = CRYPT_E_FILE_ERROR = 读取或写入文件时出错.

0x80092003 = CRYPT_E_FILE_ERROR = An error occurred while reading or writing to the file.

0x80092009 = CRYPT_E_NO_MATCH = 尝试查找对象时不匹配.

0x80092009 = CRYPT_E_NO_MATCH = No match when trying to find the object.

我猜你在 64 位机器上运行，WOW64 文件系统重定向将你重定向到 syswow64\drivers，它是空的.您可以使用 Wow64DisableWow64FsRedirection() 禁用重定向.

I'm guessing you're running on a 64-bit machine and WOW64 file system redirection is redirecting you to syswow64\drivers, which is empty. You can disable redirection with Wow64DisableWow64FsRedirection().

这篇关于验证 system32/drivers 文件夹中的数字签名的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！