fchaudit

fchaudit

Change File Audit Flags (Using File Descriptor)

Portability: SAS/C extension

SYNOPSIS
DESCRIPTION
PORTABILITY
RETURN VALUE
EXAMPLE
RELATED FUNCTIONS

SYNOPSIS

#include <sys/stat.h>

int fchaudit(int fileDescriptor, int auditFlags, int securityType);

DESCRIPTION

fchaudit changes the audit flags for the file specified by the fileDescriptor argument. The audit flags control the type of file requests that the USS OS/390 security product audits. The fchaudit function can change either user audit flags or security auditor audit flags, depending on the setting of the securityType argument.

The auditFlags argument is formed by ORing any of the following flags, which are defined in <sys/stat.h> :

AUDTREADFAIL: audit failing read requests.
AUDTREADSUCC: audit successful read requests.
AUDTWRITEFAIL: audit failing write requests.
AUDTWRITESUCC: audit successful write requests.
AUDTEXECFAIL: audit failing search or execute requests.
AUDTEXECSUCC: audit successful search or execute requests.

The flags for the securityType argument are also defined in <sys/stat.h> and can be either of the following:

AUDT_USER: specifies that the changes should be applied to the user audit flags. In order to change the user audit flags for a file, the user must be either the file owner or have the appropriate authority to make the changes.
AUDT_AUDITOR: specifies that the changes should be applied to the security auditor audit flags. This securityType argument can only be specified by a user with security auditor authority.

PORTABILITY

The fchaudit function is useful in USS applications; however, it is not defined by the POSIX.1 standard and should not be used in portable applications.

RETURN VALUE

fchaudit returns 0 if successful and -1 if unsuccessful.

EXAMPLE

The following example illustrates the use of fchaudit to change a file's user audit flags.

Note: You must specify the posix option when compiling this example. [cautionend]

#include <sys/types.h>
#include <sys/stat.h>
#include <fcntl.h>
#include <string.h>
#include <stdio.h>

main()
{
   int fd;
   char words[] = "Test File";

      /* Create a test file.          */
   if ((fd = creat("test.file", S_IRUSR|S_IWUSR)) == -1) {
      perror("creat error");
      _exit(1);
   }
   else
      write(fd, words, strlen(words));

      /* change the user audit flags. */
   if (fchaudit(fd, AUDTREADFAIL|AUDTWRITEFAIL, AUDT_USER) != 0)
      perror("fchaudit error");
   close(fd);
}

RELATED FUNCTIONS

chaudit , fchmod , fchown

Chapter Contents
Previous
Next
Top of Page