security: add ioctl specific auditing to lsm_audit Add information about ioctl calls to the LSM audit data. Log the file path and command number. Signed-off-by: Jeff Vander Stoep <jeffv@google.com> Acked-by: Nick Kralevich <nnk@google.com> [PM: subject line tweak] Signed-off-by: Paul Moore <pmoore@redhat.com>

commit: 671a2781ff01abf4fdc8904881fc3abd3a8279af [log] [tgz]
author: Jeff Vander Stoep <jeffv@google.com> Fri Jul 10 17:19:55 2015 -0400
committer: Paul Moore <pmoore@redhat.com> Mon Jul 13 13:31:58 2015 -0400
tree: d4bacc22ccd65b486f6f71360ac128ad365edcf3
parent: 892e8cac99a71f6254f84fc662068d912e1943bf [diff] [blame]
diff --git a/include/linux/lsm_audit.h b/include/linux/lsm_audit.h
index 1cc89e9..ffb9c9d 100644
--- a/include/linux/lsm_audit.h
+++ b/include/linux/lsm_audit.h

@@ -40,6 +40,11 @@
 	} fam;
 };
 
+struct lsm_ioctlop_audit {
+	struct path path;
+	u16 cmd;
+};
+
 /* Auxiliary data to use in generating the audit record. */
 struct common_audit_data {
 	char type;
@@ -53,6 +58,7 @@
 #define LSM_AUDIT_DATA_KMOD	8
 #define LSM_AUDIT_DATA_INODE	9
 #define LSM_AUDIT_DATA_DENTRY	10
+#define LSM_AUDIT_DATA_IOCTL_OP	11
 	union 	{
 		struct path path;
 		struct dentry *dentry;
@@ -68,6 +74,7 @@
 		} key_struct;
 #endif
 		char *kmod_name;
+		struct lsm_ioctlop_audit *op;
 	} u;
 	/* this union contains LSM specific data */
 	union {
commit	671a2781ff01abf4fdc8904881fc3abd3a8279af	[log] [tgz]
author	Jeff Vander Stoep <jeffv@google.com>	Fri Jul 10 17:19:55 2015 -0400
committer	Paul Moore <pmoore@redhat.com>	Mon Jul 13 13:31:58 2015 -0400
tree	d4bacc22ccd65b486f6f71360ac128ad365edcf3
parent	892e8cac99a71f6254f84fc662068d912e1943bf [diff] [blame]