Merge branch 'master' into for-linus

author: Chris Metcalf <cmetcalf@tilera.com> 2010-08-06 10:37:02 -0400
committer: Chris Metcalf <cmetcalf@tilera.com> 2010-08-06 10:37:02 -0400
commit: ab11b487402f97975f3ac1eeea09c82f4431481e (patch)
tree: 86337c5cbbd2b0c4bd07c0847a1dc7de3d898147 /include/linux/lsm_audit.h
parent: 1c689cbcf2c2b7a35cd237abddd9206bb1b6fee1 (diff)
parent: fc1caf6eafb30ea185720e29f7f5eccca61ecd60 (diff)
1 files changed, 32 insertions, 0 deletions
diff --git a/include/linux/lsm_audit.h b/include/linux/lsm_audit.h
index 6907251d5200..112a55033352 100644
--- a/include/linux/lsm_audit.h
+++ b/include/linux/lsm_audit.h
@@ -90,10 +90,42 @@ struct common_audit_data {
                        u32 requested;
                        u32 audited;
                        u32 denied;
+                        /*
+                         * auditdeny is a bit tricky and unintuitive.  See the
+                         * comments in avc.c for it's meaning and usage.
+                         */
+                        u32 auditdeny;
                        struct av_decision *avd;
                        int result;
                } selinux_audit_data;
 #endif
+#ifdef CONFIG_SECURITY_APPARMOR
+                struct {
+                        int error;
+                        int op;
+                        int type;
+                        void *profile;
+                        const char *name;
+                        const char *info;
+                        union {
+                                void *target;
+                                struct {
+                                        long pos;
+                                        void *target;
+                                } iface;
+                                struct {
+                                        int rlim;
+                                        unsigned long max;
+                                } rlim;
+                                struct {
+                                        const char *target;
+                                        u32 request;
+                                        u32 denied;
+                                        uid_t ouid;
+                                } fs;
+                        };
+                } apparmor_audit_data;
+#endif
        };
        /* these callback will be implemented by a specific LSM */
        void (*lsm_pre_audit)(struct audit_buffer *, void *);
author	Chris Metcalf <cmetcalf@tilera.com>	2010-08-06 10:37:02 -0400
committer	Chris Metcalf <cmetcalf@tilera.com>	2010-08-06 10:37:02 -0400
commit	ab11b487402f97975f3ac1eeea09c82f4431481e (patch)
tree	86337c5cbbd2b0c4bd07c0847a1dc7de3d898147 /include/linux/lsm_audit.h
parent	1c689cbcf2c2b7a35cd237abddd9206bb1b6fee1 (diff)
parent	fc1caf6eafb30ea185720e29f7f5eccca61ecd60 (diff)

diff --git a/include/linux/lsm_audit.h b/include/linux/lsm_audit.h index 6907251d5200..112a55033352 100644 --- a/include/linux/lsm_audit.h +++ b/include/linux/lsm_audit.h
@@ -90,10 +90,42 @@ struct common_audit_data {
90	u32 requested;	90	u32 requested;
91	u32 audited;	91	u32 audited;
92	u32 denied;	92	u32 denied;
		93	/*
		94	* auditdeny is a bit tricky and unintuitive. See the
		95	* comments in avc.c for it's meaning and usage.
		96	*/
		97	u32 auditdeny;
93	struct av_decision *avd;	98	struct av_decision *avd;
94	int result;	99	int result;
95	} selinux_audit_data;	100	} selinux_audit_data;
96	#endif	101	#endif
		102	#ifdef CONFIG_SECURITY_APPARMOR
		103	struct {
		104	int error;
		105	int op;
		106	int type;
		107	void *profile;
		108	const char *name;
		109	const char *info;
		110	union {
		111	void *target;
		112	struct {
		113	long pos;
		114	void *target;
		115	} iface;
		116	struct {
		117	int rlim;
		118	unsigned long max;
		119	} rlim;
		120	struct {
		121	const char *target;
		122	u32 request;
		123	u32 denied;
		124	uid_t ouid;
		125	} fs;
		126	};
		127	} apparmor_audit_data;
		128	#endif
97	};	129	};
98	/* these callback will be implemented by a specific LSM */	130	/* these callback will be implemented by a specific LSM */
99	void (lsm_pre_audit)(struct audit_buffer , void *);	131	void (lsm_pre_audit)(struct audit_buffer , void *);