osquery-1/osquery/filesystem/filesystem.cpp

214 lines
5.6 KiB
C++
Raw Normal View History

2014-08-04 18:06:45 +00:00
// Copyright 2004-present Facebook. All Rights Reserved.
#include <exception>
2014-08-04 18:06:45 +00:00
#include <sstream>
#include <fcntl.h>
#include <sys/stat.h>
#include <boost/filesystem/fstream.hpp>
2014-08-04 18:06:45 +00:00
#include <boost/filesystem/operations.hpp>
#include <boost/filesystem/path.hpp>
#include <boost/property_tree/ptree.hpp>
#include <boost/property_tree/xml_parser.hpp>
2014-08-04 18:06:45 +00:00
#include <glog/logging.h>
#include "osquery/filesystem.h"
using osquery::Status;
2014-08-04 18:06:45 +00:00
namespace pt = boost::property_tree;
namespace fs = boost::filesystem;
2014-08-15 07:25:30 +00:00
namespace osquery {
2014-08-04 18:06:45 +00:00
Status writeTextFile(const boost::filesystem::path& path,
const std::string& content,
int permissions,
bool force_permissions) {
// Open the file with the request permissions.
int output_fd = open(path.c_str(), O_CREAT | O_APPEND | O_WRONLY,
permissions);
if (output_fd <= 0) {
return Status(1, "Could not create file");
}
// If the file existed with different permissions before our open
// they must be restricted.
if (chmod(path.c_str(), permissions) != 0) {
// Could not change the file to the requested permissions.
return Status(1, "Failed to change permissions");
}
auto bytes = write(output_fd, content.c_str(), content.size());
if (bytes != content.size()) {
close(output_fd);
return Status(1, "Failed to write contents");
}
close(output_fd);
return Status(0, "OK");
}
Status readFile(const boost::filesystem::path& path, std::string& content) {
auto path_exists = pathExists(path);
if (!path_exists.ok()) {
return path_exists;
2014-08-04 18:06:45 +00:00
}
int statusCode = 0;
std::string statusMessage = "OK";
char* buffer;
fs::ifstream file_h(path);
2014-08-04 18:06:45 +00:00
if (file_h) {
2014-08-15 07:25:30 +00:00
file_h.seekg(0, file_h.end);
int len = file_h.tellg();
file_h.seekg(0, file_h.beg);
buffer = new char[len];
2014-08-15 07:25:30 +00:00
file_h.read(buffer, len);
if (!file_h) {
statusCode = 1;
statusMessage = "Could not read file";
goto cleanup_buffer;
2014-08-15 07:25:30 +00:00
}
content.assign(buffer, len);
2014-08-04 18:06:45 +00:00
} else {
statusCode = 1;
statusMessage = "Could not open file for reading";
goto cleanup;
2014-08-04 18:06:45 +00:00
}
cleanup_buffer:
2014-08-26 23:27:33 +00:00
delete[] buffer;
cleanup:
if (file_h) {
file_h.close();
}
return Status(statusCode, statusMessage);
2014-08-04 18:06:45 +00:00
}
Status isWritable(const boost::filesystem::path& path) {
auto path_exists = pathExists(path);
if (!path_exists.ok()) {
return path_exists;
2014-10-27 01:39:03 +00:00
}
if (access(path.c_str(), W_OK) == 0) {
return Status(0, "OK");
2014-10-27 01:39:03 +00:00
}
return Status(1, "Path is not writable.");
2014-10-27 01:39:03 +00:00
}
Status isReadable(const boost::filesystem::path& path) {
auto path_exists = pathExists(path);
if (!path_exists.ok()) {
return path_exists;
2014-10-29 09:24:00 +00:00
}
if (access(path.c_str(), R_OK) == 0) {
return Status(0, "OK");
}
return Status(1, "Path is not readable.");
}
Status pathExists(const boost::filesystem::path& path) {
if (path.empty()) {
return Status(1, "-1");
}
// A tri-state determination of presence
if (!boost::filesystem::exists(path)) {
return Status(1, "0");
}
return Status(0, "1");
}
Status listFilesInDirectory(const boost::filesystem::path& path,
2014-08-15 07:25:30 +00:00
std::vector<std::string>& results) {
2014-08-14 23:27:20 +00:00
try {
if (!boost::filesystem::exists(path)) {
return Status(1, "Directory not found");
}
if (!boost::filesystem::is_directory(path)) {
return Status(1, "Supplied path is not a directory");
}
boost::filesystem::directory_iterator begin_iter(path);
boost::filesystem::directory_iterator end_iter;
for (; begin_iter != end_iter; begin_iter++) {
results.push_back(begin_iter->path().string());
}
return Status(0, "OK");
2014-10-28 00:37:36 +00:00
} catch (const boost::filesystem::filesystem_error& e) {
2014-08-14 23:27:20 +00:00
return Status(1, e.what());
}
}
Status getDirectory(const boost::filesystem::path& path,
boost::filesystem::path& dirpath) {
2014-10-07 18:20:47 +00:00
if (!isDirectory(path).ok()) {
2014-10-06 21:23:26 +00:00
dirpath = boost::filesystem::path(path).parent_path().string();
return Status(0, "OK");
}
dirpath = path;
return Status(1, "Path is a directory");
}
Status isDirectory(const boost::filesystem::path& path) {
2014-10-06 21:23:26 +00:00
if (boost::filesystem::is_directory(path)) {
return Status(0, "OK");
}
return Status(1, "Path is not a directory");
}
Status parseTomcatUserConfigFromDisk(
const boost::filesystem::path& path,
std::vector<std::pair<std::string, std::string> >& credentials) {
std::string content;
auto s = readFile(path, content);
if (s.ok()) {
return parseTomcatUserConfig(content, credentials);
} else {
return s;
}
}
Status parseTomcatUserConfig(
const std::string& content,
std::vector<std::pair<std::string, std::string> >& credentials) {
std::stringstream ss;
ss << content;
pt::ptree tree;
try {
pt::xml_parser::read_xml(ss, tree);
2014-10-28 00:37:36 +00:00
} catch (const pt::xml_parser_error& e) {
return Status(1, e.what());
}
try {
for (const auto& i : tree.get_child("tomcat-users")) {
if (i.first == "user") {
try {
std::pair<std::string, std::string> user;
user.first = i.second.get<std::string>("<xmlattr>.username");
user.second = i.second.get<std::string>("<xmlattr>.password");
credentials.push_back(user);
2014-10-28 00:37:36 +00:00
} catch (const std::exception& e) {
LOG(ERROR)
<< "An error occured parsing the tomcat users xml: " << e.what();
return Status(1, e.what());
}
}
}
2014-10-28 00:37:36 +00:00
} catch (const std::exception& e) {
LOG(ERROR) << "An error occured while trying to access the tomcat-users"
<< " key in the XML content: " << e.what();
return Status(1, e.what());
}
return Status(0, "OK");
}
2014-08-15 07:25:30 +00:00
}