xref: /freebsd/contrib/openbsm/libbsm/bsm_class.c (revision 0572ccaa4543b0abef8ef81e384c1d04de9f3da1)
1 /*-
2  * Copyright (c) 2004 Apple Inc.
3  * Copyright (c) 2006 Robert N. M. Watson
4  * All rights reserved.
5  *
6  * Redistribution and use in source and binary forms, with or without
7  * modification, are permitted provided that the following conditions
8  * are met:
9  * 1.  Redistributions of source code must retain the above copyright
10  *     notice, this list of conditions and the following disclaimer.
11  * 2.  Redistributions in binary form must reproduce the above copyright
12  *     notice, this list of conditions and the following disclaimer in the
13  *     documentation and/or other materials provided with the distribution.
14  * 3.  Neither the name of Apple Inc. ("Apple") nor the names of
15  *     its contributors may be used to endorse or promote products derived
16  *     from this software without specific prior written permission.
17  *
18  * THIS SOFTWARE IS PROVIDED BY APPLE AND ITS CONTRIBUTORS "AS IS" AND
19  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
20  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
21  * ARE DISCLAIMED. IN NO EVENT SHALL APPLE OR ITS CONTRIBUTORS BE LIABLE FOR
22  * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
23  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
24  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
25  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
26  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
27  * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
28  * POSSIBILITY OF SUCH DAMAGE.
29  *
30  * $P4: //depot/projects/trustedbsd/openbsm/libbsm/bsm_class.c#16 $
31  */
32 
33 #include <config/config.h>
34 
35 #include <bsm/libbsm.h>
36 
37 #include <string.h>
38 #ifdef HAVE_PTHREAD_MUTEX_LOCK
39 #include <pthread.h>
40 #endif
41 #include <stdio.h>
42 #include <stdlib.h>
43 
44 #ifndef HAVE_STRLCPY
45 #include <compat/strlcpy.h>
46 #endif
47 
48 /*
49  * Parse the contents of the audit_class file to return struct au_class_ent
50  * entries.
51  */
52 static FILE		*fp = NULL;
53 static char		 linestr[AU_LINE_MAX];
54 static const char	*classdelim = ":";
55 
56 #ifdef HAVE_PTHREAD_MUTEX_LOCK
57 static pthread_mutex_t	mutex = PTHREAD_MUTEX_INITIALIZER;
58 #endif
59 
60 /*
61  * Parse a single line from the audit_class file passed in str to the struct
62  * au_class_ent elements; store the result in c.
63  */
64 static struct au_class_ent *
65 classfromstr(char *str, struct au_class_ent *c)
66 {
67 	char *classname, *classdesc, *classflag;
68 	char *last;
69 
70 	/* Each line contains flag:name:desc. */
71 	classflag = strtok_r(str, classdelim, &last);
72 	classname = strtok_r(NULL, classdelim, &last);
73 	classdesc = strtok_r(NULL, classdelim, &last);
74 
75 	if ((classflag == NULL) || (classname == NULL) || (classdesc == NULL))
76 		return (NULL);
77 
78 	/*
79 	 * Check for very large classnames.
80 	 */
81 	if (strlen(classname) >= AU_CLASS_NAME_MAX)
82 		return (NULL);
83 	strlcpy(c->ac_name, classname, AU_CLASS_NAME_MAX);
84 
85 	/*
86 	 * Check for very large class description.
87 	 */
88 	if (strlen(classdesc) >= AU_CLASS_DESC_MAX)
89 		return (NULL);
90 	strlcpy(c->ac_desc, classdesc, AU_CLASS_DESC_MAX);
91 	c->ac_class = strtoul(classflag, (char **) NULL, 0);
92 
93 	return (c);
94 }
95 
96 /*
97  * Return the next au_class_ent structure from the file setauclass should be
98  * called before invoking this function for the first time.
99  *
100  * Must be called with mutex held.
101  */
102 static struct au_class_ent *
103 getauclassent_r_locked(struct au_class_ent *c)
104 {
105 	char *tokptr, *nl;
106 
107 	if ((fp == NULL) && ((fp = fopen(AUDIT_CLASS_FILE, "r")) == NULL))
108 		return (NULL);
109 
110 	/*
111 	 * Read until next non-comment line is found, or EOF.
112 	 */
113 	while (1) {
114 		if (fgets(linestr, AU_LINE_MAX, fp) == NULL)
115 			return (NULL);
116 
117 		/* Skip comments. */
118 		if (linestr[0] == '#')
119 			continue;
120 
121 		/* Remove trailing new line character. */
122 		if ((nl = strrchr(linestr, '\n')) != NULL)
123 			*nl = '\0';
124 
125 		/* Parse tokptr to au_class_ent components. */
126 		tokptr = linestr;
127 		if (classfromstr(tokptr, c) == NULL)
128 			return (NULL);
129 		break;
130 	}
131 
132 	return (c);
133 }
134 
135 struct au_class_ent *
136 getauclassent_r(struct au_class_ent *c)
137 {
138 	struct au_class_ent *cp;
139 
140 #ifdef HAVE_PTHREAD_MUTEX_LOCK
141 	pthread_mutex_lock(&mutex);
142 #endif
143 	cp = getauclassent_r_locked(c);
144 #ifdef HAVE_PTHREAD_MUTEX_LOCK
145 	pthread_mutex_unlock(&mutex);
146 #endif
147 	return (cp);
148 }
149 
150 struct au_class_ent *
151 getauclassent(void)
152 {
153 	static char class_ent_name[AU_CLASS_NAME_MAX];
154 	static char class_ent_desc[AU_CLASS_DESC_MAX];
155 	static struct au_class_ent c, *cp;
156 
157 	bzero(&c, sizeof(c));
158 	bzero(class_ent_name, sizeof(class_ent_name));
159 	bzero(class_ent_desc, sizeof(class_ent_desc));
160 	c.ac_name = class_ent_name;
161 	c.ac_desc = class_ent_desc;
162 
163 #ifdef HAVE_PTHREAD_MUTEX_LOCK
164 	pthread_mutex_lock(&mutex);
165 #endif
166 	cp = getauclassent_r_locked(&c);
167 #ifdef HAVE_PTHREAD_MUTEX_LOCK
168 	pthread_mutex_unlock(&mutex);
169 #endif
170 	return (cp);
171 }
172 
173 /*
174  * Rewind to the beginning of the enumeration.
175  *
176  * Must be called with mutex held.
177  */
178 static void
179 setauclass_locked(void)
180 {
181 
182 	if (fp != NULL)
183 		fseek(fp, 0, SEEK_SET);
184 }
185 
186 void
187 setauclass(void)
188 {
189 
190 #ifdef HAVE_PTHREAD_MUTEX_LOCK
191 	pthread_mutex_lock(&mutex);
192 #endif
193 	setauclass_locked();
194 #ifdef HAVE_PTHREAD_MUTEX_LOCK
195 	pthread_mutex_unlock(&mutex);
196 #endif
197 }
198 
199 /*
200  * Return the next au_class_entry having the given class name.
201  */
202 struct au_class_ent *
203 getauclassnam_r(struct au_class_ent *c, const char *name)
204 {
205 	struct au_class_ent *cp;
206 
207 	if (name == NULL)
208 		return (NULL);
209 
210 #ifdef HAVE_PTHREAD_MUTEX_LOCK
211 	pthread_mutex_lock(&mutex);
212 #endif
213 	setauclass_locked();
214 	while ((cp = getauclassent_r_locked(c)) != NULL) {
215 		if (strcmp(name, cp->ac_name) == 0) {
216 #ifdef HAVE_PTHREAD_MUTEX_LOCK
217 			pthread_mutex_unlock(&mutex);
218 #endif
219 			return (cp);
220 		}
221 	}
222 #ifdef HAVE_PTHREAD_MUTEX_LOCK
223 	pthread_mutex_unlock(&mutex);
224 #endif
225 	return (NULL);
226 }
227 
228 struct au_class_ent *
229 getauclassnam(const char *name)
230 {
231 	static char class_ent_name[AU_CLASS_NAME_MAX];
232 	static char class_ent_desc[AU_CLASS_DESC_MAX];
233 	static struct au_class_ent c;
234 
235 	bzero(&c, sizeof(c));
236 	bzero(class_ent_name, sizeof(class_ent_name));
237 	bzero(class_ent_desc, sizeof(class_ent_desc));
238 	c.ac_name = class_ent_name;
239 	c.ac_desc = class_ent_desc;
240 
241 	return (getauclassnam_r(&c, name));
242 }
243 
244 
245 /*
246  * Return the next au_class_entry having the given class number.
247  *
248  * OpenBSM extension.
249  */
250 struct au_class_ent *
251 getauclassnum_r(struct au_class_ent *c, au_class_t class_number)
252 {
253 	struct au_class_ent *cp;
254 
255 #ifdef HAVE_PTHREAD_MUTEX_LOCK
256 	pthread_mutex_lock(&mutex);
257 #endif
258 	setauclass_locked();
259 	while ((cp = getauclassent_r_locked(c)) != NULL) {
260 		if (class_number == cp->ac_class)
261 			return (cp);
262 	}
263 #ifdef HAVE_PTHREAD_MUTEX_LOCK
264 	pthread_mutex_unlock(&mutex);
265 #endif
266 	return (NULL);
267 }
268 
269 struct au_class_ent *
270 getauclassnum(au_class_t class_number)
271 {
272 	static char class_ent_name[AU_CLASS_NAME_MAX];
273 	static char class_ent_desc[AU_CLASS_DESC_MAX];
274 	static struct au_class_ent c;
275 
276 	bzero(&c, sizeof(c));
277 	bzero(class_ent_name, sizeof(class_ent_name));
278 	bzero(class_ent_desc, sizeof(class_ent_desc));
279 	c.ac_name = class_ent_name;
280 	c.ac_desc = class_ent_desc;
281 
282 	return (getauclassnum_r(&c, class_number));
283 }
284 
285 /*
286  * audit_class processing is complete; close any open files.
287  */
288 void
289 endauclass(void)
290 {
291 
292 #ifdef HAVE_PTHREAD_MUTEX_LOCK
293 	pthread_mutex_lock(&mutex);
294 #endif
295 	if (fp != NULL) {
296 		fclose(fp);
297 		fp = NULL;
298 	}
299 #ifdef HAVE_PTHREAD_MUTEX_LOCK
300 	pthread_mutex_unlock(&mutex);
301 #endif
302 }
303