diff options
author | David Woodhouse <dwmw2@shinybook.infradead.org> | 2005-06-24 09:14:05 -0400 |
---|---|---|
committer | David Woodhouse <dwmw2@shinybook.infradead.org> | 2005-06-24 09:14:05 -0400 |
commit | 5bb289b5a0becb53ac3e1d60815ff8b779296b73 (patch) | |
tree | 0db75422d66eec857e0c05cd4cf4d014e7c0e264 /include/linux | |
parent | 993e2d4106e94dae6e8cfbeb32073bd12cdee203 (diff) |
AUDIT: Clean up user message filtering
Don't look up the task by its pid and then use the syscall filtering
helper. Just implement our own filter helper which operates solely on
the information in the netlink_skb_parms.
Signed-off-by: David Woodhouse <dwmw2@infradead.org>
Diffstat (limited to 'include/linux')
-rw-r--r-- | include/linux/audit.h | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/include/linux/audit.h b/include/linux/audit.h index 2f56546eb248..38999f827a36 100644 --- a/include/linux/audit.h +++ b/include/linux/audit.h | |||
@@ -205,6 +205,7 @@ struct audit_sig_info { | |||
205 | struct audit_buffer; | 205 | struct audit_buffer; |
206 | struct audit_context; | 206 | struct audit_context; |
207 | struct inode; | 207 | struct inode; |
208 | struct netlink_skb_parms; | ||
208 | 209 | ||
209 | #define AUDITSC_INVALID 0 | 210 | #define AUDITSC_INVALID 0 |
210 | #define AUDITSC_SUCCESS 1 | 211 | #define AUDITSC_SUCCESS 1 |
@@ -236,7 +237,7 @@ extern int audit_socketcall(int nargs, unsigned long *args); | |||
236 | extern int audit_sockaddr(int len, void *addr); | 237 | extern int audit_sockaddr(int len, void *addr); |
237 | extern int audit_avc_path(struct dentry *dentry, struct vfsmount *mnt); | 238 | extern int audit_avc_path(struct dentry *dentry, struct vfsmount *mnt); |
238 | extern void audit_signal_info(int sig, struct task_struct *t); | 239 | extern void audit_signal_info(int sig, struct task_struct *t); |
239 | extern int audit_filter_user(int pid, int type); | 240 | extern int audit_filter_user(struct netlink_skb_parms *cb, int type); |
240 | #else | 241 | #else |
241 | #define audit_alloc(t) ({ 0; }) | 242 | #define audit_alloc(t) ({ 0; }) |
242 | #define audit_free(t) do { ; } while (0) | 243 | #define audit_free(t) do { ; } while (0) |
@@ -253,7 +254,7 @@ extern int audit_filter_user(int pid, int type); | |||
253 | #define audit_sockaddr(len, addr) ({ 0; }) | 254 | #define audit_sockaddr(len, addr) ({ 0; }) |
254 | #define audit_avc_path(dentry, mnt) ({ 0; }) | 255 | #define audit_avc_path(dentry, mnt) ({ 0; }) |
255 | #define audit_signal_info(s,t) do { ; } while (0) | 256 | #define audit_signal_info(s,t) do { ; } while (0) |
256 | #define audit_filter_user(p,t) ({ 1; }) | 257 | #define audit_filter_user(cb,t) ({ 1; }) |
257 | #endif | 258 | #endif |
258 | 259 | ||
259 | #ifdef CONFIG_AUDIT | 260 | #ifdef CONFIG_AUDIT |