Fix manage agents keys

[awiddersheim]

Create temporary files in a secure manner on both NIX and Windows
platforms that will be used to write client.keys and ossec.conf data to.
Then use atomic operations where possible to replace the current
versions when making updates.

On Windows, decided to hard code the location of COMSPEC instead of
pulling it from an environment variable each time. It is highly unlikely
the location of this will change but may re-examine in the future.

Since temporary files are now a possibility on agent only installs I
updated the Windows installer to include a tmp directory. Need to figure
out what is involved with doing the same on the NIX side.

[awiddersheim]

Worked a lot on this over the weekend to hopefully implement everything requested in #292. This now creates temporary files with proper permissions, writes the data to those files and replace the existing files in an atomic operation (hopefully).

Tested on RHEL6, Windows Server 2003, Windows Server 2008R2, Windows Server 2012 and Windows Server 2012R2.

I made a lot of guesses on how the Windows stuff will/should work. There are still some times where atomic operations don't happen. Specifically in the UI when the ossec.conf gets updated. A backup copy is made before the new version is put into place. This is done by doing a rename() opeartion. A CopyFile() would be better but I found that it doesn't handle copying permissions as well. I kind of ran out of time/stopped caring and I didn't want to get rid of this functionality yet so I just left that the way it was.

There was also some progress toward #182. Atleast, I hope so. I'm hoping @mstarks01 can review this a bit further but the new client.keys and ossec.conf files now have SYSTEM added to the permissions like so:

Again, I am hoping that is a step in the right direction to achieving #182. Still a lot of work to do on that front though.

Also, I am hoping this fixes #303. I think it should since cacls and Administrator are no longer used. This should now be language independent but more testing is needed to confirm.

Finally, as mentioned in the pull request, I opted toward having a tmp directory for agent only installations. I implemented the necessary stuff to make that happen on the Windows side but I'm guessing things will need to be done on the NIX side as well with install.sh. I'm not sure exactly where that would need to get done so if someone could point me in the right direction it would be appreciated.

If this pull request does get accepted and we opt to keep the tmp directory than it is likely package maintainers like @atomicturtle will need to make updates to their stuff for the next release as well.

[jrossi]

Wow - this good stuff :) some research on my end; great stuff. Thank you much.

As for tmp for I agree makes sense. To add this just look at InstallServer.sh and InstallAgent.sh.

[awiddersheim]

Thanks. Yeah, InstallAgent.sh looks like what I want. I will make updates to that tomorrow morning. Looks like travis-ci is down for maintenance so this hasn't gone through a test build yet.

[awiddersheim]

This should be all that is necessary hopefully. Let me know what you think.

[awiddersheim]

Sorry. Few more small fixes. Hopefully that is it but would really like @mstarks01 to review the permissions I have setup to see if I'm headed in the right direction or not so I can made the necessary adjustments.

[awiddersheim]

I added the tmp stuff to the InstallAgent.sh script but I'm guessing the recent Makefile stuff makes that change moot? Do I need to update this pull request?

[jrossi]

Yeah I would the new system is much better :) sorry about the double work.

[awiddersheim]

Actually, it looks like everything is already there.

https://github.com/ossec/ossec-hids/blob/master/src/Makefile#L280
https://github.com/ossec/ossec-hids/blob/master/src/Makefile#L395

[jrossi]

@cgzones is winning :)

[jrossi]

Can you merge in master to allow for clean merging and travis ci? Thank you

[awiddersheim]

Sorry the merge went a little poorly. Maybe I should have rebased instead. Only seems like the install files were affected. I can redo this pull request if you want.

[jrossi]

It's fine the issue looks to be with .old files we will be deteleting soon :)

[awiddersheim]

I did a rebase. Seems okay. I never really run into these more "complicated" situtaions with git that often so I saw an opportunity to try and learn something.

[cgzones]

I like the rebase function too.

About the char *basename_ex(char *path) function for unix:
You implemented it with return(basename(path));, but then non-gnu version might modify its argument (http://linux.die.net/man/3/basename) and if you call it with a constant string (which a expanded macro is) it might crash or result in ub).
Maybe use something like:

const char *my_basename(const char *path) {
    const char *last = NULL, *next_to_last = NULL, *it = path;

    while ((it = strchr(it, '/')) != NULL) {
        next_to_last = last;
        last = it;
        it++;
    }

    return last ? ( *(last+1) != '\0' ? last+1 : ( next_to_last ? next_to_last+1 : last ) ) : path;
}

It matches not quiet the gnu specification, but almost:
official (http://linux.die.net/man/3/basename):

path        basename
"/usr/lib"    "lib"
"/usr/"       "usr"
"usr"         "usr"
"/"           "/"
"."           "."
".."          ".."

my_basename:

path         basename
"/usr/lib"    "lib"
"/usr/"       "usr/"
"usr"         "usr"
"/"           "/"
"."           "."
".."          ".."

or

maybe replace

char *keys_file = basename_ex(AUTH_FILE);

with

char auth_file_tmp[] = AUTH_FILE;
char *keys_file = basename_ex(auth_file_tmp);

[awiddersheim]

@cgzones Good catch. I decided to go with your second suggestion since it is mentioned in the documentation you linked to.

[awiddersheim]

Anyway this can get merged into master soon? This is getting increasingly harder to merge as time goes on.

[jrossi]

Sorry yeah reviewed it the other day did not merge. My bad.

On Oct 19, 2014, at 3:06 PM, awiddersheim [email protected] wrote:

Anyway this can get merged into master soon? This is getting increasingly harder to merge as time goes on.

—
Reply to this email directly or view it on GitHub.

[awiddersheim]

Do you want to rebase onto master and merge or shall I?

[jrossi]

Just merge / rebate I will accept once it's clean.

On Oct 19, 2014, at 3:08 PM, awiddersheim [email protected] wrote:

Do you want to rebase onto master and merge or shall I?

—
Reply to this email directly or view it on GitHub.

[awiddersheim]

I am not even sure the best way to do that at this point.

[jrossi]

No problem I will do it from home.

[awiddersheim]

Actually, I will git it a shot tomorrow morning and let you know if I need help if things go south.

[jrossi]

Example of how if you want to play:

# git checkout master 
# git pull https://github.com/ossec/ossec-hids master
# git checkout fix-manage-client-keys
# git merge master 
# fix errors 
# git add files-fixed
# git commit -m "merge master" 
# git push origin fix-mange-client-keys"