On Wed, Apr 26, 2017 at 10:41 PM, Richard Guy Briggs [off-list ref] wrote:

On 2017-04-26 16:04, Paul Moore wrote:

quoted

On Fri, Apr 7, 2017 at 10:17 AM, Richard Guy Briggs [off-list ref] wrote:

quoted

Capabilities were augmented to include ambient capabilities in v4.3
commit 58319057b784 ("capabilities: ambient capabilities").

Add ambient capabilities to the audit BPRM_FCAPS and CAPSET records.

The record contains fields "old_pp", "old_pi", "old_pe", "new_pp",
"new_pi", "new_pe" so in keeping with the previous record
normalizations, change the "new_*" variants to simply drop the "new_"
prefix.

Help me out and remind me of those previous field rename
patches/commits where "new_X" became "X"?

aa589a13b5d00d3c643ee4114d8cbc3addb4e99f ("audit: remove superfluous
new- prefix in AUDIT_LOGIN messages")

I had thought there were more.

And I'm now noticing that audit_log_feature_change() could use the same
treatment and so could audit_receive_msg()'s AUDIT_TTY_SET.

(And much earlier: ac03221a4fdda9bfdabf99bcd129847f20fc1d80 ("[PATCH]
update of IPC audit record cleanup")

Ah ha, both before my time, that explains it.  Okay, I'll go ahead and
merge this.

-- 
paul moore
www.paul-moore.com
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html