Warn when `hashable` is used on an encrypted image An image's hash is calculated from the following two inputs: 1. Image header. 2. Unencrypted image body. The `image hashable` command extracts the header and body from a complete image. If the image body is encrypted, then the result of this command will not generate the correct hash. This commit adds a warning in case `image hashable` is used on an encrypyted image.

commit: 60423a36f9f6da68ee3850e270d5b7f89d3cc43f [log] [tgz]
author: Christopher Collins <ccollins@apache.org> Fri May 24 12:31:49 2019 -0700
committer: Christopher Collins <ccollins@apache.org> Fri May 24 12:31:49 2019 -0700
tree: c75791f73cefcb61517cf8c16375768a61ac3489
parent: 95e000cf48adc477150a7e020cd711fdc1ae201f [diff]
diff --git a/cli/image_cmds.go b/cli/image_cmds.go
index 83b4e8f..4a926a4 100644
--- a/cli/image_cmds.go
+++ b/cli/image_cmds.go

@@ -310,6 +310,11 @@
 		ImgmodUsage(cmd, err)
 	}
 
+	if (img.Header.Flags & image.IMAGE_F_ENCRYPTED) != 0 {
+		util.StatusMessage(util.VERBOSITY_QUIET,
+			"* Warning: extracting hashable content from an encrypted image\n")
+	}
+
 	f, err := os.Create(outFilename)
 	if err != nil {
 		ImgmodUsage(nil, util.ChildNewtError(err))
commit	60423a36f9f6da68ee3850e270d5b7f89d3cc43f	[log] [tgz]
author	Christopher Collins <ccollins@apache.org>	Fri May 24 12:31:49 2019 -0700
committer	Christopher Collins <ccollins@apache.org>	Fri May 24 12:31:49 2019 -0700
tree	c75791f73cefcb61517cf8c16375768a61ac3489
parent	95e000cf48adc477150a7e020cd711fdc1ae201f [diff]