* actx not used?
@ 2019-01-31 0:58 Richard Guy Briggs
2019-01-31 1:46 ` Casey Schaufler
2019-01-31 1:57 ` Paul Moore
0 siblings, 2 replies; 3+ messages in thread
From: Richard Guy Briggs @ 2019-01-31 0:58 UTC (permalink / raw)
To: Linux-Audit Mailing List, Linux Security Module list, LKML
Hello users of *audit_rule_match(),
As far as I can tell, it appears that the audit_context *actx parameter
to *audit_rule_match() is not used by any consumers in-tree upstream.
This includes selinux, apparmour, integrity and smack.
Might there be others out of tree that do use it (or did request it)?
I'm a bit puzzled that it was ever offered since it should be relatively
opaque and accessed only by audit or its accessor functions.
It was part of the 2008 commit 03d37d25e0f9 ("LSM/Audit: Introduce
generic Audit LSM hooks").
Would anyone object if I ripped out actx?
- RGB
--
Richard Guy Briggs <rgb@redhat.com>
Sr. S/W Engineer, Kernel Security, Base Operating Systems
Remote, Ottawa, Red Hat Canada
IRC: rgb, SunRaycer
Voice: +1.647.777.2635, Internal: (81) 32635
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: actx not used?
2019-01-31 0:58 actx not used? Richard Guy Briggs
@ 2019-01-31 1:46 ` Casey Schaufler
2019-01-31 1:57 ` Paul Moore
1 sibling, 0 replies; 3+ messages in thread
From: Casey Schaufler @ 2019-01-31 1:46 UTC (permalink / raw)
To: Richard Guy Briggs, Linux-Audit Mailing List,
Linux Security Module list, LKML
On 1/30/2019 4:58 PM, Richard Guy Briggs wrote:
> Hello users of *audit_rule_match(),
>
> As far as I can tell, it appears that the audit_context *actx parameter
> to *audit_rule_match() is not used by any consumers in-tree upstream.
> This includes selinux, apparmour, integrity and smack.
> Might there be others out of tree that do use it (or did request it)?
>
> I'm a bit puzzled that it was ever offered since it should be relatively
> opaque and accessed only by audit or its accessor functions.
>
> It was part of the 2008 commit 03d37d25e0f9 ("LSM/Audit: Introduce
> generic Audit LSM hooks").
>
> Would anyone object if I ripped out actx?
I don't see any reason to keep it based on what I see.
I don't see what it was supposed to be for, either.
> - RGB
>
> --
> Richard Guy Briggs <rgb@redhat.com>
> Sr. S/W Engineer, Kernel Security, Base Operating Systems
> Remote, Ottawa, Red Hat Canada
> IRC: rgb, SunRaycer
> Voice: +1.647.777.2635, Internal: (81) 32635
>
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: actx not used?
2019-01-31 0:58 actx not used? Richard Guy Briggs
2019-01-31 1:46 ` Casey Schaufler
@ 2019-01-31 1:57 ` Paul Moore
1 sibling, 0 replies; 3+ messages in thread
From: Paul Moore @ 2019-01-31 1:57 UTC (permalink / raw)
To: Richard Guy Briggs
Cc: Linux-Audit Mailing List, Linux Security Module list, LKML
On Wed, Jan 30, 2019 at 7:59 PM Richard Guy Briggs <rgb@redhat.com> wrote:
> Hello users of *audit_rule_match(),
>
> As far as I can tell, it appears that the audit_context *actx parameter
> to *audit_rule_match() is not used by any consumers in-tree upstream.
> This includes selinux, apparmour, integrity and smack.
> Might there be others out of tree that do use it (or did request it)?
I'm not aware of any work-in-progress that would make use of it, so if
it isn't used by anything in-tree, go ahead and get rid of it. If we
need it again in the future for some reason we can always add it back.
--
paul moore
www.paul-moore.com
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2019-01-31 1:58 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-01-31 0:58 actx not used? Richard Guy Briggs
2019-01-31 1:46 ` Casey Schaufler
2019-01-31 1:57 ` Paul Moore
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).