mirror of
				https://github.com/Icinga/icinga2.git
				synced 2025-10-26 08:43:51 +01:00 
			
		
		
		
	
		
			
				
	
	
		
			352 lines
		
	
	
		
			10 KiB
		
	
	
	
		
			C++
		
	
	
	
	
	
			
		
		
	
	
			352 lines
		
	
	
		
			10 KiB
		
	
	
	
		
			C++
		
	
	
	
	
	
| /******************************************************************************
 | |
|  * Icinga 2                                                                   *
 | |
|  * Copyright (C) 2012-2015 Icinga Development Team (http://www.icinga.org)    *
 | |
|  *                                                                            *
 | |
|  * This program is free software; you can redistribute it and/or              *
 | |
|  * modify it under the terms of the GNU General Public License                *
 | |
|  * as published by the Free Software Foundation; either version 2             *
 | |
|  * of the License, or (at your option) any later version.                     *
 | |
|  *                                                                            *
 | |
|  * This program is distributed in the hope that it will be useful,            *
 | |
|  * but WITHOUT ANY WARRANTY; without even the implied warranty of             *
 | |
|  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the              *
 | |
|  * GNU General Public License for more details.                               *
 | |
|  *                                                                            *
 | |
|  * You should have received a copy of the GNU General Public License          *
 | |
|  * along with this program; if not, write to the Free Software Foundation     *
 | |
|  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA.             *
 | |
|  ******************************************************************************/
 | |
| #include <Windows.h>
 | |
| #include <Shlwapi.h>
 | |
| #include <tlhelp32.h>
 | |
| #include <iostream>
 | |
| 
 | |
| #include "thresholds.h"
 | |
| 
 | |
| #include "boost/program_options.hpp"
 | |
| 
 | |
| #define VERSION 1.0
 | |
| 
 | |
| namespace po = boost::program_options;
 | |
| 
 | |
| using std::endl; using std::wstring; using std::wcout;
 | |
| using std::cout;
 | |
| 
 | |
| static BOOL debug = FALSE;
 | |
| 
 | |
| struct printInfoStruct 
 | |
| {
 | |
| 	threshold warn, crit;
 | |
| 	wstring user;
 | |
| };
 | |
| 
 | |
| static int countProcs();
 | |
| static int countProcs(const wstring);
 | |
| static int parseArguments(int, wchar_t **, po::variables_map&, printInfoStruct&);
 | |
| static int printOutput(const int, printInfoStruct&);
 | |
| 
 | |
| int wmain(int argc, wchar_t **argv) 
 | |
| {
 | |
| 	po::variables_map vm;
 | |
| 	printInfoStruct printInfo = { };
 | |
| 
 | |
| 	int r = parseArguments(argc, argv, vm, printInfo);
 | |
| 
 | |
| 	if (r != -1)
 | |
| 		return r;
 | |
| 
 | |
| 	if(!printInfo.user.empty())
 | |
| 		return printOutput(countProcs(printInfo.user), printInfo);
 | |
| 
 | |
| 	return printOutput(countProcs(), printInfo);
 | |
| }
 | |
| 
 | |
| int parseArguments(int ac, wchar_t **av, po::variables_map& vm, printInfoStruct& printInfo) 
 | |
| {
 | |
| 	wchar_t namePath[MAX_PATH];
 | |
| 	GetModuleFileName(NULL, namePath, MAX_PATH);
 | |
| 	wchar_t *progName = PathFindFileName(namePath);
 | |
| 
 | |
| 	po::options_description desc;
 | |
| 
 | |
| 	desc.add_options()
 | |
| 		("help,h", "print help message and exit")
 | |
| 		("version,V", "print version and exit")
 | |
| 		("debug,d", "Verbose/Debug output")
 | |
| 		("user,u", po::wvalue<wstring>(), "count only processes by user [arg]")
 | |
| 		("warning,w", po::wvalue<wstring>(), "warning threshold")
 | |
| 		("critical,c", po::wvalue<wstring>(), "critical threshold")
 | |
| 		;
 | |
| 
 | |
| 	po::basic_command_line_parser<wchar_t> parser(ac, av);
 | |
| 
 | |
| 	try {
 | |
| 		po::store(
 | |
| 			parser
 | |
| 			.options(desc)
 | |
| 			.style(
 | |
| 			po::command_line_style::unix_style |
 | |
| 			po::command_line_style::allow_long_disguise)
 | |
| 			.run(),
 | |
| 			vm);
 | |
| 		vm.notify();
 | |
| 	} catch (std::exception& e) {
 | |
| 		std::cout << e.what() << endl << desc << endl;
 | |
| 		return 3;
 | |
| 	}
 | |
| 
 | |
| 	if (vm.count("help")) {
 | |
| 		wcout << progName << " Help\n\tVersion: " << VERSION << endl;
 | |
| 		wprintf(
 | |
| 			L"%s is a simple program to check a machines processes.\n"
 | |
| 			L"You can use the following options to define its behaviour:\n\n", progName);
 | |
| 		cout << desc;
 | |
| 		wprintf(
 | |
| 			L"\nIt will then output a string looking something like this:\n\n"
 | |
| 			L"\tPROCS WARNING 67 | load=67;50;90;0\n\n"
 | |
| 			L"\"PROCS\" being the type of the check, \"WARNING\" the returned status\n"
 | |
| 			L"and \"67\" is the returned value.\n"
 | |
| 			L"The performance data is found behind the \"|\", in order:\n"
 | |
| 			L"returned value, warning threshold, critical threshold, minimal value and,\n"
 | |
| 			L"if applicable, the maximal value. Performance data will only be displayed when\n"
 | |
| 			L"you set at least one threshold\n\n"
 | |
| 			L"For \"-user\" option keep in mind you need root to see other users processes\n\n"
 | |
| 			L"%s' exit codes denote the following:\n"
 | |
| 			L" 0\tOK,\n\tNo Thresholds were broken or the programs check part was not executed\n"
 | |
| 			L" 1\tWARNING,\n\tThe warning, but not the critical threshold was broken\n"
 | |
| 			L" 2\tCRITICAL,\n\tThe critical threshold was broken\n"
 | |
| 			L" 3\tUNKNOWN, \n\tThe program experienced an internal or input error\n\n"
 | |
| 			L"Threshold syntax:\n\n"
 | |
| 			L"-w THRESHOLD\n"
 | |
| 			L"warn if threshold is broken, which means VALUE > THRESHOLD\n"
 | |
| 			L"(unless stated differently)\n\n"
 | |
| 			L"-w !THRESHOLD\n"
 | |
| 			L"inverts threshold check, VALUE < THRESHOLD (analogous to above)\n\n"
 | |
| 			L"-w [THR1-THR2]\n"
 | |
| 			L"warn is VALUE is inside the range spanned by THR1 and THR2\n\n"
 | |
| 			L"-w ![THR1-THR2]\n"
 | |
| 			L"warn if VALUE is outside the range spanned by THR1 and THR2\n\n"
 | |
| 			L"-w THRESHOLD%%\n"
 | |
| 			L"if the plugin accepts percentage based thresholds those will be used.\n"
 | |
| 			L"Does nothing if the plugin does not accept percentages, or only uses\n"
 | |
| 			L"percentage thresholds. Ranges can be used with \"%%\", but both range values need\n"
 | |
| 			L"to end with a percentage sign.\n\n"
 | |
| 			L"All of these options work with the critical threshold \"-c\" too."
 | |
| 			, progName);
 | |
| 		cout << endl;
 | |
| 		return 0;
 | |
| 	}
 | |
| 
 | |
| 	if (vm.count("version")) {
 | |
| 		std::cout << "Version: " << VERSION << endl;
 | |
| 		return 0;
 | |
| 	}
 | |
| 
 | |
| 	if (vm.count("warning")) {
 | |
| 		try {
 | |
| 			printInfo.warn = threshold(vm["warning"].as<wstring>());
 | |
| 		} catch (std::invalid_argument& e) {
 | |
| 			cout << e.what() << endl;
 | |
| 			return 3;
 | |
| 		}
 | |
| 	}
 | |
| 	if (vm.count("critical")) {
 | |
| 		try {
 | |
| 			printInfo.crit = threshold(vm["critical"].as<wstring>());
 | |
| 		} catch (std::invalid_argument& e) {
 | |
| 			cout << e.what() << endl;
 | |
| 			return 3;
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	if (vm.count("user")) 
 | |
| 		printInfo.user = vm["user"].as<wstring>();
 | |
| 
 | |
| 	if (vm.count("debug"))
 | |
| 		debug = TRUE;
 | |
| 
 | |
| 	return -1;
 | |
| }
 | |
| 
 | |
| int printOutput(const int numProcs, printInfoStruct& printInfo)
 | |
| {
 | |
| 	if (debug)
 | |
| 		wcout << L"Constructing output string" << endl;
 | |
| 
 | |
| 	state state = OK;
 | |
| 
 | |
| 	if (printInfo.warn.rend(numProcs))
 | |
| 		state = WARNING;
 | |
| 
 | |
| 	if (printInfo.crit.rend(numProcs))
 | |
| 		state = CRITICAL;
 | |
| 
 | |
| 	wstring user = L"";
 | |
| 	if (!printInfo.user.empty())
 | |
| 		user.append(L" processes of user ").append(printInfo.user);
 | |
| 
 | |
| 	switch (state) {
 | |
| 	case OK:
 | |
| 		wcout << L"PROCS OK " << numProcs << user << L" | procs=" << numProcs << L";"
 | |
| 			<< printInfo.warn.pString() << L";" << printInfo.crit.pString() << L";0;" << endl;
 | |
| 		break;
 | |
| 	case WARNING:
 | |
| 		wcout << L"PROCS WARNING " << numProcs << user << L" | procs=" << numProcs << L";"
 | |
| 			<< printInfo.warn.pString() << L";" << printInfo.crit.pString() << L";0;" << endl;
 | |
| 		break;
 | |
| 	case CRITICAL:
 | |
| 		wcout << L"PROCS CRITICAL " << numProcs << user << L" | procs=" << numProcs << L";"
 | |
| 			<< printInfo.warn.pString() << L";" << printInfo.crit.pString() << L";0;" << endl;
 | |
| 		break;
 | |
| 	}
 | |
| 
 | |
| 	return state;
 | |
| }
 | |
| 
 | |
| int countProcs() 
 | |
| {
 | |
| 	if (debug)
 | |
| 		wcout << L"Counting all processes" << endl;
 | |
| 
 | |
| 	HANDLE hProcessSnap = NULL;
 | |
| 	PROCESSENTRY32 pe32;
 | |
| 
 | |
| 	if (debug)
 | |
| 		wcout << L"Creating snapshot" << endl;
 | |
| 
 | |
| 	hProcessSnap = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0);
 | |
| 	if (hProcessSnap == INVALID_HANDLE_VALUE)
 | |
| 		return -1;
 | |
| 
 | |
| 	pe32.dwSize = sizeof(PROCESSENTRY32);
 | |
| 
 | |
| 	if (debug)
 | |
| 		wcout << L"Grabbing first proccess" << endl;
 | |
| 
 | |
| 	if (!Process32First(hProcessSnap, &pe32)) {
 | |
| 		CloseHandle(hProcessSnap);
 | |
| 		return -1;
 | |
| 	}
 | |
| 
 | |
| 	int numProcs = 0;
 | |
| 
 | |
| 	if (debug)
 | |
| 		wcout << L"Counting processes..." << endl;
 | |
| 
 | |
| 	do {
 | |
| 		++numProcs;
 | |
| 	} while (Process32Next(hProcessSnap, &pe32));
 | |
| 
 | |
| 	if (debug)
 | |
| 		wcout << L"Found " << numProcs << L" processes. Cleaning up udn returning" << endl;
 | |
| 
 | |
| 	if (hProcessSnap)
 | |
| 		CloseHandle(hProcessSnap);
 | |
| 	return numProcs;
 | |
| }
 | |
| 
 | |
| int countProcs(const wstring user) 
 | |
| {
 | |
| 	if (debug)
 | |
| 		wcout << L"Counting all processes of user" << user << endl;
 | |
| 
 | |
| 	const wchar_t *wuser = user.c_str();
 | |
| 	int numProcs = 0;
 | |
| 
 | |
| 	HANDLE hProcessSnap, hProcess = NULL, hToken = NULL;
 | |
| 	PROCESSENTRY32 pe32;
 | |
| 	DWORD dwReturnLength, dwAcctName, dwDomainName;
 | |
| 	PTOKEN_USER pSIDTokenUser = NULL;
 | |
| 	SID_NAME_USE sidNameUse;
 | |
| 	LPWSTR AcctName, DomainName;
 | |
| 
 | |
| 	if (debug)
 | |
| 		wcout << L"Creating snapshot" << endl;
 | |
| 
 | |
| 	hProcessSnap = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0);
 | |
| 	if (hProcessSnap == INVALID_HANDLE_VALUE)
 | |
| 		goto die;
 | |
| 
 | |
| 	pe32.dwSize = sizeof(PROCESSENTRY32);
 | |
| 
 | |
| 	if (debug)
 | |
| 		wcout << L"Grabbing first proccess" << endl;
 | |
| 
 | |
| 	if (!Process32First(hProcessSnap, &pe32))
 | |
| 		goto die;
 | |
| 
 | |
| 	if (debug)
 | |
| 		wcout << L"Counting processes..." << endl;
 | |
| 
 | |
| 	do {
 | |
| 		if (debug)
 | |
| 			wcout << L"Getting process token" << endl;
 | |
| 
 | |
| 		//get ProcessToken
 | |
| 		hProcess = OpenProcess(PROCESS_QUERY_INFORMATION, FALSE, pe32.th32ProcessID);
 | |
| 		if (!OpenProcessToken(hProcess, TOKEN_QUERY, &hToken)) 
 | |
| 			//Won't count pid 0 (system idle) and 4/8 (Sytem)
 | |
| 			continue;
 | |
| 
 | |
| 		//Get dwReturnLength in first call
 | |
| 		dwReturnLength = 1;
 | |
| 		if (!GetTokenInformation(hToken, TokenUser, NULL, 0, &dwReturnLength)
 | |
| 			&& GetLastError() != ERROR_INSUFFICIENT_BUFFER) 
 | |
| 			continue;
 | |
| 
 | |
| 		pSIDTokenUser = reinterpret_cast<PTOKEN_USER>(new BYTE[dwReturnLength]);
 | |
| 		memset(pSIDTokenUser, 0, dwReturnLength);
 | |
| 
 | |
| 		if (debug)
 | |
| 			wcout << L"Received token, saving information" << endl;
 | |
| 
 | |
| 		//write Info in pSIDTokenUser
 | |
| 		if (!GetTokenInformation(hToken, TokenUser, pSIDTokenUser, dwReturnLength, NULL))
 | |
| 			continue;
 | |
| 
 | |
| 		AcctName = NULL;
 | |
| 		DomainName = NULL;
 | |
| 		dwAcctName = 1;
 | |
| 		dwDomainName = 1;
 | |
| 		
 | |
| 		if (debug)
 | |
| 			wcout << L"Looking up SID" << endl;
 | |
| 
 | |
| 		//get dwAcctName and dwDomainName size
 | |
| 		if (!LookupAccountSid(NULL, pSIDTokenUser->User.Sid, AcctName,
 | |
| 			(LPDWORD)&dwAcctName, DomainName, (LPDWORD)&dwDomainName, &sidNameUse)
 | |
| 			&& GetLastError() != ERROR_INSUFFICIENT_BUFFER)
 | |
| 			continue;
 | |
| 		
 | |
| 		AcctName = reinterpret_cast<LPWSTR>(new WCHAR[dwAcctName]);
 | |
| 		DomainName = reinterpret_cast<LPWSTR>(new WCHAR[dwDomainName]);
 | |
| 
 | |
| 		if (!LookupAccountSid(NULL, pSIDTokenUser->User.Sid, AcctName,
 | |
| 			(LPDWORD)&dwAcctName, DomainName, (LPDWORD)&dwDomainName, &sidNameUse))
 | |
| 			continue;
 | |
| 
 | |
| 		if (debug)
 | |
| 			wcout << L"Comparing " << AcctName << L" to " << wuser << endl;
 | |
| 		if (!wcscmp(AcctName, wuser)) {
 | |
| 			++numProcs;
 | |
| 			if (debug)
 | |
| 				wcout << L"Is process of " << wuser << L" (" << numProcs << L")" << endl;
 | |
| 		}
 | |
| 		
 | |
| 		delete[] reinterpret_cast<LPWSTR>(AcctName);
 | |
| 		delete[] reinterpret_cast<LPWSTR>(DomainName);
 | |
| 
 | |
| 	} while (Process32Next(hProcessSnap, &pe32));
 | |
| 
 | |
| die:
 | |
| 	if (hProcessSnap)
 | |
| 		CloseHandle(hProcessSnap);
 | |
| 	if (hProcess)
 | |
| 		CloseHandle(hProcess);
 | |
| 	if (hToken)
 | |
| 		CloseHandle(hToken);
 | |
| 	if (pSIDTokenUser)
 | |
| 		delete[] reinterpret_cast<PTOKEN_USER>(pSIDTokenUser);
 | |
| 	return numProcs;
 | |
| }
 |