From owner-soc-status@freebsd.org  Tue Aug 18 19:16:08 2020
Return-Path: <owner-soc-status@freebsd.org>
Delivered-To: soc-status@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0C5CD3C47E2
 for <soc-status@mailman.nyi.freebsd.org>; Tue, 18 Aug 2020 19:16:08 +0000 (UTC)
 (envelope-from shivankgarg98@gmail.com)
Received: from mail-ed1-f46.google.com (mail-ed1-f46.google.com
 [209.85.208.46])
 (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
 client-signature RSA-PSS (2048 bits) client-digest SHA256)
 (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 4BWLHC27yzz4Wj3;
 Tue, 18 Aug 2020 19:16:07 +0000 (UTC)
 (envelope-from shivankgarg98@gmail.com)
Received: by mail-ed1-f46.google.com with SMTP id cq28so16156445edb.10;
 Tue, 18 Aug 2020 12:16:07 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:from:date:message-id:subject:to;
 bh=bHirrhbsjA3rNOjsteH4FUoABLgSb8DomvMVhRS8psI=;
 b=dB9eUKrQmfrS+7Od9sb5Xnsby7Fi4nVGQBbUKqtPdy8wHakv0/rAowl6bhuE5vGL68
 Mvaz0l3BZJV2b6ZEBv1ErErxt4A9dm1Asy9XKOU6SE34+LBV1YfS02+BdlK7zo4E/qr9
 UCfctHFyJMhUhq4qX8aQJVllsS/IBH2sfF+62nuVDVGOIyq22Q5WFeO7malldApgnO/9
 lpOynldKVsR4v09+91ZtnByQ/3fpKTl49NpaLy3v2J76SP38p0gkLCM61zdzt+zM2tC1
 nCeKRg15aDi52JBdRWwya/vZwaoRv7O+zGN7TcrpeWNjfS2hILRnAQfnvNmVdZWPJC3V
 uqCg==
X-Gm-Message-State: AOAM532r0PxRMW7KiVFRzFGLV97YDSjErfwIc5qZ9wjfK605rqPsbv1b
 h+VkWFHmAte3tNPE+yUQuwG/pIE9pOT+Qw==
X-Google-Smtp-Source: ABdhPJzreRBM4w7XIXGAidF37vEwfz20TW8Rnd4DrRNkgou/anitriXj/rnRr8fr1ZRdgzct+AxLEQ==
X-Received: by 2002:aa7:ce0b:: with SMTP id d11mr20734521edv.357.1597778164577; 
 Tue, 18 Aug 2020 12:16:04 -0700 (PDT)
Received: from mail-ej1-f45.google.com (mail-ej1-f45.google.com.
 [209.85.218.45])
 by smtp.gmail.com with ESMTPSA id j5sm16853095ejk.87.2020.08.18.12.16.04
 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
 Tue, 18 Aug 2020 12:16:04 -0700 (PDT)
Received: by mail-ej1-f45.google.com with SMTP id jp10so23446922ejb.0;
 Tue, 18 Aug 2020 12:16:04 -0700 (PDT)
X-Received: by 2002:a17:907:2115:: with SMTP id
 qn21mr22642119ejb.157.1597778163989; 
 Tue, 18 Aug 2020 12:16:03 -0700 (PDT)
MIME-Version: 1.0
From: Shivank Garg <shivank@freebsd.org>
Date: Wed, 19 Aug 2020 00:45:48 +0530
X-Gmail-Original-Message-ID: <CAOVCmzHXOu1NHzU97emxJh4vvhkN8s+7NMBRUTaDZ4nMmKqaRw@mail.gmail.com>
Message-ID: <CAOVCmzHXOu1NHzU97emxJh4vvhkN8s+7NMBRUTaDZ4nMmKqaRw@mail.gmail.com>
Subject: [GSoC'20 Weekly Update] Adding audit(4) support to NFS
To: soc-status@freebsd.org, Alan Somers <asomers@freebsd.org>
X-Rspamd-Queue-Id: 4BWLHC27yzz4Wj3
X-Spamd-Bar: /
Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none;
 spf=pass (mx1.freebsd.org: domain of shivankgarg98@gmail.com designates
 209.85.208.46 as permitted sender) smtp.mailfrom=shivankgarg98@gmail.com
X-Spamd-Result: default: False [-0.15 / 15.00]; ARC_NA(0.00)[];
 RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_TLS_ALL(0.00)[];
 FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[];
 R_SPF_ALLOW(-0.20)[+ip4:209.85.128.0/17:c];
 TO_MATCH_ENVRCPT_ALL(0.00)[];
 MIME_GOOD(-0.10)[multipart/alternative,text/plain];
 DMARC_NA(0.00)[freebsd.org]; RCVD_COUNT_THREE(0.00)[4];
 NEURAL_HAM_SHORT(-0.15)[-0.151]; RCPT_COUNT_TWO(0.00)[2];
 RCVD_IN_DNSWL_NONE(0.00)[209.85.208.46:from];
 FORGED_SENDER(0.30)[shivank@freebsd.org,shivankgarg98@gmail.com];
 RWL_MAILSPIKE_POSSIBLE(0.00)[209.85.208.46:from];
 R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~];
 ASN(0.00)[asn:15169, ipnet:209.85.128.0/17, country:US];
 FROM_NEQ_ENVFROM(0.00)[shivank@freebsd.org,shivankgarg98@gmail.com];
 FREEMAIL_ENVFROM(0.00)[gmail.com];
 MAILMAN_DEST(0.00)[soc-status]
Content-Type: text/plain; charset="UTF-8"
X-Content-Filtered-By: Mailman/MimeDel 2.1.33
X-BeenThere: soc-status@freebsd.org
X-Mailman-Version: 2.1.33
Precedence: list
List-Id: Summer of Code Status Reports and Discussion <soc-status.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/soc-status>,
 <mailto:soc-status-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/soc-status/>
List-Post: <mailto:soc-status@freebsd.org>
List-Help: <mailto:soc-status-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/soc-status>,
 <mailto:soc-status-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Aug 2020 19:16:08 -0000

Hi,

This project aims to add audit(4) support to NFS, which will allow
auditd(8) to just run on the NFS server and audit all activities within the
NFS network. Audit works mostly on the syscall level and NFS is implemented
within the kernel, which means the NFS RPCs don't generate any audit
records on the server.
Note that audit(4) can still be used on the NFS network but auditd(8) must
run on every NFS client.

This week I did the following:
* Wrote NFSv4 Audit Test Suite Skeleton.
* wrote success/failure tests for around 15 NFSv4 Sub-operations.
* reading RFC 7530 for NFSv4 sub-operation cross-reference.

Currently, I'm:
* auditing remaining NFSv4 Subops.
* Wrote Tests for those sub-ops.
* starting to document my work.

Please, do Check this project on
Github: https://github.com/shivankgarg98/freebsd/tree/user/shivank/nfs_audit
NFSv4 audit feature branch:
https://github.com/shivankgarg98/freebsd/tree/user/shivank/nfsv4_audit
Project wiki:
https://wiki.freebsd.org/SummerOfCode2020Projects/AddAuditSupportToNFS
TestSuite: https://github.com/shivankgarg98/NFSAuditTestSuite

Please feel free to share your ideas and feedback on this project.

Best Regards,
Shivank Garg