From addae04c266401cf049f1188917bf3432873933c Mon Sep 17 00:00:00 2001
From: Timo Teras <timo.teras@iki.fi>
Date: Tue, 11 Aug 2009 19:02:22 +0300
Subject: db, audit: audit symlinks (by hash of the link target)

---
 src/io.c | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

(limited to 'src/io.c')

diff --git a/src/io.c b/src/io.c
index 50da3da..1b25355 100644
--- a/src/io.c
+++ b/src/io.c
@@ -488,12 +488,25 @@ int apk_file_get_info(int atfd, const char *filename, unsigned int flags,
 	if (checksum == APK_CHECKSUM_NONE)
 		return 0;
 
+	if ((flags & APK_FI_NOFOLLOW) && S_ISLNK(st.st_mode)) {
+		char *target = alloca(st.st_size);
+		if (target == NULL)
+			return -ENOMEM;
+		if (readlinkat(atfd, filename, target, st.st_size) < 0)
+			return -errno;
+
+		EVP_Digest(target, st.st_size, fi->csum.data, NULL,
+			   apk_checksum_evp(checksum), NULL);
+		fi->csum.type = checksum;
+		return 0;
+	}
+
 	bs = apk_bstream_from_file(atfd, filename);
 	if (bs != NULL) {
 		EVP_MD_CTX mdctx;
 		apk_blob_t blob;
 
-		EVP_DigestInit(&mdctx, apk_get_digest(checksum));
+		EVP_DigestInit(&mdctx, apk_checksum_evp(checksum));
 		if (bs->flags & APK_BSTREAM_SINGLE_READ)
 			EVP_MD_CTX_set_flags(&mdctx, EVP_MD_CTX_FLAG_ONESHOT);
 		while (!APK_BLOB_IS_NULL(blob = bs->read(bs, APK_BLOB_NULL)))
-- 
cgit v1.2.3