4 eventlog interface definition
7 import
"lsa.idl", "security.idl";
9 [ uuid("82273fdc-e32a-18c3-3f78-827929dc23ea"),
11 helpstring("Event Logger")
15 EVENTLOG_SEQUENTIAL_READ
= 0x0001,
16 EVENTLOG_SEEK_READ
= 0x0002,
17 EVENTLOG_FORWARDS_READ
= 0x0004,
18 EVENTLOG_BACKWARDS_READ
= 0x0008
22 EVENTLOG_SUCCESS
= 0x0000,
23 EVENTLOG_ERROR_TYPE
= 0x0001,
24 EVENTLOG_WARNING_TYPE
= 0x0002,
25 EVENTLOG_INFORMATION_TYPE
= 0x0004,
26 EVENTLOG_AUDIT_SUCCESS
= 0x0008,
27 EVENTLOG_AUDIT_FAILURE
= 0x0010
33 } eventlog_OpenUnknown0
;
35 typedef [public] struct {
39 uint32 time_generated
;
43 uint16 num_of_strings
;
44 uint16 event_category
;
45 uint16 reserved_flags
;
46 uint32 closing_record_number
;
53 nstring computer_name
;
54 nstring strings
[num_of_strings
];
60 NTSTATUS eventlog_ClearEventLogW
(
61 [in] policy_handle
*handle,
62 [in,unique] lsa_String
*backupfile
67 NTSTATUS eventlog_BackupEventLogW
();
71 NTSTATUS eventlog_CloseEventLog
(
72 [in,out] policy_handle
*handle
77 NTSTATUS eventlog_DeregisterEventSource
();
81 NTSTATUS eventlog_GetNumRecords
(
82 [in] policy_handle
*handle,
88 NTSTATUS eventlog_GetOldestRecord
(
89 [in] policy_handle
*handle,
90 [out,ref] uint32
*oldest_entry
95 NTSTATUS eventlog_ChangeNotify
();
99 NTSTATUS eventlog_OpenEventLogW
(
100 [in,unique] eventlog_OpenUnknown0
*unknown0
,
101 [in,ref] lsa_String
*logname
,
102 [in,ref] lsa_String
*servername
,
103 [in] uint32 unknown2
,
104 [in] uint32 unknown3
,
105 [out] policy_handle
*handle
110 NTSTATUS eventlog_RegisterEventSourceW
();
114 NTSTATUS eventlog_OpenBackupEventLogW
();
118 NTSTATUS eventlog_ReadEventLogW
(
119 [in] policy_handle
*handle,
122 [in] [range(0,0x7FFFF)] uint32 number_of_bytes
,
123 [out,ref,size_is(number_of_bytes
)] uint8
*data
,
124 [out,ref] uint32
*sent_size
,
125 [out,ref] uint32
*real_size
130 NTSTATUS eventlog_ReportEventW
();
134 NTSTATUS eventlog_ClearEventLogA
();
138 NTSTATUS eventlog_BackupEventLogA
();
142 NTSTATUS eventlog_OpenEventLogA
();
146 NTSTATUS eventlog_RegisterEventSourceA
();
150 NTSTATUS eventlog_OpenBackupEventLogA
();
154 NTSTATUS eventlog_ReadEventLogA
();
158 NTSTATUS eventlog_ReportEventA
();
162 NTSTATUS eventlog_RegisterClusterSvc
();
166 NTSTATUS eventlog_DeregisterClusterSvc
();
170 NTSTATUS eventlog_WriteClusterEvents
();
174 NTSTATUS eventlog_GetLogIntormation
();
178 NTSTATUS eventlog_FlushEventLog
(
179 [in] policy_handle
*handle