Git Repo - linux.git/commit - security/selinux/hooks.c

author	Thomas Liu <[email protected]>
	Tue, 14 Jul 2009 16:14:09 +0000 (12:14 -0400)
committer	James Morris <[email protected]>
	Sun, 16 Aug 2009 22:37:18 +0000 (08:37 +1000)
commit	2bf49690325b62480a42f7afed5e9f164173c570
tree	bc8525f6a45ea3ffaed9449084df7644bcd4e3c2	tree \| snapshot
parent	f322abf83feddc3c37c3a91794e0c5aece4af18e	commit \| diff

SELinux: Convert avc_audit to use lsm_audit.h

Convert avc_audit in security/selinux/avc.c to use lsm_audit.h,
for better maintainability.

- changed selinux to use common_audit_data instead of
avc_audit_data
- eliminated code in avc.c and used code from lsm_audit.h instead.

Had to add a LSM_AUDIT_NO_AUDIT to lsm_audit.h so that avc_audit
can call common_lsm_audit and do the pre and post callbacks without
doing the actual dump. This makes it so that the patched version
behaves the same way as the unpatched version.

Also added a denied field to the selinux_audit_data private space,
once again to make it so that the patched version behaves like the
unpatched.

I've tested and confirmed that AVCs look the same before and after
this patch.

Signed-off-by: Thomas Liu <[email protected]>
Acked-by: Stephen Smalley <[email protected]>
Signed-off-by: James Morris <[email protected]>

include/linux/lsm_audit.h		diff \| blob \| blame \| history
security/Makefile		diff \| blob \| blame \| history
security/lsm_audit.c		diff \| blob \| blame \| history
security/selinux/avc.c		diff \| blob \| blame \| history
security/selinux/hooks.c		diff \| blob \| blame \| history
security/selinux/include/avc.h		diff \| blob \| blame \| history
security/selinux/include/netlabel.h		diff \| blob \| blame \| history
security/selinux/include/xfrm.h		diff \| blob \| blame \| history
security/selinux/netlabel.c		diff \| blob \| blame \| history
security/selinux/xfrm.c		diff \| blob \| blame \| history