Re: [PATCH] Add audit uid to netlink credentials
On Tue, 2005-02-08 at 01:04, Patrick McHardy wrote:
Reception of netlink messages in the kernel happens in the context
of the sending process, so you can simply call
audit_get_loginuid(current->audit_context) in audit_receive_msg().
Then why does netlink_sendmsg() need to save the effective capability
set of the sender in the control buffer (via security_netlink_send) for
later checking by other receive functions in the kernel (via
security_netlink_recv)? What prevents audit_receive() or other similar
receive functions in the kernel from processing messages sent by
multiple senders?
--
Stephen Smalley <sds(a)epoch.ncsc.mil>
National Security Agency