[PATCH 11/15] fixing audit rule ordering mess, part 1
James Morris
jmorris at namei.org
Wed Dec 17 07:48:08 UTC 2008
On Wed, 17 Dec 2008, Al Viro wrote:
>
> Problem: ordering between the rules on exit chain is currently lost;
> all watch and inode rules are listed after everything else _and_
> exit,never on one kind doesn't stop exit,always on another from
> being matched.
>
> Solution: assign priorities to rules, keep track of the current
> highest-priority matching rule and its result (always/never).
>
> Signed-off-by: Al Viro <viro at zeniv.linux.org.uk>
Reviewed-by: James Morris <jmorris at namei.org>
--
James Morris
<jmorris at namei.org>
More information about the Linux-audit
mailing list