Page MenuHomeFreeBSD

Add BSM conversion logic for some jail and setlogin class events
ClosedPublic

Authored by csjp on Feb 28 2020, 6:34 PM.
Tags
None
Referenced Files
F106177985: D23882.id69002.diff
Thu, Dec 26, 4:32 PM
F106177077: D23882.id68959.diff
Thu, Dec 26, 4:11 PM
F106148082: D23882.diff
Thu, Dec 26, 4:46 AM
Unknown Object (File)
Tue, Dec 3, 9:09 AM
Unknown Object (File)
Nov 15 2024, 10:30 PM
Unknown Object (File)
Nov 7 2024, 5:00 PM
Unknown Object (File)
Oct 9 2024, 12:40 AM
Unknown Object (File)
Oct 7 2024, 6:22 PM

Details

Summary

Currently kernel audit events for jail_set(2), jail_get(2), jail_attach(2),
jail_remove(2) and finally setloginclass(2) are not being converted and
committed into userspace. Add the cases for these syscalls and make sure
they are being converted properly.

Test Plan

After the change I see records being converted and committed to userspace:

header,102,11,jail_set(2),0,Fri Feb 28 18:24:42 2020, + 482 msec
path,/
attribute,755,root,0,90,2,5064
subject,root,root,0,root,0,886,0,0,0.0.0.0
return,success,1
trailer,102

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Passed
Unit
No Test Coverage
Build Status
Buildable 29675
Build 27531: arc lint + arc unit

Event Timeline

csjp edited the test plan for this revision. (Show Details)
bz added a subscriber: bz.

Not my expertise of code but looks ok to me.

This revision is now accepted and ready to land.Feb 28 2020, 7:46 PM

Break out the switch case statements for the new syscalls

This revision now requires review to proceed.Feb 28 2020, 11:23 PM
This revision is now accepted and ready to land.Feb 28 2020, 11:44 PM