[GSoC'20 Weekly Update] Adding audit(4) support to NFS
Shivank Garg
shivank at freebsd.org
Tue Aug 18 19:16:08 UTC 2020
Hi,
This project aims to add audit(4) support to NFS, which will allow
auditd(8) to just run on the NFS server and audit all activities within the
NFS network. Audit works mostly on the syscall level and NFS is implemented
within the kernel, which means the NFS RPCs don't generate any audit
records on the server.
Note that audit(4) can still be used on the NFS network but auditd(8) must
run on every NFS client.
This week I did the following:
* Wrote NFSv4 Audit Test Suite Skeleton.
* wrote success/failure tests for around 15 NFSv4 Sub-operations.
* reading RFC 7530 for NFSv4 sub-operation cross-reference.
Currently, I'm:
* auditing remaining NFSv4 Subops.
* Wrote Tests for those sub-ops.
* starting to document my work.
Please, do Check this project on
Github: https://github.com/shivankgarg98/freebsd/tree/user/shivank/nfs_audit
NFSv4 audit feature branch:
https://github.com/shivankgarg98/freebsd/tree/user/shivank/nfsv4_audit
Project wiki:
https://wiki.freebsd.org/SummerOfCode2020Projects/AddAuditSupportToNFS
TestSuite: https://github.com/shivankgarg98/NFSAuditTestSuite
Please feel free to share your ideas and feedback on this project.
Best Regards,
Shivank Garg
More information about the soc-status
mailing list