Date: Fri, 22 Sep 2006 13:50:58 +0000 (UTC) From: Robert Watson <rwatson@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/security/audit audit_bsm.c Message-ID: <200609221350.k8MDoxhZ009906@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
rwatson 2006-09-22 13:50:58 UTC
FreeBSD src repository
Modified files: (Branch: RELENG_6)
sys/security/audit audit_bsm.c
Log:
Merge audit_bsm.c:1.14 from HEAD to RELENG_6:
Rather than allocating all buffer memory for the completed BSM record
when allocating the record in the first place, allocate the final buffer
when closing the BSM record. At that point, more size information is
available, so a sufficiently large buffer can be allocated.
This allows the kernel to generate audit records in excess of
MAXAUDITDATA bytes, but is consistent with Solaris's behavior. This only
comes up when auditing command line arguments, in which case we presume
the administrator really does want the data as they have specified the
policy flag to gather them.
Obtained from: TrustedBSD Project
Approved by: re (mux)
Revision Changes Path
1.10.2.5 +17 -19 src/sys/security/audit/audit_bsm.c
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200609221350.k8MDoxhZ009906>