int textfilecontent_probe_main(probe_ctx *ctx, void *arg)
{
SEXP_t *path_ent, *filename_ent, *line_ent, *behaviors_ent, *filepath_ent, *probe_in;
char *pattern;
OVAL_FTS *ofts;
OVAL_FTSENT *ofts_ent;
(void)arg;
probe_in = probe_ctx_getobject(ctx);
oval_schema_version_t over = probe_obj_get_platform_schema_version(probe_in);
path_ent = probe_obj_getent(probe_in, "path", 1);
filename_ent = probe_obj_getent(probe_in, "filename", 1);
line_ent = probe_obj_getent(probe_in, "line", 1);
filepath_ent = probe_obj_getent(probe_in, "filepath", 1);
behaviors_ent = probe_obj_getent(probe_in, "behaviors", 1);
if ( ((path_ent == NULL || filename_ent == NULL) && filepath_ent==NULL) ||
line_ent==NULL ) {
SEXP_free (path_ent);
SEXP_free (filename_ent);
SEXP_free (line_ent);
SEXP_free (filepath_ent);
SEXP_free (behaviors_ent);
return PROBE_ENOELM;
}
/* get pattern from SEXP */
SEXP_t *ent_val;
ent_val = probe_ent_getval(line_ent);
pattern = SEXP_string_cstr(ent_val);
SEXP_free(line_ent);
SEXP_free(ent_val);
if (pattern == NULL) {
SEXP_free(path_ent);
SEXP_free(filename_ent);
SEXP_free(filepath_ent);
SEXP_free(behaviors_ent);
return -1;
}
/* behaviours are not important if filepath is used */
if(filepath_ent != NULL && behaviors_ent != NULL) {
SEXP_free (behaviors_ent);
behaviors_ent = NULL;
}
probe_filebehaviors_canonicalize(&behaviors_ent);
struct pfdata pfd;
pfd.pattern = pattern;
pfd.filename_ent = filename_ent;
pfd.ctx = ctx;
const char *prefix = getenv("OSCAP_PROBE_ROOT");
if ((ofts = oval_fts_open_prefixed(prefix, path_ent, filename_ent, filepath_ent, behaviors_ent, probe_ctx_getresult(ctx))) != NULL) {
while ((ofts_ent = oval_fts_read(ofts)) != NULL) {
if (ofts_ent->fts_info == FTS_F
|| ofts_ent->fts_info == FTS_SL) {
// todo: handle return code
process_file(prefix, ofts_ent->path, ofts_ent->file, &pfd, over);
}
oval_ftsent_free(ofts_ent);
}
oval_fts_close(ofts);
}
SEXP_free(path_ent);
SEXP_free(filename_ent);
SEXP_free(behaviors_ent);
SEXP_free(filepath_ent);
free(pattern);
return 0;
}
int probe_main (probe_ctx *ctx, void *mutex)
{
SEXP_t *path, *filename, *behaviors, *filepath, *probe_in;
OVAL_FTS *ofts;
OVAL_FTSENT *ofts_ent;
oval_schema_version_t over;
if (mutex == NULL) {
return (PROBE_EINIT);
}
_A(mutex == &__filehash_probe_mutex);
probe_in = probe_ctx_getobject(ctx);
path = probe_obj_getent (probe_in, "path", 1);
filename = probe_obj_getent (probe_in, "filename", 1);
behaviors = probe_obj_getent (probe_in, "behaviors", 1);
filepath = probe_obj_getent (probe_in, "filepath", 1);
over = probe_obj_get_platform_schema_version(probe_in);
/* we want either path+filename or filepath */
if ( (path == NULL || filename == NULL) && filepath==NULL ) {
SEXP_free (behaviors);
SEXP_free (path);
SEXP_free (filename);
SEXP_free (filepath);
return (PROBE_ENOELM);
}
probe_filebehaviors_canonicalize(&behaviors);
switch (pthread_mutex_lock (&__filehash_probe_mutex)) {
case 0:
break;
default:
dI("Can't lock mutex(%p): %u, %s.", &__filehash_probe_mutex, errno, strerror (errno));
SEXP_free (behaviors);
SEXP_free (path);
SEXP_free (filename);
SEXP_free (filepath);
return (PROBE_EFATAL);
}
if ((ofts = oval_fts_open(path, filename, filepath, behaviors)) != NULL) {
while ((ofts_ent = oval_fts_read(ofts)) != NULL) {
filehash_cb(ofts_ent->path, ofts_ent->file, ctx, over);
oval_ftsent_free(ofts_ent);
}
oval_fts_close(ofts);
}
SEXP_free (behaviors);
SEXP_free (path);
SEXP_free (filename);
SEXP_free (filepath);
switch (pthread_mutex_unlock (&__filehash_probe_mutex)) {
case 0:
break;
default:
dI("Can't unlock mutex(%p): %u, %s.", &__filehash_probe_mutex, errno, strerror (errno));
return (PROBE_EFATAL);
}
return 0;
}
int probe_main (probe_ctx *ctx, void *mutex)
{
SEXP_t *path, *filename, *behaviors;
SEXP_t *filepath, *attribute_, *probe_in;
int err;
struct cbargs cbargs;
OVAL_FTS *ofts;
OVAL_FTSENT *ofts_ent;
if (mutex == NULL)
return PROBE_EINIT;
_A(mutex == &__file_probe_mutex);
probe_in = probe_ctx_getobject(ctx);
path = probe_obj_getent (probe_in, "path", 1);
filename = probe_obj_getent (probe_in, "filename", 1);
behaviors = probe_obj_getent (probe_in, "behaviors", 1);
filepath = probe_obj_getent (probe_in, "filepath", 1);
attribute_ = probe_obj_getent (probe_in, "attribute_name", 1);
/* we want either path+filename or filepath */
if (((path == NULL || filename == NULL) && filepath == NULL)
|| attribute_ == NULL)
{
SEXP_free (behaviors);
SEXP_free (path);
SEXP_free (filename);
SEXP_free (filepath);
SEXP_free (attribute_);
return PROBE_ENOELM;
}
probe_filebehaviors_canonicalize(&behaviors);
switch (pthread_mutex_lock (&__file_probe_mutex)) {
case 0:
break;
default:
dI("Can't lock mutex(%p): %u, %s.", &__file_probe_mutex, errno, strerror (errno));
SEXP_free(path);
SEXP_free(filename);
SEXP_free(filepath);
SEXP_free(behaviors);
SEXP_free(attribute_);
return PROBE_EFATAL;
}
cbargs.ctx = ctx;
cbargs.error = 0;
cbargs.attr_ent = attribute_;
if ((ofts = oval_fts_open(path, filename, filepath, behaviors)) != NULL) {
while ((ofts_ent = oval_fts_read(ofts)) != NULL) {
file_cb(ofts_ent->path, ofts_ent->file, &cbargs);
oval_ftsent_free(ofts_ent);
}
oval_fts_close(ofts);
}
err = 0;
SEXP_free(path);
SEXP_free(filename);
SEXP_free(filepath);
SEXP_free(behaviors);
SEXP_free(attribute_);
switch (pthread_mutex_unlock (&__file_probe_mutex)) {
case 0:
break;
default:
dI("Can't unlock mutex(%p): %u, %s.", &__file_probe_mutex, errno, strerror (errno));
return PROBE_EFATAL;
}
return err;
}
int probe_main (SEXP_t *probe_in, SEXP_t *probe_out, void *mutex, SEXP_t *filters)
{
SEXP_t *path, *filename, *behaviors, *filepath;
OVAL_FTS *ofts;
OVAL_FTSENT *ofts_ent;
(void)filters;
if (probe_in == NULL || probe_out == NULL) {
return (PROBE_EINVAL);
}
if (mutex == NULL) {
return (PROBE_EINIT);
}
_A(mutex == &__filemd5_probe_mutex);
path = probe_obj_getent (probe_in, "path", 1);
filename = probe_obj_getent (probe_in, "filename", 1);
behaviors = probe_obj_getent (probe_in, "behaviors", 1);
filepath = probe_obj_getent (probe_in, "filepath", 1);
/* we want either path+filename or filepath */
if ( (path == NULL || filename == NULL) && filepath==NULL ) {
SEXP_free (behaviors);
SEXP_free (path);
SEXP_free (filename);
SEXP_free (filepath);
return (PROBE_ENOELM);
}
probe_filebehaviors_canonicalize(&behaviors);
switch (pthread_mutex_lock (&__filemd5_probe_mutex)) {
case 0:
break;
default:
dI("Can't lock mutex(%p): %u, %s.\n", &__filemd5_probe_mutex, errno, strerror (errno));
SEXP_free (behaviors);
SEXP_free (path);
SEXP_free (filename);
SEXP_free (filepath);
return (PROBE_EFATAL);
}
if ((ofts = oval_fts_open(path, filename, filepath, behaviors)) != NULL) {
while ((ofts_ent = oval_fts_read(ofts)) != NULL) {
filehash_cb(ofts_ent->path, ofts_ent->file, probe_out, filters);
oval_ftsent_free(ofts_ent);
}
oval_fts_close(ofts);
}
SEXP_free (behaviors);
SEXP_free (path);
SEXP_free (filename);
SEXP_free (filepath);
switch (pthread_mutex_unlock (&__filemd5_probe_mutex)) {
case 0:
break;
default:
dI("Can't unlock mutex(%p): %u, %s.\n", &__filemd5_probe_mutex, errno, strerror (errno));
return (PROBE_EFATAL);
}
return 0;
}
