From owner-soc-status@freebsd.org Mon Aug 15 22:28:18 2016 Return-Path: Delivered-To: soc-status@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3F7BBBB93AF for ; Mon, 15 Aug 2016 22:28:18 +0000 (UTC) (envelope-from mpp302@gmail.com) Received: from mail-wm0-f68.google.com (mail-wm0-f68.google.com [74.125.82.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id D946E11C8; Mon, 15 Aug 2016 22:28:17 +0000 (UTC) (envelope-from mpp302@gmail.com) Received: by mail-wm0-f68.google.com with SMTP id q128so13340013wma.1; Mon, 15 Aug 2016 15:28:17 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:content-transfer-encoding:subject:date :message-id:cc:to:mime-version; bh=GZjoOwKmS6c+DmXh9y627edO7LHeUbLsmgtsYUSMP28=; b=DNp5FL39DFGmqyep3vKlfcwVJJGysilOVX8gOOMZI8Lr8Qz+aWWdEdPEiGZo2p/A5+ 3ZSzSAGSA6R7Nc1i2HL+HDY3OmjCrnhhN9sdBKlWjlaLCWUpZUXv/ueZC7XkUNywekSY S7lY4SjsqgdEZFosMIBW+vTyTVjnyAo+kyac4uWLc8LT9J6LGz3CobLu9ZYYRWDxzH5k EX/wak6olLh3w0TXNkFfhkz1ZFpsw+llCkczSGMyIGeVWQkx9MYjwDAvwBMz3EU9vwEf 4wOEbc/9ac1pxcr9kYVa6t9OlHwF+SrhsDuRilmP5dmcldRpaE1s+5N571LhhwaJAdnv RcHA== X-Gm-Message-State: AEkoousQwfA3I4x9VBzf8HqrwTezL2NZhX80ErFNBVXX82zTr4a3cBaBkJvxFmmOEKXpoQ== X-Received: by 10.194.136.196 with SMTP id qc4mr38296002wjb.136.1471300089874; Mon, 15 Aug 2016 15:28:09 -0700 (PDT) Received: from maka.fritz.box (dslb-178-008-181-169.178.008.pools.vodafone-ip.de. [178.8.181.169]) by smtp.gmail.com with ESMTPSA id q4sm23567959wjk.24.2016.08.15.15.28.08 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Mon, 15 Aug 2016 15:28:08 -0700 (PDT) From: Mateusz Piotrowski <0mp@FreeBSD.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Subject: Week 12 / Non-BSM to BSM Conversion Tools Date: Tue, 16 Aug 2016 00:28:07 +0200 Message-Id: <6734CD7D-FD67-4724-8B30-42453F871809@FreeBSD.org> To: soc-status@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) X-Mailer: Apple Mail (2.3124) X-BeenThere: soc-status@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Summer of Code Status Reports and Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Aug 2016 22:28:18 -0000 Hello, During the last week I finished implementing the minimal conversion=20 of the SYSCALL and EXECVE type Linux Audit records.=20 Moreover, I added a very basic version of au_to_attr(3) to the userland,=20= so that it is possible to create an attribute token outside of the = kernel. My current implementation might not be satisfying in the long run so=20 I emailed the FreeBSD and TrustedBSD mailing lists for advice and = opinion. During the last week I'll try to extend auditdistd with the ability to = receive Linux Audit log trails over the network. The lastest code is available here: = https://github.com/0mp/freebsd/pull/9 Cheers! -Mateusz [wiki]: = https://wiki.freebsd.org/SummerOfCode2016/NonBSMtoBSMConversionTools