Using the kernel's audit.h
Steve Grubb
sgrubb at redhat.com
Fri Mar 4 19:37:33 UTC 2005
On Friday 04 March 2005 14:29, Steve Grubb wrote:
> It uses the headers in glibc-kernheaders which are supposed to be sanitized
> for public use.
Just looked, the headers in glibc-kernheaders are sanitized. I don't see
anything in it that userspace shouldn't have access to. Data structures &
functions that you add that are only for kernel use should be wrapped with
#ifdef __KERNEL__ just like the other places in the kernel's headers. This
helps sanitizing it for userspace since there's a marker.
-Steve
More information about the Linux-audit
mailing list