veriexec: allow sha512 fingerprint in manifest parser

MAC/veriexec already supports SHA512 fingerprints, therefore the
veriexec program should also.

Reviewed by:	sjg
This commit is contained in:
Stephen J. Kiernan
2023-04-16 19:25:27 -04:00
parent 8050e0a429
commit 2e6a433811
+2 -2
View File
@@ -56,6 +56,7 @@ static struct verified_exec_params *params = &oparams;
# define SHA_DIGEST_LENGTH br_sha1_SIZE
# define SHA256_DIGEST_LENGTH br_sha256_SIZE
# define SHA384_DIGEST_LENGTH br_sha384_SIZE
# define SHA512_DIGEST_LENGTH br_sha512_SIZE
#endif
static int fmode;
@@ -72,9 +73,8 @@ struct fingerprint_type {
static const struct fingerprint_type fingerprint_table[] = {
{ "sha1", SHA_DIGEST_LENGTH },
{ "sha256", SHA256_DIGEST_LENGTH },
#if MAXFINGERPRINTLEN > 32
{ "sha384", SHA384_DIGEST_LENGTH },
#endif
{ "sha512", SHA512_DIGEST_LENGTH },
{ NULL, 0 }
};