Re: [PATCH ghak90 V6] fixup! audit: add containerid filtering

On Fri, May 31, 2019 at 1:54 PM Richard Guy Briggs <rgb(a)redhat.com&gt; wrote: > Remove the BUG() call since we will never have an invalid op value as > audit_data_to_entry()/audit_to_op() ensure that the op value is a a > known good value. > > Signed-off-by: Richard Guy Briggs <rgb(a)redhat.com&gt; > --- > kernel/auditfilter.c | 1 - > 1 file changed, 1 deletion(-) Thanks for sending this out. However, in light of the discussion in the patchset's cover letter it looks like we need to better support nested container orchestrators which is likely going to require some non-trivial changes to the kernel/userspace API. Because of this I'm going to hold off pulling these patches into a "working" branch, hopefully the next revision of these patches will solve the nested orchestrator issue enough that we can continue to move forward with testing. > diff --git a/kernel/auditfilter.c b/kernel/auditfilter.c > index 407b5bb3b4c6..385a114a1254 100644 > --- a/kernel/auditfilter.c > +++ b/kernel/auditfilter.c > @@ -1244,7 +1244,6 @@ int audit_comparator64(u64 left, u32 op, u64 right) > case Audit_bittest: > return ((left & right) == right); > default: > - BUG(); > return 0; > } > } > -- > 1.8.3.1 >