git.openpandora.org / pandora-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1a9d079) | patch
fixing audit rule ordering mess, part 1
authorAl Viro <viro@zeniv.linux.org.uk>
Mon, 15 Dec 2008 04:45:27 +0000 (23:45 -0500)
committerAl Viro <viro@zeniv.linux.org.uk>
Sun, 4 Jan 2009 20:14:41 +0000 (15:14 -0500)
commit0590b9335a1c72a3f0defcc6231287f7817e07c8
tree289fa4668ae304f79f7484ac31b2cab0ab8894c1tree | snapshot
parent1a9d0797b8977d413435277bf9661efbbd584693commit | diff
fixing audit rule ordering mess, part 1

Problem: ordering between the rules on exit chain is currently lost;
all watch and inode rules are listed after everything else _and_
exit,never on one kind doesn't stop exit,always on another from
being matched.

Solution: assign priorities to rules, keep track of the current
highest-priority matching rule and its result (always/never).

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
include/linux/audit.h diff | blob | history
kernel/audit.h diff | blob | history
kernel/auditfilter.c diff | blob | history
kernel/auditsc.c diff | blob | history
Pandora Kernel Repository