647 lines
15 KiB
C
647 lines
15 KiB
C
/* $NetBSD: newsyslog.c,v 1.24 2000/07/07 14:09:41 ad Exp $ */
|
|
|
|
/*
|
|
* Copyright (c) 1999, 2000 Andrew Doran <ad@NetBSD.org>
|
|
* All rights reserved.
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
* SUCH DAMAGE.
|
|
*
|
|
*/
|
|
|
|
/*
|
|
* This file contains changes from the Open Software Foundation.
|
|
*/
|
|
|
|
/*
|
|
* Copyright 1988, 1989 by the Massachusetts Institute of Technology
|
|
*
|
|
* Permission to use, copy, modify, and distribute this software
|
|
* and its documentation for any purpose and without fee is
|
|
* hereby granted, provided that the above copyright notice
|
|
* appear in all copies and that both that copyright notice and
|
|
* this permission notice appear in supporting documentation,
|
|
* and that the names of M.I.T. and the M.I.T. S.I.P.B. not be
|
|
* used in advertising or publicity pertaining to distribution
|
|
* of the software without specific, written prior permission.
|
|
* M.I.T. and the M.I.T. S.I.P.B. make no representations about
|
|
* the suitability of this software for any purpose. It is
|
|
* provided "as is" without express or implied warranty.
|
|
*
|
|
*/
|
|
|
|
/*
|
|
* newsyslog(1) - a program to roll over log files provided that specified
|
|
* critera are met, optionally preserving a number of historical log files.
|
|
*
|
|
* XXX too much size_t fsckage.
|
|
*/
|
|
|
|
#include <sys/cdefs.h>
|
|
#ifndef lint
|
|
__RCSID("$NetBSD: newsyslog.c,v 1.24 2000/07/07 14:09:41 ad Exp $");
|
|
#endif /* not lint */
|
|
|
|
#include <sys/types.h>
|
|
#include <sys/time.h>
|
|
#include <sys/stat.h>
|
|
#include <sys/param.h>
|
|
|
|
#include <ctype.h>
|
|
#include <fcntl.h>
|
|
#include <grp.h>
|
|
#include <pwd.h>
|
|
#include <signal.h>
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <stdarg.h>
|
|
#include <string.h>
|
|
#include <time.h>
|
|
#include <unistd.h>
|
|
#include <errno.h>
|
|
#include <err.h>
|
|
#include <util.h>
|
|
#include <paths.h>
|
|
|
|
#include "pathnames.h"
|
|
|
|
#define PRINFO(x) ((void)(verbose ? printf x : 0))
|
|
|
|
#define CE_COMPACT 1 /* Compact the achived log files */
|
|
#define CE_BINARY 2 /* Logfile is a binary file/non-syslog */
|
|
#define CE_NOSIGNAL 4 /* Don't send a signal when trimmed */
|
|
#define CE_CREATE 8 /* Create log file if none exists */
|
|
|
|
struct conf_entry {
|
|
uid_t uid; /* Owner of log */
|
|
gid_t gid; /* Group of log */
|
|
mode_t mode; /* File permissions */
|
|
int numhist; /* Number of historical logs to keep */
|
|
size_t maxsize; /* Maximum log size */
|
|
int maxage; /* Hours between log trimming */
|
|
int flags; /* Flags (CE_*) */
|
|
int signum; /* Signal to send */
|
|
char pidfile[MAXPATHLEN]; /* File containing PID to signal */
|
|
char logfile[MAXPATHLEN]; /* Path to log file */
|
|
};
|
|
|
|
int verbose = 0; /* Be verbose */
|
|
int noaction = 0; /* Take no real action */
|
|
char hostname[MAXHOSTNAMELEN + 1]; /* Hostname, stripped of domain */
|
|
|
|
int main(int, char **);
|
|
int parse(struct conf_entry *, FILE *, size_t *);
|
|
|
|
void log_create(struct conf_entry *);
|
|
void log_examine(struct conf_entry *, int);
|
|
void log_trim(struct conf_entry *);
|
|
void log_trimmed(struct conf_entry *);
|
|
|
|
int getsig(const char *);
|
|
int isnumber(const char *);
|
|
int parseuserspec(const char *, struct passwd **, struct group **);
|
|
pid_t readpidfile(const char *);
|
|
void usage(void);
|
|
|
|
/*
|
|
* Program entry point.
|
|
*/
|
|
int
|
|
main(int argc, char **argv)
|
|
{
|
|
struct conf_entry ent;
|
|
FILE *fd;
|
|
char *p, *cfile;
|
|
int c, force, needroot, mutex;
|
|
size_t lineno;
|
|
uid_t euid;
|
|
pid_t oldpid;
|
|
|
|
force = 0;
|
|
needroot = 1;
|
|
mutex = 1;
|
|
cfile = _PATH_NEWSYSLOGCONF;
|
|
|
|
gethostname(hostname, sizeof(hostname));
|
|
hostname[sizeof(hostname) - 1] = '\0';
|
|
|
|
/* Truncate domain */
|
|
if ((p = strchr(hostname, '.')) != NULL)
|
|
*p = '\0';
|
|
|
|
/* Parse command line options */
|
|
while ((c = getopt(argc, argv, "f:Fmnrv")) != -1) {
|
|
switch (c) {
|
|
case 'm':
|
|
mutex = 0;
|
|
break;
|
|
case 'n':
|
|
noaction = 1;
|
|
break;
|
|
case 'r':
|
|
needroot = 0;
|
|
break;
|
|
case 'v':
|
|
verbose = 1;
|
|
break;
|
|
case 'f':
|
|
cfile = optarg;
|
|
break;
|
|
case 'F':
|
|
force = 1;
|
|
break;
|
|
default:
|
|
usage();
|
|
}
|
|
}
|
|
|
|
euid = geteuid();
|
|
if (needroot && euid != 0)
|
|
errx(EXIT_FAILURE, "must be run as root");
|
|
|
|
/* Prevent multiple instances if running as root */
|
|
if (euid == 0) {
|
|
if (mutex) {
|
|
oldpid = readpidfile("newsyslog.pid");
|
|
if (oldpid != (pid_t)-1)
|
|
errx(EXIT_FAILURE, "already running (pid %ld)",
|
|
(long)oldpid);
|
|
}
|
|
pidfile("newsyslog");
|
|
}
|
|
|
|
if (strcmp(cfile, "-") == 0)
|
|
fd = stdin;
|
|
else if ((fd = fopen(cfile, "rt")) == NULL)
|
|
err(EXIT_FAILURE, "%s", cfile);
|
|
|
|
for (lineno = 0; !parse(&ent, fd, &lineno);)
|
|
log_examine(&ent, force);
|
|
|
|
if (fd != stdin)
|
|
fclose(fd);
|
|
|
|
exit(EXIT_SUCCESS);
|
|
/* NOTREACHED */
|
|
}
|
|
|
|
/*
|
|
* Parse a single line from the configuration file.
|
|
*/
|
|
int
|
|
parse(struct conf_entry *log, FILE *fd, size_t *_lineno)
|
|
{
|
|
char *line, *q, **ap, *argv[10];
|
|
struct passwd *pw;
|
|
struct group *gr;
|
|
int nf, lineno, i;
|
|
|
|
if ((line = fparseln(fd, NULL, _lineno, NULL, 0)) == NULL)
|
|
return (-1);
|
|
lineno = (int)*_lineno;
|
|
|
|
for (ap = argv, nf = 0; (*ap = strsep(&line, " \t")) != NULL;)
|
|
if (**ap != '\0') {
|
|
if (++nf == sizeof(argv) / sizeof(argv[0])) {
|
|
warnx("config line %d: too many fields",
|
|
lineno);
|
|
return (-1);
|
|
}
|
|
ap++;
|
|
}
|
|
|
|
if (nf == 0)
|
|
return (0);
|
|
|
|
if (nf < 6)
|
|
errx(EXIT_FAILURE, "config line %d: too few fields", lineno);
|
|
|
|
ap = argv;
|
|
strlcpy(log->logfile, *ap++, sizeof(log->logfile));
|
|
|
|
if (strchr(*ap, ':') != NULL) {
|
|
if (parseuserspec(*ap++, &pw, &gr)) {
|
|
warnx("config line %d: unknown user/group", lineno);
|
|
return (-1);
|
|
}
|
|
log->uid = pw->pw_uid;
|
|
log->gid = gr->gr_gid;
|
|
if (nf < 7)
|
|
errx(EXIT_FAILURE, "config line %d: too few fields",
|
|
lineno);
|
|
}
|
|
|
|
if (sscanf(*ap++, "%o", &i) != 1) {
|
|
warnx("config line %d: bad permissions", lineno);
|
|
return (-1);
|
|
}
|
|
log->mode = (mode_t)i;
|
|
|
|
if (sscanf(*ap++, "%d", &log->numhist) != 0) {
|
|
warnx("config line %d: bad log count", lineno);
|
|
return (-1);
|
|
}
|
|
|
|
if (isdigit(**ap))
|
|
log->maxsize = atoi(*ap);
|
|
else if (**ap == '*')
|
|
log->maxsize = (size_t)-1;
|
|
else {
|
|
warnx("config line %d: bad log size", lineno);
|
|
return (-1);
|
|
}
|
|
ap++;
|
|
|
|
if (isdigit(**ap))
|
|
log->maxage = atoi(*ap);
|
|
else if (**ap == '*')
|
|
log->maxage = -1;
|
|
else {
|
|
warnx("config line %d: bad log age", lineno);
|
|
return (-1);
|
|
}
|
|
ap++;
|
|
|
|
log->flags = 0;
|
|
for (q = *ap++; q != NULL && *q != '\0' && !isspace(*q); q++) {
|
|
switch (tolower(*q)) {
|
|
case 'b':
|
|
log->flags |= CE_BINARY;
|
|
break;
|
|
case 'c':
|
|
log->flags |= CE_CREATE;
|
|
break;
|
|
case 'n':
|
|
log->flags |= CE_NOSIGNAL;
|
|
break;
|
|
case 'z':
|
|
log->flags |= CE_COMPACT;
|
|
break;
|
|
case '-':
|
|
break;
|
|
default:
|
|
warnx("config line %d: bad flags", lineno);
|
|
return (-1);
|
|
}
|
|
}
|
|
|
|
if (*ap != NULL && **ap == '/')
|
|
strlcpy(log->pidfile, *ap++, sizeof(log->pidfile));
|
|
else
|
|
log->pidfile[0] = '\0';
|
|
|
|
if (*ap != NULL && (log->signum = getsig(*ap++)) < 0) {
|
|
warnx("config line %d: bad signal type", lineno);
|
|
return (-1);
|
|
} else
|
|
log->signum = SIGHUP;
|
|
|
|
return (0);
|
|
}
|
|
|
|
/*
|
|
* Examine a log file. If the trim conditions are met, call log_trim() to
|
|
* trim the log file.
|
|
*/
|
|
void
|
|
log_examine(struct conf_entry *ent, int force)
|
|
{
|
|
struct stat sb;
|
|
size_t size;
|
|
int modtime;
|
|
char tmp[MAXPATHLEN];
|
|
time_t now;
|
|
|
|
if (ent->logfile[0] == '\0')
|
|
return;
|
|
if (stat(ent->logfile, &sb) < 0) {
|
|
if (errno == ENOENT && (ent->flags & CE_CREATE) != 0) {
|
|
PRINFO(("%s: no file, creating\n", ent->logfile));
|
|
log_create(ent);
|
|
errno = 0;
|
|
stat(ent->logfile, &sb);
|
|
}
|
|
|
|
if (errno != 0) {
|
|
PRINFO(("%s: %s\n", ent->logfile, strerror(errno)));
|
|
return;
|
|
}
|
|
}
|
|
|
|
if (verbose) {
|
|
if ((ent->flags & CE_COMPACT) != 0)
|
|
PRINFO(("%s <%dZ>: ", ent->logfile, ent->numhist));
|
|
else
|
|
PRINFO(("%s <%d>: ", ent->logfile, ent->numhist));
|
|
}
|
|
|
|
size = ((size_t)sb.st_blocks * S_BLKSIZE) >> 10;
|
|
|
|
now = time(NULL);
|
|
strlcpy(tmp, ent->logfile, sizeof(tmp));
|
|
strlcat(tmp, ".0", sizeof(tmp));
|
|
if (stat(tmp, &sb) < 0) {
|
|
strlcat(tmp, ".gz", sizeof(tmp));
|
|
if (stat(tmp, &sb) < 0)
|
|
modtime = -1;
|
|
else
|
|
modtime = (int)(now - sb.st_mtime + 1800) / 3600;
|
|
} else
|
|
modtime = (int)(now - sb.st_mtime + 1800) / 3600;
|
|
|
|
if (verbose) {
|
|
if (ent->maxsize != (size_t)-1)
|
|
PRINFO(("size (Kb): %d [%d] ", size, ent->maxsize));
|
|
if (ent->maxage > 0)
|
|
PRINFO((" age (hr): %d [%d] ", modtime, ent->maxage));
|
|
}
|
|
|
|
/*
|
|
* Note: if maxage is used as a trim condition, we need at least one
|
|
* historical log file to determine the `age' of the active log file.
|
|
*/
|
|
if ((ent->maxage > 0 && (modtime >= ent->maxage || modtime < 0)) ||
|
|
size >= ent->maxsize || force) {
|
|
PRINFO(("--> trimming log....\n"));
|
|
log_trim(ent);
|
|
} else
|
|
PRINFO(("--> skipping\n"));
|
|
}
|
|
|
|
/*
|
|
* Trim the specified log file.
|
|
*/
|
|
void
|
|
log_trim(struct conf_entry *log)
|
|
{
|
|
char file1[MAXPATHLEN], file2[MAXPATHLEN];
|
|
char zfile1[MAXPATHLEN], zfile2[MAXPATHLEN];
|
|
int i;
|
|
struct stat st;
|
|
pid_t pid;
|
|
|
|
/* Remove oldest log */
|
|
snprintf(file1, sizeof(file1), "%s.%d", log->logfile,
|
|
log->numhist - 1);
|
|
strcpy(zfile1, file1);
|
|
strlcat(zfile1, ".gz", sizeof(zfile1));
|
|
|
|
PRINFO(("rm -f %s\n", file1));
|
|
unlink(file1);
|
|
PRINFO(("rm -f %s\n", zfile1));
|
|
unlink(zfile1);
|
|
|
|
/* Move down log files. */
|
|
for (i = log->numhist - 1; i != 0; i--) {
|
|
strcpy(file2, file1);
|
|
snprintf(file1, sizeof(file1), "%s.%d", log->logfile, i - 1);
|
|
strcpy(zfile1, file1);
|
|
strcpy(zfile2, file2);
|
|
|
|
if (lstat(file1, &st) != 0) {
|
|
strlcat(zfile1, ".gz", sizeof(zfile1));
|
|
strlcat(zfile2, ".gz", sizeof(zfile2));
|
|
if (lstat(zfile1, &st) != 0)
|
|
continue;
|
|
}
|
|
|
|
PRINFO(("mv %s %s\n", zfile1, zfile2));
|
|
rename(zfile1, zfile2);
|
|
PRINFO(("chmod %o %s\n", log->mode, zfile2));
|
|
chmod(zfile2, log->mode);
|
|
PRINFO(("chown %d.%d %s\n", log->uid, log->gid, zfile2));
|
|
chown(zfile2, log->uid, log->gid);
|
|
}
|
|
|
|
if ((log->flags & CE_BINARY) == 0)
|
|
log_trimmed(log);
|
|
|
|
if (log->numhist == 0) {
|
|
PRINFO(("rm %s\n", log->logfile));
|
|
unlink(log->logfile);
|
|
} else {
|
|
PRINFO(("mv %s to %s\n", log->logfile, file1));
|
|
rename(log->logfile, file1);
|
|
}
|
|
|
|
PRINFO(("Start new log...\n"));
|
|
log_create(log);
|
|
|
|
if ((log->flags & CE_BINARY) == 0)
|
|
log_trimmed(log);
|
|
|
|
PRINFO(("chmod %o %s\n", log->mode, log->logfile));
|
|
chmod(log->logfile, log->mode);
|
|
|
|
if ((log->flags & CE_NOSIGNAL) == 0) {
|
|
if (log->pidfile[0] != '\0')
|
|
pid = readpidfile(log->pidfile);
|
|
else
|
|
pid = readpidfile(_PATH_SYSLOGDPID);
|
|
|
|
if (pid != (pid_t)-1) {
|
|
PRINFO(("kill -%s %d\n", sys_signame[log->signum],
|
|
pid));
|
|
if (kill(pid, log->signum))
|
|
warn("warning - could not signal daemon");
|
|
}
|
|
}
|
|
|
|
if ((log->flags & CE_COMPACT) != 0) {
|
|
PRINFO(("gzip %s.0\n", log->logfile));
|
|
|
|
if ((pid = fork()) < 0)
|
|
err(EXIT_FAILURE, "fork");
|
|
else if (pid == 0) {
|
|
snprintf(file1, sizeof(file1), "%s.0", log->logfile);
|
|
execl(_PATH_GZIP, "gzip", "-f", file1, NULL);
|
|
err(EXIT_FAILURE, _PATH_GZIP);
|
|
}
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Write an entry to the log file recording the fact that it was trimmed.
|
|
*/
|
|
void
|
|
log_trimmed(struct conf_entry *log)
|
|
{
|
|
FILE *fd;
|
|
time_t now;
|
|
char *daytime;
|
|
|
|
if ((fd = fopen(log->logfile, "at")) == NULL)
|
|
err(EXIT_FAILURE, "%s", log->logfile);
|
|
|
|
now = time(NULL);
|
|
daytime = ctime(&now) + 4;
|
|
daytime[15] = '\0';
|
|
|
|
fprintf(fd, "%s %s newsyslog[%ld]: log file turned over\n", daytime,
|
|
hostname, (u_long)getpid());
|
|
fclose(fd);
|
|
}
|
|
|
|
/*
|
|
* Create a new log file.
|
|
*/
|
|
void
|
|
log_create(struct conf_entry *ent)
|
|
{
|
|
int fd;
|
|
|
|
if ((fd = creat(ent->logfile, ent->mode)) < 0)
|
|
err(EXIT_FAILURE, "%s", ent->logfile);
|
|
if (fchown(fd, ent->uid, ent->gid) < 0)
|
|
err(EXIT_FAILURE, "%s", ent->logfile);
|
|
if (close(fd) < 0)
|
|
err(EXIT_FAILURE, "%s", ent->logfile);
|
|
}
|
|
|
|
/*
|
|
* Display program usage information.
|
|
*/
|
|
void
|
|
usage(void)
|
|
{
|
|
|
|
fprintf(stderr, "usage: newsyslog [-Frv] [-f config-file]\n");
|
|
exit(EXIT_FAILURE);
|
|
}
|
|
|
|
/*
|
|
* Return non-zero if a string represents a decimal value.
|
|
*/
|
|
int
|
|
isnumber(const char *string)
|
|
{
|
|
|
|
while (isdigit(*string))
|
|
string++;
|
|
|
|
return (*string == '\0');
|
|
}
|
|
|
|
/*
|
|
* Given a signal name, attempt to find the corresponding signal number.
|
|
*/
|
|
int
|
|
getsig(const char *sig)
|
|
{
|
|
char *p;
|
|
int n;
|
|
|
|
if (isnumber(sig)) {
|
|
n = (int)strtol(sig, &p, 0);
|
|
if (p != '\0' || (unsigned)n >= NSIG)
|
|
return (-1);
|
|
return (n);
|
|
}
|
|
|
|
if (strncasecmp(sig, "sig", 3) == 0)
|
|
sig += 3;
|
|
for (n = 1; n < NSIG; n++)
|
|
if (strcasecmp(sys_signame[n], sig) == 0)
|
|
return (n);
|
|
return (-1);
|
|
}
|
|
|
|
/*
|
|
* Given a path to a PID file, return the PID contained within.
|
|
*/
|
|
pid_t
|
|
readpidfile(const char *file)
|
|
{
|
|
FILE *fd;
|
|
char line[BUFSIZ];
|
|
char tmp[MAXPATHLEN];
|
|
pid_t pid;
|
|
|
|
if (file[0] != '/') {
|
|
strcpy(tmp, _PATH_VARRUN);
|
|
strlcat(tmp, file, sizeof(tmp));
|
|
} else
|
|
strlcpy(tmp, file, sizeof(tmp));
|
|
|
|
if ((fd = fopen(tmp, "rt")) == NULL) {
|
|
warn("%s", tmp);
|
|
return (-1);
|
|
}
|
|
|
|
if (fgets(line, sizeof(line) - 1, fd) != NULL) {
|
|
line[sizeof(line) - 1] = '\0';
|
|
pid = (pid_t)strtol(line, NULL, 0);
|
|
}
|
|
|
|
fclose(fd);
|
|
return (pid);
|
|
}
|
|
|
|
/*
|
|
* Parse a user:group specification.
|
|
*
|
|
* XXX This is over the top for newsyslog(1). It should be moved to libutil.
|
|
*/
|
|
int
|
|
parseuserspec(const char *name, struct passwd **pw, struct group **gr)
|
|
{
|
|
char buf[MAXLOGNAME * 2 + 2], *group;
|
|
|
|
strlcpy(buf, name, sizeof(buf));
|
|
*gr = NULL;
|
|
|
|
/*
|
|
* Before attempting to use '.' as a separator, see if the whole
|
|
* string resolves as a user name or UID.
|
|
*/
|
|
if ((*pw = getpwnam(buf)) != NULL) {
|
|
*gr = getgrgid((*pw)->pw_gid);
|
|
return (0);
|
|
}
|
|
|
|
/* Split the user and group name. */
|
|
if ((group = strchr(buf, ':')) != NULL ||
|
|
(group = strchr(buf, '.')) != NULL)
|
|
*group++ = '\0';
|
|
|
|
if (isnumber(buf))
|
|
*pw = getpwuid((uid_t)atoi(buf));
|
|
else
|
|
*pw = getpwnam(buf);
|
|
|
|
/*
|
|
* Find the group. If a group wasn't specified, use the user's
|
|
* `natural' group. We get to this point even if no user was found.
|
|
* This is to allow the caller to get a better idea of what went
|
|
* wrong, if anything.
|
|
*/
|
|
if (group == NULL || *group == '\0') {
|
|
if (*pw == NULL)
|
|
return (-1);
|
|
*gr = getgrgid((*pw)->pw_gid);
|
|
} else if (isnumber(group))
|
|
*gr = getgrgid((gid_t)atoi(group));
|
|
else
|
|
*gr = getgrnam(group);
|
|
|
|
return (*gr != NULL ? 0 : -1);
|
|
}
|