seccomp and audit_enabled

Tony Jones tonyj at suse.de
Sat Oct 10 03:50:01 UTC 2015

Previous message (by thread): Audit record created by echo "ThisIsATest" >>/tmp/test/file11
Next message (by thread): seccomp and audit_enabled
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi.

What is the expected handling of AUDIT_SECCOMP if audit_enabled == 0?   Opera browser makes use of a sandbox and if audit_enabled == 0 (and no auditd is running) there is a lot of messages dumped to the klog. The fix to __audit_seccomp() is trivial, similar to c2412d91c and I can send a patch, I'm just not sure if seccomp is somehow special?

Thanks

Tony

Previous message (by thread): Audit record created by echo "ThisIsATest" >>/tmp/test/file11
Next message (by thread): seccomp and audit_enabled
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Linux-audit mailing list