aboutsummaryrefslogtreecommitdiffstats
path: root/meta-integrity/recipes-security/ima-evm-utils/ima-evm-utils/command-line-apply-operation-to-all-paths.patch
blob: 35c316270189b8ffbdee0da1ff8ecf4c2456a12c (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
From 5834216fb3aa4e5e59ee13e871c70db1b4e13f02 Mon Sep 17 00:00:00 2001
From: Patrick Ohly <patrick.ohly@intel.com>
Date: Fri, 30 Sep 2016 10:22:16 +0200
Subject: [PATCH] command line: apply operation to all paths

Previously, invocations like "evmctl ima_hash foo bar" silently
ignored all parameters after the first path name ("foo" in this
example).

Now evmctl iterates over all specified paths. It aborts with an
error as soon as the selected operation fails for a path.

Supporting more than one parameter is useful in combination with
"find" and "xargs" because it is noticably faster than invoking
evmutil separately for each file, in particular when run under pseudo
(a fakeroot environment used by the OpenEmbedded build system).

This complements the recursive mode and can be used when more control
over file selection is needed.

Signed-off-by: Patrick Ohly <patrick.ohly@intel.com>
---
 src/evmctl.c | 21 ++++++++++++---------
 1 file changed, 12 insertions(+), 9 deletions(-)

diff --git a/src/evmctl.c b/src/evmctl.c
index 23cf54c..2072034 100644
--- a/src/evmctl.c
+++ b/src/evmctl.c
@@ -626,7 +626,7 @@ static int get_file_type(const char *path, const char *search_type)
 static int do_cmd(struct command *cmd, find_cb_t func)
 {
 	char *path = g_argv[optind++];
-	int err, dts = REG_MASK; /* only regular files by default */
+	int err = 0, dts = REG_MASK; /* only regular files by default */
 
 	if (!path) {
 		log_err("Parameters missing\n");
@@ -634,15 +634,18 @@ static int do_cmd(struct command *cmd, find_cb_t func)
 		return -1;
 	}
 
-	if (recursive) {
-		if (search_type) {
-			dts = get_file_type(path, search_type);
-			if (dts < 0)
-				return dts;
+	while (path && !err) {
+		if (recursive) {
+			if (search_type) {
+				dts = get_file_type(path, search_type);
+				if (dts < 0)
+					return dts;
+			}
+			err = find(path, dts, func);
+		} else {
+			err = func(path);
 		}
-		err = find(path, dts, func);
-	} else {
-		err = func(path);
+		path = g_argv[optind++];
 	}
 
 	return err;
-- 
2.1.4