summaryrefslogtreecommitdiffstats
path: root/auditd/audit_log.h
diff options
context:
space:
mode:
Diffstat (limited to 'auditd/audit_log.h')
-rw-r--r--auditd/audit_log.h92
1 files changed, 92 insertions, 0 deletions
diff --git a/auditd/audit_log.h b/auditd/audit_log.h
new file mode 100644
index 0000000..454782d
--- /dev/null
+++ b/auditd/audit_log.h
@@ -0,0 +1,92 @@
+/*
+ * Copyright 2012, Samsung Telecommunications of America
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * Written by William Roberts <w.roberts@sta.samsung.com>
+ */
+
+#ifndef _AUDIT_LOG_H_
+#define _AUDIT_LOG_H_
+
+#include <unistd.h>
+#include "libaudit.h"
+
+typedef struct audit_log audit_log;
+
+/**
+ * Opens an audit logfile for writing
+ * @param logfile
+ * The logfile name to use
+ * @param rotatefile
+ * The logfile to rotate to when threshold is encountered
+ * @param threshold
+ * The threshold, in bytes, the log file should grow to
+ * until rotation.
+ * @return
+ * A valid handle to the audit_log.
+ */
+extern audit_log *audit_log_open(const char *logfile, const char *rotatefile, size_t threshold);
+
+/**
+ * Appends an audit reposnse to the audit log, and rotates the log if threshold is
+ * passed. Note, it always finishes a message even if it is past threshold. Also
+ * always appends a newline to the end of the message.
+ * @param l
+ * The audit log to use
+ * @param reply
+ * The response to write
+ * @return
+ * 0 on success
+ */
+extern int audit_log_write(audit_log *l, const struct audit_reply *reply);
+
+/**
+ * Appends a string to the audit log, appending a newline, and rotating
+ * the logs if needed.
+ * @param l
+ * The audit log to append too.
+ * @param str
+ * The string to append to the log.
+ * @return
+ * 0 on success
+ */
+extern int audit_log_write_str(audit_log *l, const char *str);
+
+/**
+ * Forces a rotation of the audit log.
+ * @param l
+ * The log file to use
+ * @return
+ * 0 on success
+ */
+extern int audit_log_rotate(audit_log *l);
+
+/**
+ * Closes the audit log file.
+ * @param l
+ * The log file to close, NULL's the pointer.
+ */
+extern void audit_log_close(audit_log *l);
+
+/**
+ * Searches once through kmesg for type=1400
+ * kernel messages and logs them to the audit log
+ * @param l
+ * The log to append too
+ * @return
+ * 0 on success
+ */
+extern int audit_log_put_kmsg(audit_log *l);
+
+#endif
generated by cgit v1.1 at 2024-06-06 10:29:19 +0000