2 .\" Copyright (c) 2005-2006 Robert N. M. Watson
3 .\" All rights reserved.
5 .\" Redistribution and use in source and binary forms, with or without
6 .\" modification, are permitted provided that the following conditions
8 .\" 1. Redistributions of source code must retain the above copyright
9 .\" notice, this list of conditions and the following disclaimer.
10 .\" 2. Redistributions in binary form must reproduce the above copyright
11 .\" notice, this list of conditions and the following disclaimer in the
12 .\" documentation and/or other materials provided with the distribution.
14 .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
15 .\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
16 .\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
17 .\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
18 .\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
19 .\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
20 .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
21 .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
22 .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
23 .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
26 .\" $P4: //depot/projects/trustedbsd/openbsm/libbsm/au_user.3#10 $
40 .Nd "look up information from the audit_user database"
49 .Ft "struct au_user_ent *"
51 .Ft "struct au_user_ent *"
52 .Fn getauuserent_r "struct au_user_ent *u"
53 .Ft "struct au_user_ent *"
54 .Fn getauusernam "const char *name"
55 .Ft "struct au_user_ent *"
56 .Fn getauusernam_r "struct au_user_ent *u" "const char *name"
58 .Fn au_user_mask "char *username" "au_mask_t *mask_p"
61 .Fa "au_mask_t *usremask" "au_mask_t *usrdmask" "au_mask_t *lastmask"
64 These interfaces may be used to look up information from the
66 database, which describes per-user audit configuration.
67 Audit user entries are described by a
69 which stores the user's name in
71 events to always audit in
73 and events never to audit
79 returns the next user found in the
81 database, or the first if the function has not yet been called.
83 will be returned if no further records are available.
88 looks up a user by name.
90 will be returned if no matching class can be found.
95 resets the iterator through the
97 database, causing the next call to
99 to start again from the beginning of the file.
111 calculates a new session audit mask to be returned via
113 for the user identified by
115 If the user audit configuration is not found, the default system audit
116 properties returned by
119 The resulting mask may be set via a call to
125 function generates a new process audit state by combining the audit masks
126 passed as parameters with the system audit masks.
133 The OpenBSM implementation was created by McAfee Research, the security
134 division of McAfee Inc., under contract to Apple Computer, Inc., in 2004.
135 It was subsequently adopted by the TrustedBSD Project as the foundation for
136 the OpenBSM distribution.
139 This software was created by
143 .An Suresh Krishnaswamy
144 for McAfee Research, the security research division of McAfee,
145 Inc., under contract to Apple Computer, Inc.
147 The Basic Security Module (BSM) interface to audit records and audit event
148 stream format were defined by Sun Microsystems.
150 These routines cannot currently distinguish between an entry not being found
151 and an error accessing the database.
152 The implementation should be changed to return an error via