AUDIT: Add message types to audit records

This patch adds more messages types to the audit subsystem so that audit analysis is quicker, intuitive, and more useful. Signed-off-by: Steve Grubb <sgrubb@redhat.com> --- I forgot one type in the big patch. I need to add one for user space originating SE Linux avc messages. This is used by dbus and nscd. -Steve --- Updated to 2.6.12-rc4-mm1. -dwmw2 Signed-off-by: David Woodhouse <dwmw2@infradead.org>
author: Steve Grubb <sgrubb@redhat.com> 2005-05-13 13:17:42 -0400
committer: David Woodhouse <dwmw2@shinybook.infradead.org> 2005-05-13 13:17:42 -0400
commit: c04049939f88b29e235d2da217bce6e8ead44f32 (patch)
tree: 9bf3ab72b9939c529e7c96f8768bc8b7e1d768c9 /security/selinux/ss
parent: 9ea74f0655412d0fbd12bf9adb6c14c8fe707a42 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/security/selinux/ss/services.c b/security/selinux/ss/services.c
index 5a820cf88c9c..07fdf6ee6148 100644
--- a/security/selinux/ss/services.c
+++ b/security/selinux/ss/services.c
@@ -365,7 +365,7 @@ static int security_validtrans_handle_fail(struct context *ocontext,
                goto out;
        if (context_struct_to_string(tcontext, &t, &tlen) < 0)
                goto out;
-        audit_log(current->audit_context,
+        audit_log(current->audit_context, AUDIT_SELINUX_ERR,
                  "security_validate_transition:  denied for"
                  " oldcontext=%s newcontext=%s taskcontext=%s tclass=%s",
                  o, n, t, policydb.p_class_val_to_name[tclass-1]);
@@ -742,7 +742,7 @@ static int compute_sid_handle_invalid_context(
                goto out;
        if (context_struct_to_string(newcontext, &n, &nlen) < 0)
                goto out;
-        audit_log(current->audit_context,
+        audit_log(current->audit_context, AUDIT_SELINUX_ERR,
                  "security_compute_sid:  invalid context %s"
                  " for scontext=%s"
                  " tcontext=%s"
author	Steve Grubb <sgrubb@redhat.com>	2005-05-13 13:17:42 -0400
committer	David Woodhouse <dwmw2@shinybook.infradead.org>	2005-05-13 13:17:42 -0400
commit	c04049939f88b29e235d2da217bce6e8ead44f32 (patch)
tree	9bf3ab72b9939c529e7c96f8768bc8b7e1d768c9 /security/selinux/ss
parent	9ea74f0655412d0fbd12bf9adb6c14c8fe707a42 (diff)

diff --git a/security/selinux/ss/services.c b/security/selinux/ss/services.c index 5a820cf88c9c..07fdf6ee6148 100644 --- a/security/selinux/ss/services.c +++ b/security/selinux/ss/services.c
@@ -365,7 +365,7 @@ static int security_validtrans_handle_fail(struct context *ocontext,
365	goto out;	365	goto out;
366	if (context_struct_to_string(tcontext, &t, &tlen) < 0)	366	if (context_struct_to_string(tcontext, &t, &tlen) < 0)
367	goto out;	367	goto out;
368	audit_log(current->audit_context,	368	audit_log(current->audit_context, AUDIT_SELINUX_ERR,
369	"security_validate_transition: denied for"	369	"security_validate_transition: denied for"
370	" oldcontext=%s newcontext=%s taskcontext=%s tclass=%s",	370	" oldcontext=%s newcontext=%s taskcontext=%s tclass=%s",
371	o, n, t, policydb.p_class_val_to_name[tclass-1]);	371	o, n, t, policydb.p_class_val_to_name[tclass-1]);
@@ -742,7 +742,7 @@ static int compute_sid_handle_invalid_context(
742	goto out;	742	goto out;
743	if (context_struct_to_string(newcontext, &n, &nlen) < 0)	743	if (context_struct_to_string(newcontext, &n, &nlen) < 0)
744	goto out;	744	goto out;
745	audit_log(current->audit_context,	745	audit_log(current->audit_context, AUDIT_SELINUX_ERR,
746	"security_compute_sid: invalid context %s"	746	"security_compute_sid: invalid context %s"
747	" for scontext=%s"	747	" for scontext=%s"
748	" tcontext=%s"	748	" tcontext=%s"