arno/clair
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge pull request #639 from Katee/update-sha1-to-sha256

Browse Source 
Use SHA256 instead of SHA1 for fingerprinting
This commit is contained in:
Jimmy Zelinskie 2018-10-15 11:43:56 -04:00 committed by GitHub
commit 2ac088dd0f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
ext/vulnsrc/debian/debian.go
View File

@ -17,7 +17,7 @@
package debian package debian
import ( import (
"crypto/sha1" "crypto/sha256"
"encoding/hex" "encoding/hex"
"encoding/json" "encoding/json"
"fmt" "fmt"
@ -67,7 +67,7 @@ func (u *updater) Update(datastore database.Datastore) (resp vulnsrc.UpdateRespo
return resp, err return resp, err
} }
// Get the SHA-1 of the latest update's JSON data // Get the hash of the latest update's JSON data
latestHash, ok, err := tx.FindKeyValue(updaterFlag) latestHash, ok, err := tx.FindKeyValue(updaterFlag)
if err != nil { if err != nil {
return resp, err return resp, err
@ -119,9 +119,9 @@ func buildResponse(jsonReader io.Reader, latestKnownHash string) (resp vulnsrc.U
} }
}() }()
// Create a TeeReader so that we can unmarshal into JSON and write to a SHA-1 // Create a TeeReader so that we can unmarshal into JSON and write to a hash
// digest at the same time. // digest at the same time.
jsonSHA := sha1.New() jsonSHA := sha256.New()
teedJSONReader := io.TeeReader(jsonReader, jsonSHA) teedJSONReader := io.TeeReader(jsonReader, jsonSHA)
// Unmarshal JSON. // Unmarshal JSON.