diff options
| author | Eric Paris <eparis@redhat.com> | 2012-01-03 14:23:07 -0500 |
|---|---|---|
| committer | Al Viro <viro@zeniv.linux.org.uk> | 2012-01-17 16:16:58 -0500 |
| commit | 7ff68e53ece8c175d2951bb8a30b3cce8f9c5579 (patch) | |
| tree | cde525e879e2e2434b0e3b23248588f015f5df04 /kernel | |
| parent | a4ff8dba7d8ce5ceb43fb27df66292251cc73bdc (diff) | |
audit: reject entry,always rules
We deprecated entry,always rules a long time ago. Reject those rules as
invalid.
Signed-off-by: Eric Paris <eparis@redhat.com>
Diffstat (limited to 'kernel')
| -rw-r--r-- | kernel/auditfilter.c | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/kernel/auditfilter.c b/kernel/auditfilter.c index d94dde82c3c..903caa269b5 100644 --- a/kernel/auditfilter.c +++ b/kernel/auditfilter.c | |||
| @@ -235,13 +235,15 @@ static inline struct audit_entry *audit_to_entry_common(struct audit_rule *rule) | |||
| 235 | switch(listnr) { | 235 | switch(listnr) { |
| 236 | default: | 236 | default: |
| 237 | goto exit_err; | 237 | goto exit_err; |
| 238 | case AUDIT_FILTER_USER: | ||
| 239 | case AUDIT_FILTER_TYPE: | ||
| 240 | #ifdef CONFIG_AUDITSYSCALL | 238 | #ifdef CONFIG_AUDITSYSCALL |
| 241 | case AUDIT_FILTER_ENTRY: | 239 | case AUDIT_FILTER_ENTRY: |
| 240 | if (rule->action == AUDIT_ALWAYS) | ||
| 241 | goto exit_err; | ||
| 242 | case AUDIT_FILTER_EXIT: | 242 | case AUDIT_FILTER_EXIT: |
| 243 | case AUDIT_FILTER_TASK: | 243 | case AUDIT_FILTER_TASK: |
| 244 | #endif | 244 | #endif |
| 245 | case AUDIT_FILTER_USER: | ||
| 246 | case AUDIT_FILTER_TYPE: | ||
| 245 | ; | 247 | ; |
| 246 | } | 248 | } |
| 247 | if (unlikely(rule->action == AUDIT_POSSIBLE)) { | 249 | if (unlikely(rule->action == AUDIT_POSSIBLE)) { |