preparing for release of 3.0-alpha11

[Samba.git] / examples / VFS / audit.c

/* 
 * Auditing VFS module for samba.  Log selected file operations to syslog
 * facility.
 *
 * Copyright (C) Tim Potter, 1999-2001
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *  
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *  
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
 */

#include "config.h"
#include <stdio.h>
#include <sys/stat.h>
#ifdef HAVE_UTIME_H
#include <utime.h>
#endif
#ifdef HAVE_DIRENT_H
#include <dirent.h>
#endif
#include <syslog.h>
#ifdef HAVE_FCNTL_H
#include <fcntl.h>
#endif
#include <errno.h>
#include <string.h>
#include <includes.h>
#include <vfs.h>

#ifndef SYSLOG_FACILITY
#define SYSLOG_FACILITY   LOG_USER
#endif

#ifndef SYSLOG_PRIORITY
#define SYSLOG_PRIORITY   LOG_NOTICE
#endif

static struct vfs_ops default_vfs_ops;

/* Implementation of vfs_ops.  Pass everything on to the default
   operation but log event first. */

static int audit_connect(struct connection_struct *conn, const char *svc,
                         const char *user)
{
        syslog(SYSLOG_PRIORITY, "connect to service %s by user %s\n", 
               svc, user);

        return 0;               /* Success */
}

static void audit_disconnect(struct connection_struct *conn)
{
        syslog(SYSLOG_PRIORITY, "disconnected\n");
}

static DIR *audit_opendir(struct connection_struct *conn, const char *fname)
{
        DIR *result = default_vfs_ops.opendir(conn, fname);

        syslog(SYSLOG_PRIORITY, "opendir %s %s%s\n",
               fname,
               (result == NULL) ? "failed: " : "",
               (result == NULL) ? strerror(errno) : "");

        return result;
}

static int audit_mkdir(struct connection_struct *conn, const char *path, 
                       mode_t mode)
{
        int result = default_vfs_ops.mkdir(conn, path, mode);

        syslog(SYSLOG_PRIORITY, "mkdir %s %s%s\n", 
               path,
               (result < 0) ? "failed: " : "",
               (result < 0) ? strerror(errno) : "");

        return result;
}

static int audit_rmdir(struct connection_struct *conn, const char *path)
{
        int result = default_vfs_ops.rmdir(conn, path);

        syslog(SYSLOG_PRIORITY, "rmdir %s %s%s\n", 
               path, 
               (result < 0) ? "failed: " : "",
               (result < 0) ? strerror(errno) : "");

        return result;
}

static int audit_open(struct connection_struct *conn, const char *fname, 
                      int flags, mode_t mode) 
{
        int result = default_vfs_ops.open(conn, fname, flags, mode);

        syslog(SYSLOG_PRIORITY, "open %s (fd %d) %s%s%s\n", 
               fname, result,
               ((flags & O_WRONLY) || (flags & O_RDWR)) ? "for writing " : "", 
               (result < 0) ? "failed: " : "",
               (result < 0) ? strerror(errno) : "");

        return result;
}

static int audit_close(struct files_struct *fsp, int fd)
{
        int result = default_vfs_ops.close(fsp, fd);

        syslog(SYSLOG_PRIORITY, "close fd %d %s%s\n",
               fd,
               (result < 0) ? "failed: " : "",
               (result < 0) ? strerror(errno) : "");

        return result;
}

static int audit_rename(struct connection_struct *conn, const char *old, 
                        const char *new)
{
        int result = default_vfs_ops.rename(conn, old, new);

        syslog(SYSLOG_PRIORITY, "rename %s -> %s %s%s\n",
               old, new,
               (result < 0) ? "failed: " : "",
               (result < 0) ? strerror(errno) : "");

        return result;    
}

static int audit_unlink(struct connection_struct *conn, const char *path)
{
        int result = default_vfs_ops.unlink(conn, path);

        syslog(SYSLOG_PRIORITY, "unlink %s %s%s\n",
               path,
               (result < 0) ? "failed: " : "",
               (result < 0) ? strerror(errno) : "");

        return result;
}

static int audit_chmod(struct connection_struct *conn, const char *path, 
                       mode_t mode)
{
        int result = default_vfs_ops.chmod(conn, path, mode);

        syslog(SYSLOG_PRIORITY, "chmod %s mode 0x%x %s%s\n",
               path, mode,
               (result < 0) ? "failed: " : "",
               (result < 0) ? strerror(errno) : "");

        return result;
}

/* VFS initialisation function.  Return initialised vfs_ops structure
   back to SAMBA. */

struct vfs_ops *vfs_init(int *vfs_version, struct vfs_ops *ops)
{
        *vfs_version = SMB_VFS_INTERFACE_VERSION;

        openlog("smbd_audit", LOG_PID, SYSLOG_FACILITY);
        syslog(SYSLOG_PRIORITY, "initialised\n");

        /* Save a copy of the default ops */

        default_vfs_ops = *ops;

        /* Override our ones */

        ops->connect = audit_connect;
        ops->disconnect = audit_disconnect;
        ops->opendir = audit_opendir;
        ops->mkdir = audit_mkdir;
        ops->rmdir = audit_rmdir;
        ops->open = audit_open;
        ops->close = audit_close;
        ops->rename = audit_rename;
        ops->unlink = audit_unlink;
        ops->chmod = audit_chmod;

        return(ops);
}