[NetLabel]: add audit support for configuration changes This patch adds audit support to NetLabel, including six new audit message types shown below. #define AUDIT_MAC_UNLBL_ACCEPT 1406 #define AUDIT_MAC_UNLBL_DENY 1407 #define AUDIT_MAC_CIPSOV4_ADD 1408 #define AUDIT_MAC_CIPSOV4_DEL 1409 #define AUDIT_MAC_MAP_ADD 1410 #define AUDIT_MAC_MAP_DEL 1411 Signed-off-by: Paul Moore <paul.moore@hp.com> Acked-by: James Morris <jmorris@namei.org> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: 32f50cdee666333168b5203c7864bede159f789e [log] [tgz]
author: Paul Moore <paul.moore@hp.com> Thu Sep 28 14:51:47 2006 -0700
committer: David S. Miller <davem@sunset.davemloft.net> Thu Sep 28 18:03:09 2006 -0700
tree: c4989cc2521551714f656d60f6b895232ffdeda6
parent: 8ea333eb5da3e3219f570220c56bca09f6f4d25a [diff] [blame]
diff --git a/net/netlabel/netlabel_user.h b/net/netlabel/netlabel_user.h
index 3f9386b..ab840ac 100644
--- a/net/netlabel/netlabel_user.h
+++ b/net/netlabel/netlabel_user.h

@@ -34,6 +34,7 @@
 #include <linux/types.h>
 #include <linux/skbuff.h>
 #include <linux/capability.h>
+#include <linux/audit.h>
 #include <net/netlink.h>
 #include <net/genetlink.h>
 #include <net/netlabel.h>
@@ -75,4 +76,9 @@
 
 int netlbl_netlink_init(void);
 
+/* NetLabel Audit Functions */
+
+struct audit_buffer *netlbl_audit_start_common(int type, u32 secid);
+void netlbl_audit_nomsg(int type, u32 secid);
+
 #endif
commit	32f50cdee666333168b5203c7864bede159f789e	[log] [tgz]
author	Paul Moore <paul.moore@hp.com>	Thu Sep 28 14:51:47 2006 -0700
committer	David S. Miller <davem@sunset.davemloft.net>	Thu Sep 28 18:03:09 2006 -0700
tree	c4989cc2521551714f656d60f6b895232ffdeda6
parent	8ea333eb5da3e3219f570220c56bca09f6f4d25a [diff] [blame]