Received: by 10.213.65.68 with SMTP id h4csp139978imn; Mon, 12 Mar 2018 09:09:33 -0700 (PDT) X-Google-Smtp-Source: AG47ELupqBM6NGx82igSKkpmW1ZEN4b82tnQ8erhcezKGHNdpAUfLJ3HOBA6Xm2vbL5qv+Sq6mRR X-Received: by 10.99.114.2 with SMTP id n2mr4372718pgc.274.1520870973715; Mon, 12 Mar 2018 09:09:33 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1520870973; cv=none; d=google.com; s=arc-20160816; b=pv2Ef4oy0Se5YwYTSroPWyMxcksE5XhWpdEr6UwsTFxEh/NrcEVj1DdBQBV3Syml1+ AwnxvNY9rh03gLaV+QwuxnSpDn5rOBGTM+bTW/EGcLrKJp4Oiz09JKpCbXDuQjuLqDK9 7tPAh/pvR1ibtxTmQLdLxk1qOP2BDU9suciT7ytXiudQLRffc3BuNsC/II+TL89qDzit 1Xluw2rxnq5bGHG4TfidtdlZbrULJ3zIeqelsx6aS/IaiYQjRa6dFi9M6BH6lzBJaDcy zLhEXPkGujVZIDYj8C9sHuMcBPvavrR2MjagXjUzVCgzvn1+D62K9XwvaUkZ+NGBdF8G w42Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :references:in-reply-to:mime-version:dkim-signature :arc-authentication-results; bh=lMXA4BcTA7BHU7HhGuDIgNW5/oiT1346IRNYgpkgLGg=; b=A2qb0m6I/Mru9KQgZ3pRn+3TSLJAax6trUKDcJzKucWOnOlHXSKJVftGSYOZOxxUle 37GX0cC931fxUMwTWZ8G13CEFyu6edpLnBw82e8oeWk3qh/dI0ybjzxnRdbPTYhqf9IE iiYCdSOtaaCAe0JYinWV9Z9GEDW4VAdORs3Xb38YaZe0+OStWXrJ4UMFx0d3FLP/Wi3a zVVLlKip3FzAeG4ABBOD+KaTd4pD3iBc56z9YCkN2zXqvWlc9BtwkhKEf2F/vxkbquP6 XXy13OCMEpdjHdJRv56OtkvoE3erdZsS1YHPRJIZtxnju7gT3n6qilkM2K7jVlOFMjxv 1QOw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=S3bvAfj7; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id q11si5235197pgv.144.2018.03.12.09.09.19; Mon, 12 Mar 2018 09:09:33 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=S3bvAfj7; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751977AbeCLQIH (ORCPT + 99 others); Mon, 12 Mar 2018 12:08:07 -0400 Received: from mail-lf0-f42.google.com ([209.85.215.42]:37938 "EHLO mail-lf0-f42.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751758AbeCLQIF (ORCPT ); Mon, 12 Mar 2018 12:08:05 -0400 Received: by mail-lf0-f42.google.com with SMTP id i80-v6so24109400lfg.5 for ; Mon, 12 Mar 2018 09:08:04 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=lMXA4BcTA7BHU7HhGuDIgNW5/oiT1346IRNYgpkgLGg=; b=S3bvAfj74NG2vnwj2V8dwMYiVCUue7JkFd7j0+3oVwMBhGD4fEY9NNO0fD6idlafMa CMdjJqiNVf+AXPNLcCb+RHNbzORB/aj4U1iekLheXnnK+v9ZRptYreNpfVcH/2YofhoN ooIJAJn7QYh1g51E5QbBHmP9dxb4G6aDgj4yrtFitDIoSWzlI0Mav6DxuqL7dUSC6TkG CNZzluzaxQY4ptI8LF2XVcDCGRpNJSuTQ3xtNdiRXtpJKC7uQE7rm9AUWqN5fcJ+jSNp mCusPlVE/mS4VnBUy3RstL05Wr7Zz5TTWMo/jKIVlEN5GcoGjzzEFp/M1FjiTawfN32t 4AUQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=lMXA4BcTA7BHU7HhGuDIgNW5/oiT1346IRNYgpkgLGg=; b=pM3y9cI4TsP8rzQu8TH5sPNrVINL3NZ1+wHqL/KoQUadMEwSYDeasDYUE47RLiohV7 nDxM1xI4kiv+wtW355DSr0furh5LPUCRHhescw+D4lfxee3gSYs2Rnv+G6b3WVS9KyJy +jokR9iaARoqCEN+QjrdTX0JtPGVDX62FGAfzV5a40jgggMNjCkoIv+vhXkiVgyiTI2r M3+GF4XNp+/vYw+bAdLK7wigvuXwvSH3GN+Q0TTgAIr/Xot6dfzvsZ6h0OftO4QdPu7+ rdNgBhGy+TndlIi2b5D2H6UAyK7PFWV+nYhrtgUudoA11eqE2apOH9WKNLYbmorDtiBI VksQ== X-Gm-Message-State: AElRT7EMptvbfml/yPUpOzzSmfKbhS4JAryoPkOmTTDzqwKc3xcV49a9 jci/w81k7IfJaBg2xmv5wVJaV6++f35rYJ7fGbXx X-Received: by 2002:a19:d744:: with SMTP id o65-v6mr5667362lfg.90.1520870883965; Mon, 12 Mar 2018 09:08:03 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:a19:d8a7:0:0:0:0:0 with HTTP; Mon, 12 Mar 2018 09:08:03 -0700 (PDT) X-Originating-IP: [108.20.156.165] In-Reply-To: <20180312155256.4j7uglv7jiyppozm@madcap2.tricolour.ca> References: <20180312152614.qvcxng3biug46lms@madcap2.tricolour.ca> <20180312155256.4j7uglv7jiyppozm@madcap2.tricolour.ca> From: Paul Moore Date: Mon, 12 Mar 2018 12:08:03 -0400 Message-ID: Subject: Re: [PATCH ghak21 V2 3/4] audit: add refused symlink to audit_names To: Richard Guy Briggs Cc: Linux-Audit Mailing List , LKML Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Mar 12, 2018 at 11:52 AM, Richard Guy Briggs wrote: > On 2018-03-12 11:53, Paul Moore wrote: >> On Mon, Mar 12, 2018 at 11:26 AM, Richard Guy Briggs wrote: >> > On 2018-03-12 11:12, Paul Moore wrote: >> >> On Mon, Mar 12, 2018 at 2:31 AM, Richard Guy Briggs wrote: >> >> > Audit link denied events for symlinks had duplicate PATH records rather >> >> > than just updating the existing PATH record. Update the symlink's PATH >> >> > record with the current dentry and inode information. >> >> > >> >> > See: https://github.com/linux-audit/audit-kernel/issues/21 >> >> > Signed-off-by: Richard Guy Briggs >> >> > --- >> >> > fs/namei.c | 1 + >> >> > 1 file changed, 1 insertion(+) >> >> >> >> Why didn't you include this in patch 4/4 like I asked during the >> >> previous review? >> > >> > Please see the last comment of: >> > https://www.redhat.com/archives/linux-audit/2018-March/msg00070.html >> >> Yes, I just saw that ... I hadn't seen your replies on the v1 patches >> until I had finished reviewing v2. I just replied to that mail in the >> v1 thread, but basically you need to figure out what is necessary here >> and let us know. If I have to figure it out it likely isn't going to >> get done with enough soak time prior to the upcoming merge window. > > Steve? I was hoping you could chime in here. > > I'd just include it for completeness unless Steve thinks it will stand > on its own and doesn't want the overhead. If that's the argument, I'd rather just include it. We've been burned by not including stuff in the past and fixing those omissions has proven to be a major source of contention. -- paul moore www.paul-moore.com