[GIT PULL] Audit patches for v5.8

[GIT PULL] Audit patches for v5.8

[Paul Moore]

Hi Linus,

Here is the set of audit patches for the v5.8 merge window, all
patches pass our test suite and as of a few minutes ago they also
merge cleanly with the top of your tree.  Unfortunately I just noticed
that one of the commit subject lines is truncated - sorry about that,
it's my fault not Richard's - but since the important part is there
("add subj creds to NETFILTER_CFG") I opted to leave it as-is and not
disrupt the git log.  If you would rather have the subject line fixed,
let me know and I'll correct it.

A quick summary of the significant patches:

- Record information about binds/unbinds to the audit multicast
socket.  This helps identify which processes have/had access to the
information in the audit stream.

- Cleanup and add some additional information to the netfilter
configuration events collected by audit.

- Fix some of the audit error handling code so we don't leak network
namespace references.

Thanks,
-Paul

--
The following changes since commit 8f3d9f354286745c751374f5f1fcafee6b3f3136:

 Linux 5.7-rc1 (2020-04-12 12:35:55 -0700)

are available in the Git repository at:

 git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit.git
   tags/audit-pr-20200601

for you to fetch changes up to 9d44a121c5a79bc8a9d67c058456bd52a83c79e7:

 audit: add subj creds to NETFILTER_CFG record to
   (2020-05-20 18:09:19 -0400)

----------------------------------------------------------------
audit/stable-5.8 PR 20200601

----------------------------------------------------------------
Gustavo A. R. Silva (1):
     audit: Replace zero-length array with flexible-array

Paul Moore (2):
     audit: fix a net reference leak in audit_send_reply()
     audit: fix a net reference leak in audit_list_rules_send()

Richard Guy Briggs (4):
     audit: log audit netlink multicast bind and unbind
     audit: tidy and extend netfilter_cfg x_tables
     netfilter: add audit table unregister actions
     audit: add subj creds to NETFILTER_CFG record to

Zheng Bin (1):
     audit: make symbol 'audit_nfcfgs' static

include/linux/audit.h           |  24 +++++++++-
include/uapi/linux/audit.h      |   1 +
kernel/audit.c                  | 100 +++++++++++++++++++++++++++---------
kernel/audit.h                  |   2 +-
kernel/auditfilter.c            |  16 +++----
kernel/auditsc.c                |  31 +++++++++++++
net/bridge/netfilter/ebtables.c |  14 +++---
net/netfilter/x_tables.c        |  14 ++----
8 files changed, 148 insertions(+), 54 deletions(-)

-- 
paul moore
www.paul-moore.com

--
Linux-audit mailing list
Linux-audit@redhat.com
https://www.redhat.com/mailman/listinfo/linux-audit

Re: [GIT PULL] Audit patches for v5.8

[Linus Torvalds]

On Mon, Jun 1, 2020 at 5:49 PM Paul Moore <paul@paul-moore.com> wrote:
>
>       Unfortunately I just noticed
> that one of the commit subject lines is truncated - sorry about that,
> it's my fault not Richard's - but since the important part is there
> ("add subj creds to NETFILTER_CFG") I opted to leave it as-is and not
> disrupt the git log.  If you would rather have the subject line fixed,
> let me know and I'll correct it.

It looks a bit odd, but not worth the churn of fixing up. Thanks, pulled,

                  Linus

--
Linux-audit mailing list
Linux-audit@redhat.com
https://www.redhat.com/mailman/listinfo/linux-audit

Re: [GIT PULL] Audit patches for v5.8

[pr-tracker-bot]

The pull request you sent on Mon, 1 Jun 2020 20:48:59 -0400:

> git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit.git tags/audit-pr-20200601

has been merged into torvalds/linux.git:
https://git.kernel.org/torvalds/c/9d99b1647fa56805c1cfef2d81ee7b9855359b62

Thank you!

-- 
Deet-doot-dot, I am a bot.
https://korg.wiki.kernel.org/userdoc/prtracker

--
Linux-audit mailing list
Linux-audit@redhat.com
https://www.redhat.com/mailman/listinfo/linux-audit