audit: allow matching on obj_uid
authorEric Paris <eparis@redhat.com>
Tue, 3 Jan 2012 19:23:07 +0000 (14:23 -0500)
committerAl Viro <viro@zeniv.linux.org.uk>
Tue, 17 Jan 2012 21:16:59 +0000 (16:16 -0500)
commitefaffd6e4417860c67576ac760dd6e8bbd15f006
treea59ee886b609bbf761fb75744e5e468264c67ab5
parent6422e78de6880c66a82af512d9bd0c85eb62e661
audit: allow matching on obj_uid

Allow syscall exit filter matching based on the uid of the owner of an
inode used in a syscall.  aka:

auditctl -a always,exit -S open -F obj_uid=0 -F perm=wa

Signed-off-by: Eric Paris <eparis@redhat.com>
include/linux/audit.h
kernel/auditfilter.c
kernel/auditsc.c