]> nv-tegra.nvidia Code Review - linux-3.10.git/commit
Code Review / linux-3.10.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 36c4f1b) | patch
audit: validate comparison operations, store them in sane form
authorAl Viro <viro@zeniv.linux.org.uk>
Tue, 16 Dec 2008 10:59:26 +0000 (05:59 -0500)
committerAl Viro <viro@zeniv.linux.org.uk>
Sun, 4 Jan 2009 20:14:42 +0000 (15:14 -0500)
commit5af75d8d58d0f9f7b7c0515b35786b22892d5f12
tree65707c5309133a33140c39145ae91b7c1679a877tree | snapshot
parent36c4f1b18c8a7d0adb4085e7f531860b837bb6b0commit | diff
audit: validate comparison operations, store them in sane form

Don't store the field->op in the messy (and very inconvenient for e.g.
audit_comparator()) form; translate to dense set of values and do full
validation of userland-submitted value while we are at it.

->audit_init_rule() and ->audit_match_rule() get new values now; in-tree
instances updated.

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
include/linux/audit.h diff | blob | history
kernel/audit_tree.c diff | blob | history
kernel/auditfilter.c diff | blob | history
security/selinux/ss/services.c diff | blob | history
security/smack/smack_lsm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.