SELinux: new permission between tty audit and audit socket New selinux permission to separate the ability to turn on tty auditing from the ability to set audit rules. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>

commit: dd34b5d75a0405814a3de83f02a44ac297e81629 [log] [tgz]
author: Eric Paris <eparis@redhat.com> Thu Mar 05 13:43:35 2009 -0500
committer: James Morris <jmorris@namei.org> Fri Mar 06 08:50:21 2009 +1100
tree: f24939a7b7f6b33c44939ee4022d7e95b3f670b6
parent: 6a25b27d602aac24f3c642722377ba5d778417ec [diff] [blame]
diff --git a/security/selinux/nlmsgtab.c b/security/selinux/nlmsgtab.c
index 4ed7bab..c6875fd 100644
--- a/security/selinux/nlmsgtab.c
+++ b/security/selinux/nlmsgtab.c

@@ -113,7 +113,7 @@
 	{ AUDIT_USER,		NETLINK_AUDIT_SOCKET__NLMSG_RELAY    },
 	{ AUDIT_SIGNAL_INFO,	NETLINK_AUDIT_SOCKET__NLMSG_READ     },
 	{ AUDIT_TTY_GET,	NETLINK_AUDIT_SOCKET__NLMSG_READ     },
-	{ AUDIT_TTY_SET,	NETLINK_AUDIT_SOCKET__NLMSG_WRITE    },
+	{ AUDIT_TTY_SET,	NETLINK_AUDIT_SOCKET__NLMSG_TTY_AUDIT	},
 };
commit	dd34b5d75a0405814a3de83f02a44ac297e81629	[log] [tgz]
author	Eric Paris <eparis@redhat.com>	Thu Mar 05 13:43:35 2009 -0500
committer	James Morris <jmorris@namei.org>	Fri Mar 06 08:50:21 2009 +1100
tree	f24939a7b7f6b33c44939ee4022d7e95b3f670b6
parent	6a25b27d602aac24f3c642722377ba5d778417ec [diff] [blame]