/* fwadmin.c -- eurephiadm fwadmin command: * Manages firewall profiles * * GPLv2 only - Copyright (C) 2009 * David Sommerseth * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU General Public License * as published by the Free Software Foundation; version 2 * of the License. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. * */ #include #include #include #ifdef HAVE_LIBXML2 #include #endif #define MODULE "eurephia::fwAdmin" #include #include #include #include #include #include #include #include #include #include "../argparser.h" #include "../field_print.h" #include "../xsltparser.h" #define FWADMIN_XSLT "fwadmin.xsl" void display_fwadmin_help(int page) { switch( page ) { case 'l': printf("The fwadmin list mode will show all registered firewall profiles.\n" "\n" " -v | --verbose Show more details\n" "\n" "Filters:\n" " -a | --accessprofile Numeric ID.\n" " -f | --fw-destination Reference used by the firewall\n" " -i | --uid Numeric user ID\n" " -n | --username User name\n" " -c | --certid Numeric reference to a certificate\n" " -e | --email e-mail address in certificates\n" " -d | --digest Certificate SHA1 digest\n\n"); break; default: printf("Available modes for the fwadmin command are:\n\n" " -A | --add Add a new firewall profile\n" " -D | --delete Delete a firewall profile\n" " -l | --list List available firewall profiles\n" " -h | --help Show help\n\n"); break; } } void help_fwAdmin() { display_fwadmin_help(0); } int help_fwAdmin2(eurephiaCTX *ctx, eurephiaSESSION *sess, eurephiaVALUES *cfg, int argc, char **argv) { e_options fwadminargs[] = { {"--list", "-l", 0}, {"--add", "-A", 0}, {"--delete", "-D", 0}, {NULL, NULL, 0} }; int i = 1; display_fwadmin_help(eurephia_getopt(&i, argc, argv, fwadminargs)); return 0; } int list_profiles(eurephiaCTX *ctx, eurephiaSESSION *sess, eurephiaVALUES *cfg, int argc, char **argv) { xmlDoc *profiles_xml = NULL, *srch_xml = NULL; xmlNode *fmap_n = NULL, *srch_n = NULL; char *xsltparams[] = {"view", "'list'", NULL}; int i = 0; e_options fwadminargs[] = { {"--verbose", "-v", 0}, {"--help", "-h", 0}, {"--accessprofile", "-a", 1}, {"--fw-destination", "-f", 1}, {"--uid", "-i", 1}, {"--username", "-u", 1}, {"--certid", "-c", 1}, {"--email", "-e", 1}, {"--digest", "-d", 1}, {NULL, NULL, 0} }; eurephiaXML_CreateDoc(ctx, 1, "firewall_profiles", &srch_xml, &srch_n); xmlNewProp(srch_n, (xmlChar *) "mode", (xmlChar *) "search"); fmap_n = xmlNewChild(srch_n, NULL, (xmlChar *) "fieldMapping", NULL); xmlNewProp(fmap_n, (xmlChar *) "table", (xmlChar *) "firewall_profiles"); for( i = 1; i < argc; i++ ) { switch( eurephia_getopt(&i, argc, argv, fwadminargs) ) { case 'v': xsltparams[1] = "'details'"; break; case 'a': xmlNewChild(fmap_n, NULL, (xmlChar *) "accessprofile", (xmlChar *) optargs[0]); break; case 'f': xmlNewChild(fmap_n, NULL, (xmlChar *) "fwprofile", (xmlChar *) optargs[0]); break; case 'i': xmlNewChild(fmap_n, NULL, (xmlChar *) "uid", (xmlChar *) optargs[0]); break; case 'u': xmlNewChild(fmap_n, NULL, (xmlChar *) "username", (xmlChar *) optargs[0]); break; case 'c': xmlNewChild(fmap_n, NULL, (xmlChar *) "certid", (xmlChar *) optargs[0]); break; case 'e': xmlNewChild(fmap_n, NULL, (xmlChar *) "email", (xmlChar *) optargs[0]); break; case 'd': xmlNewChild(fmap_n, NULL, (xmlChar *) "digest", (xmlChar *) optargs[0]); break; case 'h': display_fwadmin_help('l'); return 0; default: return 1; } } profiles_xml = eDBadminFirewallProfiles(ctx, srch_xml); xmlFreeDoc(srch_xml); if( profiles_xml == NULL ) { fprintf(stderr, "%s: Error retrieving firewall profiles\n", MODULE); return 1; } xslt_print_xmldoc(stdout, cfg, profiles_xml, FWADMIN_XSLT, (const char **) xsltparams); xmlFreeDoc(profiles_xml); return 0; } int cmd_fwAdmin(eurephiaCTX *ctx, eurephiaSESSION *sess, eurephiaVALUES *cfg, int argc, char **argv) { char **mode_argv; int rc = 0, i = 0, mode_argc = 0; e_options fwadminargs[] = { {"--list", "-l", 0}, {"--add", "-A", 0}, {"--delete", "-D", 0}, {"--help", "-h", 0}, {NULL, NULL, 0} }; int (*mode_fnc) (eurephiaCTX *ctx, eurephiaSESSION *sess, eurephiaVALUES *cfg, int argc, char **argv); assert((ctx != NULL) && (ctx->dbc != NULL)); mode_fnc = NULL; for( i = 1; i < argc; i++ ) { switch( eurephia_getopt(&i, argc, argv, fwadminargs) ) { case 'l': mode_fnc = list_profiles; break; case 'A': case 'D': printf("**NOT IMPLEMENTED\n"); return 1; case 'h': mode_fnc = help_fwAdmin2; default: break; } if( mode_fnc != NULL ) { break; } } // If we do not have any known mode defined, exit with error if( mode_fnc == NULL ) { fprintf(stderr, "%s: Unknown argument. No mode given\n", MODULE); return 1; } // Allocate memory for our arguments being sent to the mode function mode_argv = (char **) calloc(sizeof(char *), (argc - i)+2); assert(mode_argv != NULL); // Copy over only the arguments needed for the mode mode_argc = eurephia_arraycp(i, argc, argv, mode_argv, (argc - i)); // Call the mode function rc = mode_fnc(ctx, sess, cfg, mode_argc, mode_argv); free_nullsafe(mode_argv); return rc; }