]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 53e4e49) | patch
apparmor: Add support for audit rule filtering
authorMatthew Garrett <mjg59@google.com>
Mon, 16 Apr 2018 18:23:58 +0000 (11:23 -0700)
committerJohn Johansen <john.johansen@canonical.com>
Thu, 7 Jun 2018 08:50:47 +0000 (01:50 -0700)
commit6c38337c27c7964c0684763ab4f49c9103bf294f
treecdca29dff22fd2e145e5fabf582d0e34cfd947d1tree | snapshot
parent53e4e499d16f0c9bec042fd8b9c0930362dbad21commit | diff
apparmor: Add support for audit rule filtering

This patch adds support to Apparmor for integrating with audit rule
filtering. Right now it only handles SUBJ_ROLE, interpreting it as a
single component of a label. This is sufficient to get Apparmor working
with IMA's appraisal rules without any modifications on the IMA side.

Signed-off-by: Matthew Garrett <mjg59@google.com>
Signed-off-by: John Johansen <john.johansen@canonical.com>
security/apparmor/audit.c diff | blob | history
security/apparmor/include/audit.h diff | blob | history
security/apparmor/lsm.c diff | blob | history
Linux Kernel Source Tree.