I understand that the app bundle is signed by Apple so that it cannot be modified, what I am wondering is if iOS actually reads in the entire bundle and recomputes the signature of the bundle or they use some tricks. For larger apps, 400MB+ it seems like hashing the whole bundle would take a significant amount of time. Is there are trick that speeds up the verification?开发者_如何学Go
For bonus points: Where does iOS store the signature? In the keychain?
The code signature is a file inside the app bundle, in, e.g., Whatever.app/_CodeSignature/CodeResources. It doesn’t require a hash of the entire bundle—just a few things inside it, like the binary and the Info.plist. This is why you can swap resources in a code-signed application—like one of the OS X system-installed apps, which are almost all code-signed as of Lion—without causing the system to refuse to run it.
![Interactive visualization of a graph in python [closed]](https://www.devze.com/res/2023/04-10/09/92d32fe8c0d22fb96bd6f6e8b7d1f457.gif)
加载中,请稍侯......
精彩评论