Skip to content

Add ismodulerestarted DMCLI parameter to DeviceFingerPrint section #67

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
jayasrikadiyal wants to merge 1 commit into
base: agentic_docs
Choose a base branch
from
Open

Add ismodulerestarted DMCLI parameter to DeviceFingerPrint section #67

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 6 additions & 0 deletions config/TR181-AdvSecurity.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -66,6 +66,12 @@
<syntax>uint32</syntax>
<writable>true</writable>
</parameter>
<parameter>
<name>ismodulerestarted</name>
<type>boolean</type>
<syntax>bool</syntax>
<writable>false</writable>
</parameter>
</parameters>
</object>
<object>
Expand Down
8 changes: 8 additions & 0 deletions source/AdvSecurityDml/cosa_adv_security_dml.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -141,6 +141,14 @@ DeviceFingerPrint_GetParamBoolValue
return TRUE;
}

rc = strcmp_s("ismodulerestarted", strlen("ismodulerestarted"), ParamName, &ind);
ERR_CHK(rc);
if((rc == EOK) && (!ind))
{
*pBool = CosaAdvSecIsModuleRestarted();
return TRUE;
}

CcspTraceWarning(("%s: Unsupported parameter '%s'\n", __FUNCTION__, ParamName));
return FALSE;
}
Expand Down
95 changes: 95 additions & 0 deletions source/AdvSecurityDml/cosa_adv_security_internal.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -40,6 +40,7 @@
#include <ccsp/platform_hal.h>
#include <syscfg/syscfg.h>
#include <sys/sysinfo.h>
#include <unistd.h>
#include "safec_lib_common.h"
#include "secure_wrapper.h"
#include <rbus/rbus.h>
Expand Down Expand Up @@ -2277,6 +2278,100 @@ ULONG CosaAdvSecGetLookupTimeoutExceededCount()
return lcount;
}

BOOL CosaAdvSecIsModuleRestarted()
{
struct sysinfo info = {0};
unsigned long uptime_seconds = 0;
unsigned long long starttime_ticks = 0;
unsigned long process_runtime = 0;
long clock_ticks_per_sec = 0;
FILE *fp = NULL;
char buf[COMMAND_MAX] = {0};
char proc_stat_path[COMMAND_MAX] = {0};
char pid_buf[MAX_VALUE] = {0};
int i;

/* Get system uptime */
if (sysinfo(&info) != 0) {
CcspTraceError(("%s: sysinfo fetch failed\n", __FUNCTION__));
return FALSE;
}
uptime_seconds = info.uptime;

/* Get cujo-agent PID using /var/run/cujo-agent.pid or pidof */
fp = popen("pidof cujo-agent", "r");
if (fp == NULL) {
CcspTraceWarning(("%s: Failed to get cujo-agent PID\n", __FUNCTION__));
return FALSE;
}
if (fgets(pid_buf, sizeof(pid_buf), fp) == NULL) {
pclose(fp);
CcspTraceWarning(("%s: cujo-agent process not found\n", __FUNCTION__));
return FALSE;
}
pclose(fp);

/* Remove trailing newline */
for (i = 0; pid_buf[i] != '\0'; i++) {
if (pid_buf[i] == '\n' || pid_buf[i] == ' ') {
pid_buf[i] = '\0';
break;
}
}

/* Read /proc/<pid>/stat to get process start time (field 22) */
snprintf(proc_stat_path, sizeof(proc_stat_path), "/proc/%s/stat", pid_buf);
fp = fopen(proc_stat_path, "r");
if (fp == NULL) {
CcspTraceWarning(("%s: Failed to open %s\n", __FUNCTION__, proc_stat_path));
return FALSE;
}
if (fgets(buf, sizeof(buf), fp) == NULL) {
fclose(fp);
CcspTraceWarning(("%s: Failed to read %s\n", __FUNCTION__, proc_stat_path));
return FALSE;
}
fclose(fp);

/* Parse field 22 (starttime) - skip past the comm field (enclosed in parentheses) */
{
char *ptr = strrchr(buf, ')');
if (ptr == NULL) {
CcspTraceWarning(("%s: Failed to parse proc stat\n", __FUNCTION__));
return FALSE;
}
ptr++; /* move past ')' */

/* starttime is field 22; after ')' we are at field 2, need to skip to field 22 */
/* Fields 3-21 = 19 fields to skip */
for (i = 0; i < 19; i++) {
while (*ptr == ' ') ptr++;
while (*ptr != ' ' && *ptr != '\0') ptr++;
}
while (*ptr == ' ') ptr++;
starttime_ticks = strtoull(ptr, NULL, 10);
}

clock_ticks_per_sec = sysconf(_SC_CLK_TCK);
if (clock_ticks_per_sec <= 0) {
CcspTraceWarning(("%s: Failed to get clock ticks per second\n", __FUNCTION__));
return FALSE;
}

/* Process runtime = uptime - (starttime / clock_ticks_per_sec) */
process_runtime = uptime_seconds - (unsigned long)(starttime_ticks / (unsigned long long)clock_ticks_per_sec);

/*
* If the process runtime is less than system uptime beyond the normal boot
* startup threshold (300 seconds), the module was restarted after boot.
*/
if ((uptime_seconds - process_runtime) > 300) {
return TRUE;
}

return FALSE;
}

static BOOL AdvsecSysEventHandlerStarted=FALSE;
static int sysevent_fd = 0;
static token_t sysEtoken;
Expand Down
5 changes: 5 additions & 0 deletions source/AdvSecurityDml/cosa_adv_security_internal.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -270,6 +270,11 @@ CosaAdvSecGetLookupTimeoutExceededCount
(
);

BOOL
CosaAdvSecIsModuleRestarted
(
);

ANSC_STATUS
CosaStartAdvParentalControl
(
Expand Down
Loading