Merge git://git.infradead.org/users/eparis/audit

Pull audit updates from Eric Paris: "Nothing amazing. Formatting, small bug fixes, couple of fixes where we didn't get records due to some old VFS changes, and a change to how we collect execve info..." Fixed conflict in fs/exec.c as per Eric and linux-next. * git://git.infradead.org/users/eparis/audit: (28 commits) audit: fix type of sessionid in audit_set_loginuid() audit: call audit_bprm() only once to add AUDIT_EXECVE information audit: move audit_aux_data_execve contents into audit_context union audit: remove unused envc member of audit_aux_data_execve audit: Kill the unused struct audit_aux_data_capset audit: do not reject all AUDIT_INODE filter types audit: suppress stock memalloc failure warnings since already managed audit: log the audit_names record type audit: add child record before the create to handle case where create fails audit: use given values in tty_audit enable api audit: use nlmsg_len() to get message payload length audit: use memset instead of trying to initialize field by field audit: fix info leak in AUDIT_GET requests audit: update AUDIT_INODE filter rule to comparator function audit: audit feature to set loginuid immutable audit: audit feature to only allow unsetting the loginuid audit: allow unsetting the loginuid (with priv) audit: remove CONFIG_AUDIT_LOGINUID_IMMUTABLE audit: loginuid functions coding style selinux: apply selinux checks on new audit message types ...
author: Linus Torvalds <torvalds@linux-foundation.org> 2013-11-21 22:18:14 -0500
committer: Linus Torvalds <torvalds@linux-foundation.org> 2013-11-21 22:18:14 -0500
commit: 3eaded86ac3e7f00fb3eeb8162d89e9a34e42fb0 (patch)
tree: 4c48b9f1739dcb034186956bf39908803b524154 /fs/proc
parent: 527d1511310a89650000081869260394e20c7013 (diff)
parent: 9175c9d2aed528800175ef81c90569d00d23f9be (diff)
1 files changed, 10 insertions, 4 deletions
diff --git a/fs/proc/base.c b/fs/proc/base.c
index 1485e38daaa3..03c8d747be48 100644
--- a/fs/proc/base.c
+++ b/fs/proc/base.c
@@ -1151,10 +1151,16 @@ static ssize_t proc_loginuid_write(struct file * file, const char __user * buf,
                goto out_free_page;
        }
-        kloginuid = make_kuid(file->f_cred->user_ns, loginuid);
-        if (!uid_valid(kloginuid)) {
+        /* is userspace tring to explicitly UNSET the loginuid? */
-                length = -EINVAL;
+        if (loginuid == AUDIT_UID_UNSET) {
-                goto out_free_page;
+                kloginuid = INVALID_UID;
+        } else {
+                kloginuid = make_kuid(file->f_cred->user_ns, loginuid);
+                if (!uid_valid(kloginuid)) {
+                        length = -EINVAL;
+                        goto out_free_page;
+                }
        }
        length = audit_set_loginuid(kloginuid);
author	Linus Torvalds <torvalds@linux-foundation.org>	2013-11-21 22:18:14 -0500
committer	Linus Torvalds <torvalds@linux-foundation.org>	2013-11-21 22:18:14 -0500
commit	3eaded86ac3e7f00fb3eeb8162d89e9a34e42fb0 (patch)
tree	4c48b9f1739dcb034186956bf39908803b524154 /fs/proc
parent	527d1511310a89650000081869260394e20c7013 (diff)
parent	9175c9d2aed528800175ef81c90569d00d23f9be (diff)

diff --git a/fs/proc/base.c b/fs/proc/base.c index 1485e38daaa3..03c8d747be48 100644 --- a/fs/proc/base.c +++ b/fs/proc/base.c
@@ -1151,10 +1151,16 @@ static ssize_t proc_loginuid_write(struct file * file, const char __user * buf,
1151	goto out_free_page;	1151	goto out_free_page;
1152		1152
1153	}	1153	}
1154	kloginuid = make_kuid(file->f_cred->user_ns, loginuid);	1154
1155	if (!uid_valid(kloginuid)) {	1155	/* is userspace tring to explicitly UNSET the loginuid? */
1156	length = -EINVAL;	1156	if (loginuid == AUDIT_UID_UNSET) {
1157	goto out_free_page;	1157	kloginuid = INVALID_UID;
		1158	} else {
		1159	kloginuid = make_kuid(file->f_cred->user_ns, loginuid);
		1160	if (!uid_valid(kloginuid)) {
		1161	length = -EINVAL;
		1162	goto out_free_page;
		1163	}
1158	}	1164	}
1159		1165
1160	length = audit_set_loginuid(kloginuid);	1166	length = audit_set_loginuid(kloginuid);