[PATCH] audit string fields interface + consumer Updated patch to dynamically allocate audit rule fields in kernel's internal representation. Added unlikely() calls for testing memory allocation result. Amy Griffis wrote: [Wed Jan 11 2006, 02:02:31PM EST] > Modify audit's kernel-userspace interface to allow the specification > of string fields in audit rules. > > Signed-off-by: Amy Griffis <amy.griffis@hp.com> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> (cherry picked from 5ffc4a863f92351b720fe3e9c5cd647accff9e03 commit)

commit: 93315ed6dd12dacfc941f9eb8ca0293aadf99793 [log] [tgz]
author: Amy Griffis <amy.griffis@hp.com> Tue Feb 07 12:05:27 2006 -0500
committer: Al Viro <viro@zeniv.linux.org.uk> Mon Mar 20 14:08:54 2006 -0500
tree: 4fc070c92a1de21d3befe4ce48c733c65d044bb3
parent: af601e4623d0303bfafa54ec728b7ae8493a8e1b [diff] [blame]
diff --git a/security/selinux/nlmsgtab.c b/security/selinux/nlmsgtab.c
index d7c0e91..7315824 100644
--- a/security/selinux/nlmsgtab.c
+++ b/security/selinux/nlmsgtab.c

@@ -99,6 +99,9 @@
 	{ AUDIT_LIST,		NETLINK_AUDIT_SOCKET__NLMSG_READPRIV },
 	{ AUDIT_ADD,		NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
 	{ AUDIT_DEL,		NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
+	{ AUDIT_LIST_RULES,	NETLINK_AUDIT_SOCKET__NLMSG_READPRIV },
+	{ AUDIT_ADD_RULE,	NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
+	{ AUDIT_DEL_RULE,	NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
 	{ AUDIT_USER,		NETLINK_AUDIT_SOCKET__NLMSG_RELAY    },
 	{ AUDIT_SIGNAL_INFO,	NETLINK_AUDIT_SOCKET__NLMSG_READ     },
 };
commit	93315ed6dd12dacfc941f9eb8ca0293aadf99793	[log] [tgz]
author	Amy Griffis <amy.griffis@hp.com>	Tue Feb 07 12:05:27 2006 -0500
committer	Al Viro <viro@zeniv.linux.org.uk>	Mon Mar 20 14:08:54 2006 -0500
tree	4fc070c92a1de21d3befe4ce48c733c65d044bb3
parent	af601e4623d0303bfafa54ec728b7ae8493a8e1b [diff] [blame]