« back to all changes in this revision
Viewing changes to src/db_file.c
- browse files at revision 1
- compare with another revision
- download diff
- download tarball
- view history from revision 1
- Committer: Bazaar Package Importer
- Author(s): Mike Markley
- Date: 2002-03-15 20:20:06 UTC
- Revision ID: james.westby@ubuntu.com-20020315202006-fywvbk2rzaqe5ku2
Tags: upstream-0.8
ImportĀ upstreamĀ versionĀ 0.8
- files added:
- doc
- include
- po
- src
added
removed
src/db_file.c
1
/* aide, Advanced Intrusion Detection Environment
2
*
3
* Copyright (C) 1999,2000 Rami Lehti, Pablo Virolainen
4
* $Header: /cvs-root-aide/aide/src/db_file.c,v 1.59 2002/02/10 19:10:32 rammer Exp $
5
*
6
* This program is free software; you can redistribute it and/or
7
* modify it under the terms of the GNU General Public License as
8
* published by the Free Software Foundation; either version 2 of the
9
* License, or (at your option) any later version.
10
*
11
* This program is distributed in the hope that it will be useful, but
12
* WITHOUT ANY WARRANTY; without even the implied warranty of
13
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14
* General Public License for more details.
15
*
16
* You should have received a copy of the GNU General Public License
17
* along with this program; if not, write to the Free Software
18
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
19
*/
20
21
#include <stdio.h>
22
#include <string.h>
23
#include <sys/types.h>
24
#include <stdlib.h>
25
#include <time.h>
26
27
#include <errno.h>
28
29
#include "types.h"
30
#include "base64.h"
31
#include "db_file.h"
32
#include "conf_yacc.h"
33
#include "util.h"
34
#include "aide.h"
35
#include "db_sql.h" /* typedefs */
36
#include "commandconf.h"
37
/*for locale support*/
38
#include "locale-aide.h"
39
/*for locale support*/
40
41
#ifdef WITH_MHASH
42
#include <mhash.h>
43
#endif
44
45
#ifdef WITH_ZLIB
46
#include <zlib.h>
47
#endif
48
49
#include <gcrypt.h>
50
51
#define BUFSIZE 16384
52
53
extern int db_scan(); /* Rumaa.... */
54
extern char* dbtext; /* Todella rumaa... */
55
extern long db_lineno;
56
57
58
extern void db_buff(FILE*);
59
60
#ifdef WITH_ZLIB
61
#define ZBUFSIZE 16384
62
63
void handle_gzipped_input(int out){
64
65
int nread=0;
66
int err=0;
67
int* buf=malloc(ZBUFSIZE);
68
buf[0]='\0';
69
error(200,"handle_gzipped_input(),%d\n",out);
70
while(!gzeof(conf->db_gzin)){
71
if((nread=gzread(conf->db_gzin,buf,ZBUFSIZE))<0){
72
error(0,"gzread() failed!\n");
73
exit(1);
74
} else {
75
/* gzread returns 0 even if uncompressed bytes were read*/
76
if(nread==0){
77
write(out, buf,strlen((char*)buf));
78
} else {
79
write(out, buf,nread);
80
}
81
error(240,"nread=%d,strlen(buf)=%d,errno=%s,gzerr=%s\n",
82
nread,strlen((char*)buf),strerror(errno),
83
gzerror(conf->db_gzin,&err));
84
buf[0]='\0';
85
}
86
}
87
close(out);
88
error(240,"handle_gzipped_input() exiting\n");
89
exit(0);
90
/* NOT REACHED */
91
return;
92
}
93
#endif
94
95
96
int dofflush(void)
97
{
98
99
int retval;
100
#ifdef WITH_ZLIB
101
if(conf->gzip_dbout){
102
retval=gzflush(conf->db_gzout,Z_SYNC_FLUSH);
103
}else {
104
#endif
105
retval=fflush(conf->db_out);
106
#ifdef WITH_ZLIB
107
}
108
#endif
109
110
return retval;
111
}
112
113
int dofprintf( const char* s,...)
114
{
115
int retval;
116
char* temp=NULL;
117
va_list ap;
118
119
va_start(ap,s);
120
#ifdef WITH_ZLIB
121
if(conf->gzip_dbout){
122
temp=(char*)malloc(BUFSIZE);
123
if(temp==NULL){
124
error(0,"Unable to alloc %i bytes\n",BUFSIZE);
125
return -1;
126
}
127
retval=vsnprintf(temp,BUFSIZE,s,ap);
128
retval=gzwrite(conf->db_gzout,temp,retval);
129
free(temp);
130
}else{
131
#endif
132
retval=vfprintf(conf->db_out,s,ap);
133
#ifdef WITH_ZLIB
134
}
135
#endif
136
va_end(ap);
137
138
return retval;
139
}
140
141
142
143
int db_file_read_spec(db_config* conf){
144
145
int i=0;
146
147
conf->db_in_order=(DB_FIELD*) malloc(1*sizeof(DB_FIELD));
148
149
while ((i=db_scan())!=TNEWLINE){
150
switch (i) {
151
152
case TID : {
153
int l;
154
155
156
/* Yes... we do not check if realloc returns nonnull */
157
158
conf->db_in_order=(DB_FIELD*)
159
realloc((void*)conf->db_in_order,
160
(conf->db_in_size+1)*sizeof(DB_FIELD));
161
162
163
conf->db_in_order[conf->db_in_size]=db_unknown;
164
165
for (l=0;l<db_unknown;l++){
166
167
if (strcmp(db_names[l],dbtext)==0) {
168
169
if (check_db_order(conf->db_in_order, conf->db_in_size,
170
db_value[l])==RETFAIL) {
171
error(0,"Field %s redefined in @@dbspec\n",dbtext);
172
conf->db_in_order[conf->db_in_size]=db_unknown;
173
} else {
174
conf->db_in_order[conf->db_in_size]=db_value[l];
175
}
176
conf->db_in_size++;
177
break;
178
}
179
}
180
for (l=0;l<db_alias_size;l++){
181
182
if (strcmp(db_namealias[l],dbtext)==0) {
183
184
if (check_db_order(conf->db_in_order, conf->db_in_size,
185
db_aliasvalue[l])==RETFAIL) {
186
error(0,"Field %s redefined in @@dbspec\n",dbtext);
187
conf->db_in_order[conf->db_in_size]=db_unknown;
188
} else {
189
conf->db_in_order[conf->db_in_size]=db_aliasvalue[l];
190
}
191
conf->db_in_size++;
192
break;
193
}
194
}
195
if(l==db_unknown){
196
error(0,"Unknown field %s in database\n",dbtext);
197
conf->db_in_size++;
198
}
199
break;
200
}
201
202
case TDBSPEC : {
203
error(0,"Only one @@dbspec in inputdatabase.\n");
204
return RETFAIL;
205
break;
206
}
207
208
default : {
209
error(0,"Aide internal error while reading inputdatabase.\n");
210
return RETFAIL;
211
}
212
}
213
}
214
215
/* Lets generate attr from db_in_order if database does not have attr */
216
conf->attr=-1;
217
218
for (i=0;i<conf->db_in_size;i++) {
219
if (conf->db_in_order[i]==db_attr) {
220
conf->attr=1;
221
}
222
}
223
if (conf->attr==-1) {
224
conf->attr=0;
225
error(0,"Database does not have attr field.\nComparation may be incorrect\nGenerating attr-field from dbspec\nIt might be a good Idea to regenerate databases. Sorry.\n");
226
for(i=0;i<conf->db_in_size;i++) {
227
conf->attr|=1<<conf->db_in_order[i];
228
}
229
}
230
return RETOK;
231
}
232
233
char** db_readline_file(db_config* conf){
234
235
char** s=NULL;
236
237
int i=0;
238
int r;
239
int a=0;
240
int token=0;
241
242
if (conf->db_in_size==0) {
243
db_buff(conf->db_in);
244
245
token=db_scan();
246
while((token!=TDBSPEC)){
247
248
switch(token){
249
case TUNKNOWN: {
250
continue;
251
break;
252
}
253
case TGZIPHEADER: {
254
255
#ifndef WITH_ZLIB
256
error(0,"Zlib support is not compiled in.\n");
257
return NULL;
258
#else
259
int pipefd[2];
260
pid_t retval=0;
261
/* Is this safe? Can we always fseek back? Probably.*/
262
fseek(conf->db_in,0L,SEEK_SET);
263
if(pipe(pipefd)<0){
264
error(0,"Couldn't open a pipe for zipped input\n");
265
return NULL;
266
}
267
if((retval=fork())==0){
268
/* The child process */
269
close(pipefd[0]);
270
conf->db_gzin=gzdopen(fileno(conf->db_in),"rb");
271
/* WARNING This causes weird problems. Don't do it.
272
fclose(conf->db_in);
273
*/
274
handle_gzipped_input(pipefd[1]);
275
} else {
276
/* The parent */
277
fclose(conf->db_in);
278
conf->db_in=fdopen(pipefd[0],"r");
279
db_buff(conf->db_in);
280
close(pipefd[1]);
281
}
282
#endif
283
break;
284
}
285
default: {
286
/* If it is anything else we quit */
287
/* Missing dbspec */
288
token=TEOF;
289
break;
290
}
291
}
292
if(token==TEOF){
293
break;
294
}
295
296
token=db_scan();
297
}
298
299
if (token!=TDBSPEC) {
300
/*
301
* error.. must be a @@dbspec line
302
*/
303
304
switch (conf->db_in_url->type) {
305
case url_file : {
306
error(0,"Filedatabase must have one db_spec spesification\n");
307
break;
308
}
309
310
case url_stdin : {
311
error(0,"Pipedatabase must have one db_spec spesification\n");
312
break;
313
}
314
315
case url_fd: {
316
error(0,"FD-database must have one db_spec spesification\n");
317
break;
318
}
319
320
default : {
321
error(0,"db_readline_file():Unknown or unsupported db in type.\n");
322
323
break;
324
}
325
326
}
327
return s;
328
}
329
330
/*
331
* Here we read da spec
332
*/
333
334
if (db_file_read_spec(conf)!=0) {
335
/* somethin went wrong */
336
return s;
337
}
338
339
}
340
341
s=(char**)malloc(sizeof(char*)*db_unknown);
342
343
/* We NEED this to avoid Bus errors on Suns */
344
for(i=0;i<db_unknown;i++){
345
s[i]=NULL;
346
}
347
348
for(i=0;i<conf->db_in_size;i++){
349
switch (r=db_scan()) {
350
351
case TDBSPEC : {
352
353
error(0,"Databasefile can have only one db_spec.\nTrying to continue on line %i\n",db_lineno);
354
355
/*
356
if (conf->db_in_order[i]!=db_unknown) {
357
s[conf->db_in_order[i]]=(char*)strdup(dbtext);
358
}
359
*/
360
361
break;
362
}
363
case TNAME : {
364
if (conf->db_in_order[i]!=db_unknown) {
365
s[conf->db_in_order[i]]=(char*)strdup(dbtext);
366
}
367
break;
368
}
369
370
case TID : {
371
if (conf->db_in_order[i]!=db_unknown) {
372
s[conf->db_in_order[i]]=(char*)strdup(dbtext);
373
}
374
break;
375
}
376
377
case TNEWLINE : {
378
379
if (i==0) {
380
i--;
381
break;
382
}
383
384
/* */
385
386
error(0,"Not enough parameters in db:%i. Trying to continue.\n",
387
db_lineno);
388
for(a=0;a<i;a++){
389
free(s[conf->db_in_order[a]]);
390
s[conf->db_in_order[a]]=NULL;
391
}
392
i=0;
393
break;
394
395
}
396
397
case TEOF : {
398
399
/* This can be the first token on a line */
400
if(i>0){
401
error(0,"Not enough parameters in db:%i\n",db_lineno);
402
};
403
for(a=0;a<i;a++){
404
free(s[conf->db_in_order[a]]);
405
}
406
free(s);
407
return NULL;
408
break;
409
}
410
case TERROR : {
411
error(0,"There was an error in the database file on line:%i.\n",db_lineno);
412
break;
413
}
414
415
default : {
416
417
error(0,"Not implemented in db_readline_file %i\n\"%s\"",r,dbtext);
418
419
free(s);
420
s=NULL;
421
i=conf->db_in_size;
422
break;
423
}
424
}
425
426
}
427
428
429
/*
430
* If we don't get newline after reading all sells we print an error
431
*/
432
a=db_scan();
433
434
if (a!=TNEWLINE&&a!=TEOF) {
435
error(0,"Newline exptexted in database. Readin until end of line\n");
436
do {
437
438
error(0,"Skipped value %s\n",dbtext);
439
440
/*
441
* Null statement
442
*/
443
a=db_scan();
444
}while(a!=TNEWLINE&&a!=TEOF);
445
446
}
447
448
return s;
449
450
}
451
452
int db_writechar(char* s,FILE* file,int i)
453
{
454
char* r=NULL;
455
int retval=0;
456
457
if(i) {
458
dofprintf(" ");
459
}
460
461
if(s==NULL){
462
retval=dofprintf("0");
463
return retval;
464
}
465
if(s[0]=='\0'){
466
retval=dofprintf("0-");
467
return retval;
468
}
469
if(s[0]=='0'){
470
retval=dofprintf("00");
471
if(retval<0){
472
return retval;
473
}
474
s++;
475
}
476
477
r=CLEANDUP(s);
478
retval=dofprintf("%s",r);
479
free(r);
480
481
return retval;
482
}
483
484
int db_writeint(long i,FILE* file,int a)
485
{
486
if(a) {
487
dofprintf(" ");
488
}
489
490
return dofprintf("%li",i);
491
492
}
493
494
int db_write_byte_base64(byte*data,size_t len,FILE* file,int i )
495
{
496
char* tmpstr=NULL;
497
int retval=0;
498
499
tmpstr=encode_base64(data,len);
500
if(i){
501
dofprintf(" ");
502
}
503
504
if(tmpstr){
505
retval=dofprintf(tmpstr);
506
free(tmpstr);
507
return retval;
508
}else {
509
return dofprintf("0");
510
}
511
return 0;
512
513
}
514
515
int db_write_time_base64(time_t i,FILE* file,int a)
516
{
517
static char* ptr=NULL;
518
char* tmpstr=NULL;
519
int retval=0;
520
521
if(a){
522
dofprintf(" ");
523
}
524
525
if(i==0){
526
retval=dofprintf("0");
527
return retval;
528
}
529
530
531
ptr=(char*)malloc(sizeof(char)*TIMEBUFSIZE);
532
if (ptr==NULL) {
533
error(0,"\nCannot allocate memory..\n");
534
abort();
535
}
536
memset((void*)ptr,0,sizeof(char)*TIMEBUFSIZE);
537
538
sprintf(ptr,"%li",i);
539
540
541
tmpstr=encode_base64(ptr,strlen(ptr));
542
retval=dofprintf(tmpstr);
543
free(tmpstr);
544
free(ptr);
545
546
return retval;
547
548
}
549
550
int db_writeoct(long i, FILE* file,int a)
551
{
552
if(a) {
553
dofprintf(" ");
554
}
555
556
return dofprintf("%lo",i);
557
558
}
559
560
int db_writespec_file(db_config* conf)
561
{
562
int i=0;
563
int j=0;
564
int retval=1;
565
struct tm* st;
566
time_t tim=time(&tim);
567
st=localtime(&tim);
568
569
retval=dofprintf(
570
"# This file was generated by Aide, version %s\n"
571
"# Time of generation was %.4u-%.2u-%.2u %.2u:%.2u:%.2u\n",
572
AIDEVERSION,
573
st->tm_year+1900, st->tm_mon+1, st->tm_mday,
574
st->tm_hour, st->tm_min, st->tm_sec
575
);
576
if(retval==0){
577
return RETFAIL;
578
}
579
580
retval=dofprintf("@@db_spec ");
581
if(retval==0){
582
return RETFAIL;
583
}
584
for(i=0;i<conf->db_out_size;i++){
585
for(j=0;j<db_unknown;j++){
586
if(db_value[j]==conf->db_out_order[i]){
587
retval=dofprintf("%s ",db_names[j]);
588
if(retval==0){
589
return RETFAIL;
590
}
591
break;
592
}
593
}
594
}
595
retval=dofprintf("\n");
596
if(retval==0){
597
return RETFAIL;
598
}
599
return RETOK;
600
}
601
602
#ifdef WITH_SUN_ACL
603
int db_writeacl(acl_type* acl,FILE* file,int a){
604
int i;
605
606
if(a) {
607
dofprintf(" ");
608
}
609
610
if (acl==NULL) {
611
dofprintf("0");
612
} else {
613
614
dofprintf("%i",acl->entries);
615
616
for (i=0;i<acl->entries;i++) {
617
dofprintf(",%i,%i,%i", acl->acl[i].a_type, acl->acl[i].a_id,
618
acl->acl[i].a_perm);
619
}
620
}
621
return RETOK;
622
}
623
#endif
624
625
int db_writeline_file(db_line* line,db_config* conf){
626
int i;
627
628
for(i=0;i<conf->db_out_size;i++){
629
switch (conf->db_out_order[i]) {
630
case db_filename : {
631
db_writechar(line->filename,conf->db_out,i);
632
break;
633
}
634
case db_linkname : {
635
db_writechar(line->linkname,conf->db_out,i);
636
break;
637
}
638
case db_bcount : {
639
db_writeint(line->bcount,conf->db_out,i);
640
break;
641
}
642
643
case db_mtime : {
644
db_write_time_base64(line->mtime,conf->db_out,i);
645
break;
646
}
647
case db_atime : {
648
db_write_time_base64(line->atime,conf->db_out,i);
649
break;
650
}
651
case db_ctime : {
652
db_write_time_base64(line->ctime,conf->db_out,i);
653
break;
654
}
655
case db_inode : {
656
db_writeint(line->inode,conf->db_out,i);
657
break;
658
}
659
case db_lnkcount : {
660
db_writeint(line->nlink,conf->db_out,i);
661
break;
662
}
663
case db_uid : {
664
db_writeint(line->uid,conf->db_out,i);
665
break;
666
}
667
case db_gid : {
668
db_writeint(line->gid,conf->db_out,i);
669
break;
670
}
671
case db_size : {
672
db_writeint(line->size,conf->db_out,i);
673
break;
674
}
675
case db_md5 : {
676
db_write_byte_base64(line->md5,
677
gcry_md_get_algo_dlen(GCRY_MD_MD5),conf->db_out,i);
678
break;
679
}
680
case db_sha1 : {
681
db_write_byte_base64(line->sha1,
682
gcry_md_get_algo_dlen(GCRY_MD_SHA1),conf->db_out,i);
683
break;
684
}
685
case db_rmd160 : {
686
db_write_byte_base64(line->rmd160,
687
gcry_md_get_algo_dlen(GCRY_MD_RMD160),
688
conf->db_out,i);
689
break;
690
}
691
case db_tiger : {
692
db_write_byte_base64(line->tiger,
693
gcry_md_get_algo_dlen(GCRY_MD_TIGER),
694
conf->db_out,i);
695
break;
696
}
697
case db_perm : {
698
db_writeoct(line->perm,conf->db_out,i);
699
break;
700
}
701
#ifdef WITH_MHASH
702
case db_crc32 : {
703
db_write_byte_base64(line->crc32,
704
mhash_get_block_size(MHASH_CRC32),
705
conf->db_out,i);
706
break;
707
}
708
case db_crc32b : {
709
db_write_byte_base64(line->crc32b,
710
mhash_get_block_size(MHASH_CRC32B),
711
conf->db_out,i);
712
break;
713
}
714
case db_haval : {
715
db_write_byte_base64(line->haval,
716
mhash_get_block_size(MHASH_HAVAL256),
717
conf->db_out,i);
718
break;
719
}
720
case db_gost : {
721
db_write_byte_base64(line->gost ,
722
mhash_get_block_size(MHASH_GOST),
723
conf->db_out,i);
724
break;
725
}
726
#endif
727
case db_attr : {
728
db_writeint(line->attr,
729
conf->db_out,i);
730
break;
731
}
732
#ifdef WITH_ACL
733
case db_acl : {
734
db_writeacl(line->acl,conf->db_out,i);
735
break;
736
}
737
#endif
738
case db_checkmask : {
739
db_writeoct(line->attr,conf->db_out,i);
740
break;
741
}
742
default : {
743
error(0,"Not implemented in db_writeline_file %i\n",
744
conf->db_out_order[i]);
745
return RETFAIL;
746
}
747
748
}
749
750
}
751
752
dofprintf("\n");
753
/* Can't use fflush because of zlib.*/
754
dofflush();
755
756
return RETOK;
757
}
758
759
int db_close_file(db_config* conf){
760
761
#ifndef WITH_ZLIB
762
if(fclose(conf->db_out)){
763
error(0,"Unable to close database:%s\n",strerror(errno));
764
return RETFAIL;
765
}
766
#else
767
if(conf->gzip_dbout){
768
if(gzclose(conf->db_gzout)){
769
error(0,"Unable to close gzdatabase:%s\n",strerror(errno));
770
return RETFAIL;
771
}
772
}else {
773
if(fclose(conf->db_out)){
774
error(0,"Unable to close database:%s\n",strerror(errno));
775
return RETFAIL;
776
}
777
}
778
#endif
779
780
return RETOK;
781
}
Loggerhead is a web-based interface for Breezy
Version: 2.0.1