mirror of
				https://github.com/Icinga/icinga2.git
				synced 2025-10-25 17:24:10 +02:00 
			
		
		
		
	
		
			
				
	
	
		
			343 lines
		
	
	
		
			10 KiB
		
	
	
	
		
			C++
		
	
	
	
	
	
			
		
		
	
	
			343 lines
		
	
	
		
			10 KiB
		
	
	
	
		
			C++
		
	
	
	
	
	
| /******************************************************************************
 | |
|  * Icinga 2                                                                   *
 | |
|  * Copyright (C) 2012-2018 Icinga Development Team (https://icinga.com/)      *
 | |
|  *                                                                            *
 | |
|  * This program is free software; you can redistribute it and/or              *
 | |
|  * modify it under the terms of the GNU General Public License                *
 | |
|  * as published by the Free Software Foundation; either version 2             *
 | |
|  * of the License, or (at your option) any later version.                     *
 | |
|  *                                                                            *
 | |
|  * This program is distributed in the hope that it will be useful,            *
 | |
|  * but WITHOUT ANY WARRANTY; without even the implied warranty of             *
 | |
|  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the              *
 | |
|  * GNU General Public License for more details.                               *
 | |
|  *                                                                            *
 | |
|  * You should have received a copy of the GNU General Public License          *
 | |
|  * along with this program; if not, write to the Free Software Foundation     *
 | |
|  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA.             *
 | |
|  ******************************************************************************/
 | |
| 
 | |
| #include "plugins/thresholds.hpp"
 | |
| #include <boost/program_options.hpp>
 | |
| #include <iostream>
 | |
| #include <windows.h>
 | |
| #include <shlwapi.h>
 | |
| #include <tlhelp32.h>
 | |
| 
 | |
| #define VERSION 1.0
 | |
| 
 | |
| namespace po = boost::program_options;
 | |
| 
 | |
| struct printInfoStruct
 | |
| {
 | |
| 	threshold warn;
 | |
| 	threshold crit;
 | |
| 	std::wstring user;
 | |
| };
 | |
| 
 | |
| static bool l_Debug;
 | |
| 
 | |
| static int parseArguments(int ac, WCHAR **av, po::variables_map& vm, printInfoStruct& printInfo)
 | |
| {
 | |
| 	WCHAR namePath[MAX_PATH];
 | |
| 	GetModuleFileName(NULL, namePath, MAX_PATH);
 | |
| 	WCHAR *progName = PathFindFileName(namePath);
 | |
| 
 | |
| 	po::options_description desc;
 | |
| 
 | |
| 	desc.add_options()
 | |
| 		("help,h", "Print help message and exit")
 | |
| 		("version,V", "Print version and exit")
 | |
| 		("debug,d", "Verbose/Debug output")
 | |
| 		("user,u", po::wvalue<std::wstring>(), "Count only processes of user")
 | |
| 		("warning,w", po::wvalue<std::wstring>(), "Warning threshold")
 | |
| 		("critical,c", po::wvalue<std::wstring>(), "Critical threshold")
 | |
| 		;
 | |
| 
 | |
| 	po::wcommand_line_parser parser(ac, av);
 | |
| 
 | |
| 	try {
 | |
| 		po::store(
 | |
| 			parser
 | |
| 			.options(desc)
 | |
| 			.style(
 | |
| 				po::command_line_style::unix_style |
 | |
| 				po::command_line_style::allow_long_disguise)
 | |
| 			.run(),
 | |
| 			vm);
 | |
| 		vm.notify();
 | |
| 	} catch (const std::exception& e) {
 | |
| 		std::cout << e.what() << '\n' << desc << '\n';
 | |
| 		return 3;
 | |
| 	}
 | |
| 
 | |
| 	if (vm.count("help")) {
 | |
| 		std::wcout << progName << " Help\n\tVersion: " << VERSION << '\n';
 | |
| 		wprintf(
 | |
| 			L"%s is a simple program to check a machines processes.\n"
 | |
| 			L"You can use the following options to define its behaviour:\n\n", progName);
 | |
| 		std::cout << desc;
 | |
| 		wprintf(
 | |
| 			L"\nIt will then output a string looking something like this:\n\n"
 | |
| 			L"\tPROCS WARNING 67 | load=67;50;90;0\n\n"
 | |
| 			L"\"PROCS\" being the type of the check, \"WARNING\" the returned status\n"
 | |
| 			L"and \"67\" is the returned value.\n"
 | |
| 			L"The performance data is found behind the \"|\", in order:\n"
 | |
| 			L"returned value, warning threshold, critical threshold, minimal value and,\n"
 | |
| 			L"if applicable, the maximal value. Performance data will only be displayed when\n"
 | |
| 			L"you set at least one threshold\n\n"
 | |
| 			L"For \"-user\" option keep in mind you need root to see other users processes\n\n"
 | |
| 			L"%s' exit codes denote the following:\n"
 | |
| 			L" 0\tOK,\n\tNo Thresholds were broken or the programs check part was not executed\n"
 | |
| 			L" 1\tWARNING,\n\tThe warning, but not the critical threshold was broken\n"
 | |
| 			L" 2\tCRITICAL,\n\tThe critical threshold was broken\n"
 | |
| 			L" 3\tUNKNOWN, \n\tThe program experienced an internal or input error\n\n"
 | |
| 			L"Threshold syntax:\n\n"
 | |
| 			L"-w THRESHOLD\n"
 | |
| 			L"warn if threshold is broken, which means VALUE > THRESHOLD\n"
 | |
| 			L"(unless stated differently)\n\n"
 | |
| 			L"-w !THRESHOLD\n"
 | |
| 			L"inverts threshold check, VALUE < THRESHOLD (analogous to above)\n\n"
 | |
| 			L"-w [THR1-THR2]\n"
 | |
| 			L"warn is VALUE is inside the range spanned by THR1 and THR2\n\n"
 | |
| 			L"-w ![THR1-THR2]\n"
 | |
| 			L"warn if VALUE is outside the range spanned by THR1 and THR2\n\n"
 | |
| 			L"-w THRESHOLD%%\n"
 | |
| 			L"if the plugin accepts percentage based thresholds those will be used.\n"
 | |
| 			L"Does nothing if the plugin does not accept percentages, or only uses\n"
 | |
| 			L"percentage thresholds. Ranges can be used with \"%%\", but both range values need\n"
 | |
| 			L"to end with a percentage sign.\n\n"
 | |
| 			L"All of these options work with the critical threshold \"-c\" too."
 | |
| 			, progName);
 | |
| 		std::cout << '\n';
 | |
| 		return 0;
 | |
| 	}
 | |
| 
 | |
| 	if (vm.count("version")) {
 | |
| 		std::wcout << "Version: " << VERSION << '\n';
 | |
| 		return 0;
 | |
| 	}
 | |
| 
 | |
| 	if (vm.count("warning")) {
 | |
| 		try {
 | |
| 			printInfo.warn = threshold(vm["warning"].as<std::wstring>());
 | |
| 		} catch (const std::invalid_argument& e) {
 | |
| 			std::cout << e.what() << '\n';
 | |
| 			return 3;
 | |
| 		}
 | |
| 	}
 | |
| 	if (vm.count("critical")) {
 | |
| 		try {
 | |
| 			printInfo.crit = threshold(vm["critical"].as<std::wstring>());
 | |
| 		} catch (const std::invalid_argument& e) {
 | |
| 			std::cout << e.what() << '\n';
 | |
| 			return 3;
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	if (vm.count("user"))
 | |
| 		printInfo.user = vm["user"].as<std::wstring>();
 | |
| 
 | |
| 	l_Debug = vm.count("debug") > 0;
 | |
| 
 | |
| 	return -1;
 | |
| }
 | |
| 
 | |
| static int printOutput(const int numProcs, printInfoStruct& printInfo)
 | |
| {
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Constructing output string" << '\n';
 | |
| 
 | |
| 	state state = OK;
 | |
| 
 | |
| 	if (printInfo.warn.rend(numProcs))
 | |
| 		state = WARNING;
 | |
| 
 | |
| 	if (printInfo.crit.rend(numProcs))
 | |
| 		state = CRITICAL;
 | |
| 
 | |
| 	std::wstring user;
 | |
| 	if (!printInfo.user.empty())
 | |
| 		user = L" processes of user " + printInfo.user;
 | |
| 
 | |
| 	std::wcout << L"PROCS ";
 | |
| 
 | |
| 	switch (state) {
 | |
| 	case OK:
 | |
| 		std::wcout << L"OK";
 | |
| 		break;
 | |
| 	case WARNING:
 | |
| 		std::wcout << L"WARNING";
 | |
| 		break;
 | |
| 	case CRITICAL:
 | |
| 		std::wcout << L"CRITICAL";
 | |
| 		break;
 | |
| 	}
 | |
| 
 | |
| 	std::wcout << L" " << numProcs << user << L" | procs=" << numProcs << L";"
 | |
| 		<< printInfo.warn.pString() << L";" << printInfo.crit.pString() << L";0;" << '\n';
 | |
| 
 | |
| 	return state;
 | |
| }
 | |
| 
 | |
| static int countProcs()
 | |
| {
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Counting all processes" << '\n';
 | |
| 
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Creating snapshot" << '\n';
 | |
| 
 | |
| 	HANDLE hProcessSnap = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0);
 | |
| 	if (hProcessSnap == INVALID_HANDLE_VALUE)
 | |
| 		return -1;
 | |
| 
 | |
| 	PROCESSENTRY32 pe32;
 | |
| 	pe32.dwSize = sizeof(PROCESSENTRY32);
 | |
| 
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Grabbing first proccess" << '\n';
 | |
| 
 | |
| 	if (!Process32First(hProcessSnap, &pe32)) {
 | |
| 		CloseHandle(hProcessSnap);
 | |
| 		return -1;
 | |
| 	}
 | |
| 
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Counting processes..." << '\n';
 | |
| 
 | |
| 	int numProcs = 0;
 | |
| 
 | |
| 	do {
 | |
| 		++numProcs;
 | |
| 	} while (Process32Next(hProcessSnap, &pe32));
 | |
| 
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Found " << numProcs << L" processes. Cleaning up udn returning" << '\n';
 | |
| 
 | |
| 	CloseHandle(hProcessSnap);
 | |
| 
 | |
| 	return numProcs;
 | |
| }
 | |
| 
 | |
| static int countProcs(const std::wstring& user)
 | |
| {
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Counting all processes of user" << user << '\n';
 | |
| 
 | |
| 	const WCHAR *wuser = user.c_str();
 | |
| 	int numProcs = 0;
 | |
| 
 | |
| 	HANDLE hProcessSnap, hProcess = NULL, hToken = NULL;
 | |
| 	PROCESSENTRY32 pe32;
 | |
| 	DWORD dwReturnLength, dwAcctName, dwDomainName;
 | |
| 	PTOKEN_USER pSIDTokenUser = NULL;
 | |
| 	SID_NAME_USE sidNameUse;
 | |
| 	LPWSTR AcctName, DomainName;
 | |
| 
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Creating snapshot" << '\n';
 | |
| 
 | |
| 	hProcessSnap = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0);
 | |
| 	if (hProcessSnap == INVALID_HANDLE_VALUE)
 | |
| 		goto die;
 | |
| 
 | |
| 	pe32.dwSize = sizeof(PROCESSENTRY32);
 | |
| 
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Grabbing first proccess" << '\n';
 | |
| 
 | |
| 	if (!Process32First(hProcessSnap, &pe32))
 | |
| 		goto die;
 | |
| 
 | |
| 	if (l_Debug)
 | |
| 		std::wcout << L"Counting processes..." << '\n';
 | |
| 
 | |
| 	do {
 | |
| 		if (l_Debug)
 | |
| 			std::wcout << L"Getting process token" << '\n';
 | |
| 
 | |
| 		//get ProcessToken
 | |
| 		hProcess = OpenProcess(PROCESS_QUERY_INFORMATION, FALSE, pe32.th32ProcessID);
 | |
| 		if (!OpenProcessToken(hProcess, TOKEN_QUERY, &hToken))
 | |
| 			//Won't count pid 0 (system idle) and 4/8 (Sytem)
 | |
| 			continue;
 | |
| 
 | |
| 		//Get dwReturnLength in first call
 | |
| 		dwReturnLength = 1;
 | |
| 		if (!GetTokenInformation(hToken, TokenUser, NULL, 0, &dwReturnLength)
 | |
| 			&& GetLastError() != ERROR_INSUFFICIENT_BUFFER)
 | |
| 			continue;
 | |
| 
 | |
| 		pSIDTokenUser = reinterpret_cast<PTOKEN_USER>(new BYTE[dwReturnLength]);
 | |
| 		memset(pSIDTokenUser, 0, dwReturnLength);
 | |
| 
 | |
| 		if (l_Debug)
 | |
| 			std::wcout << L"Received token, saving information" << '\n';
 | |
| 
 | |
| 		//write Info in pSIDTokenUser
 | |
| 		if (!GetTokenInformation(hToken, TokenUser, pSIDTokenUser, dwReturnLength, NULL))
 | |
| 			continue;
 | |
| 
 | |
| 		AcctName = NULL;
 | |
| 		DomainName = NULL;
 | |
| 		dwAcctName = 1;
 | |
| 		dwDomainName = 1;
 | |
| 
 | |
| 		if (l_Debug)
 | |
| 			std::wcout << L"Looking up SID" << '\n';
 | |
| 
 | |
| 		//get dwAcctName and dwDomainName size
 | |
| 		if (!LookupAccountSid(NULL, pSIDTokenUser->User.Sid, AcctName,
 | |
| 			(LPDWORD)&dwAcctName, DomainName, (LPDWORD)&dwDomainName, &sidNameUse)
 | |
| 			&& GetLastError() != ERROR_INSUFFICIENT_BUFFER)
 | |
| 			continue;
 | |
| 
 | |
| 		AcctName = reinterpret_cast<LPWSTR>(new WCHAR[dwAcctName]);
 | |
| 		DomainName = reinterpret_cast<LPWSTR>(new WCHAR[dwDomainName]);
 | |
| 
 | |
| 		if (!LookupAccountSid(NULL, pSIDTokenUser->User.Sid, AcctName,
 | |
| 			(LPDWORD)&dwAcctName, DomainName, (LPDWORD)&dwDomainName, &sidNameUse))
 | |
| 			continue;
 | |
| 
 | |
| 		if (l_Debug)
 | |
| 			std::wcout << L"Comparing " << AcctName << L" to " << wuser << '\n';
 | |
| 		if (!wcscmp(AcctName, wuser)) {
 | |
| 			++numProcs;
 | |
| 			if (l_Debug)
 | |
| 				std::wcout << L"Is process of " << wuser << L" (" << numProcs << L")" << '\n';
 | |
| 		}
 | |
| 
 | |
| 		delete[] reinterpret_cast<LPWSTR>(AcctName);
 | |
| 		delete[] reinterpret_cast<LPWSTR>(DomainName);
 | |
| 
 | |
| 	} while (Process32Next(hProcessSnap, &pe32));
 | |
| 
 | |
| die:
 | |
| 	if (hProcessSnap)
 | |
| 		CloseHandle(hProcessSnap);
 | |
| 	if (hProcess)
 | |
| 		CloseHandle(hProcess);
 | |
| 	if (hToken)
 | |
| 		CloseHandle(hToken);
 | |
| 	if (pSIDTokenUser)
 | |
| 		delete[] reinterpret_cast<PTOKEN_USER>(pSIDTokenUser);
 | |
| 	return numProcs;
 | |
| }
 | |
| 
 | |
| int wmain(int argc, WCHAR **argv)
 | |
| {
 | |
| 	po::variables_map vm;
 | |
| 	printInfoStruct printInfo = { };
 | |
| 
 | |
| 	int r = parseArguments(argc, argv, vm, printInfo);
 | |
| 
 | |
| 	if (r != -1)
 | |
| 		return r;
 | |
| 
 | |
| 	if (!printInfo.user.empty())
 | |
| 		return printOutput(countProcs(printInfo.user), printInfo);
 | |
| 
 | |
| 	return printOutput(countProcs(), printInfo);
 | |
| }
 |