Re: [PATCH] LSM hooks for audit

From: Serge Hallyn (serue@private)
Date: Fri Sep 17 2004 - 10:19:08 PDT


Attached is a patch which moves the audit control authorization checks
to the netlink send side.  They are automatically performed from the
dummy and capability LSM's, and if no LSMs are loaded.  Based on this
patch, there would be no explicit LSM support for audit control, but the
audit_get_msgtype(sk, skb) function can be used by LSM's to keep their
security_netlink_send functions at least a little cleaner.

thanks,
-serge

-- 
=======================================================
Serge Hallyn
Security Software Engineer, IBM Linux Technology Center
serue@private





This archive was generated by hypermail 2.1.3 : Fri Sep 17 2004 - 09:12:15 PDT