/[linux-patches]/hardened/2.6/trunk/2.6.23/4470_selinux-avc_audit-log-curr_ip.patch
Gentoo

Contents of /hardened/2.6/trunk/2.6.23/4470_selinux-avc_audit-log-curr_ip.patch

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1157 - (show annotations) (download)
Fri Oct 12 23:22:36 2007 UTC (6 years, 6 months ago) by phreak
File size: 874 byte(s)
Initial patchset for 2.6.23.
1
2 Provides support for a new field ipaddr within the SELinux
3 AVC audit log, relying in task_struct->curr_ip (ipv4 only)
4 provided by grSecurity patch to be applied before.
5
6 Signed-off-by: Lorenzo Hernandez Garcia-Hierro <lorenzo@gnu.org>
7 ---
8
9 security/selinux/avc.c | 6 ++++++
10 1 file changed, 6 insertions(+)
11
12 --- a/security/selinux/avc.c
13 +++ b/security/selinux/avc.c
14 @@ -202,6 +202,12 @@ static void avc_dump_query(struct audit_
15 char *scontext;
16 u32 scontext_len;
17
18 +/* CONFIG_PROC_IPADDR if task-signal-curr_ip patch from lorenzo@gnu.org is present */
19 +#ifdef CONFIG_GRKERNSEC_PROC_IPADDR
20 + if (current->signal->curr_ip)
21 + audit_log_format(ab, "ipaddr=%u.%u.%u.%u ", NIPQUAD(current->signal->curr_ip));
22 +#endif /* CONFIG_GRKERNSEC_PROC_IPADDR */
23 +
24 rc = security_sid_to_context(ssid, &scontext, &scontext_len);
25 if (rc)
26 audit_log_format(ab, "ssid=%d", ssid);

  ViewVC Help
Powered by ViewVC 1.1.20