OSX/sec/securityd/iCloudTrace.c

   1 /*
   2  * Copyright (c) 2013-2014 Apple Inc. All Rights Reserved.
   3  *
   4  * @APPLE_LICENSE_HEADER_START@
   5  *
   6  * This file contains Original Code and/or Modifications of Original Code
   7  * as defined in and that are subject to the Apple Public Source License
   8  * Version 2.0 (the 'License'). You may not use this file except in
   9  * compliance with the License. Please obtain a copy of the License at
  10  * http://www.opensource.apple.com/apsl/ and read it before using this
  11  * file.
  12  *
  13  * The Original Code and all software distributed under the License are
  14  * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  15  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  16  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  17  * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
  18  * Please see the License for the specific language governing rights and
  19  * limitations under the License.
  20  *
  21  * @APPLE_LICENSE_HEADER_END@
  22  */
  23
  24
  25 #include "iCloudTrace.h"
  26 #include <Security/SecureObjectSync/SOSCloudCircle.h>
  27 #include <Security/SecureObjectSync/SOSViews.h>
  28 #include <Security/SecItem.h>
  29 #include <utilities/iCloudKeychainTrace.h>
  30 #include <securityd/SecItemServer.h>
  31 #include <sys/stat.h>
  32 #include <string.h>
  33 #if (TARGET_OS_MAC && !(TARGET_OS_EMBEDDED || TARGET_OS_IPHONE))
  34 #include <pwd.h>
  35 #endif
  36 #include <utilities/SecCFWrappers.h>
  37
  38
  39 /* --------------------------------------------------------------------------
  40         Function:               Bucket
  41
  42         Description:    In order to preserve annominity of a user, take an
  43                                         absolute value and return back the most significant
  44                                         value in base 10
  45    -------------------------------------------------------------------------- */
  46 static  int64_t Bucket(int64_t value)
  47 {
  48     if (value < 10)
  49     {
  50        return value;
  51     }
  52
  53     if (value < 100)
  54     {
  55         return (value / 10) * 10;
  56     }
  57
  58     if (value < 1000)
  59     {
  60         return (value / 100) * 100;
  61     }
  62
  63     if (value < 10000)
  64     {
  65         return (value / 1000) * 1000;
  66     }
  67
  68     if (value < 100000)
  69     {
  70         return (value / 10000) * 10000;
  71     }
  72
  73     if (value < 1000000)
  74     {
  75         return (value / 100000) * 10000;
  76     }
  77
  78     return value;
  79 }
  80
  81 static int64_t
  82 Bucket2Significant(int64_t value)
  83 {
  84     if (value < 100)
  85         return value;
  86     return 10 * Bucket2Significant(value / 10);
  87 }
  88
  89 static void
  90 TraceKeyClassItem(void *token, CFStringRef keyclass, CFStringRef name, int64_t num)
  91 {
  92     CFStringRef key = CFStringCreateWithFormat(NULL, NULL, CFSTR("%@.%@"), keyclass, name);
  93     if (key) {
  94         num = Bucket2Significant(num);
  95         AddKeyValuePairToKeychainLoggingTransaction(token, key, num);
  96         CFReleaseNull(key);
  97     }
  98
  99 }
 100
 101 static void
 102 TraceKeyClass(void *token, CFStringRef keyclass, const struct _SecServerKeyStats *stats)
 103 {
 104     TraceKeyClassItem(token, keyclass, CFSTR("AverageSize"), stats->averageSize);
 105     TraceKeyClassItem(token, keyclass, CFSTR("MaxSize"), stats->maxDataSize);
 106     TraceKeyClassItem(token, keyclass, CFSTR("NumItems"), stats->items);
 107 }
 108
 109 /* --------------------------------------------------------------------------
 110         Function:               DoLogging
 111
 112         Description:    If it has been determined that logging should be done
 113                                         this function will perform the logging
 114    -------------------------------------------------------------------------- */
 115 void CloudKeychainTrace(CFIndex num_peers, size_t num_items,
 116                         const struct _SecServerKeyStats *genpStats,
 117                         const struct _SecServerKeyStats *inetStats,
 118                         const struct _SecServerKeyStats *keysStats)
 119 {
 120         void *token = BeginCloudKeychainLoggingTransaction();
 121     AddKeyValuePairToKeychainLoggingTransaction(token, kNumberOfiCloudKeychainPeers, (int64_t)num_peers);
 122     AddKeyValuePairToKeychainLoggingTransaction(token, kNumberOfiCloudKeychainItemsBeingSynced, Bucket((int64_t)num_items));
 123     TraceKeyClass(token, CFSTR("genp"), genpStats);
 124     TraceKeyClass(token, CFSTR("inet"), inetStats);
 125     TraceKeyClass(token, CFSTR("keys"), keysStats);
 126         CloseCloudKeychainLoggingTransaction(token);
 127 }