getacval.c revision 7c478bd95313f5f23a4c958a745db2134aa03244
/*
* CDDL HEADER START
*
* The contents of this file are subject to the terms of the
* Common Development and Distribution License, Version 1.0 only
* (the "License"). You may not use this file except in compliance
* with the License.
*
* You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
* See the License for the specific language governing permissions
* and limitations under the License.
*
* When distributing Covered Code, include this CDDL HEADER in each
* file and include the License file at usr/src/OPENSOLARIS.LICENSE.
* If applicable, add the following below this CDDL HEADER, with the
* fields enclosed by brackets "[]" replaced with your own identifying
* information: Portions Copyright [yyyy] [name of copyright owner]
*
* CDDL HEADER END
*/
/*
* Copyright 2003 Sun Microsystems, Inc. All rights reserved.
* Use is subject to license terms.
*/
#pragma ident "%Z%%M% %I% %E% SMI"
/*
* get audit control info (replaces getacinfo.c)
*/
#include <secdb.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <synch.h>
#define REALLY_LONG_LINE 8192
#define FILE_AT_START 0 /* file pointer is at file start or file is closed */
#define SUCCESS 0
#define EOF_WARN 1
#define REW_WARN 2
#define EOF_ERR -1
#define ERROR -2
#define FORMAT_ERR -3
#define NO_CONTEXT -4
/*
* libbsm.h has opaque typedef: typedef struct au_acinfo au_acinfo_t
*/
struct au_acinfo {
char *file;
int file_pointer;
int once_read;
};
static char *MINLABEL = "minfree:";
static char *DIRLABEL = "dir:";
static char *DEFFLGLABEL = "flags:";
static char *NAFLGLABEL = "naflags:";
static char *lib_label = "plugin:";
/*
* get extended line, i.e., interpret trailing "\" and join to make
* a single line. Returns NULL on error or EOF, else returns its
* input pointer. A line containing only "\" and some blanks is valid.
*
* doesn't handle a comment line embedded in a series of continued lines.
*/
static char *
{
int keepgoing = 1;
int partcount = 0;
char *l, *b;
int end = 0;
l = line;
while (keepgoing) {
partcount++;
*(b + 1) = '\0'; /* chop the \n */
keepgoing = 0;
while (b >= l) {
if (*b == '\\') {
keepgoing = 1;
l = b;
break;
} else if (*b != ' ')
break;
end--;
b--;
}
} else
keepgoing = 0;
}
if (partcount > 0)
return (line);
else
return (NULL);
}
/*
* input a string of the form attr: xxxxx{\n}
* and return xxxxx with leading, internal, and trailing blanks removed
*/
static int
{
int attr_length, value_length;
/*
* allow zero or more blanks
* between colon and rest of line
*/
while (*bp == ' ') {
value_length--;
attr_length++; /* offset to first non-blank */
bp++;
}
while (*bp != '\0') {
if (*bp == ' ') {
bp++;
value_length--;
} else {
}
}
*cp = '\0';
if (value_length < 1) {
*out_buf = '\0';
return (retstat);
}
out_len))
} else
return (retstat);
}
/*
* getacval.c - get audit control info
*
* _getacdir() - get audit control directories, one at a time
* _getacflg() - get audit control default audit flags
* _getacmin() - get audit control directory min. fill value
* _getacna() - get audit control non-attrib audit flags
* _getacplug() - get audit control remote host and associated data
* _openac() - open the audit control file
* _endac() - close the audit control file
*/
/*
* _getacdir() - get audit control directories, one at a time
*
* input: len - size of dir buffer
*
* output: dir - directory string
*
* returns: 0 - entry read ok
* -1 - end of file
* -2 - error - can't open audit control file for read
* -3 - error - directory entry format error
* 2 - directory search started from beginning again
*
* notes: It is the responsibility of the calling function to
* check the status of the directory entry.
*/
int
{
char *entry;
return (NO_CONTEXT);
return (ERROR);
} else {
}
if (*entry == 'd') {
len);
gotone = 1;
}
} else {
}
return (retstat);
}
/*
* _getacmin() - get audit control directory min. fill value
*
* output: min_val - percentage of directory fill allowed
*
* returns: 0 - entry read ok
* 1 - end of file
* -2 - error; errno contains error number
* -3 - error - directory entry format error
*/
int
{
return (NO_CONTEXT);
if (*entry == 'm') {
5); /* sb 2 digits, allow more */
gotone = 1;
}
}
else
else
return (retstat);
}
/*
* _getacflg() - get audit control flags
*
* output: auditstring - character representation of system audit flags
*
* returns: 0 - entry read ok
* 1 - end of file
* -2 - error - errno contains error number
* -3 - error - directory entry format error
*/
int
{
char *entry;
return (NO_CONTEXT);
return (ERROR);
if (*entry == 'f') {
DEFFLGLABEL, len);
gotone = 1;
}
} else {
}
else
return (retstat);
}
/*
* _getacna() - get audit flags for non-attributable (server) events
*
* output: auditstring - character representation of system audit flags
*
* returns: 0 - entry read ok
* 1 - end of file
* -2 - error - errno contains error number
* -3 - error - directory entry format error
*/
int
{
char *entry;
return (ERROR);
if (*entry == 'n') {
NAFLGLABEL, len);
gotone = 1;
}
} else {
}
/* end of if-do */
else
return (retstat);
}
/*
* _getacplug() - get plugin parameter line
*
* As with _getacdir, the caller is responsible for checking the
* validity of what's returned.
*
* outputs: keyvalue list (call _kva_free(list_ptr) when you're done with
* it.)
*
* returns: SUCCESS - entry read ok
* EOF_WARN - end of file
* REW_WARN - started over at the start of file
* ERROR - error - errno contains error number
* FORMAT_ERROR - fat finger failure
*/
#define MAX_ARG 256
int
{
char entry[REALLY_LONG_LINE];
char value[REALLY_LONG_LINE];
return (NO_CONTEXT);
} else {
}
if (*entry == 'p') {
got_one = 1;
}
} else {
}
/* end of if-do */
if (got_one) {
} else {
}
return (retstat);
}
/* rewind the audit control file */
void
{
}
/*
* _openac() open either the audit_control file or an alternate.
* A NULL input means use the real audit_control.
*/
{
return (NULL);
return (NULL);
}
return (NULL);
}
return (context);
}
/* close the audit control file */
void
{
return;
}