aboutsummaryrefslogtreecommitdiffstats
path: root/src
diff options
context:
space:
mode:
Diffstat (limited to 'src')
-rw-r--r--src/libstrongswan/Makefile.am2
-rw-r--r--src/libstrongswan/checksum/.gitignore2
-rw-r--r--src/libstrongswan/checksum/Makefile.am15
-rw-r--r--src/libstrongswan/checksum/checksum_builder.c105
4 files changed, 124 insertions, 0 deletions
diff --git a/src/libstrongswan/Makefile.am b/src/libstrongswan/Makefile.am
index da46b6364..4de511e80 100644
--- a/src/libstrongswan/Makefile.am
+++ b/src/libstrongswan/Makefile.am
@@ -209,3 +209,5 @@ endif
if USE_INTEGRITY_TEST
SUBDIRS += fips
endif
+
+SUBDIRS += checksum
diff --git a/src/libstrongswan/checksum/.gitignore b/src/libstrongswan/checksum/.gitignore
new file mode 100644
index 000000000..9956b9d01
--- /dev/null
+++ b/src/libstrongswan/checksum/.gitignore
@@ -0,0 +1,2 @@
+checksum.c
+checksum_builder
diff --git a/src/libstrongswan/checksum/Makefile.am b/src/libstrongswan/checksum/Makefile.am
new file mode 100644
index 000000000..6be4e92dd
--- /dev/null
+++ b/src/libstrongswan/checksum/Makefile.am
@@ -0,0 +1,15 @@
+ipsec_LTLIBRARIES = libchecksum.la
+noinst_PROGRAMS = checksum_builder
+
+libchecksum_la_SOURCES = checksum.c
+
+checksum_builder_SOURCES = checksum_builder.c
+checksum_builder_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la
+
+BUILT_SOURCES = checksum.c
+CLEANFILES = checksum.c checksum_builder
+INCLUDES = -I$(top_srcdir)/src/libstrongswan
+
+checksum.c : checksum_builder
+ find $(top_builddir)/src/libstrongswan -name 'libstrongswan-*.so' \
+ | xargs ./checksum_builder > checksum.c
diff --git a/src/libstrongswan/checksum/checksum_builder.c b/src/libstrongswan/checksum/checksum_builder.c
new file mode 100644
index 000000000..03b9d852e
--- /dev/null
+++ b/src/libstrongswan/checksum/checksum_builder.c
@@ -0,0 +1,105 @@
+/*
+ * Copyright (C) 2009 Martin Willi
+ * Hochschule fuer Technik Rapperswil, Switzerland
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU General Public License as published by the
+ * Free Software Foundation; either version 2 of the License, or (at your
+ * option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
+ *
+ * This program is distributed in the hope that it will be useful, but
+ * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
+ * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
+ * for more details.
+ */
+
+#include <stdlib.h>
+#include <stdio.h>
+#include <dlfcn.h>
+
+#include <library.h>
+
+
+/* we need some faked symbols to load charon plugins */
+char *charon = "adsf";
+
+int main(int argc, char* argv[])
+{
+ int i;
+ integrity_checker_t *integrity;
+
+ /* avoid confusing leak reports in build process */
+ setenv("LEAK_DETECTIVE_DISABLE", "1", 0);
+ library_init(NULL);
+ atexit(library_deinit);
+
+ integrity = integrity_checker_create(NULL);
+
+ printf("/**\n");
+ printf(" * checksums of files and loaded code segments.\n");
+ printf(" * created by %s\n", argv[0]);
+ printf(" */\n");
+ printf("\n");
+ printf("#include <library.h>\n");
+ printf("\n");
+ printf("integrity_checksum_t checksums[] = {\n");
+ for (i = 1; i < argc; i++)
+ {
+ char *name, *path, *sname;
+ void *handle, *symbol;
+ u_int32_t fsum, ssum;
+
+ path = argv[i];
+
+ if ((name = strstr(path, "libstrongswan-")))
+ {
+ name = strdup(name + strlen("libstrongswan-"));
+ name[strlen(name) - 3] = '"';
+ name[strlen(name) - 2] = ',';
+ name[strlen(name) - 1] = '\0';
+ sname = "plugin_create";
+ }
+ else if (strstr(path, "libstrongswan.so"))
+ {
+ name = strdup("libstrongswan\",");
+ sname = "library_init";
+ }
+ else
+ {
+ fprintf(stderr, "don't know how to handle '%s', ignored", path);
+ continue;
+ }
+
+ fsum = integrity->build_file(integrity, path);
+ ssum = 0;
+ handle = dlopen(path, RTLD_GLOBAL|RTLD_NOW);
+ if (handle)
+ {
+ symbol = dlsym(handle, sname);
+ if (symbol)
+ {
+ ssum = integrity->build_segment(integrity, symbol);
+ }
+ else
+ {
+ fprintf(stderr, "symbol lookup failed: %s\n", dlerror());
+ }
+ dlclose(handle);
+ }
+ else
+ {
+ fprintf(stderr, "dlopen failed: %s\n", dlerror());
+ }
+
+ printf("\t{\"%-20s0x%08x, 0x%08x},\n", name, fsum, ssum);
+ free(name);
+ }
+ printf("};\n");
+ printf("\n");
+ printf("int checksum_count = countof(checksums);\n");
+ printf("\n");
+ integrity->destroy(integrity);
+
+ exit(0);
+}
+
generated by cgit v1.2.3 (git 2.25.1) at 2025-09-19 23:21:07 +0000