// Returns 0 if success and 1 on rule failure.
int rules_append(llist *l, char *buf, unsigned int lineno)
{
lnode* newnode;
if (buf) { // parse up the rule
newnode = malloc(sizeof(lnode));
newnode->s_count = newnode->o_count = 0;
int rc = nv_split(buf, newnode, lineno);
if (rc) {
free(newnode);
if (rc < 0)
return 0;
else
return 1;
}
} else
return 1;
newnode->next = NULL;
rules_last(l);
// if we are at top, fix this up
if (l->head == NULL)
l->head = newnode;
else // Otherwise add pointer to newnode
l->cur->next = newnode;
// make newnode current
l->cur = newnode;
newnode->num = l->cnt;
l->cnt++;
return 0;
}
int plugin_load_config(plugin_conf_t * c, const char *file)
{
int fd, rc, mode, lineno = 1;
struct stat st;
FILE *f;
char buf[128];
plugin_clear_config(c);
/* open the file */
mode = O_RDONLY;
rc = open(file, mode);
if (rc < 0) {
if (errno != ENOENT) {
log_err("Error opening %s (%s)", file,
strerror(errno));
return 1;
}
log_warn("Config file %s doesn't exist, skipping", file);
return 1;
}
fd = rc;
/* check the file's permissions: owned by root, not world anything,
* not symlink.
*/
if (fstat(fd, &st) < 0) {
log_err("Error fstat'ing config file (%s)",
strerror(errno));
close(fd);
return 1;
}
if (st.st_uid != 0) {
log_err("Error - %s isn't owned by root", file);
close(fd);
return 1;
}
if ((st.st_mode & (S_IRUSR | S_IWUSR | S_IRGRP)) !=
(S_IRUSR | S_IWUSR | S_IRGRP)) {
log_err("%s permissions should be 0640", file);
return 1;
}
if (!S_ISREG(st.st_mode)) {
log_err("Error - %s is not a regular file", file);
close(fd);
return 1;
}
/* it's ok, read line by line */
f = fdopen(fd, "r");
if (f == NULL) {
log_err("Error - fdopen failed (%s)", strerror(errno));
close(fd);
return 1;
}
while (get_line(f, buf)) {
/* convert line into name-value pair */
const struct kw_pair *kw;
struct nv_pair nv;
rc = nv_split(buf, &nv);
switch (rc) {
case 0: /* fine */
break;
case 1: /* not the right number of tokens. */
log_err("Wrong number of arguments for line %d in %s", lineno, file);
break;
case 2: /* no '=' sign */
log_err("Missing equal sign for line %d in %s",
lineno, file);
break;
default: /* something else went wrong... */
log_err("Unknown error for line %d in %s",
lineno, file);
break;
}
if (nv.name == NULL) {
lineno++;
continue;
}
if (nv.value == NULL) {
fclose(f);
return 1;
}
/* identify keyword or error */
kw = kw_lookup(nv.name);
if (kw->name == NULL) {
log_err("Unknown keyword \"%s\" in line %d of %s",
nv.name, lineno, file);
fclose(f);
return 1;
}
/* Check number of options */
if (kw->max_options == 0 && nv.option != NULL) {
log_err("Keyword \"%s\" has invalid option "
"\"%s\" in line %d of %s",
nv.name, nv.option, lineno, file);
fclose(f);
return 1;
}
/* dispatch to keyword's local parser */
rc = kw->parser(&nv, lineno, c);
if (rc != 0) {
fclose(f);
return 1; /* local parser puts message out */
}
lineno++;
}
fclose(f);
c->name = strdup(basename(file));
if (lineno > 1)
return sanity_check(c, file);
return 0;
}
int load_daemon_config(struct daemon_conf *config)
{
int fd, lineno = 1;
FILE *f;
char buf[160];
clear_daemon_config(config);
/* open the file */
fd = open(CONFIG_FILE, O_RDONLY|O_NOFOLLOW);
if (fd < 0) {
if (errno != ENOENT) {
msg(LOG_ERR, "Error opening config file (%s)",
strerror(errno));
return 1;
}
msg(LOG_WARNING,
"Config file %s doesn't exist, skipping", CONFIG_FILE);
return 0;
}
/* Make into FILE struct and read line by line */
f = fdopen(fd, "rm");
if (f == NULL) {
msg(LOG_ERR, "Error - fdopen failed (%s)",
strerror(errno));
close(fd);
return 1;
}
while (get_line(f, buf, sizeof(buf), &lineno, CONFIG_FILE)) {
// convert line into name-value pair
const struct kw_pair *kw;
struct nv_pair nv;
int rc = nv_split(buf, &nv);
switch (rc) {
case 0: // fine
break;
case 1: // not the right number of tokens.
msg(LOG_ERR,
"Wrong number of arguments for line %d in %s",
lineno, CONFIG_FILE);
break;
case 2: // no '=' sign
msg(LOG_ERR,
"Missing equal sign for line %d in %s",
lineno, CONFIG_FILE);
break;
default: // something else went wrong...
msg(LOG_ERR, "Unknown error for line %d in %s",
lineno, CONFIG_FILE);
break;
}
if (nv.name == NULL) {
lineno++;
continue;
}
if (nv.value == NULL) {
fclose(f);
msg(LOG_ERR, "Not processing any more lines in %s",
CONFIG_FILE);
return 1;
}
/* identify keyword or error */
kw = kw_lookup(nv.name);
if (kw->name == NULL) {
msg(LOG_ERR, "Unknown keyword \"%s\" in line %d of %s",
nv.name, lineno, CONFIG_FILE);
fclose(f);
return 1;
} else {
/* dispatch to keyword's local parser */
rc = kw->parser(&nv, lineno, config);
if (rc != 0) {
fclose(f);
return 1; // local parser puts message out
}
}
lineno++;
}
fclose(f);
return 0;
}
int load_pconfig(plugin_conf_t *config, char *file)
{
int fd, rc, mode, lineno = 1;
struct stat st;
FILE *f;
char buf[160];
clear_pconfig(config);
/* open the file */
mode = O_RDONLY;
rc = open(file, mode);
if (rc < 0) {
if (errno != ENOENT) {
audit_msg(LOG_ERR, "Error opening %s (%s)", file,
strerror(errno));
return 1;
}
audit_msg(LOG_WARNING,
"Config file %s doesn't exist, skipping", file);
return 0;
}
fd = rc;
/* check the file's permissions: owned by root, not world writable,
* not symlink.
*/
if (fstat(fd, &st) < 0) {
audit_msg(LOG_ERR, "Error fstat'ing config file (%s)",
strerror(errno));
close(fd);
return 1;
}
if (st.st_uid != 0) {
audit_msg(LOG_ERR, "Error - %s isn't owned by root",
file);
close(fd);
return 1;
}
if ((st.st_mode & S_IWOTH) == S_IWOTH) {
audit_msg(LOG_ERR, "Error - %s is world writable",
file);
close(fd);
return 1;
}
if (!S_ISREG(st.st_mode)) {
audit_msg(LOG_ERR, "Error - %s is not a regular file",
file);
close(fd);
return 1;
}
/* it's ok, read line by line */
f = fdopen(fd, "rm");
if (f == NULL) {
audit_msg(LOG_ERR, "Error - fdopen failed (%s)",
strerror(errno));
close(fd);
return 1;
}
while (get_line(f, buf, sizeof(buf), &lineno, file)) {
// convert line into name-value pair
const struct kw_pair *kw;
struct nv_pair nv;
rc = nv_split(buf, &nv);
switch (rc) {
case 0: // fine
break;
case 1: // not the right number of tokens.
audit_msg(LOG_ERR,
"Wrong number of arguments for line %d in %s",
lineno, file);
break;
case 2: // no '=' sign
audit_msg(LOG_ERR,
"Missing equal sign for line %d in %s",
lineno, file);
break;
default: // something else went wrong...
audit_msg(LOG_ERR,
"Unknown error for line %d in %s",
lineno, file);
break;
}
if (nv.name == NULL) {
lineno++;
continue;
}
if (nv.value == NULL) {
fclose(f);
return 1;
}
/* identify keyword or error */
kw = kw_lookup(nv.name);
if (kw->name == NULL) {
audit_msg(LOG_ERR,
"Unknown keyword \"%s\" in line %d of %s",
nv.name, lineno, file);
fclose(f);
return 1;
}
/* Check number of options */
if (kw->max_options == 0 && nv.option != NULL) {
audit_msg(LOG_ERR,
"Keyword \"%s\" has invalid option "
"\"%s\" in line %d of %s",
nv.name, nv.option, lineno, file);
fclose(f);
return 1;
}
/* dispatch to keyword's local parser */
rc = kw->parser(&nv, lineno, config);
if (rc != 0) {
fclose(f);
return 1; // local parser puts message out
}
lineno++;
}
fclose(f);
config->name = strdup(basename(file));
if (lineno > 1)
return sanity_check(config, file);
return 0;
}
/*
* Read the /etc/libaudit.conf file and all tunables.
*/
static int load_libaudit_config(const char *path)
{
int fd, rc, lineno = 1;
struct stat st;
FILE *f;
char buf[128];
/* open the file */
rc = open(path, O_NOFOLLOW|O_RDONLY);
if (rc < 0) {
if (errno != ENOENT) {
audit_msg(LOG_ERR, "Error opening %s (%s)",
path, strerror(errno));
return 1;
}
audit_msg(LOG_WARNING,
"Config file %s doesn't exist, skipping", path);
return 0;
}
fd = rc;
/* check the file's permissions: owned by root, not world writable,
* not symlink.
*/
audit_msg(LOG_DEBUG, "Config file %s opened for parsing", path);
if (fstat(fd, &st) < 0) {
audit_msg(LOG_ERR, "Error fstat'ing %s (%s)",
path, strerror(errno));
close(fd);
return 1;
}
if (st.st_uid != 0) {
audit_msg(LOG_ERR, "Error - %s isn't owned by root", path);
close(fd);
return 1;
}
if ((st.st_mode & S_IWOTH) == S_IWOTH) {
audit_msg(LOG_ERR, "Error - %s is world writable", path);
close(fd);
return 1;
}
if (!S_ISREG(st.st_mode)) {
audit_msg(LOG_ERR, "Error - %s is not a regular file", path);
close(fd);
return 1;
}
/* it's ok, read line by line */
f = fdopen(fd, "rm");
if (f == NULL) {
audit_msg(LOG_ERR, "Error - fdopen failed (%s)",
strerror(errno));
close(fd);
return 1;
}
while (get_line(f, buf, sizeof(buf))) {
// convert line into name-value pair
const struct kw_pair *kw;
struct nv_pair nv;
rc = nv_split(buf, &nv);
switch (rc) {
case 0: // fine
break;
case 1: // not the right number of tokens.
audit_msg(LOG_ERR,
"Wrong number of arguments for line %d in %s",
lineno, path);
break;
case 2: // no '=' sign
audit_msg(LOG_ERR,
"Missing equal sign for line %d in %s",
lineno, path);
break;
default: // something else went wrong...
audit_msg(LOG_ERR,
"Unknown error for line %d in %s",
lineno, path);
break;
}
if (nv.name == NULL) {
lineno++;
continue;
}
if (nv.value == NULL) {
fclose(f);
return 1;
}
/* identify keyword or error */
kw = kw_lookup(nv.name);
if (kw->name == NULL) {
audit_msg(LOG_ERR,
"Unknown keyword \"%s\" in line %d of %s",
nv.name, lineno, path);
fclose(f);
return 1;
}
/* dispatch to keyword's local parser */
rc = kw->parser(nv.value, lineno);
if (rc != 0) {
fclose(f);
return 1; // local parser puts message out
}
lineno++;
}
fclose(f);
return 0;
}