Received: by 10.192.165.148 with SMTP id m20csp98143imm; Wed, 9 May 2018 09:22:09 -0700 (PDT) X-Google-Smtp-Source: AB8JxZondPz9qCs0g8Fb2Z+B5tsa2xbnb/DnxdoO56dsOn4lWh5ErkDKLPjFBgSYTGw6ZEo3gCSn X-Received: by 10.98.152.29 with SMTP id q29mr24086021pfd.65.1525882929140; Wed, 09 May 2018 09:22:09 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1525882929; cv=none; d=google.com; s=arc-20160816; b=WRrctlZORUvvqsazG3o3/c2uq1fd+sUVOUUQYPED0Txnrz/+QEmLxhvPWsFJ6Yarit /nqVDlx/K8o1d0LINOc/M23ewDxarVU8hEMtg1qLopVcV3NoBgezmzpBKRX+Yc4hBGj/ xpPgCgf0zJw763clT8eptjd8bzPe3Hcoe7gKoUAQ60n1bbqmehLunDQlqvfJc1YFMEEO cVwkbSzm1dffZzQI4wvPQkLmwC4TaeIEOrCwhq12Ca/9PiTKf4qZZTonAJp4lfMKLG0/ Ak4ycWVpANLT/TGr3BI1ZNJAfgAsN3YNgQoD2rsIjAbOic6CKc/UYaSpCON13jeAXq4R Spnw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :references:in-reply-to:mime-version:dkim-signature :arc-authentication-results; bh=j8Aoy3hZuGctdRXqrxm88uWhzNV3nffYwEq2BJfYvRE=; b=Bdiu9IeYQDk4hfsoozF4E+1gXjb2Bp7LJiSmvslbHoLRvn+D88ylCcVrdu37XRqn8u nps87HrJQ+fQ0M368Wnm/j9C/Awwkk28lghjdHQKbq3rUpw+PemgC9pgbkRkySQaKRlM Yse6oVWnGPGg2/OGOh/HcThbTlghPyeR8A+e1m7ZIzsXsErFN1DedtlF7YLK9O3LLMaF OA7o3mQOz3XVWezvhuzrK/hHsu9x4Ts4GR7i/3MOV3unxvOQ4qpoe5eVaFk4rwsqQZkM 5BpDFC+5jZ3yEcKZhtOIQ3si627Dc12ewGkFvG28yV5ydUxBGsLwbryd8CZLcZ0RKnKs pl/g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=NepuzZJV; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id ay10-v6si24716161plb.120.2018.05.09.09.21.54; Wed, 09 May 2018 09:22:09 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=NepuzZJV; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S965460AbeEIQVf (ORCPT + 99 others); Wed, 9 May 2018 12:21:35 -0400 Received: from mail-lf0-f67.google.com ([209.85.215.67]:38657 "EHLO mail-lf0-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S965034AbeEIQVd (ORCPT ); Wed, 9 May 2018 12:21:33 -0400 Received: by mail-lf0-f67.google.com with SMTP id z142-v6so8529674lff.5 for ; Wed, 09 May 2018 09:21:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=j8Aoy3hZuGctdRXqrxm88uWhzNV3nffYwEq2BJfYvRE=; b=NepuzZJVJ+idfobGU+oo9E0XcVpuDXGs45yojfXQ+j4hRxM4bdfQ8JdpBwqX4yRDra UPQFFnV46P2qZHJbX9bSiBTd067bfgfURDtjiJYHdOmwoUbGXRjSnwiWpYyAmLAX0Z7p WBVtTomgdZ4HQH2bDUcaMSv1aoQkTOJ3ddPXOhZwC4t4i3+H1Ujqv8dDWZSMCKXa1iVw VKI9ilGVvgOusrOAdO9VqH7n6snEX0ksYGGTeBFyZ8o1IfvM1HPAra8tJNxi0nQ0tRB+ 3F9OmJxl6auab5byjLGJLJLev5KbngZQwiQ+J5RGap6qXPVDgajyieuvS+FMBH2sLsLn Cm+A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=j8Aoy3hZuGctdRXqrxm88uWhzNV3nffYwEq2BJfYvRE=; b=D650fuLTPCpDFe/SziA4T6WNCDFdnsMoOqO4cLxTbNznnh8Tr0f+WaNXEaH32n8owD imFzFVPRnBjEKKJlDPg2nxmpXWiO88qBbdnp8ZRVqxh95n0Odl2lvjUpHVIBNe8wKjSI QutblKFb34Kzh3cQQHQzxQUneMvAlLaJtPfaEGIKFdDat3ZvwGkZEZIhCJAY3Jb+dsGn yL0yOMEm7wYmFC/OFxZyfkNP8+Vl1N839/ZZMVoJbNx/3xPnFH0osgis5t9e1yzDfj4U eXF3GAYkRFxopV52RuOmrn+Pr23HDZBfHB2FjBGvrVhfGQu9KNBhTJ1/VO4+t+++IuDs 0GFA== X-Gm-Message-State: ALQs6tBEGJZTHkIeyN9dFskRjEKTCA0CwchHShJBY6FEpIg2nn8qbVwe 1Xtm6b4MBiqF2AMxgXrsvhhpWGJPcPMHtAbBF7FB X-Received: by 2002:a19:4ed1:: with SMTP id u78-v6mr13123801lfk.40.1525881238603; Wed, 09 May 2018 08:53:58 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:a19:a947:0:0:0:0:0 with HTTP; Wed, 9 May 2018 08:53:57 -0700 (PDT) X-Originating-IP: [68.177.129.184] In-Reply-To: References: From: Paul Moore Date: Wed, 9 May 2018 11:53:57 -0400 Message-ID: Subject: Re: [PATCH ghak81 RFC V1 0/5] audit: group task params To: Richard Guy Briggs Cc: Linux-Audit Mailing List , LKML , Linux NetDev Upstream Mailing List , Netfilter Devel List , Linux Security Module list , Integrity Measurement Architecture , SElinux list , Eric Paris , Steve Grubb , Ingo Molnar , David Howells Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, May 4, 2018 at 4:54 PM, Richard Guy Briggs wrote: > Group the audit parameters for each task into one structure. > In particular, remove the loginuid and sessionid values and the audit > context pointer from the task structure, replacing them with an audit > task information structure to contain them. Use access functions to > access audit values. > > Note: Use static allocation of the audit task information structure > initially. Dynamic allocation was considered and attempted, but isn't > ready yet. Static allocation has the limitation that future audit task > information structure changes would cause a visible change to the rest > of the kernel, whereas dynamic allocation would mostly hide any future > changes. > > The first four access normalization patches could stand alone. I agree that the first four patches have some standalone value, and since we are currently at -rc4, did you want to post another patchset of just those four patches with feedback incorporated? I imagine that should be quick work, and that way they aren't help up with any problems/discussion regarding the take_struct changes. > Passes audit-testsuite. > > Richard Guy Briggs (5): > audit: normalize loginuid read access > audit: convert sessionid unset to a macro > audit: use inline function to get audit context > audit: use inline function to set audit context > audit: collect audit task parameters > > MAINTAINERS | 2 +- > include/linux/audit.h | 30 ++++++++++--- > include/linux/audit_task.h | 31 ++++++++++++++ > include/linux/sched.h | 6 +-- > include/net/xfrm.h | 4 +- > include/uapi/linux/audit.h | 1 + > init/init_task.c | 8 +++- > kernel/audit.c | 4 +- > kernel/audit_watch.c | 2 +- > kernel/auditsc.c | 82 ++++++++++++++++++------------------ > kernel/fork.c | 2 +- > net/bridge/netfilter/ebtables.c | 2 +- > net/core/dev.c | 2 +- > net/netfilter/x_tables.c | 2 +- > net/netlabel/netlabel_user.c | 2 +- > security/integrity/ima/ima_api.c | 2 +- > security/integrity/integrity_audit.c | 2 +- > security/lsm_audit.c | 2 +- > security/selinux/hooks.c | 4 +- > security/selinux/selinuxfs.c | 6 +-- > security/selinux/ss/services.c | 12 +++--- > 21 files changed, 129 insertions(+), 79 deletions(-) > create mode 100644 include/linux/audit_task.h > > -- > 1.8.3.1 > -- paul moore www.paul-moore.com