]> git.proxmox.com Git - mirror_ubuntu-impish-kernel.git/commit
projects / mirror_ubuntu-impish-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 68ddfe0) | patch
UBUNTU: SAUCE: Audit: Add new record for multiple process LSM attributes
authorCasey Schaufler <casey@schaufler-ca.com>
Fri, 21 Aug 2020 21:29:19 +0000 (14:29 -0700)
committerAndrea Righi <andrea.righi@canonical.com>
Mon, 28 Jun 2021 06:03:55 +0000 (08:03 +0200)
commitef86044a02b1912905c45761fdc2ed48d5156e92
treeec6bbd4b86e9a84fd5705ad0a47d552d721b560atree
parent68ddfe083e1b96fbb8a2ea6f0312452de277302dcommit | diff
UBUNTU: SAUCE: Audit: Add new record for multiple process LSM attributes

Create a new audit record type to contain the subject information
when there are multiple security modules that require such data.
This record is linked with the same timestamp and serial number.
The record is produced only in cases where there is more than one
security module with a process "context".

Before this change the only audit events that required multiple
records were syscall events. Several non-syscall events include
subject contexts, so the use of audit_context data has been expanded
as necessary.

Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
Cc: linux-audit@redhat.com
Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Andrea Righi <andrea.righi@canonical.com>
Signed-off-by: Seth Forshee <seth.forshee@canonical.com>
20 files changed:
drivers/android/binder.c diff | blob | blame | history
include/linux/audit.h diff | blob | blame | history
include/linux/security.h diff | blob | blame | history
include/net/netlabel.h diff | blob | blame | history
include/net/scm.h diff | blob | blame | history
include/net/xfrm.h diff | blob | blame | history
include/uapi/linux/audit.h diff | blob | blame | history
kernel/audit.c diff | blob | blame | history
kernel/auditfilter.c diff | blob | blame | history
kernel/auditsc.c diff | blob | blame | history
net/ipv4/ip_sockglue.c diff | blob | blame | history
net/netfilter/nf_conntrack_netlink.c diff | blob | blame | history
net/netfilter/nf_conntrack_standalone.c diff | blob | blame | history
net/netfilter/nfnetlink_queue.c diff | blob | blame | history
net/netlabel/netlabel_unlabeled.c diff | blob | blame | history
net/netlabel/netlabel_user.c diff | blob | blame | history
net/netlabel/netlabel_user.h diff | blob | blame | history
security/integrity/integrity_audit.c diff | blob | blame | history
security/security.c diff | blob | blame | history
security/smack/smackfs.c diff | blob | blame | history
Ubuntu Impish Linux kernel mirror