/* * Copyright (C) 2007-2009 Sourcefire, Inc. * * Authors: Tomasz Kojm * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2 as * published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, * MA 02110-1301, USA. */ #ifdef _MSC_VER #include #include #endif #if HAVE_CONFIG_H #include "clamav-config.h" #endif #include #include #include #include #include #ifdef HAVE_UNISTD_H #include #endif #include #include #include #include #ifndef C_WINDOWS #include #include #endif #if HAVE_SYS_TYPES_H #include #endif #ifdef HAVE_SYS_SELECT_H #include #endif #if defined(USE_SYSLOG) && !defined(C_AIX) #include #endif #include "output.h" #include "libclamav/others.h" #ifdef CL_NOTHREADS #undef CL_THREAD_SAFE #endif #ifdef CL_THREAD_SAFE #include pthread_mutex_t logg_mutex = PTHREAD_MUTEX_INITIALIZER; #endif #ifdef C_LINUX #include #include #define gettext_noop(s) s #define _(s) gettext(s) #define N_(s) gettext_noop(s) #else #define _(s) s #define N_(s) s #endif FILE *logg_fp = NULL; short int logg_verbose = 0, logg_nowarn = 0, logg_lock = 1, logg_time = 0, logg_foreground = 1; unsigned int logg_size = 0; const char *logg_file = NULL; #if defined(USE_SYSLOG) && !defined(C_AIX) short logg_syslog; #endif short int mprintf_disabled = 0, mprintf_verbose = 0, mprintf_quiet = 0, mprintf_stdout = 0, mprintf_nowarn = 0, mprintf_send_timeout = 100; #define ARGLEN(args, str, len) \ { \ size_t arglen = 0, i; \ char *pt; \ va_start(args, str); \ len = strlen(str); \ for(i = 0; i < len - 1; i++) { \ if(str[i] == '%') { \ switch(str[++i]) { \ case 's': \ pt = va_arg(args, char *); \ if(pt) \ arglen += strlen(pt); \ break; \ case 'f': \ va_arg(args, double); \ arglen += 25; \ break; \ case 'l': \ va_arg(args, long); \ arglen += 20; \ break; \ default: \ va_arg(args, int); \ arglen += 10; \ break; \ } \ } \ } \ va_end(args); \ len += arglen; \ } int mdprintf(int desc, const char *str, ...) { va_list args; char buffer[512], *abuffer = NULL, *buff; int bytes, todo, ret=0; size_t len; ARGLEN(args, str, len); if(len <= sizeof(buffer)) { len = sizeof(buffer); buff = buffer; } else { abuffer = malloc(len); if(!abuffer) { len = sizeof(buffer); buff = buffer; } else { buff = abuffer; } } va_start(args, str); bytes = vsnprintf(buff, len, str, args); va_end(args); buff[len - 1] = 0; if(bytes < 0) { if(len > sizeof(buffer)) free(abuffer); return bytes; } if((size_t) bytes >= len) bytes = len - 1; todo = bytes; while (todo > 0) { ret = send(desc, buff, bytes, 0); if (ret < 0) { struct timeval tv; if (errno != EWOULDBLOCK) break; tv.tv_sec = 0; tv.tv_usec = mprintf_send_timeout*1000; do { fd_set wfds; FD_ZERO(&wfds); FD_SET(desc, &wfds); ret = select(desc+1, NULL, &wfds, NULL, &tv); } while (ret < 0 && errno == EINTR); if (!ret) { /* timed out */ ret = -1; break; } } else { todo -= ret; buff += ret; } } if(len > sizeof(buffer)) free(abuffer); return ret < 0 ? -1 : bytes; } void logg_close(void) { #if defined(USE_SYSLOG) && !defined(C_AIX) if(logg_syslog) closelog(); #endif #ifdef CL_THREAD_SAFE pthread_mutex_lock(&logg_mutex); #endif if(logg_fp) { fclose(logg_fp); logg_fp = NULL; } #ifdef CL_THREAD_SAFE pthread_mutex_unlock(&logg_mutex); #endif } /* * legend: * ! - ERROR: * ^ - WARNING: * ~ - normal * # - normal, not foreground (logfile and syslog only) * * - verbose * $ - debug * none - normal * * Default Foreground LogVerbose Debug Syslog * ! yes mprintf yes yes LOG_ERR * ^ yes mprintf yes yes LOG_WARNING * ~ yes mprintf yes yes LOG_INFO * # yes no yes yes LOG_INFO * * no mprintf yes yes LOG_DEBUG * $ no mprintf no yes LOG_DEBUG * none yes mprintf yes yes LOG_INFO */ int logg(const char *str, ...) { va_list args; #ifdef F_WRLCK struct flock fl; #endif char buffer[1025], *abuffer = NULL, *buff; time_t currtime; struct stat sb; mode_t old_umask; size_t len; if ((*str == '$' && logg_verbose < 2) || (*str == '*' && !logg_verbose)) return 0; ARGLEN(args, str, len); if(len <= sizeof(buffer)) { len = sizeof(buffer); buff = buffer; } else { abuffer = malloc(len); if(!abuffer) { len = sizeof(buffer); buff = buffer; } else { buff = abuffer; } } va_start(args, str); vsnprintf(buff, len, str, args); va_end(args); buff[len - 1] = 0; #ifdef CL_THREAD_SAFE pthread_mutex_lock(&logg_mutex); #endif if(logg_file) { if(!logg_fp) { old_umask = umask(0037); if((logg_fp = fopen(logg_file, "at")) == NULL) { umask(old_umask); #ifdef CL_THREAD_SAFE pthread_mutex_unlock(&logg_mutex); #endif printf("ERROR: Can't open %s in append mode (check permissions!).\n", logg_file); if(len > sizeof(buffer)) free(abuffer); return -1; } else umask(old_umask); #ifdef F_WRLCK if(logg_lock) { memset(&fl, 0, sizeof(fl)); fl.l_type = F_WRLCK; if(fcntl(fileno(logg_fp), F_SETLK, &fl) == -1) { #ifdef CL_THREAD_SAFE pthread_mutex_unlock(&logg_mutex); #endif printf("ERROR: %s is locked by another process\n", logg_file); if(len > sizeof(buffer)) free(abuffer); return -1; } } #endif } if(logg_size) { if(stat(logg_file, &sb) != -1) { if((unsigned int) sb.st_size > logg_size) { logg_file = NULL; fprintf(logg_fp, "Log size = %u, max = %u\n", (unsigned int) sb.st_size, logg_size); fprintf(logg_fp, "LOGGING DISABLED (Maximal log file size exceeded).\n"); fclose(logg_fp); logg_fp = NULL; } } } if(logg_fp) { /* Need to avoid logging time for verbose messages when logverbose is not set or we get a bunch of timestamps in the log without newlines... */ if(logg_time && ((*buff != '*') || logg_verbose)) { char timestr[32]; time(&currtime); cli_ctime(&currtime, timestr, sizeof(timestr)); /* cut trailing \n */ timestr[strlen(timestr)-1] = '\0'; fprintf(logg_fp, "%s -> ", timestr); } if(*buff == '!') { fprintf(logg_fp, "ERROR: %s", buff + 1); } else if(*buff == '^') { if(!logg_nowarn) fprintf(logg_fp, "WARNING: %s", buff + 1); } else if(*buff == '*' || *buff == '$') { fprintf(logg_fp, "%s", buff + 1); } else if(*buff == '#' || *buff == '~') { fprintf(logg_fp, "%s", buff + 1); } else fprintf(logg_fp, "%s", buff); fflush(logg_fp); } } #if defined(USE_SYSLOG) && !defined(C_AIX) if(logg_syslog) { if(buff[0] == '!') { syslog(LOG_ERR, "%s", buff + 1); } else if(buff[0] == '^') { if(!logg_nowarn) syslog(LOG_WARNING, "%s", buff + 1); } else if(buff[0] == '*' || buff[0] == '$') { syslog(LOG_DEBUG, "%s", buff + 1); } else if(buff[0] == '#' || buff[0] == '~') { syslog(LOG_INFO, "%s", buff + 1); } else syslog(LOG_INFO, "%s", buff); } #endif if(logg_foreground) { if(buff[0] != '#') mprintf("%s", buff); } #ifdef CL_THREAD_SAFE pthread_mutex_unlock(&logg_mutex); #endif if(len > sizeof(buffer)) free(abuffer); return 0; } void mprintf(const char *str, ...) { va_list args; FILE *fd; char buffer[512], *abuffer = NULL, *buff; size_t len; if(mprintf_disabled) return; fd = stdout; /* legend: * ! - error * @ - error with logging * ... */ /* * ERROR WARNING STANDARD * normal stderr stderr stdout * * verbose stderr stderr stdout * * quiet stderr no no */ ARGLEN(args, str, len); if(len <= sizeof(buffer)) { len = sizeof(buffer); buff = buffer; } else { abuffer = malloc(len); if(!abuffer) { len = sizeof(buffer); buff = buffer; } else { buff = abuffer; } } va_start(args, str); vsnprintf(buff, len, str, args); va_end(args); buff[len - 1] = 0; if(buff[0] == '!') { if(!mprintf_stdout) fd = stderr; fprintf(fd, "ERROR: %s", &buff[1]); } else if(buff[0] == '@') { if(!mprintf_stdout) fd = stderr; fprintf(fd, "ERROR: %s", &buff[1]); } else if(!mprintf_quiet) { if(buff[0] == '^') { if(!mprintf_nowarn) { if(!mprintf_stdout) fd = stderr; fprintf(fd, "WARNING: %s", &buff[1]); } } else if(buff[0] == '*') { if(mprintf_verbose) fprintf(fd, "%s", &buff[1]); } else if(buff[0] == '~') { fprintf(fd, "%s", &buff[1]); } else fprintf(fd, "%s", buff); } if(fd == stdout) fflush(stdout); if(len > sizeof(buffer)) free(abuffer); } struct facstruct { const char *name; int code; }; #if defined(USE_SYSLOG) && !defined(C_AIX) static const struct facstruct facilitymap[] = { #ifdef LOG_AUTH { "LOG_AUTH", LOG_AUTH }, #endif #ifdef LOG_AUTHPRIV { "LOG_AUTHPRIV", LOG_AUTHPRIV }, #endif #ifdef LOG_CRON { "LOG_CRON", LOG_CRON }, #endif #ifdef LOG_DAEMON { "LOG_DAEMON", LOG_DAEMON }, #endif #ifdef LOG_FTP { "LOG_FTP", LOG_FTP }, #endif #ifdef LOG_KERN { "LOG_KERN", LOG_KERN }, #endif #ifdef LOG_LPR { "LOG_LPR", LOG_LPR }, #endif #ifdef LOG_MAIL { "LOG_MAIL", LOG_MAIL }, #endif #ifdef LOG_NEWS { "LOG_NEWS", LOG_NEWS }, #endif #ifdef LOG_AUTH { "LOG_AUTH", LOG_AUTH }, #endif #ifdef LOG_SYSLOG { "LOG_SYSLOG", LOG_SYSLOG }, #endif #ifdef LOG_USER { "LOG_USER", LOG_USER }, #endif #ifdef LOG_UUCP { "LOG_UUCP", LOG_UUCP }, #endif #ifdef LOG_LOCAL0 { "LOG_LOCAL0", LOG_LOCAL0 }, #endif #ifdef LOG_LOCAL1 { "LOG_LOCAL1", LOG_LOCAL1 }, #endif #ifdef LOG_LOCAL2 { "LOG_LOCAL2", LOG_LOCAL2 }, #endif #ifdef LOG_LOCAL3 { "LOG_LOCAL3", LOG_LOCAL3 }, #endif #ifdef LOG_LOCAL4 { "LOG_LOCAL4", LOG_LOCAL4 }, #endif #ifdef LOG_LOCAL5 { "LOG_LOCAL5", LOG_LOCAL5 }, #endif #ifdef LOG_LOCAL6 { "LOG_LOCAL6", LOG_LOCAL6 }, #endif #ifdef LOG_LOCAL7 { "LOG_LOCAL7", LOG_LOCAL7 }, #endif { NULL, -1 } }; int logg_facility(const char *name) { int i; for(i = 0; facilitymap[i].name; i++) if(!strcmp(facilitymap[i].name, name)) return facilitymap[i].code; return -1; } #endif