On Tue, Oct 22, 2024 at 12:10 PM Mickaël Salaün <[email protected]> wrote: > > Extract code from dump_common_audit_data() into the audit_log_lsm_data() > helper. This helps reuse common LSM audit data while not abusing > AUDIT_AVC records because of the common_lsm_audit() helper. > > Cc: Casey Schaufler <[email protected]> > Cc: James Morris <[email protected]> > Cc: Paul Moore <[email protected]> > Cc: Serge E. Hallyn <[email protected]> > Signed-off-by: Mickaël Salaün <[email protected]> > Link: https://lore.kernel.org/r/[email protected] > --- > > Changes since v1: > * Fix commit message (spotted by Paul). > * Constify dump_common_audit_data()'s and audit_log_lsm_data()'s "a" > argument. > * Fix build without CONFIG_NET: see previous patch. > --- > include/linux/lsm_audit.h | 8 ++++++++ > security/lsm_audit.c | 27 ++++++++++++++++++--------- > 2 files changed, 26 insertions(+), 9 deletions(-)
While not a fix like 1/14, reducing AUDIT_AVC reuse is a reasonable goal. Merged into lsm/dev, thanks! -- paul-moore.com
