search

linux-audit / audit-kernel

GitHub mirror of the Linux Kernel's audit repository
https://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit.git
Other
140 stars 37 forks source link

RFE: add ambient capabilities to audit logs #40

Closed rgbriggs closed 7 years ago

rgbriggs commented 7 years ago

Capabilities were augmented to include ambient capabilities in v4.3 <58319057b7847667f0c9585b9de0e8932b0fdb08>.

Add ambient capabilities to the BPRM_FCAPS and CAPSET records.

pcmoore commented 7 years ago

Possibly related to #16.

rgbriggs commented 7 years ago

Posted upstream in lsm, linux-audit. (no link yet due to linux-audit moderation, lsm archives MIA)

Userspace: issue: https://github.com/linux-audit/audit-userspace/issues/16 pullrequest: https://github.com/linux-audit/audit-userspace/pull/17

pcmoore commented 7 years ago

FYI: after years of fighting with the various list archive services, we finally started self-hosting an archive for the LSM list.

rgbriggs commented 7 years ago

Perfect, heard such a rumour, the link works, posting still in moderation...

rgbriggs commented 7 years ago

Upstream posting: https://www.redhat.com/archives/linux-audit/2017-April/msg00029.html

pcmoore commented 7 years ago

Merged via 7786f6b6dfc12d17eea2df04116de6ebac50c884.