Gitiles
Code Review Sign In
android-review.linaro.org / kernel / hikey-linaro / 44c2d9bdd7022ca7d240d5adc009296fc1c6ce08
commit44c2d9bdd7022ca7d240d5adc009296fc1c6ce08[log] [tgz]
authorKaiGai Kohei <kaigai@ak.jp.nec.com>Thu Jun 18 17:26:13 2009 +0900
committerJames Morris <jmorris@namei.org>Fri Jun 19 00:12:28 2009 +1000
tree33115ee8d7e167d2a26558c2af8e0edfdca099d5
parentcaabbdc07df4249f2ed516b2c3e2d6b0973bcbb3 [diff]
Add audit messages on type boundary violations

The attached patch adds support to generate audit messages on two cases.

The first one is a case when a multi-thread process tries to switch its
performing security context using setcon(3), but new security context is
not bounded by the old one.

  type=SELINUX_ERR msg=audit(1245311998.599:17):        \
      op=security_bounded_transition result=denied      \
      oldcontext=system_u:system_r:httpd_t:s0           \
      newcontext=system_u:system_r:guest_webapp_t:s0

The other one is a case when security_compute_av() masked any permissions
due to the type boundary violation.

  type=SELINUX_ERR msg=audit(1245312836.035:32):	\
      op=security_compute_av reason=bounds              \
      scontext=system_u:object_r:user_webapp_t:s0       \
      tcontext=system_u:object_r:shadow_t:s0:c0         \
      tclass=file perms=getattr,open

Signed-off-by: KaiGai Kohei <kaigai@ak.jp.nec.com>
Acked-by:  Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
3 files changed
tree: 33115ee8d7e167d2a26558c2af8e0edfdca099d5
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. usr/
  20. virt/
  21. .gitignore
  22. .mailmap
  23. COPYING
  24. CREDITS
  25. Kbuild
  26. MAINTAINERS
  27. Makefile
  28. README
  29. REPORTING-BUGS