Gitweb:     http://git.kernel.org/linus/dd34b5d75a0405814a3de83f02a44ac297e81629
Commit:     dd34b5d75a0405814a3de83f02a44ac297e81629
Parent:     6a25b27d602aac24f3c642722377ba5d778417ec
Author:     Eric Paris <eparis@redhat.com>
AuthorDate: Thu Mar 5 13:43:35 2009 -0500
Committer:  James Morris <jmorris@namei.org>
CommitDate: Fri Mar 6 08:50:21 2009 +1100

    SELinux: new permission between tty audit and audit socket
    
    New selinux permission to separate the ability to turn on tty auditing from
    the ability to set audit rules.
    
    Signed-off-by: Eric Paris <eparis@redhat.com>
    Acked-by:  Stephen Smalley <sds@tycho.nsa.gov>
    Signed-off-by: James Morris <jmorris@namei.org>
---
 security/selinux/include/av_perm_to_string.h |    1 +
 security/selinux/include/av_permissions.h    |    1 +
 security/selinux/nlmsgtab.c                  |    2 +-
 3 files changed, 3 insertions(+), 1 deletions(-)

diff --git a/security/selinux/include/av_perm_to_string.h b/security/selinux/include/av_perm_to_string.h
index c7531ee..31df1d7 100644
--- a/security/selinux/include/av_perm_to_string.h
+++ b/security/selinux/include/av_perm_to_string.h
@@ -153,6 +153,7 @@
    S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_WRITE, "nlmsg_write")
    S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_RELAY, "nlmsg_relay")
    S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_READPRIV, "nlmsg_readpriv")
+   S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_TTY_AUDIT, "nlmsg_tty_audit")
    S_(SECCLASS_NETLINK_IP6FW_SOCKET, NETLINK_IP6FW_SOCKET__NLMSG_READ, "nlmsg_read")
    S_(SECCLASS_NETLINK_IP6FW_SOCKET, NETLINK_IP6FW_SOCKET__NLMSG_WRITE, "nlmsg_write")
    S_(SECCLASS_ASSOCIATION, ASSOCIATION__SENDTO, "sendto")
diff --git a/security/selinux/include/av_permissions.h b/security/selinux/include/av_permissions.h
index 0b8f9b2..d645192 100644
--- a/security/selinux/include/av_permissions.h
+++ ...
[ message continues ]