use CimGetVerificationInformation from cimwriter.dll (microsoft#2608)

Signed-off-by: Maksim An <maksiman@microsoft.com>

Author: anmaxvl

internal/winapi/cimfs.go

@@ -148,7 +148,10 @@ func CimSealImage(blockCimPath string, hashSize *uint64, fixedHeaderSize *uint64
 }
 
 func CimGetVerificationInformation(blockCimPath string, isSealed *uint32, hashSize *uint64, signatureSize *uint64, fixedHeaderSize *uint64, hash *byte, signature *byte) (hr error) {
-	return cimfs.CimGetVerificationInformation(blockCimPath, isSealed, hashSize, signatureSize, fixedHeaderSize, hash, signature)
+	return pickSupported(
+		cimwriter.CimGetVerificationInformation,
+		cimfs.CimGetVerificationInformation,
+	)(blockCimPath, isSealed, hashSize, signatureSize, fixedHeaderSize, hash, signature)
 }
 
 func CimMountVerifiedImage(imagePath string, fsName string, flags uint32, volumeID *guid.GUID, hashSize uint16, hash *byte) error {

internal/winapi/cimwriter/cimwriter.go

@@ -34,6 +34,8 @@ type ImagePath = types.CimFsImagePath
 //sys CimCreateMergeLink(cimFSHandle FsHandle, newPath string, oldPath string) (hr error) = cimwriter.CimCreateMergeLink?
 //sys CimSealImage(blockCimPath string, hashSize *uint64, fixedHeaderSize *uint64, hash *byte) (hr error) = cimwriter.CimSealImage?
 
+//sys CimGetVerificationInformation(blockCimPath string, isSealed *uint32, hashSize *uint64, signatureSize *uint64, fixedHeaderSize *uint64, hash *byte, signature *byte) (hr error) = cimwriter.CimGetVerificationInformation?
+
 var load = sync.OnceValue(func() error {
 	// Pre-load the DLL with a restricted search path (System32 + application directory only)
 	// to prevent loading from untrusted locations (e.g., CWD or arbitrary PATH entries).