[PATCH] LSM hooks for audit
Serge Hallyn
serue at us.ibm.com
Fri Sep 17 17:19:08 UTC 2004
Attached is a patch which moves the audit control authorization checks
to the netlink send side. They are automatically performed from the
dummy and capability LSM's, and if no LSMs are loaded. Based on this
patch, there would be no explicit LSM support for audit control, but the
audit_get_msgtype(sk, skb) function can be used by LSM's to keep their
security_netlink_send functions at least a little cleaner.
thanks,
-serge
--
=======================================================
Serge Hallyn
Security Software Engineer, IBM Linux Technology Center
serue at us.ibm.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: linux-2.6.8.1-auditfix.diff
Type: text/x-patch
Size: 5413 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/linux-audit/attachments/20040917/97830c1e/attachment.bin>
More information about the Linux-audit
mailing list