Main

Timestamp:

Apr 11, 2024 1:56:27 AM (8 months ago)

Author:

vboxsync

Message:

IPRT/log,Main: Open the parent directory of the log file on Windows before we opening the log file and do any log rotating to prevent reparse hacks. bugref:10632

Location:

trunk/src/VBox/Main

Files:

: 2 edited

include/ConsoleImpl.h (modified) (2 diffs)
src-client/ConsoleImpl.cpp (modified) (7 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk/src/VBox/Main/include/ConsoleImpl.h

-              r101477
+              r104286
     /** @name Encrypted log interface
      * @{ */
+    static DECLCALLBACK(int)    i_logEncryptedOpen(PCRTLOGOUTPUTIF pIf, void *pvUser, const char *pszFilename, uint32_t fFlags);
+    static DECLCALLBACK(int)    i_logEncryptedDirCtxOpen(PCRTLOGOUTPUTIF pIf, void *pvUser, const char *pszFilename, void **pvDirCtx);
+    static DECLCALLBACK(int)    i_logEncryptedDirCtxClose(PCRTLOGOUTPUTIF pIf, void *pvUser, void *pvDirCtx);
+    static DECLCALLBACK(int)    i_logEncryptedDelete(PCRTLOGOUTPUTIF pIf, void *pvUser, void *pvDirCtx, const char *pszFilename);
+    static DECLCALLBACK(int)    i_logEncryptedRename(PCRTLOGOUTPUTIF pIf, void *pvUser, void *pvDirCtx,
+                                                     const char *pszFilenameOld, const char *pszFilenameNew, uint32_t fFlags);
+    static DECLCALLBACK(int)    i_logEncryptedOpen(PCRTLOGOUTPUTIF pIf, void *pvUser, void *pvDirCtx, const char *pszFilename, uint32_t fFlags);
     static DECLCALLBACK(int)    i_logEncryptedClose(PCRTLOGOUTPUTIF pIf, void *pvUser);
-    static DECLCALLBACK(int)    i_logEncryptedDelete(PCRTLOGOUTPUTIF pIf, void *pvUser, const char *pszFilename);
-    static DECLCALLBACK(int)    i_logEncryptedRename(PCRTLOGOUTPUTIF pIf, void *pvUser, const char *pszFilenameOld,
-                                                     const char *pszFilenameNew, uint32_t fFlags);
     static DECLCALLBACK(int)    i_logEncryptedQuerySize(PCRTLOGOUTPUTIF pIf, void *pvUser, uint64_t *pcbSize);
     static DECLCALLBACK(int)    i_logEncryptedWrite(PCRTLOGOUTPUTIF pIf, void *pvUser, const void *pvBuf,
                                                     size_t cbWrite, size_t *pcbWritten);
     static DECLCALLBACK(int)    i_logEncryptedFlush(PCRTLOGOUTPUTIF pIf, void *pvUser);
+    /** The logging output interface for encrypted logs. */
+    static RTLOGOUTPUTIF const  s_ConsoleEncryptedLogOutputIf;
     /** @} */
 #endif
 …
     /** The file handle of the encrypted log. */
     RTVFSFILE                           m_hVfsFileLog;
-    /** The logging output interface for encrypted logs. */
-    RTLOGOUTPUTIF                       m_LogOutputIf;
     /** The log file key ID. */
     Utf8Str                             m_strLogKeyId;

trunk/src/VBox/Main/src-client/ConsoleImpl.cpp

-              r103856
+              r104286
+}
 #ifdef VBOX_WITH_FULL_VM_ENCRYPTION
+/*static*/
+DECLCALLBACK(int) Console::i_logEncryptedOpen(PCRTLOGOUTPUTIF pIf, void *pvUser, const char *pszFilename, uint32_t fFlags)
+{
+    RT_NOREF(pIf);
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedDirCtxOpen(PCRTLOGOUTPUTIF pIf, void *pvUser, const char *pszFilename, void **ppvDirCtx)
+{
+    RT_NOREF(pIf, pvUser, pszFilename, ppvDirCtx);
+    *ppvDirCtx = (void *)(intptr_t)22;
+    return VINF_SUCCESS;
+}
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedDirCtxClose(PCRTLOGOUTPUTIF pIf, void *pvUser, void *pvDirCtx)
+{
+    RT_NOREF(pIf, pvUser, pvDirCtx);
+    Assert((intptr_t)pvDirCtx == 22);
+    return VINF_SUCCESS;
+}
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedDelete(PCRTLOGOUTPUTIF pIf, void *pvUser, void *pvDirCtx, const char *pszFilename)
+{
+    RT_NOREF(pIf, pvDirCtx, pvUser);
+    return RTFileDelete(pszFilename);
+}
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedRename(PCRTLOGOUTPUTIF pIf, void *pvUser, void *pvDirCtx,
+                              const char *pszFilenameOld, const char *pszFilenameNew, uint32_t fFlags)
+{
+    RT_NOREF(pIf, pvDirCtx, pvUser);
+    return RTFileRename(pszFilenameOld, pszFilenameNew, fFlags);
+}
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedOpen(PCRTLOGOUTPUTIF pIf, void *pvUser, void *pvDirCtx, const char *pszFilename, uint32_t fFlags)
+{
+    RT_NOREF(pIf, pvDirCtx);
     Console *pConsole = static_cast<Console *>(pvUser);
     RTVFSFILE hVfsFile = NIL_RTVFSFILE;
 …
 /*static*/
 DECLCALLBACK(int) Console::i_logEncryptedClose(PCRTLOGOUTPUTIF pIf, void *pvUser)
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedClose(PCRTLOGOUTPUTIF pIf, void *pvUser)
+{
     RT_NOREF(pIf);
 …
+/*static*/
+DECLCALLBACK(int) Console::i_logEncryptedDelete(PCRTLOGOUTPUTIF pIf, void *pvUser, const char *pszFilename)
+{
+    RT_NOREF(pIf, pvUser);
+    return RTFileDelete(pszFilename);
+}
+/*static*/
+DECLCALLBACK(int) Console::i_logEncryptedRename(PCRTLOGOUTPUTIF pIf, void *pvUser, const char *pszFilenameOld,
+                                                const char *pszFilenameNew, uint32_t fFlags)
+{
+    RT_NOREF(pIf, pvUser);
+    return RTFileRename(pszFilenameOld, pszFilenameNew, fFlags);
+}
+/*static*/
+DECLCALLBACK(int) Console::i_logEncryptedQuerySize(PCRTLOGOUTPUTIF pIf, void *pvUser, uint64_t *pcbSize)
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedQuerySize(PCRTLOGOUTPUTIF pIf, void *pvUser, uint64_t *pcbSize)
+{
     RT_NOREF(pIf);
 …
+/*static*/
+DECLCALLBACK(int) Console::i_logEncryptedWrite(PCRTLOGOUTPUTIF pIf, void *pvUser, const void *pvBuf,
+                                               size_t cbWrite, size_t *pcbWritten)
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedWrite(PCRTLOGOUTPUTIF pIf, void *pvUser, const void *pvBuf, size_t cbWrite, size_t *pcbWritten)
+{
     RT_NOREF(pIf);
 …
 /*static*/
 DECLCALLBACK(int) Console::i_logEncryptedFlush(PCRTLOGOUTPUTIF pIf, void *pvUser)
+/*static*/ DECLCALLBACK(int)
+Console::i_logEncryptedFlush(PCRTLOGOUTPUTIF pIf, void *pvUser)
+{
     RT_NOREF(pIf);
 …
     return RTVfsFileFlush(pConsole->m_hVfsFileLog);
+}
+#endif
+/*static*/ RTLOGOUTPUTIF const Console::s_ConsoleEncryptedLogOutputIf =
+{
+    Console::i_logEncryptedDirCtxOpen,
+    Console::i_logEncryptedDirCtxClose,
+    Console::i_logEncryptedDelete,
+    Console::i_logEncryptedRename,
+    Console::i_logEncryptedOpen,
+    Console::i_logEncryptedClose,
+    Console::i_logEncryptedQuerySize,
+    Console::i_logEncryptedWrite,
+    Console::i_logEncryptedFlush
+};
+#endif /* VBOX_WITH_FULL_VM_ENCRYPTION */
 /**
 …
             && bstrLogKeyStore.isNotEmpty())
+        {
-            m_LogOutputIf.pfnOpen      = Console::i_logEncryptedOpen;
-            m_LogOutputIf.pfnClose     = Console::i_logEncryptedClose;
-            m_LogOutputIf.pfnDelete    = Console::i_logEncryptedDelete;
-            m_LogOutputIf.pfnRename    = Console::i_logEncryptedRename;
-            m_LogOutputIf.pfnQuerySize = Console::i_logEncryptedQuerySize;
-            m_LogOutputIf.pfnWrite     = Console::i_logEncryptedWrite;
-            m_LogOutputIf.pfnFlush     = Console::i_logEncryptedFlush;
             m_strLogKeyId    = Utf8Str(bstrLogKeyId);
             m_strLogKeyStore = Utf8Str(bstrLogKeyStore);
             pLogOutputIf    = &m_LogOutputIf;
+            pLogOutputIf    = &s_ConsoleEncryptedLogOutputIf;
             pvLogOutputUser = this;
             m_fEncryptedLog = true;

Note: See TracChangeset for help on using the changeset viewer.

Changeset 104286 in vbox for trunk/src/VBox/Main

Legend:

trunk/src/VBox/Main/include/ConsoleImpl.h

trunk/src/VBox/Main/src-client/ConsoleImpl.cpp

Download in other formats: