config/git: import suckless sbase

i currently use the output of sha512sum in several
places of xbmk, which is a bit unreliable in case
output changes.

other cases where i use util outputs in variables
are probably reliable, because i'm using mostly
posix utilities in those.

to mitigate this, i now import suckless sbase, which
has a reasonable sha512sum implementation.

*every* binary it builds is being placed in build.list,
because i'll probably start using more of them.

for example, i may start modifying the "date"
implementation, adding the GNU-specific options that
i need as mentioned on init.sh

i'm importing it in util/ because the sha512sum
util is needed for verifying project sources, so
if sbase itself is a "project source", that means
we can into a chicken and egg bootstrapping problem.

this is sbase at revision:
055cc1ae1b3a13c3d8f25af0a4a3316590efcd48

Signed-off-by: Leah Rowe <leah@libreboot.org>

1 files changed, 184 insertions, 0 deletions

diff --git a/util/sbase/libutil/crypt.c b/util/sbase/libutil/crypt.c
new file mode 100644
index 00000000..e285614b
--- /dev/null
+++ b/util/sbase/libutil/crypt.c
@@ -0,0 +1,184 @@
+/* See LICENSE file for copyright and license details. */
+#include <fcntl.h>
+#include <stdint.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <unistd.h>
+
+#include "../crypt.h"
+#include "../text.h"
+#include "../util.h"
+
+static int
+hexdec(int c)
+{
+	if (c >= '0' && c <= '9')
+		return c - '0';
+	else if (c >= 'A' && c <= 'F')
+		return c - 'A' + 10;
+	else if (c >= 'a' && c <= 'f')
+		return c - 'a' + 10;
+	return -1; /* unknown character */
+}
+
+static int
+mdcheckline(const char *s, uint8_t *md, size_t sz)
+{
+	size_t i;
+	int b1, b2;
+
+	for (i = 0; i < sz; i++) {
+		if (!*s || (b1 = hexdec(*s++)) < 0)
+			return -1; /* invalid format */
+		if (!*s || (b2 = hexdec(*s++)) < 0)
+			return -1; /* invalid format */
+		if ((uint8_t)((b1 << 4) | b2) != md[i])
+			return 0; /* value mismatch */
+	}
+	return (i == sz) ? 1 : 0;
+}
+
+static void
+mdchecklist(FILE *listfp, struct crypt_ops *ops, uint8_t *md, size_t sz,
+            int *formatsucks, int *noread, int *nonmatch)
+{
+	int fd;
+	size_t bufsiz = 0;
+	int r;
+	char *line = NULL, *file, *p;
+
+	while (getline(&line, &bufsiz, listfp) > 0) {
+		if (!(file = strstr(line, "  "))) {
+			(*formatsucks)++;
+			continue;
+		}
+		if ((file - line) / 2 != sz) {
+			(*formatsucks)++; /* checksum length mismatch */
+			continue;
+		}
+		*file = '\0';
+		file += 2;
+		for (p = file; *p && *p != '\n' && *p != '\r'; p++); /* strip newline */
+		*p = '\0';
+		if ((fd = open(file, O_RDONLY)) < 0) {
+			weprintf("open %s:", file);
+			(*noread)++;
+			continue;
+		}
+		if (cryptsum(ops, fd, file, md)) {
+			(*noread)++;
+			continue;
+		}
+		r = mdcheckline(line, md, sz);
+		if (r == 1) {
+			printf("%s: OK\n", file);
+		} else if (r == 0) {
+			printf("%s: FAILED\n", file);
+			(*nonmatch)++;
+		} else {
+			(*formatsucks)++;
+		}
+		close(fd);
+	}
+	free(line);
+}
+
+int
+cryptcheck(int argc, char *argv[], struct crypt_ops *ops, uint8_t *md, size_t sz)
+{
+	FILE *fp;
+	int formatsucks = 0, noread = 0, nonmatch = 0, ret = 0;
+
+	if (argc == 0) {
+		mdchecklist(stdin, ops, md, sz, &formatsucks, &noread, &nonmatch);
+	} else {
+		for (; *argv; argc--, argv++) {
+			if ((*argv)[0] == '-' && !(*argv)[1]) {
+				fp = stdin;
+			} else if (!(fp = fopen(*argv, "r"))) {
+				weprintf("fopen %s:", *argv);
+				ret = 1;
+				continue;
+			}
+			mdchecklist(fp, ops, md, sz, &formatsucks, &noread, &nonmatch);
+			if (fp != stdin)
+				fclose(fp);
+		}
+	}
+
+	if (formatsucks) {
+		weprintf("%d lines are improperly formatted\n", formatsucks);
+		ret = 1;
+	}
+	if (noread) {
+		weprintf("%d listed file could not be read\n", noread);
+		ret = 1;
+	}
+	if (nonmatch) {
+		weprintf("%d computed checksums did NOT match\n", nonmatch);
+		ret = 1;
+	}
+
+	return ret;
+}
+
+int
+cryptmain(int argc, char *argv[], struct crypt_ops *ops, uint8_t *md, size_t sz)
+{
+	int fd;
+	int ret = 0;
+
+	if (argc == 0) {
+		if (cryptsum(ops, 0, "<stdin>", md))
+			ret = 1;
+		else
+			mdprint(md, "<stdin>", sz);
+	} else {
+		for (; *argv; argc--, argv++) {
+			if ((*argv)[0] == '-' && !(*argv)[1]) {
+				*argv = "<stdin>";
+				fd = 0;
+			} else if ((fd = open(*argv, O_RDONLY)) < 0) {
+				weprintf("open %s:", *argv);
+				ret = 1;
+				continue;
+			}
+			if (cryptsum(ops, fd, *argv, md))
+				ret = 1;
+			else
+				mdprint(md, *argv, sz);
+			if (fd != 0)
+				close(fd);
+		}
+	}
+
+	return ret;
+}
+
+int
+cryptsum(struct crypt_ops *ops, int fd, const char *f, uint8_t *md)
+{
+	uint8_t buf[BUFSIZ];
+	ssize_t n;
+
+	ops->init(ops->s);
+	while ((n = read(fd, buf, sizeof(buf))) > 0)
+		ops->update(ops->s, buf, n);
+	if (n < 0) {
+		weprintf("%s: read error:", f);
+		return 1;
+	}
+	ops->sum(ops->s, md);
+	return 0;
+}
+
+void
+mdprint(const uint8_t *md, const char *f, size_t len)
+{
+	size_t i;
+
+	for (i = 0; i < len; i++)
+		printf("%02x", md[i]);
+	printf("  %s\n", f);
+}