Merge branch 'master' into for-next

Merge with latest Linus' tree, as I have incoming patches that fix code that is newer than current HEAD of for-next. Conflicts: drivers/net/ethernet/realtek/r8169.c
author: Jiri Kosina <jkosina@suse.cz> 2012-04-08 21:48:52 +0200
committer: Jiri Kosina <jkosina@suse.cz> 2012-04-08 21:48:52 +0200
commit: e75d660672ddd11704b7f0fdb8ff21968587b266 (patch)
tree: ccb9c107744c10b553c0373e450bee3971d16c00 /security/selinux/include/avc.h
parent: 61282f37927143e45b03153f3e7b48d6b702147a (diff)
parent: 0034102808e0dbbf3a2394b82b1bb40b5778de9e (diff)
1 files changed, 25 insertions, 1 deletions
diff --git a/security/selinux/include/avc.h b/security/selinux/include/avc.h
index 47fda963495d..1931370233d7 100644
--- a/security/selinux/include/avc.h
+++ b/security/selinux/include/avc.h
@@ -15,7 +15,6 @@
 #include <linux/audit.h>
 #include <linux/lsm_audit.h>
 #include <linux/in6.h>
-#include <asm/system.h>
 #include "flask.h"
 #include "av_permissions.h"
 #include "security.h"
@@ -48,6 +47,31 @@ struct avc_cache_stats {
 };
 
 /*
+ * We only need this data after we have decided to send an audit message.
+ */
+struct selinux_late_audit_data {
+	u32 ssid;
+	u32 tsid;
+	u16 tclass;
+	u32 requested;
+	u32 audited;
+	u32 denied;
+	int result;
+};
+
+/*
+ * We collect this at the beginning or during an selinux security operation
+ */
+struct selinux_audit_data {
+	/*
+	 * auditdeny is a bit tricky and unintuitive.  See the
+	 * comments in avc.c for it's meaning and usage.
+	 */
+	u32 auditdeny;
+	struct selinux_late_audit_data *slad;
+};
+
+/*
  * AVC operations
  */
author	Jiri Kosina <jkosina@suse.cz>	2012-04-08 21:48:52 +0200
committer	Jiri Kosina <jkosina@suse.cz>	2012-04-08 21:48:52 +0200
commit	e75d660672ddd11704b7f0fdb8ff21968587b266 (patch)
tree	ccb9c107744c10b553c0373e450bee3971d16c00 /security/selinux/include/avc.h
parent	61282f37927143e45b03153f3e7b48d6b702147a (diff)
parent	0034102808e0dbbf3a2394b82b1bb40b5778de9e (diff)