Re: [PATCH] LSM hooks for audit
Sorry, I wasn't thinking in my initial response. These
operations are
exported via netlink, which is async, right? Hence, permission checks
I was wondering about that. Based on the original code I assumed that
it was synchronous.
Taking a second look at net/netlink, I guess not.
Is there any reason why we can't find the task belonging to
NETLINK_CREDS(skb)->pid and send that along to the security_* hooks?
thanks,
-serge