Merge branch 'audit.b64' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/audit-current

* 'audit.b64' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/audit-current: audit mmap audit: make link()/linkat() match "attribute change" predicate audit: Use rcu for task lookup protection audit: Do not send uninitialized data for AUDIT_TTY_GET audit: Call tty_audit_push_task() outside preempt disabled in untag_chunk() we need to do alloc_chunk() a bit earlier audit: make functions static Audit: add support to match lsm labels on user audit messages
author: Linus Torvalds <torvalds@linux-foundation.org> 2010-10-30 08:35:35 -0700
committer: Linus Torvalds <torvalds@linux-foundation.org> 2010-10-30 08:35:35 -0700
commit: 847f877600313e65c5659476b30d74a6f66e388e (patch)
tree: b4390fb56dc3c9a47cb51f3a086515a376cffc0c /kernel/auditfilter.c
parent: 79346507ad48895f41b438fa562b1965721f36b9 (diff)
parent: 120a795da07c9a02221ca23464c28a7c6ad7de1d (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/kernel/auditfilter.c b/kernel/auditfilter.c
index eb7675499fb..add2819af71 100644
--- a/kernel/auditfilter.c
+++ b/kernel/auditfilter.c
@@ -1252,6 +1252,18 @@ static int audit_filter_user_rules(struct netlink_skb_parms *cb,
 		case AUDIT_LOGINUID:
 			result = audit_comparator(cb->loginuid, f->op, f->val);
 			break;
+		case AUDIT_SUBJ_USER:
+		case AUDIT_SUBJ_ROLE:
+		case AUDIT_SUBJ_TYPE:
+		case AUDIT_SUBJ_SEN:
+		case AUDIT_SUBJ_CLR:
+			if (f->lsm_rule)
+				result = security_audit_rule_match(cb->sid,
+								   f->type,
+								   f->op,
+								   f->lsm_rule,
+								   NULL);
+			break;
 		}
 
 		if (!result)
author	Linus Torvalds <torvalds@linux-foundation.org>	2010-10-30 08:35:35 -0700
committer	Linus Torvalds <torvalds@linux-foundation.org>	2010-10-30 08:35:35 -0700
commit	847f877600313e65c5659476b30d74a6f66e388e (patch)
tree	b4390fb56dc3c9a47cb51f3a086515a376cffc0c /kernel/auditfilter.c
parent	79346507ad48895f41b438fa562b1965721f36b9 (diff)
parent	120a795da07c9a02221ca23464c28a7c6ad7de1d (diff)