audit: add an option to control logging of passwords with pam_tty_audit

Most commands are entered one line at a time and processed as complete lines in non-canonical mode. Commands that interactively require a password, enter canonical mode to do this while shutting off echo. This pair of features (icanon and !echo) can be used to avoid logging passwords by audit while still logging the rest of the command. Adding a member (log_passwd) to the struct audit_tty_status passed in by pam_tty_audit allows control of canonical mode without echo per task. Signed-off-by: Richard Guy Briggs <rgb@redhat.com> Signed-off-by: Eric Paris <eparis@redhat.com>
author: Richard Guy Briggs <rgb@redhat.com> 2013-05-03 14:03:50 -0400
committer: Eric Paris <eparis@redhat.com> 2013-04-30 15:31:28 -0400
commit: 46e959ea2969cc1668d09b0dc55226946cf781f1 (patch)
tree: 40481f42587257039bd7b898c2aec95e1c01656f /include/uapi
parent: bde02ca858448cf54a4226774dd1481f3bcc455e (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/include/uapi/linux/audit.h b/include/uapi/linux/audit.h
index 9f096f1c090..c058c24b97a 100644
--- a/include/uapi/linux/audit.h
+++ b/include/uapi/linux/audit.h
@@ -369,7 +369,8 @@ struct audit_status {
 };
 
 struct audit_tty_status {
-	__u32		enabled; /* 1 = enabled, 0 = disabled */
+	__u32		enabled;	/* 1 = enabled, 0 = disabled */
+	__u32		log_passwd;	/* 1 = enabled, 0 = disabled */
 };
 
 /* audit_rule_data supports filter rules with both integer and string
author	Richard Guy Briggs <rgb@redhat.com>	2013-05-03 14:03:50 -0400
committer	Eric Paris <eparis@redhat.com>	2013-04-30 15:31:28 -0400
commit	46e959ea2969cc1668d09b0dc55226946cf781f1 (patch)
tree	40481f42587257039bd7b898c2aec95e1c01656f /include/uapi
parent	bde02ca858448cf54a4226774dd1481f3bcc455e (diff)