aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
main-7.0.x
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'fbcdd2ec26'
${ noResults }
suricata/src/win32-service.c

396 lines
10 KiB
C
Raw Blame History

/* Copyright (C) 2007-2010 Open Information Security Foundation
*
* You can copy, redistribute or modify this Program under the terms of
* the GNU General Public License version 2 as published by the Free
* Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* version 2 along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
* 02110-1301, USA.
*/
/**
* \file
*
* \author Ondrej Slanina <oslanina@kerio.com>
*
* Windows service functions
*/
#ifdef OS_WIN32
#include "suricata-common.h"
#include "suricata.h"
#include "win32-service.h"
#include "util-debug.h"
static SERVICE_STATUS_HANDLE service_status_handle = 0;
static int service_argc = 0;
static char **service_argv = NULL;
static int service_initialized = 0;
int main(int argc, char **argv);
/**
* \brief Detect if running as service or console app
*/
int SCRunningAsService(void)
{
HANDLE h = INVALID_HANDLE_VALUE;
if ((h = CreateFile("CONIN$", GENERIC_READ | GENERIC_WRITE, FILE_SHARE_READ | FILE_SHARE_WRITE, NULL, OPEN_EXISTING, 0, 0)) == INVALID_HANDLE_VALUE) {
SCLogInfo("Running as service: yes");
return 1;
}
CloseHandle(h);
SCLogInfo("Running as service: no");
return 0;
}
/**
* \brief Detect if running as service or console app
*/
static void SCAtExitHandler(void)
{
SERVICE_STATUS status = {
SERVICE_WIN32,
SERVICE_STOPPED,
SERVICE_ACCEPT_STOP | SERVICE_ACCEPT_SHUTDOWN,
NO_ERROR,
NO_ERROR,
0,
0
};
SCLogInfo("Exit handler called.");
/* mark service as stopped */
if (!SetServiceStatus(service_status_handle, &status)) {
SCLogWarning(SC_ERR_SVC, "Can't set service status: %d", (int)GetLastError());
} else {
SCLogInfo("Service status set to: SERVICE_STOPPED");
}
}
/**
* \brief Service handler
*/
static DWORD WINAPI SCServiceCtrlHandlerEx(DWORD code, DWORD etype, LPVOID edata, LPVOID context)
{
if (code == SERVICE_CONTROL_SHUTDOWN || code == SERVICE_CONTROL_STOP) {
SERVICE_STATUS status = {
SERVICE_WIN32,
SERVICE_STOP_PENDING,
SERVICE_ACCEPT_STOP | SERVICE_ACCEPT_SHUTDOWN,
NO_ERROR,
NO_ERROR,
0,
0
};
SCLogInfo("Service control handler called with %s control code.",
((code == SERVICE_CONTROL_SHUTDOWN) ? ("SERVICE_CONTROL_SHUTDOWN") : ("SERVICE_CONTROL_STOP")));
/* mark service as stop pending */
if (!SetServiceStatus(service_status_handle, &status)) {
SCLogWarning(SC_ERR_SVC, "Can't set service status: %d", (int)GetLastError());
} else {
SCLogInfo("Service status set to: SERVICE_STOP_PENDING");
}
/* mark engine as stopping */
EngineStop();
return NO_ERROR;
}
return ERROR_CALL_NOT_IMPLEMENTED;
}
/**
* \brief Service main function
*/
static void WINAPI SCServiceMain(uint32_t argc, char** argv)
{
SERVICE_STATUS status = {
SERVICE_WIN32,
SERVICE_RUNNING,
SERVICE_ACCEPT_STOP | SERVICE_ACCEPT_SHUTDOWN,
NO_ERROR,
NO_ERROR,
0,
0
};
if ((service_status_handle = RegisterServiceCtrlHandlerEx((char *)PROG_NAME, SCServiceCtrlHandlerEx, NULL)) == (SERVICE_STATUS_HANDLE)0) {
SCLogError(SC_ERR_SVC, "Can't register service control handler: %d", (int)GetLastError());
return;
}
/* register exit handler */
if (atexit(SCAtExitHandler)) {
SCLogWarning(SC_ERR_SVC, "Can't register exit handler: %d", (int)GetLastError());
}
/* mark service as running immediately */
if (!SetServiceStatus(service_status_handle, &status)) {
SCLogWarning(SC_ERR_SVC, "Can't set service status: %d", (int)GetLastError());
} else {
SCLogInfo("Service status set to: SERVICE_RUNNING");
}
SCLogInfo("Entering main function...");
/* suricata initialization -> main loop -> uninitialization */
main(service_argc, service_argv);
SCLogInfo("Leaving main function.");
/* mark service as stopped */
status.dwCurrentState = SERVICE_STOPPED;
if (!SetServiceStatus(service_status_handle, &status)) {
SCLogWarning(SC_ERR_SVC, "Can't set service status: %d", (int)GetLastError());
} else {
SCLogInfo("Service status set to: SERVICE_STOPPED");
}
}
/**
* \brief Init suricata service
*
* \param argc num of arguments
* \param argv passed arguments
*/
int SCServiceInit(int argc, char **argv)
{
SERVICE_TABLE_ENTRY DispatchTable[] = {
{(char *)PROG_NAME, (LPSERVICE_MAIN_FUNCTION) SCServiceMain},
{NULL, NULL}
};
/* continue with suricata initialization */
if (service_initialized) {
SCLogWarning(SC_ERR_SVC, "Service is already initialized.");
return 0;
}
/* save args */
service_argc = argc;
service_argv = argv;
service_initialized = 1;
SCLogInfo("Entering service control dispatcher...");
if (!StartServiceCtrlDispatcher(DispatchTable)) {
/* exit with failure */
exit(EXIT_FAILURE);
}
SCLogInfo("Leaving service control dispatcher.");
/* exit with success */
exit(EXIT_SUCCESS);
}
/**
* \brief Install suricata as service
*
* \param argc num of arguments
* \param argv passed arguments
*/
int SCServiceInstall(int argc, char **argv)
{
char path[2048];
SC_HANDLE service = NULL;
SC_HANDLE scm = NULL;
int ret = -1;
int i = 0;
do {
memset(path, 0, sizeof(path));
if (GetModuleFileName(NULL, path, MAX_PATH) == 0 ){
SCLogError(SC_ERR_SVC, "Can't get path to service binary: %d", (int)GetLastError());
break;
}
/* skip name of binary itself */
for (i = 1; i < argc; i++) {
if ((strlen(argv[i]) <= strlen("--service-install")) && (strncmp("--service-install", argv[i], strlen(argv[i])) == 0)) {
continue;
}
strlcat(path, " ", sizeof(path) - strlen(path) - 1);
strlcat(path, argv[i], sizeof(path) - strlen(path) - 1);
}
if ((scm = OpenSCManager(NULL, NULL, SC_MANAGER_ALL_ACCESS)) == NULL) {
SCLogError(SC_ERR_SVC, "Can't open SCM: %d", (int)GetLastError());
break;
}
service = CreateService(
scm,
PROG_NAME,
PROG_NAME,
SERVICE_ALL_ACCESS,
SERVICE_WIN32_OWN_PROCESS,
SERVICE_DEMAND_START,
SERVICE_ERROR_NORMAL,
path,
NULL,
NULL,
NULL,
NULL,
NULL);
if (service == NULL) {
SCLogError(SC_ERR_SVC, "Can't create service: %d", (int)GetLastError());
break;
}
ret = 0;
} while(0);
if (service) {
CloseServiceHandle(service);
}
if (scm) {
CloseServiceHandle(scm);
}
return ret;
}
/**
* \brief Remove suricata service
*
* \param argc num of arguments
* \param argv passed arguments
*/
int SCServiceRemove(int argc, char **argv)
{
SERVICE_STATUS status;
SC_HANDLE service = NULL;
SC_HANDLE scm = NULL;
int ret = -1;
do {
if ((scm = OpenSCManager(NULL, NULL, SC_MANAGER_ALL_ACCESS)) == NULL) {
SCLogError(SC_ERR_SVC, "Can't open SCM: %d", (int)GetLastError());
break;
}
if ((service = OpenService(scm, PROG_NAME, SERVICE_ALL_ACCESS)) == NULL) {
SCLogError(SC_ERR_SVC, "Can't open service: %d", (int)GetLastError());
break;
}
if (!QueryServiceStatus(service, &status)) {
SCLogError(SC_ERR_SVC, "Can't query service status: %d", (int)GetLastError());
break;
}
if (status.dwCurrentState != SERVICE_STOPPED) {
SCLogError(SC_ERR_SVC, "Service isn't in stopped state: %d", (int)GetLastError());
break;
}
if (!DeleteService(service)) {
SCLogError(SC_ERR_SVC, "Can't delete service: %d", (int)GetLastError());
break;
}
ret = 0;
} while(0);
if (service) {
CloseServiceHandle(service);
}
if (scm) {
CloseServiceHandle(scm);
}
return ret;
}
/**
* \brief Change suricata service startup parameters
*
* \param argc num of arguments
* \param argv passed arguments
*/
int SCServiceChangeParams(int argc, char **argv)
{
char path[2048];
SC_HANDLE service = NULL;
SC_HANDLE scm = NULL;
int ret = -1;
int i = 0;
do {
memset(path, 0, sizeof(path));
if (GetModuleFileName(NULL, path, MAX_PATH) == 0 ){
SCLogError(SC_ERR_SVC, "Can't get path to service binary: %d", (int)GetLastError());
break;
}
/* skip name of binary itself */
for (i = 1; i < argc; i++) {
if ((strlen(argv[i]) <= strlen("--service-change-params")) && (strncmp("--service-change-params", argv[i], strlen(argv[i])) == 0)) {
continue;
}
strlcat(path, " ", sizeof(path) - strlen(path) - 1);
strlcat(path, argv[i], sizeof(path) - strlen(path) - 1);
}
if ((scm = OpenSCManager(NULL, NULL, SC_MANAGER_ALL_ACCESS)) == NULL) {
SCLogError(SC_ERR_SVC, "Can't open SCM: %d", (int)GetLastError());
break;
}
if ((service = OpenService(scm, PROG_NAME, SERVICE_ALL_ACCESS)) == NULL) {
SCLogError(SC_ERR_SVC, "Can't open service: %d", (int)GetLastError());
break;
}
if (!ChangeServiceConfig(
service,
SERVICE_WIN32_OWN_PROCESS,
SERVICE_DEMAND_START,
SERVICE_ERROR_NORMAL,
path,
NULL,
NULL,
NULL,
NULL,
NULL,
PROG_NAME))
{
SCLogError(SC_ERR_SVC, "Can't change service configuration: %d", (int)GetLastError());
break;
}
ret = 0;
} while(0);
return ret;
}
#endif /* OS_WIN32 */
Reference in New Issue View Git Blame Copy Permalink