[AUDIT] add session id to audit messages

In order to correlate audit records to an individual login add a session id. This is incremented every time a user logs in and is included in almost all messages which currently output the auid. The field is labeled ses= or oses= Signed-off-by: Eric Paris <eparis@redhat.com>
author: Eric Paris <eparis@redhat.com> 2008-01-08 10:06:53 -0500
committer: Al Viro <viro@zeniv.linux.org.uk> 2008-02-01 14:06:51 -0500
commit: 4746ec5b01ed07205a91e4f7ed9de9d70f371407 (patch)
tree: 7a3a836b6178ccab24801e90b69c1159b2c23099 /net/core
parent: c2a7780efe37d01bdb3facc85a94663e6d67d4a8 (diff)
1 files changed, 3 insertions, 2 deletions
diff --git a/net/core/dev.c b/net/core/dev.c
index c0b69b3bb04..ba075a9dcec 100644
--- a/net/core/dev.c
+++ b/net/core/dev.c
@@ -2754,10 +2754,11 @@ static void __dev_set_promiscuity(struct net_device *dev, int inc)
 							       "left");
 		audit_log(current->audit_context, GFP_ATOMIC,
 			AUDIT_ANOM_PROMISCUOUS,
-			"dev=%s prom=%d old_prom=%d auid=%u",
+			"dev=%s prom=%d old_prom=%d auid=%u ses=%u",
 			dev->name, (dev->flags & IFF_PROMISC),
 			(old_flags & IFF_PROMISC),
-			audit_get_loginuid(current));
+			audit_get_loginuid(current),
+			audit_get_sessionid(current));
 
 		if (dev->change_rx_flags)
 			dev->change_rx_flags(dev, IFF_PROMISC);
author	Eric Paris <eparis@redhat.com>	2008-01-08 10:06:53 -0500
committer	Al Viro <viro@zeniv.linux.org.uk>	2008-02-01 14:06:51 -0500
commit	4746ec5b01ed07205a91e4f7ed9de9d70f371407 (patch)
tree	7a3a836b6178ccab24801e90b69c1159b2c23099 /net/core
parent	c2a7780efe37d01bdb3facc85a94663e6d67d4a8 (diff)