Add PAM auditing logic. Based on patch and feedback from Brian Cameron and

2008-02-05 Ray Strode <rstrode@redhat.com> Add PAM auditing logic. Based on patch and feedback from Brian Cameron and earlier code from Gary Winiger and Steve Grubb. * configure.ac: set HAVE_ADT and HAVE_LIBAUDIT as appropriate for solaris and linux audit support, respectively. * daemon/Makefile.am: add new auditing code to Makefile. * daemon/gdm-session-auditor.[ch]: generic base class for doing auditing. * daemon/gdm-session-linux-auditor.[ch]: linux auditor subclass * daemon/gdm-session-solaris-auditor.[ch]: solaris auditor subclass * daemon/gdm-session-worker.c (GdmSessionWorkerPrivate): track auditor (gdm_session_worker_update_username): inform audit code about username changes (gdm_session_worker_start_auditor): instantiate the auditor (gdm_session_worker_stop_auditor): free the auditor (gdm_session_worker_uninitialize_pam): inform audit code about logout/login failure and then free the auditor (_get_tty_for_pam): fix calling return more than once on solaris (gdm_session_worker_initialize_pam): instantiate the auditor. (gdm_session_worker_authorize_user): inform audit code about password changes (gdm_session_worker_accredit_user): inform audit code about user getting credentials (gdm_session_worker_open_user_session): inform audit code about successful login svn path=/trunk/; revision=5702
author: Ray Strode <rstrode@redhat.com> 2008-02-06 05:00:15 +0000
committer: Ray Strode <halfline@src.gnome.org> 2008-02-06 05:00:15 +0000
commit: f616d973837ec266c10d34404f859f66b717bfff (patch)
tree: df5d7ed5707c3e19635f97ab84fda54e2e30aff4 /daemon/gdm-session-solaris-auditor.h
parent: 46b6d03d4c191fc20c584529aec2574b39af044d (diff)
download: gdm-f616d973837ec266c10d34404f859f66b717bfff.tar.gz
1 files changed, 63 insertions, 0 deletions
diff --git a/daemon/gdm-session-solaris-auditor.h b/daemon/gdm-session-solaris-auditor.h
new file mode 100644
index 00000000..1826b3cf
--- /dev/null
+++ b/daemon/gdm-session-solaris-auditor.h
@@ -0,0 +1,63 @@
+/* gdm-solaris-session-auditor.h - Object for solaris auditing of session login/logout
+ *
+ * Copyright (C) 2004, 2008 Sun Microsystems
+ * Copyright (C) 2005, 2008 Red Hat, Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2, or (at your option)
+ * any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
+ * 02111-1307, USA.
+ *
+ * Written by: Brian A. Cameron <Brian.Cameron@sun.com>
+ *             Gary Winiger <Gary.Winiger@sun.com>
+ *             Ray Strode <rstrode@redhat.com>
+ *             Steve Grubb <sgrubb@redhat.com>
+ */
+#ifndef GDM_SESSION_SOLARIS_AUDITOR_H
+#define GDM_SESSION_SOLARIS_AUDITOR_H
+
+#include <glib.h>
+#include <glib-object.h>
+
+#include "gdm-session-auditor.h"
+
+G_BEGIN_DECLS
+#define GDM_TYPE_SESSION_SOLARIS_AUDITOR (gdm_session_solaris_auditor_get_type ())
+#define GDM_SESSION_SOLARIS_AUDITOR(obj) (G_TYPE_CHECK_INSTANCE_CAST ((obj), GDM_TYPE_SESSION_SOLARIS_AUDITOR, GdmSessionSolarisAuditor))
+#define GDM_SESSION_SOLARIS_AUDITOR_CLASS(klass) (G_TYPE_CHECK_CLASS_CAST ((klass), GDM_TYPE_SESSION_SOLARIS_AUDITOR, GdmSessionSolarisAuditorClass))
+#define GDM_IS_SESSION_SOLARIS_AUDITOR(obj) (G_TYPE_CHECK_INSTANCE_TYPE ((obj), GDM_TYPE_SESSION_SOLARIS_AUDITOR))
+#define GDM_IS_SESSION_SOLARIS_AUDITOR_CLASS(klass) (G_TYPE_CHECK_CLASS_TYPE ((klass), GDM_TYPE_SESSION_SOLARIS_AUDITOR))
+#define GDM_SESSION_SOLARIS_AUDITOR_GET_CLASS(obj)  (G_TYPE_INSTANCE_GET_CLASS((obj), GDM_TYPE_SESSION_SOLARIS_AUDITOR, GdmSessionSolarisAuditorClass))
+#define GDM_SESSION_SOLARIS_AUDITOR_ERROR (gdm_session_solaris_auditor_error_quark ())
+typedef struct _GdmSessionSolarisAuditor        GdmSessionSolarisAuditor;
+typedef struct _GdmSessionSolarisAuditorClass   GdmSessionSolarisAuditorClass;
+typedef struct _GdmSessionSolarisAuditorPrivate GdmSessionSolarisAuditorPrivate;
+
+struct _GdmSessionSolarisAuditor
+{
+        GdmSessionAuditor                parent;
+
+        /*< private > */
+        GdmSessionSolarisAuditorPrivate *priv;
+};
+
+struct _GdmSessionSolarisAuditorClass
+{
+        GdmSessionAuditorClass parent_class;
+};
+
+GType              gdm_session_solaris_auditor_get_type                       (void);
+GdmSessionAuditor *gdm_session_solaris_auditor_new                            (const char *hostname,
+                                                                               const char *display_device);
+G_END_DECLS
+#endif /* GDM_SESSION_SOLARIS_AUDITOR_H */
author	Ray Strode <rstrode@redhat.com>	2008-02-06 05:00:15 +0000
committer	Ray Strode <halfline@src.gnome.org>	2008-02-06 05:00:15 +0000
commit	f616d973837ec266c10d34404f859f66b717bfff (patch)
tree	df5d7ed5707c3e19635f97ab84fda54e2e30aff4 /daemon/gdm-session-solaris-auditor.h
parent	46b6d03d4c191fc20c584529aec2574b39af044d (diff)
download	gdm-f616d973837ec266c10d34404f859f66b717bfff.tar.gz