aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

suricata: Check if default log dir is writable

Browse Source 
At the startup, if the default log dir provided either by command line
options or suricat.yaml is not writable, the error comes quite later.
This patch makes suricata exit if there is such an error in the
beginning itself.

Closes redmine ticket #2386.
pull/4280/head
Shivani Bhardwaj 6 years ago
parent 5fbb7cef0a
commit ac55b21184
3 changed files with 36 additions and 13 deletions
Show Stats Download Patch File Download Diff File

45
src/suricata.c
Unescape Escape View File

@ -1173,6 +1173,16 @@ static int ParseCommandLinePcapLive(SCInstance *suri, const char *in_arg)
return TM_ECODE_OK;
}
/**
* Helper function to check if log directory is writable
*/
static bool IsLogDirectoryWritable(const char* str)
{
if (access(str, W_OK) == 0)
return true;
return false;
}
static void ParseCommandLineAFL(const char *opt_name, char *opt_arg)
{
#ifdef AFLFUZZ_RULES
@ -1951,12 +1961,18 @@ static TmEcode ParseCommandLine(int argc, char** argv, SCInstance *suri)
SCLogError(SC_ERR_FATAL, "Failed to set log directory.");
return TM_ECODE_FAILED;
}
if (ConfigCheckLogDirectory(optarg) != TM_ECODE_OK) {
if (ConfigCheckLogDirectoryExists(optarg) != TM_ECODE_OK) {
SCLogError(SC_ERR_LOGDIR_CMDLINE, "The logging directory \"%s\""
" supplied at the commandline (-l %s) doesn't "
"exist. Shutting down the engine.", optarg, optarg);
return TM_ECODE_FAILED;
}
if (!IsLogDirectoryWritable(optarg)) {
SCLogError(SC_ERR_LOGDIR_CMDLINE, "The logging directory \"%s\""
" supplied at the commandline (-l %s) is not "
"writable. Shutting down the engine.", optarg, optarg);
return TM_ECODE_FAILED;
}
suri->set_logdir = true;
break;
@ -2757,16 +2773,6 @@ static int PostConfLoadedSetup(SCInstance *suri)
}
}
/* Check for the existance of the default logging directory which we pick
* from suricata.yaml. If not found, shut the engine down */
suri->log_dir = ConfigGetLogDirectory();
if (ConfigCheckLogDirectory(suri->log_dir) != TM_ECODE_OK) {
SCLogError(SC_ERR_LOGDIR_CONFIG, "The logging directory \"%s\" "
"supplied by %s (default-log-dir) doesn't exist. "
"Shutting down the engine", suri->log_dir, suri->conf_filename);
SCReturnInt(TM_ECODE_FAILED);
}
if (ConfigGetCaptureValue(suri) != TM_ECODE_OK) {
SCReturnInt(TM_ECODE_FAILED);
@ -2831,6 +2837,23 @@ static int PostConfLoadedSetup(SCInstance *suri)
if (InitSignalHandler(suri) != TM_ECODE_OK)
SCReturnInt(TM_ECODE_FAILED);
/* Check for the existance of the default logging directory which we pick
* from suricata.yaml. If not found, shut the engine down */
suri->log_dir = ConfigGetLogDirectory();
if (ConfigCheckLogDirectoryExists(suri->log_dir) != TM_ECODE_OK) {
SCLogError(SC_ERR_LOGDIR_CONFIG, "The logging directory \"%s\" "
"supplied by %s (default-log-dir) doesn't exist. "
"Shutting down the engine", suri->log_dir, suri->conf_filename);
SCReturnInt(TM_ECODE_FAILED);
}
if (!IsLogDirectoryWritable(suri->log_dir)) {
SCLogError(SC_ERR_LOGDIR_CONFIG, "The logging directory \"%s\" "
"supplied by %s (default-log-dir) is not writable. "
"Shutting down the engine", suri->log_dir, suri->conf_filename);
SCReturnInt(TM_ECODE_FAILED);
}
#ifdef HAVE_NSS
if (suri->run_mode != RUNMODE_CONF_TEST) {

2
src/util-conf.c
Unescape Escape View File

@ -51,7 +51,7 @@ const char *ConfigGetLogDirectory()
return log_dir;
}
TmEcode ConfigCheckLogDirectory(const char *log_dir)
TmEcode ConfigCheckLogDirectoryExists(const char *log_dir)
{
SCEnter();
#ifdef OS_WIN32

2
src/util-conf.h
Unescape Escape View File

@ -29,7 +29,7 @@
TmEcode ConfigSetLogDirectory(char *name);
const char *ConfigGetLogDirectory(void);
TmEcode ConfigCheckLogDirectory(const char *log_dir);
TmEcode ConfigCheckLogDirectoryExists(const char *log_dir);
TmEcode ConfigSetDataDirectory(char *name);
const char *ConfigGetDataDirectory(void);

Write Preview
Loading…
Cancel
Save