AppArmor: basic auditing infrastructure.

Update lsm_audit for AppArmor specific data, and add the core routines for AppArmor uses for auditing. Signed-off-by: John Johansen <john.johansen@canonical.com> Signed-off-by: James Morris <jmorris@namei.org>
author: John Johansen <john.johansen@canonical.com> 2010-07-29 17:47:58 -0400
committer: James Morris <jmorris@namei.org> 2010-08-02 01:35:11 -0400
commit: 67012e8209df95a8290d135753ff5145431a666e (patch)
tree: fc95b2c33d2e2d206500d7ec7e78dd855d4b3d2c /include
parent: cdff264264254e0fabc8107a33f3bb75a95e981f (diff)
1 files changed, 27 insertions, 0 deletions
diff --git a/include/linux/lsm_audit.h b/include/linux/lsm_audit.h
index 788f0ab937aa..112a55033352 100644
--- a/include/linux/lsm_audit.h
+++ b/include/linux/lsm_audit.h
@@ -99,6 +99,33 @@ struct common_audit_data {
                        int result;
                } selinux_audit_data;
 #endif
+#ifdef CONFIG_SECURITY_APPARMOR
+                struct {
+                        int error;
+                        int op;
+                        int type;
+                        void *profile;
+                        const char *name;
+                        const char *info;
+                        union {
+                                void *target;
+                                struct {
+                                        long pos;
+                                        void *target;
+                                } iface;
+                                struct {
+                                        int rlim;
+                                        unsigned long max;
+                                } rlim;
+                                struct {
+                                        const char *target;
+                                        u32 request;
+                                        u32 denied;
+                                        uid_t ouid;
+                                } fs;
+                        };
+                } apparmor_audit_data;
+#endif
        };
        /* these callback will be implemented by a specific LSM */
        void (*lsm_pre_audit)(struct audit_buffer *, void *);
author	John Johansen <john.johansen@canonical.com>	2010-07-29 17:47:58 -0400
committer	James Morris <jmorris@namei.org>	2010-08-02 01:35:11 -0400
commit	67012e8209df95a8290d135753ff5145431a666e (patch)
tree	fc95b2c33d2e2d206500d7ec7e78dd855d4b3d2c /include
parent	cdff264264254e0fabc8107a33f3bb75a95e981f (diff)

diff --git a/include/linux/lsm_audit.h b/include/linux/lsm_audit.h index 788f0ab937aa..112a55033352 100644 --- a/include/linux/lsm_audit.h +++ b/include/linux/lsm_audit.h
@@ -99,6 +99,33 @@ struct common_audit_data {
99	int result;	99	int result;
100	} selinux_audit_data;	100	} selinux_audit_data;
101	#endif	101	#endif
		102	#ifdef CONFIG_SECURITY_APPARMOR
		103	struct {
		104	int error;
		105	int op;
		106	int type;
		107	void *profile;
		108	const char *name;
		109	const char *info;
		110	union {
		111	void *target;
		112	struct {
		113	long pos;
		114	void *target;
		115	} iface;
		116	struct {
		117	int rlim;
		118	unsigned long max;
		119	} rlim;
		120	struct {
		121	const char *target;
		122	u32 request;
		123	u32 denied;
		124	uid_t ouid;
		125	} fs;
		126	};
		127	} apparmor_audit_data;
		128	#endif
102	};	129	};
103	/* these callback will be implemented by a specific LSM */	130	/* these callback will be implemented by a specific LSM */
104	void (lsm_pre_audit)(struct audit_buffer , void *);	131	void (lsm_pre_audit)(struct audit_buffer , void *);