ref: 346f5828e0e435d76ef7da8316e77a426c826d19
parent: 2d1fbbdafa37080ddaacb76ac1e4f5a413ef2dc3
author: cinap_lenrek <cinap_lenrek@felloff.net>
date: Sun Apr 23 15:00:08 EDT 2017
libsec: sha256 support for thumbprint files, use it in ssh as well initThumbprints() now takes an application tag argument so x509 and ssh can coexist. the thumbprint entries can now hold both sha1 and sha256 hashes. okThumbprint() now takes a len argument for the hash length used. the new function okCertificate() hashes the certificate with both and checks for any matches. on failure, okCertificate() returns 0 and sets error string. we also check for include loops now in thumbfiles, limiting the number of includes to 8.