mirror of
https://github.com/openharmony/third_party_fsverity-utils.git
synced 2026-07-01 10:05:35 -04:00
97bc1aa377
Add a 'fsverity digest' subcommand that prints the hex-encoded digest of the specified file(s), ready to be signed offline. By default the output is like 'fsverity measure', but if the --for-builtin-sig option is given, the output is the hex-encoded "struct fsverity_signed_digest" that the kernel expects to be signed for builtin signatures. This subcommand is useful in case the integrated signing mechanism with local cert/key cannot be used. Signed-off-by: Luca Boccassi <luca.boccassi@microsoft.com> Link: https://lore.kernel.org/r/20201026191839.3329948-1-luca.boccassi@gmail.com [EB: commit message, comment, and whitespace tweaks] Signed-off-by: Eric Biggers <ebiggers@google.com>