Auditd procedure (#1108)

* Auditd procedure

Author: wupeka

src/modules/complianceengine/src/lib/CMakeLists.txt

@@ -8,6 +8,7 @@ endif()
 
 set(PROCEDURES
     procedures/EnsureAccountsWithoutShellAreLocked.cpp
+    procedures/AuditdRulesCheck.cpp
     procedures/EnsureAllGroupsFromEtcPasswdExistInEtcGroup.cpp
     procedures/EnsureApparmorProfiles.cpp
     procedures/EnsureDconf.cpp
@@ -45,6 +46,7 @@ set(PROCEDURES
 )
 set(SCHEMAS
     procedures/EnsureAccountsWithoutShellAreLocked.schema.json
+    procedures/AuditdRulesCheck.schema.json
     procedures/EnsureAllGroupsFromEtcPasswdExistInEtcGroup.schema.json
     procedures/EnsureApparmorProfiles.schema.json
     procedures/EnsureDconf.schema.json

src/modules/complianceengine/src/lib/RegexFallback.h

@@ -281,6 +281,26 @@ class MatchResults
         return nullptr != mPmatch;
     }
 
+    std::size_t position(std::size_t i) const
+    {
+        assert(ready());
+        if (i < mSize)
+        {
+            return mPmatch[i].rm_so;
+        }
+        return std::string::npos;
+    }
+
+    std::size_t length(std::size_t i) const
+    {
+        assert(ready());
+        if (i < mSize)
+        {
+            return mPmatch[i].rm_eo - mPmatch[i].rm_so;
+        }
+        return 0;
+    }
+
     SubMatch operator[](std::size_t i) const
     {
         assert(ready());

src/modules/complianceengine/src/lib/payload.schema.json

@@ -130,6 +130,9 @@
     },
     "auditProcedure": {
       "anyOf": [
+        {
+          "$ref": "procedures/AuditdRulesCheck.schema.json#/definitions/audit"
+        },
         {
           "$ref": "procedures/EnsureAccountsWithoutShellAreLocked.schema.json#/definitions/audit"
         },
@@ -239,6 +242,9 @@
     },
     "remediationProcedure": {
       "anyOf": [
+        {
+          "$ref": "procedures/AuditdRulesCheck.schema.json#/definitions/remediation"
+        },
         {
           "$ref": "procedures/EnsureAccountsWithoutShellAreLocked.schema.json#/definitions/remediation"
         },