*** UNIX MANUAL PAGE BROWSER ***

A Nergahak database for man pages research.

Navigation

Location: Home > Digital UNIX > Section 2 > audgen
Quick Actions: [Home] [Up]

Directory Browser

1Browse 4.4BSD4.4BSD
1Browse Digital UNIXDigital UNIX 4.0e
1Browse FreeBSDFreeBSD 14.3
1Browse MINIXMINIX 3.4.0rc6-d5e4fc0
1Browse NetBSDNetBSD 10.1
1Browse OpenBSDOpenBSD 7.7
1Browse UNIX v7Version 7 UNIX
1Browse UNIX v10Version 10 UNIX

Manual Page Search

Manual Page Result

0 Command: audgen | Section: 2 | Source: Digital UNIX | File: audgen.2.gz
audgen(2) System Calls Manual audgen(2) NAME audgen - generate an audit record SYNOPSIS #include <sys/audit.h> audgen( int event, char *tokenp, char *argv[], char *userbuff, long *size); DESCRIPTION The system call generates an audit record. The argument event is an integer indicating the event type of the oper- ation being audited (see The value of event must be between one of the following values: MIN_TRUSTED_EVENT and MIN_TRUSTED_EVENT + N_TRUSTED_EVENTS -1 MIN_SITE_EVENT and MIN_SITE_EVENT + n_site_events -1 The n_site_events symbol is defined in the /usr/sys/data/au- dit_data.c file. The tokenp argument is a null-terminated array of token_type (see each of which represents the type of argument referenced by the correspond- ing *argv argument. The argv argument is a pointer to an array containing either the actual arguments or pointers to those arguments that are to be recorded in the audit record. A pointer to the actual argument is placed in that array when the argument is a string, array, or other variable length struc- ture. Arguments represented as an int or a long are placed directly in that array. The available public tokens are listed in the audit.h file. If size is nonzero, *size is the size of userbuff provided to audgen, and the audit record created is not passed into the system audit data stream, but is copied out to userbuff. On return, *size is updated to the number of bytes data placed into userbuff. If the size of the au- dit record exceeds *size, then errno is set to E2BIG. Applications can use this feature to create their own audit records. RESTRICTIONS The call is a privileged system call. No record is generated for the system audit data stream if the specified event is not being audited for the current process. The maximum number of arguments referenced by argv is AUD_NPARAM (128) with no more than 8 of any one token_type. RETURN VALUES Upon successful completion, returns a value of 0. Otherwise, it re- turns a value of -1 and sets the global integer variable errno to indi- cate the error. ERRORS The system call fails under the following conditions: [EACCES] The user is not privileged for this operation. [EINVAL] The value supplied for the event, tokenp, or argv argu- ment is invalid. [E2BIG] The audit record exceeds the audit buffer size. [ENOSYS] Indicates an attempt to use a system call that is not configured. [EIO] The tokenmask data is invalid. [EIO] The size argument is non-zero, and the userbuff argument is invalid. [EFAULT] A value referenced by the argv argument is invalid. RELATED INFORMATION Functions: audgenl(3) Security delim off audgen(2)

Navigation Options

Actions: [Home] [Back] [New Search]
Browse: [Browse Digital UNIX] [Section 2]
Print/Export: [Print] [Raw Text]
Date: 2025-08-18 Time: 21:35:56 SAST |
Page generated in 0.0456 seconds
Nergahak ManpageViewer v1.4
[Back to Top]