|
 |
74de835 |
From 7ef5b1854f75056d23e60aabc86706dfed622669 Mon Sep 17 00:00:00 2001
|
|
|
74de835 |
From: Chris PeBenito <chpebeni@linux.microsoft.com>
|
|
|
74de835 |
Date: Tue, 15 Sep 2020 13:33:32 -0400
|
|
|
74de835 |
Subject: [PATCH] libselinux: Change userspace AVC setenforce and policy load
|
|
|
74de835 |
messages to audit format.
|
|
|
74de835 |
|
|
|
74de835 |
Signed-off-by: Chris PeBenito <chpebeni@linux.microsoft.com>
|
|
|
74de835 |
Acked-by: Stephen Smalley <stephen.smalley.work@gmail.com>
|
|
|
74de835 |
---
|
|
|
74de835 |
libselinux/src/avc_internal.c | 4 ++--
|
|
|
74de835 |
1 file changed, 2 insertions(+), 2 deletions(-)
|
|
|
74de835 |
|
|
|
74de835 |
diff --git a/libselinux/src/avc_internal.c b/libselinux/src/avc_internal.c
|
|
|
74de835 |
index 572b2159c3ed..53a99a1fe957 100644
|
|
|
74de835 |
--- a/libselinux/src/avc_internal.c
|
|
|
74de835 |
+++ b/libselinux/src/avc_internal.c
|
|
|
74de835 |
@@ -59,7 +59,7 @@ int avc_process_setenforce(int enforcing)
|
|
|
74de835 |
int rc = 0;
|
|
|
74de835 |
|
|
|
74de835 |
avc_log(SELINUX_SETENFORCE,
|
|
|
74de835 |
- "%s: received setenforce notice (enforcing=%d)\n",
|
|
|
74de835 |
+ "%s: op=setenforce lsm=selinux enforcing=%d res=1",
|
|
|
74de835 |
avc_prefix, enforcing);
|
|
|
74de835 |
if (avc_setenforce)
|
|
|
74de835 |
goto out;
|
|
|
74de835 |
@@ -81,7 +81,7 @@ int avc_process_policyload(uint32_t seqno)
|
|
|
74de835 |
int rc = 0;
|
|
|
74de835 |
|
|
|
74de835 |
avc_log(SELINUX_POLICYLOAD,
|
|
|
74de835 |
- "%s: received policyload notice (seqno=%u)\n",
|
|
|
74de835 |
+ "%s: op=load_policy lsm=selinux seqno=%u res=1",
|
|
|
74de835 |
avc_prefix, seqno);
|
|
|
74de835 |
rc = avc_ss_reset(seqno);
|
|
|
74de835 |
if (rc < 0) {
|
|
|
74de835 |
--
|
|
|
74de835 |
2.29.0
|
|
|
74de835 |
|