From mboxrd@z Thu Jan  1 00:00:00 1970
From: Al Viro <viro@ftp.linux.org.uk>
Subject: [PATCHSET] audit patches for .29-rc1
Date: Wed, 17 Dec 2008 05:11:00 +0000
Message-ID: <E1LCogW-000088-SO@ZenIV.linux.org.uk>
Return-path: <linux-audit-bounces@redhat.com>
Received: from mx3.redhat.com (mx3.redhat.com [172.16.48.32])
	by int-mx1.corp.redhat.com (8.13.1/8.13.1) with ESMTP id mBH5BDN4022440
	for <linux-audit@redhat.com>; Wed, 17 Dec 2008 00:11:14 -0500
Received: from ZenIV.linux.org.uk (zeniv.linux.org.uk [195.92.253.2])
	by mx3.redhat.com (8.13.8/8.13.8) with ESMTP id mBH5B166012252
	for <linux-audit@redhat.com>; Wed, 17 Dec 2008 00:11:01 -0500
List-Unsubscribe: <https://www.redhat.com/mailman/listinfo/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=unsubscribe>
List-Archive: <https://www.redhat.com/archives/linux-audit>
List-Post: <mailto:linux-audit@redhat.com>
List-Help: <mailto:linux-audit-request@redhat.com?subject=help>
List-Subscribe: <https://www.redhat.com/mailman/listinfo/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=subscribe>
Sender: linux-audit-bounces@redhat.com
Errors-To: linux-audit-bounces@redhat.com
To: linux-audit@redhat.com
Cc: linux-kernel@vger.kernel.org
List-Id: linux-audit@redhat.com


The following patch series is intended for the next merge cycle; review
and testing would be welcome.  It seems to survive light beating here...

It can also be found in
git://git.kernel.org/pub/scm/linux/kernel/git/viro/audit-current.git/ audit.b60

Have fun.

Shortlog:

Al Viro (15):
      don't reallocate buffer in every audit_sockaddr()
      sanitize audit_socketcall
      sanitize audit_ipc_obj()
      sanitize audit_ipc_set_perm()
      sanitize audit_mq_getsetattr()
      sanitize audit_mq_notify()
      sanitize AUDIT_MQ_SENDRECV
      sanitize audit_mq_open()
      sanitize audit_fd_pair()
      audit_update_lsm_rules() misses the audit_inode_hash[] ones
      fixing audit rule ordering mess, part 1
      audit rules ordering, part 2
      make sure that filterkey of task,always rules is reported
      clean up audit_rule_{add,del} a bit
      audit: validate comparison operations, store them in sane form

Diffstat:
 fs/pipe.c                      |    7 +-
 include/linux/audit.h          |   89 +++---
 ipc/mqueue.c                   |   97 +++---
 ipc/shm.c                      |    4 +-
 ipc/util.c                     |   19 +-
 kernel/audit.h                 |    5 +-
 kernel/audit_tree.c            |    3 +-
 kernel/auditfilter.c           |  325 ++++++++++----------
 kernel/auditsc.c               |  691 ++++++++++++++++------------------------
 net/socket.c                   |   13 +-
 security/selinux/ss/services.c |   26 +-
 security/smack/smack_lsm.c     |    6 +-
 12 files changed, 557 insertions(+), 728 deletions(-)