From mboxrd@z Thu Jan 1 00:00:00 1970 From: Paul Moore Subject: [RFC PATCH v2 3/5] lsm: add support for auditing kdbus service names Date: Mon, 05 Oct 2015 16:41:25 -0400 Message-ID: <20151005204125.32023.12415.stgit@localhost> References: <20151005203358.32023.88592.stgit@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <20151005203358.32023.88592.stgit@localhost> List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: linux-audit-bounces@redhat.com Errors-To: linux-audit-bounces@redhat.com To: linux-security-module@vger.kernel.org Cc: linux-audit@redhat.com, selinux@tycho.nsa.gov List-Id: linux-audit@redhat.com The kdbus service names will be recorded using 'service', similar to the existing dbus audit records. Signed-off-by: Paul Moore --- ChangeLog: - v2 * Initial draft --- include/linux/lsm_audit.h | 2 ++ security/lsm_audit.c | 4 ++++ 2 files changed, 6 insertions(+) diff --git a/include/linux/lsm_audit.h b/include/linux/lsm_audit.h index ffb9c9d..d6a656f 100644 --- a/include/linux/lsm_audit.h +++ b/include/linux/lsm_audit.h @@ -59,6 +59,7 @@ struct common_audit_data { #define LSM_AUDIT_DATA_INODE 9 #define LSM_AUDIT_DATA_DENTRY 10 #define LSM_AUDIT_DATA_IOCTL_OP 11 +#define LSM_AUDIT_DATA_KDBUS 12 union { struct path path; struct dentry *dentry; @@ -75,6 +76,7 @@ struct common_audit_data { #endif char *kmod_name; struct lsm_ioctlop_audit *op; + const char *kdbus_name; } u; /* this union contains LSM specific data */ union { diff --git a/security/lsm_audit.c b/security/lsm_audit.c index 9f6c649..d7af41d 100644 --- a/security/lsm_audit.c +++ b/security/lsm_audit.c @@ -397,6 +397,10 @@ static void dump_common_audit_data(struct audit_buffer *ab, audit_log_format(ab, " kmod="); audit_log_untrustedstring(ab, a->u.kmod_name); break; + case LSM_AUDIT_DATA_KDBUS: + audit_log_format(ab, " service="); + audit_log_untrustedstring(ab, a->u.kdbus_name); + break; } /* switch (a->type) */ }