ホーム › Security.Authorization › AuthzReportSecurityEvent
AuthzReportSecurityEvent
関数可変長引数セキュリティ監査イベントを報告(記録)する。
シグネチャ
// AUTHZ.dll
#include <windows.h>
BOOL AuthzReportSecurityEvent(
DWORD dwFlags,
AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE hEventProvider,
DWORD dwAuditId,
PSID pUserSid, // optional
DWORD dwCount,
...
);
// ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。パラメーター
| 名前 | 型 | 方向 |
|---|---|---|
| dwFlags | DWORD | in |
| hEventProvider | AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE | inout |
| dwAuditId | DWORD | in |
| pUserSid | PSID | inoptional |
| dwCount | DWORD | in |
戻り値の型: BOOL
各言語での呼び出し定義
// AUTHZ.dll
#include <windows.h>
BOOL AuthzReportSecurityEvent(
DWORD dwFlags,
AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE hEventProvider,
DWORD dwAuditId,
PSID pUserSid, // optional
DWORD dwCount,
...
);
// ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。[return: MarshalAs(UnmanagedType.Bool)]
[DllImport("AUTHZ.dll", SetLastError = true, ExactSpelling = true, CallingConvention = CallingConvention.Cdecl)]
static extern bool AuthzReportSecurityEvent(
uint dwFlags, // DWORD
IntPtr hEventProvider, // AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out
uint dwAuditId, // DWORD
IntPtr pUserSid, // PSID optional
uint dwCount, // DWORD
__arglist
);
// ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。<DllImport("AUTHZ.dll", SetLastError:=True, ExactSpelling:=True, CallingConvention:=CallingConvention.Cdecl)>
Public Shared Function AuthzReportSecurityEvent(
dwFlags As UInteger, ' DWORD
hEventProvider As IntPtr, ' AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out
dwAuditId As UInteger, ' DWORD
pUserSid As IntPtr, ' PSID optional
dwCount As UInteger ' DWORD
) As Boolean
End Function
' ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。' dwFlags : DWORD
' hEventProvider : AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out
' dwAuditId : DWORD
' pUserSid : PSID optional
' dwCount : DWORD
Declare PtrSafe Function AuthzReportSecurityEvent Lib "authz" ( _
ByVal dwFlags As Long, _
ByVal hEventProvider As LongPtr, _
ByVal dwAuditId As Long, _
ByVal pUserSid As LongPtr, _
ByVal dwCount As Long) As Long
' VBA7前提(PtrSafe)。32bit Office では LongPtr→Long。Integer=16bit / Long=32bit / LongLong=64bit。
' ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。import ctypes
from ctypes import wintypes
AuthzReportSecurityEvent = ctypes.cdll.authz.AuthzReportSecurityEvent
AuthzReportSecurityEvent.restype = wintypes.BOOL
AuthzReportSecurityEvent.argtypes = [
wintypes.DWORD, # dwFlags : DWORD
wintypes.HANDLE, # hEventProvider : AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out
wintypes.DWORD, # dwAuditId : DWORD
wintypes.HANDLE, # pUserSid : PSID optional
wintypes.DWORD, # dwCount : DWORD
]
# GetLastError: use ctypes.GetLastError() (or ctypes.WinDLL(use_last_error=True))
# ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。require 'fiddle'
require 'fiddle/import'
lib = Fiddle.dlopen('AUTHZ.dll')
AuthzReportSecurityEvent = Fiddle::Function.new(
lib['AuthzReportSecurityEvent'],
[
-Fiddle::TYPE_INT, # dwFlags : DWORD
Fiddle::TYPE_VOIDP, # hEventProvider : AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out
-Fiddle::TYPE_INT, # dwAuditId : DWORD
Fiddle::TYPE_VOIDP, # pUserSid : PSID optional
-Fiddle::TYPE_INT, # dwCount : DWORD
],
Fiddle::TYPE_INT, Fiddle::Function::CDECL)
# ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。#[link(name = "authz")]
extern "C" {
fn AuthzReportSecurityEvent(
dwFlags: u32, // DWORD
hEventProvider: *mut core::ffi::c_void, // AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out
dwAuditId: u32, // DWORD
pUserSid: *mut core::ffi::c_void, // PSID optional
dwCount: u32, // DWORD
...
) -> i32;
}
// crates: windows-sys provides ready-made bindings for this API.
// ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。$sig = @"
[return: MarshalAs(UnmanagedType.Bool)]
[DllImport("AUTHZ.dll", SetLastError = true, CallingConvention = CallingConvention.Cdecl)]
public static extern bool AuthzReportSecurityEvent(uint dwFlags, IntPtr hEventProvider, uint dwAuditId, IntPtr pUserSid, uint dwCount);
"@
$api = Add-Type -MemberDefinition $sig -Name 'AUTHZ_AuthzReportSecurityEvent' -Namespace Win32 -PassThru
# $api::AuthzReportSecurityEvent(dwFlags, hEventProvider, dwAuditId, pUserSid, dwCount)
# ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。#uselib "AUTHZ.dll"
#func global AuthzReportSecurityEvent "AuthzReportSecurityEvent" sptr, sptr, sptr, sptr, sptr
; AuthzReportSecurityEvent dwFlags, hEventProvider, dwAuditId, pUserSid, dwCount ; 戻り値は stat
; dwFlags : DWORD -> "sptr"
; hEventProvider : AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out -> "sptr"
; dwAuditId : DWORD -> "sptr"
; pUserSid : PSID optional -> "sptr"
; dwCount : DWORD -> "sptr"
; ※HSP3.7は #func のため戻り値はシステム変数 stat に格納されます。
; ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。#uselib "AUTHZ.dll"
#cfunc global AuthzReportSecurityEvent "AuthzReportSecurityEvent" int, sptr, int, sptr, int
; res = AuthzReportSecurityEvent(dwFlags, hEventProvider, dwAuditId, pUserSid, dwCount)
; dwFlags : DWORD -> "int"
; hEventProvider : AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out -> "sptr"
; dwAuditId : DWORD -> "int"
; pUserSid : PSID optional -> "sptr"
; dwCount : DWORD -> "int"
; ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。; BOOL AuthzReportSecurityEvent(DWORD dwFlags, AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE hEventProvider, DWORD dwAuditId, PSID pUserSid, DWORD dwCount)
#uselib "AUTHZ.dll"
#cfunc global AuthzReportSecurityEvent "AuthzReportSecurityEvent" int, intptr, int, intptr, int
; res = AuthzReportSecurityEvent(dwFlags, hEventProvider, dwAuditId, pUserSid, dwCount)
; dwFlags : DWORD -> "int"
; hEventProvider : AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out -> "intptr"
; dwAuditId : DWORD -> "int"
; pUserSid : PSID optional -> "intptr"
; dwCount : DWORD -> "int"
; ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。import (
"golang.org/x/sys/windows"
"unsafe"
)
var (
authz = windows.NewLazySystemDLL("AUTHZ.dll")
procAuthzReportSecurityEvent = authz.NewProc("AuthzReportSecurityEvent")
)
// dwFlags (DWORD), hEventProvider (AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out), dwAuditId (DWORD), pUserSid (PSID optional), dwCount (DWORD)
r1, _, err := procAuthzReportSecurityEvent.Call(
uintptr(dwFlags),
uintptr(hEventProvider),
uintptr(dwAuditId),
uintptr(pUserSid),
uintptr(dwCount),
)
_ = err // syscall.Errno (valid when the call sets last-error)
_ = r1 // BOOL
// ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。function AuthzReportSecurityEvent(
dwFlags: DWORD; // DWORD
hEventProvider: THandle; // AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out
dwAuditId: DWORD; // DWORD
pUserSid: THandle; // PSID optional
dwCount: DWORD // DWORD
): BOOL; cdecl; varargs;
external 'AUTHZ.dll' name 'AuthzReportSecurityEvent';
// ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。result := DllCall("AUTHZ\AuthzReportSecurityEvent"
, "UInt", dwFlags ; DWORD
, "Ptr", hEventProvider ; AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out
, "UInt", dwAuditId ; DWORD
, "Ptr", pUserSid ; PSID optional
, "UInt", dwCount ; DWORD
, "Cdecl Int") ; return: BOOL
; ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。●AuthzReportSecurityEvent(dwFlags, hEventProvider, dwAuditId, pUserSid, dwCount) = DLL("AUTHZ.dll", "bool AuthzReportSecurityEvent(dword, void*, dword, void*, dword)")
# 呼び出し: AuthzReportSecurityEvent(dwFlags, hEventProvider, dwAuditId, pUserSid, dwCount)
# dwFlags : DWORD -> "dword"
# hEventProvider : AUTHZ_SECURITY_EVENT_PROVIDER_HANDLE in/out -> "void*"
# dwAuditId : DWORD -> "dword"
# pUserSid : PSID optional -> "void*"
# dwCount : DWORD -> "dword"
# なでしこ1は32bit・ANSI(Shift_JIS)。文字列=char*(ANSI)、ポインタ/ハンドル=void*(4byte)。
# ※cdecl関数。DLL()宣言はstdcall前提。cdeclは EXEC_PTR(`cdecl`,…) を使用。
# ※可変長引数。DLL()は固定引数のみ。追加引数は EXEC_PTR で渡してください。
# ※可変長引数(printf形式・cdecl)。上記の固定引数の後に、書式に応じた引数を追加で渡します。