Changeset 162

Timestamp:

Feb 1, 2008, 1:03:47 AM (17 years ago)

Author:

katerina

Message:

Fix for ticket #89, #90, and #91 (locking,compile failure).

Location:

trunk

Files:

• Makefile.in (modified) (1 diff)
• configure.ac (modified) (5 diffs)
• depend.dep (modified) (1 diff)
• depend.sum (modified) (1 diff)
• docs/Changelog (modified) (1 diff)
• include/samhain.h (modified) (1 diff)
• src/samhain.c (modified) (1 diff)
• src/sh_hash.c (modified) (1 diff)
• src/sh_kern.c (modified) (6 diffs)
• src/sh_portcheck.c (modified) (2 diffs)
• src/sh_unix.c (modified) (4 diffs)
• src/slib.c (modified) (1 diff)
• test/testhash.sh (modified) (1 diff)

trunk/Makefile.in

@@ -1696 +1696 @@
 sh_async.o: $(srcsrc)/sh_async.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_calls.h $(srcinc)/sh_error.h 
 sh_processcheck.o: $(srcsrc)/sh_processcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_modules.h $(srcinc)/sh_processcheck.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_extern.h $(srcinc)/sh_calls.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h 
-sh_portcheck.o: $(srcsrc)/sh_portcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_mem.h $(srcinc)/sh_calls.h $(srcinc)/sh_utils.h $(srcinc)/sh_modules.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h 
+sh_portcheck.o: $(srcsrc)/sh_portcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_mem.h $(srcinc)/sh_calls.h $(srcinc)/sh_utils.h $(srcinc)/sh_modules.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h 
 sh_pthread.o: $(srcsrc)/sh_pthread.c Makefile config_xor.h $(srcinc)/sh_pthread.h $(srcinc)/sh_calls.h $(srcinc)/sh_modules.h 

trunk/configure.ac

@@ -13 +13 @@
 dnl start
 dnl
-AM_INIT_AUTOMAKE(samhain, 2.4.2) 
+AM_INIT_AUTOMAKE(samhain, 2.4.3) 
 AC_CANONICAL_HOST
 
@@ -207 +207 @@
         sys/select.h sys/socket.h netinet/in.h \
         regex.h glob.h \
-        linux/ext2_fs.h linux/fs.h ext2fs/ext2_fs.h \
+        linux/ext2_fs.h linux/fs.h ext2fs/ext2_fs.h asm/segment.h \
         elf.h linux/elf.h \
         paths.h arpa/nameser.h arpa/nameser_compat.h \
@@ -1751 +1751 @@
            if test x"$kernel_version" = xLINUX26
            then
-
+                AC_MSG_CHECKING([for modlist_lock])
                 sh_modlist_lock=`egrep ['[bd] modlist_lock$'] ${khidemap} | awk '{print $1}'` 
                 if test x"$sh_modlist_lock" = x; then
-                        echo "--enable-khide: symbol modlist_lock not found in ${khidemap}"
+                        AC_MSG_RESULT(no)
                 else
                         sh_modlist_lock="0x${sh_modlist_lock}"
+                        AC_MSG_RESULT([${sh_modlist_lock}])
                         AC_DEFINE_UNQUOTED(SH_MODLIST_LOCK, ${sh_modlist_lock}, [The address of the modules list spinlock])
                 fi
-                                    
+
+                AC_MSG_CHECKING([for module_mutex])                 
                 sh_modlist_mutex=`egrep ['[bd] module_mutex$'] ${khidemap} | awk '{print $1}'` 
                 if test x"$sh_modlist_mutex" = x; then
-                        echo "--enable-khide: symbol module_mutex not found in ${khidemap}"
+                        AC_MSG_RESULT(no)
                 else
                         sh_modlist_mutex="0x${sh_modlist_mutex}"
+                        AC_MSG_RESULT([${sh_modlist_mutex}])
                         AC_DEFINE_UNQUOTED(SH_MODLIST_MUTEX, ${sh_modlist_mutex}, [The address of the modules list mutex])
                 fi
@@ -1792 +1795 @@
                 AC_MSG_WARN([--enable-khide: headers for the currently-running kernel.])
            fi
+
+           AC_MSG_CHECKING([for 2.4 vanilla kernel])
            sh_is_vanilla_kernel=yes
            if test -f /lib/modules/${kvers}/build/include/linux/sched.h; then
@@ -1797 +1802 @@
            fi
            if test x"${sh_is_vanilla_kernel}" = xno; then
-                echo "This is not a 2.4 vanilla kernel"
+                AC_MSG_RESULT(no)
            else
+                AC_MSG_RESULT(yes)
                 AC_DEFINE(SH_VANILLA_KERNEL)
            fi
+
         fi
         ]

trunk/depend.dep

@@ -58 +58 @@
 sh_prelink.o: $(srcsrc)/sh_prelink.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_extern.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h 
 sh_static.o: $(srcsrc)/sh_static.c Makefile config_xor.h $(srcinc)/sh_pthread.h 
-sh_portcheck.o: $(srcsrc)/sh_portcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_mem.h $(srcinc)/sh_calls.h $(srcinc)/sh_utils.h $(srcinc)/sh_modules.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h 
+sh_portcheck.o: $(srcsrc)/sh_portcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_mem.h $(srcinc)/sh_calls.h $(srcinc)/sh_utils.h $(srcinc)/sh_modules.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h 
 sh_processcheck.o: $(srcsrc)/sh_processcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_modules.h $(srcinc)/sh_processcheck.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_extern.h $(srcinc)/sh_calls.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h 
 sh_prelude_old.o: $(srcsrc)/sh_prelude_old.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_mem.h $(srcinc)/sh_cat.h $(srcinc)/sh_error_min.h $(srcinc)/sh_prelude.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h 

trunk/depend.sum

@@ -1 @@
-1156805991
+2613935365

trunk/docs/Changelog

@@ -1 +1 @@
 2.4.3:
+        * sh_kern.c: don't require asm/segment.h for kernel check module
+        * use global var with pid of initial thread instead of getpid(),
+          since LinuxThreads returns different value in each thread (problem
+          reported by Steffen Mueller)
+        * sh_kern.c: no inode check for pci rom (creates spurious messages)
+        * slib.c: eliminate prototype for vsnprintf (compile problem reported
+          by eddy_cs)
         * Makefile.in: fix missing dependency on 'encode' for $(OBJECTS)
           (reported by Matthias Ehrmann)
 
-2.4.2:
+2.4.2 (17-01-2008):
         * fix broken option --with-checksum (reported by halosfan),
           regression test added

trunk/include/samhain.h

@@ -249 +249 @@
 
   char   prg_name[8];
+
+  UINT64 pid;  
  
   sh_sh_df     exec;

trunk/src/samhain.c

@@ -362 +362 @@
   sh.prg_name[7] = '\0';
 #endif
+
+  sh.pid = (UINT64) getpid();
 
   /* The flags.

trunk/src/sh_hash.c

@@ -1206 +1206 @@
           {
             dlog(1, FIL__, __LINE__, 
-                 _("The checksum of the file signature database has changed since startup.\n"));
+                 _("The checksum of the file signature database has changed since startup: %s -> %s\n"),
+                 sh.data.hash, sh_tiger_hash (file_path('D', 'R'), fd, TIGER_NOLIM, 
+                                           hashbuf, sizeof(hashbuf)));
             sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_E_AUTH,
                              ( (NULL == file_path('D', 'R')) ? _("(null)") :

trunk/src/sh_kern.c

@@ -266 +266 @@
  * Interrupt Descriptor Table
  */
-
+#ifdef HAVE_ASM_SEGMENT_H
 #include <asm/segment.h>
+#endif
 
 #define SH_MAXIDT   256
@@ -276 +277 @@
 {
   switch (segment) {
+#ifdef __KERNEL_CS
   case __KERNEL_CS:
     return _("KERNEL_CS");
+#endif
+#ifdef __KERNEL_DS
   case __KERNEL_DS:
     return _("KERNEL_DS");
+#endif
+#ifdef __USER_CS
   case __USER_CS:
     return _("USER_CS");
+#endif
+#ifdef __USER_DS
   case __USER_DS:
     return _("USER_DS");
+#endif
   default:
     return _("unknown");
@@ -903 +912 @@
   (void) sl_strlcpy (theFile.fullpath, pcipath, PATH_MAX);
   theFile.check_mask  = sh_files_maskof(SH_LEVEL_READONLY);
-  theFile.check_mask &= ~(MODI_MTM|MODI_CTM);
+  theFile.check_mask &= ~(MODI_MTM|MODI_CTM|MODI_INO);
   CLEAR_SH_FFLAG_REPORTED(theFile.file_reported);
   theFile.attr_string = NULL;
@@ -938 +947 @@
   struct stat buf;
   int         fd;
+  int         status;
 
   if (0 == stat(pcipath, &buf))
@@ -945 +955 @@
        */
       fd = open ( pcipath, O_RDWR );
-      write( fd, "1", 1 );
+      do {
+        status = write( fd, "1", 1 );
+      } while (status < 0 && errno == EINTR);
       close ( fd );
 
@@ -951 +963 @@
 
       fd = open ( pcipath, O_RDWR );
-      write( fd, "0", 1 );
+      do {
+        status = write( fd, "0", 1 );
+      } while (status < 0 && errno == EINTR);
       close ( fd );
     }

trunk/src/sh_portcheck.c

@@ -129 +129 @@
 #include "sh_utils.h"
 #include "sh_modules.h"
+#include "sh_static.h"
 #include "sh_pthread.h"
 
@@ -897 +898 @@
             
   SH_MUTEX_LOCK(mutex_resolv);
-  hent = gethostbyname(portchk_hostname);
+  hent = sh_gethostbyname(portchk_hostname);
 
   while (hent && hent->h_addr_list[i] && (iface_list.used < SH_IFACE_MAX))

trunk/src/sh_unix.c

@@ -1866 +1866 @@
 
     setsid();            /* should not fail         */
+    sh.pid = (UINT64) getpid();
 
     switch (aud_fork(FIL__, __LINE__)) {
@@ -1876 +1877 @@
      */
     sh_unix_memlock();
+    sh.pid = (UINT64) getpid();
 
   } else {
@@ -3844 +3846 @@
       sl_close(fd);
 
-      if (status == (int) getpid())
+      if (status > 0 && (unsigned int) status == sh.pid)
         {
           if (filename != NULL)
@@ -4007 +4009 @@
   SL_ENTER(_("sh_unix_lock"));
 
-  sprintf (myPid, "%ld\n", (long) getpid());           /* known to fit  */
+  sprintf (myPid, "%ld\n", (long) sh.pid);             /* known to fit  */
 
   fd = sl_open_safe_rdwr (lockfile, SL_YESPRIV);       /* fails if file exists */

trunk/src/slib.c

@@ -577 +577 @@
 }
 
-#if !defined(HOST_IS_I86SOLARIS)
-#if !defined (_GNU_SOURCE) && !defined(__linux__)
-/* flawfinder: ignore */
-extern int vsnprintf ( char *str, size_t n,
-                       const char *format, va_list ap );
-#endif
-#endif
 
 #if !defined (VA_COPY)

trunk/test/testhash.sh

@@ -37 +37 @@
         fi
         #
-        ${TOP_SRCDIR}/configure --quiet $TRUST --prefix=$PW_DIR --localstatedir=$PW_DIR --with-config-file=$RCFILE --with-log-file=$LOGFILE --with-pid-file=$PW_DIR/.samhain_lock --with-data-file=$PW_DIR/.samhain_file
+        ${TOP_SRCDIR}/configure --quiet $TRUST --prefix=$PW_DIR --localstatedir=$PW_DIR --with-config-file=$RCFILE --with-log-file=$LOGFILE --with-pid-file=$PW_DIR/.samhain_lock --with-data-file=$PW_DIR/.samhain_file 
         #
         fail=0