src/nm-audit-manager.h

   1 /* -*- Mode: C; tab-width: 4; indent-tabs-mode: t; c-basic-offset: 4 -*- */
   2 /* NetworkManager audit support
   3  *
   4  * This program is free software; you can redistribute it and/or modify
   5  * it under the terms of the GNU General Public License as published by
   6  * the Free Software Foundation; either version 2 of the License, or
   7  * (at your option) any later version.
   8  *
   9  * This program is distributed in the hope that it will be useful,
  10  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  11  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12  * GNU General Public License for more details.
  13  *
  14  * You should have received a copy of the GNU General Public License along
  15  * with this program; if not, write to the Free Software Foundation, Inc.,
  16  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
  17  *
  18  * Copyright 2015 Red Hat, Inc.
  19  */
  20
  21 #ifndef __NM_AUDIT_MANAGER_H__
  22 #define __NM_AUDIT_MANAGER_H__
  23
  24 #include <glib.h>
  25 #include <glib-object.h>
  26
  27 #include "nm-connection.h"
  28 #include "nm-device.h"
  29 #include "nm-types.h"
  30
  31 G_BEGIN_DECLS
  32
  33 #define NM_TYPE_AUDIT_MANAGER            (nm_audit_manager_get_type ())
  34 #define NM_AUDIT_MANAGER(obj)            (G_TYPE_CHECK_INSTANCE_CAST ((obj), NM_TYPE_AUDIT_MANAGER, NMAuditManager))
  35 #define NM_AUDIT_MANAGER_CLASS(klass)    (G_TYPE_CHECK_CLASS_CAST ((klass),  NM_TYPE_AUDIT_MANAGER, NMAuditManagerClass))
  36 #define NM_IS_AUDIT_MANAGER(obj)         (G_TYPE_CHECK_INSTANCE_TYPE ((obj), NM_TYPE_AUDIT_MANAGER))
  37 #define NM_IS_AUDIT_MANAGER_CLASS(klass) (G_TYPE_CHECK_CLASS_TYPE ((klass),  NM_TYPE_AUDIT_MANAGER))
  38 #define NM_AUDIT_MANAGER_GET_CLASS(obj)  (G_TYPE_INSTANCE_GET_CLASS ((obj),  NM_TYPE_AUDIT_MANAGER, NMAuditManagerClass))
  39
  40 struct _NMAuditManager {
  41         GObject parent;
  42 };
  43
  44 typedef struct {
  45         GObjectClass parent;
  46 } NMAuditManagerClass;
  47
  48 #define NM_AUDIT_OP_CONN_ADD                "connection-add"
  49 #define NM_AUDIT_OP_CONN_DELETE             "connection-delete"
  50 #define NM_AUDIT_OP_CONN_UPDATE             "connection-update"
  51 #define NM_AUDIT_OP_CONN_ACTIVATE           "connection-activate"
  52 #define NM_AUDIT_OP_CONN_ADD_ACTIVATE       "connection-add-activate"
  53 #define NM_AUDIT_OP_CONN_DEACTIVATE         "connection-deactivate"
  54 #define NM_AUDIT_OP_CONN_CLEAR_SECRETS      "connection-clear-secrets"
  55
  56 #define NM_AUDIT_OP_SLEEP_CONTROL           "sleep-control"
  57 #define NM_AUDIT_OP_NET_CONTROL             "networking-control"
  58 #define NM_AUDIT_OP_RADIO_CONTROL           "radio-control"
  59
  60 #define NM_AUDIT_OP_DEVICE_AUTOCONNECT      "device-autoconnect"
  61 #define NM_AUDIT_OP_DEVICE_DISCONNECT       "device-disconnect"
  62 #define NM_AUDIT_OP_DEVICE_DELETE           "device-delete"
  63 #define NM_AUDIT_OP_DEVICE_MANAGED          "device-managed"
  64 #define NM_AUDIT_OP_DEVICE_REAPPLY          "device-reapply"
  65
  66 GType nm_audit_manager_get_type (void);
  67 NMAuditManager *nm_audit_manager_get (void);
  68 gboolean nm_audit_manager_audit_enabled (NMAuditManager *self);
  69
  70 #define nm_audit_log_connection_op(op, connection, result, subject_context, reason) \
  71         G_STMT_START { \
  72                 NMAuditManager *_audit = nm_audit_manager_get (); \
  73                 \
  74                 if (nm_audit_manager_audit_enabled (_audit)) { \
  75                         _nm_audit_manager_log_connection_op (_audit, __FILE__, __LINE__, G_STRFUNC, \
  76                                                              (op), (connection), (result), (subject_context), \
  77                                                              (reason)); \
  78                 } \
  79         } G_STMT_END
  80
  81 #define nm_audit_log_control_op(op, arg, result, subject_context, reason) \
  82         G_STMT_START { \
  83                 NMAuditManager *_audit = nm_audit_manager_get (); \
  84                 \
  85                 if (nm_audit_manager_audit_enabled (_audit)) { \
  86                         _nm_audit_manager_log_control_op (_audit, __FILE__, __LINE__, G_STRFUNC, \
  87                                                           (op), (arg), (result), (subject_context), (reason)); \
  88                 } \
  89         } G_STMT_END
  90
  91 #define nm_audit_log_device_op(op, device, result, subject_context, reason) \
  92         G_STMT_START { \
  93                 NMAuditManager *_audit = nm_audit_manager_get (); \
  94                 \
  95                 if (nm_audit_manager_audit_enabled (_audit)) { \
  96                         _nm_audit_manager_log_device_op (_audit, __FILE__, __LINE__, G_STRFUNC, \
  97                                                          (op), (device), (result), (subject_context), (reason)); \
  98                 } \
  99         } G_STMT_END
 100
 101 void _nm_audit_manager_log_connection_op (NMAuditManager *self, const char *file, guint line,
 102                                           const char *func, const char *op, NMSettingsConnection *connection,
 103                                           gboolean result, gpointer subject_context, const char *reason);
 104
 105 void _nm_audit_manager_log_control_op    (NMAuditManager *self, const char *file, guint line,
 106                                           const char *func, const char *op, const char *arg,
 107                                           gboolean result, gpointer subject_context, const char *reason);
 108
 109 void _nm_audit_manager_log_device_op     (NMAuditManager *self, const char *file, guint line,
 110                                           const char *func, const char *op, NMDevice *device,
 111                                           gboolean result, gpointer subject_context, const char *reason);
 112 G_END_DECLS
 113
 114 #endif /* __NM_AUDIT_MANAGER_H__ */