audit: implement generic feature setting and retrieving
authorEric Paris <eparis@redhat.com>
Wed, 22 May 2013 16:54:49 +0000 (12:54 -0400)
committerEric Paris <eparis@redhat.com>
Tue, 5 Nov 2013 16:07:30 +0000 (11:07 -0500)
commitb0fed40214ce79ef70d97584ebdf13f89786da0e
treefc912434e03f4a300942e809e376e2e4ec2cb837
parent42f74461a5b60cf6b42887e6d2ff5b7be4abf1ca
audit: implement generic feature setting and retrieving

The audit_status structure was not designed with extensibility in mind.
Define a new AUDIT_SET_FEATURE message type which takes a new structure
of bits where things can be enabled/disabled/locked one at a time.  This
structure should be able to grow in the future while maintaining forward
and backward compatibility (based loosly on the ideas from capabilities
and prctl)

This does not actually add any features, but is just infrastructure to
allow new on/off types of audit system features.

Signed-off-by: Eric Paris <eparis@redhat.com>
Signed-off-by: Richard Guy Briggs <rgb@redhat.com>
Signed-off-by: Eric Paris <eparis@redhat.com>
include/linux/audit.h
include/uapi/linux/audit.h
kernel/audit.c