• D
    [PATCH] Capture selinux subject/object context information. · 8c8570fb
    Dustin Kirkland 提交于
    This patch extends existing audit records with subject/object context
    information. Audit records associated with filesystem inodes, ipc, and
    tasks now contain SELinux label information in the field "subj" if the
    item is performing the action, or in "obj" if the item is the receiver
    of an action.
    
    These labels are collected via hooks in SELinux and appended to the
    appropriate record in the audit code.
    
    This additional information is required for Common Criteria Labeled
    Security Protection Profile (LSPP).
    
    [AV: fixed kmalloc flags use]
    [folded leak fixes]
    [folded cleanup from akpm (kfree(NULL)]
    [folded audit_inode_context() leak fix]
    [folded akpm's fix for audit_ipc_perm() definition in case of !CONFIG_AUDIT]
    Signed-off-by: NDustin Kirkland <dustin.kirkland@us.ibm.com>
    Signed-off-by: NDavid Woodhouse <dwmw2@infradead.org>
    Signed-off-by: NAndrew Morton <akpm@osdl.org>
    Signed-off-by: NAl Viro <viro@zeniv.linux.org.uk>
    8c8570fb
security.h 99.7 KB