[PATCH 2/2] SELinux Context Label based audit filtering
Dustin Kirkland
dustin.kirkland at us.ibm.com
Thu Feb 2 21:56:56 UTC 2006
On Thu, 2006-02-02 at 15:42 -0500, Steve Grubb wrote:
> On Thursday 02 February 2006 14:51, Dustin Kirkland wrote:
> > This patch is against Steve Grubb's audit-1.1.13 audit release, plus a
> > patch from Amy Griffis on 2006-02-02 that adds a couple of key functions
> > needed to pass arbitrary length strings in audit rules to and from the
> > kernel
>
> Not sure I'll be able to merge this for a while. The current upstream kernel
> won't have the right patches merged for quite some time. I will need to
> continue adding features to audit package in the mean time...so I'll hold
> onto the patch and merge when the time is right.
It looks like you're speaking of Amy's patch?
As of now, I'm taking your 1.1.13 tree, applying her patch, applying my
patch, and working from that. That's ok for now, but porting that stuff
forward might get old if applying those patches starts failing due to
other reasons.
What would you think of some compile-time experimental #ifdef sections?
Such that we can continue working/testing (especially our LSPP test team
developing test cases) but keeping it out of the code path for the
majority of your users?
Just a thought....
:-Dustin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/linux-audit/attachments/20060202/2d18fc80/attachment.sig>
More information about the Linux-audit
mailing list