diff options
| author | Andrew Bartlett <abartlet@samba.org> | 2018-06-10 13:00:34 +0200 |
|---|---|---|
| committer | Andrew Bartlett <abartlet@samba.org> | 2018-06-25 08:32:14 +0200 |
| commit | 1bb2a1c6b3eaccf114ac3f3b5b51f57828a04996 (patch) | |
| tree | f9e2d830408870f90254129a64d678198e978971 /auth/auth_log.c | |
| parent | 05b54cc259645f69e14de2703724c284ed25838c (diff) | |
| download | samba-1bb2a1c6b3eaccf114ac3f3b5b51f57828a04996.tar.gz | |
auth: For NTLM and KDC authentication, log the authentication duration
This is not a general purpose profiling solution, but these JSON logs are already being
generated and stored, so this is worth adding.
Some administrators are very keen to know how long authentication
takes, particularly due to long replication transactions in other
processes.
This complements a similar patch set to log the transaction duration.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
Diffstat (limited to 'auth/auth_log.c')
| -rw-r--r-- | auth/auth_log.c | 23 |
1 files changed, 22 insertions, 1 deletions
diff --git a/auth/auth_log.c b/auth/auth_log.c index 369a5c96162..67d23c12a1b 100644 --- a/auth/auth_log.c +++ b/auth/auth_log.c @@ -114,6 +114,7 @@ static void log_json(struct imessaging_context *msg_ctx, static void log_authentication_event_json( struct imessaging_context *msg_ctx, struct loadparm_context *lp_ctx, + const struct timeval *start_time, const struct auth_usersupplied_info *ui, NTSTATUS status, const char *domain_name, @@ -180,6 +181,22 @@ static void log_authentication_event_json( json_add_string(&authentication, "passwordType", get_password_type(ui)); json_add_object(&wrapper, AUTH_JSON_TYPE, &authentication); + /* + * While not a general-purpose profiling solution this will + * assist some to determine how long NTLM and KDC + * authentication takes once this process can handle it. This + * covers transactions elsewhere but not (eg) the delay while + * this is waiting unread on the input socket. + */ + if (start_time != NULL) { + struct timeval current_time = timeval_current(); + uint64_t duration = usec_time_diff(¤t_time, + start_time); + json_add_int(&authentication, + "duration", + duration); + } + log_json(msg_ctx, lp_ctx, &wrapper, @@ -296,6 +313,7 @@ static void log_no_json(struct imessaging_context *msg_ctx, static void log_authentication_event_json( struct imessaging_context *msg_ctx, struct loadparm_context *lp_ctx, + const struct timeval *start_time, const struct auth_usersupplied_info *ui, NTSTATUS status, const char *domain_name, @@ -470,6 +488,7 @@ static void log_authentication_event_human_readable( void log_authentication_event( struct imessaging_context *msg_ctx, struct loadparm_context *lp_ctx, + const struct timeval *start_time, const struct auth_usersupplied_info *ui, NTSTATUS status, const char *domain_name, @@ -498,7 +517,9 @@ void log_authentication_event( } if (CHECK_DEBUGLVLC(DBGC_AUTH_AUDIT_JSON, debug_level) || (msg_ctx && lp_ctx && lpcfg_auth_event_notification(lp_ctx))) { - log_authentication_event_json(msg_ctx, lp_ctx, + log_authentication_event_json(msg_ctx, + lp_ctx, + start_time, ui, status, domain_name, |