[PATCH] audit string fields interface + consumer

Updated patch to dynamically allocate audit rule fields in kernel's internal representation. Added unlikely() calls for testing memory allocation result. Amy Griffis wrote: [Wed Jan 11 2006, 02:02:31PM EST] > Modify audit's kernel-userspace interface to allow the specification > of string fields in audit rules. > > Signed-off-by: Amy Griffis <amy.griffis@hp.com> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> (cherry picked from 5ffc4a863f92351b720fe3e9c5cd647accff9e03 commit)
author: Amy Griffis <amy.griffis@hp.com> 2006-02-07 12:05:27 -0500
committer: Al Viro <viro@zeniv.linux.org.uk> 2006-03-20 14:08:54 -0500
commit: 93315ed6dd12dacfc941f9eb8ca0293aadf99793 (patch)
tree: 4fc070c92a1de21d3befe4ce48c733c65d044bb3 /security
parent: af601e4623d0303bfafa54ec728b7ae8493a8e1b (diff)
download: linux-93315ed6dd12dacfc941f9eb8ca0293aadf99793.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/security/selinux/nlmsgtab.c b/security/selinux/nlmsgtab.c
index d7c0e912c5f3..73158244cf8c 100644
--- a/security/selinux/nlmsgtab.c
+++ b/security/selinux/nlmsgtab.c
@@ -99,6 +99,9 @@ static struct nlmsg_perm nlmsg_audit_perms[] =
 	{ AUDIT_LIST,		NETLINK_AUDIT_SOCKET__NLMSG_READPRIV },
 	{ AUDIT_ADD,		NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
 	{ AUDIT_DEL,		NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
+	{ AUDIT_LIST_RULES,	NETLINK_AUDIT_SOCKET__NLMSG_READPRIV },
+	{ AUDIT_ADD_RULE,	NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
+	{ AUDIT_DEL_RULE,	NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
 	{ AUDIT_USER,		NETLINK_AUDIT_SOCKET__NLMSG_RELAY    },
 	{ AUDIT_SIGNAL_INFO,	NETLINK_AUDIT_SOCKET__NLMSG_READ     },
 };
author	Amy Griffis <amy.griffis@hp.com>	2006-02-07 12:05:27 -0500
committer	Al Viro <viro@zeniv.linux.org.uk>	2006-03-20 14:08:54 -0500
commit	93315ed6dd12dacfc941f9eb8ca0293aadf99793 (patch)
tree	4fc070c92a1de21d3befe4ce48c733c65d044bb3 /security
parent	af601e4623d0303bfafa54ec728b7ae8493a8e1b (diff)
download	linux-93315ed6dd12dacfc941f9eb8ca0293aadf99793.tar.gz