netlink: kill loginuid/sessionid/sid members from struct netlink_skb_parms

Netlink message processing in the kernel is synchronous these days, the session information can be collected when needed. Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Patrick McHardy <kaber@trash.net> 2011-03-03 13:55:40 -0500
committer: David S. Miller <davem@davemloft.net> 2011-03-03 13:55:40 -0500
commit: c53fa1ed92cd671a1dfb1e7569e9ab672612ddc6 (patch)
tree: 9bb539a7731af94cac0112b8f13771e4a33e0450 /kernel
parent: 06dc94b1ed05f91e246315afeb1c652d6d0dc9ab (diff)
2 files changed, 10 insertions, 6 deletions
diff --git a/kernel/audit.c b/kernel/audit.c
index 162e88e33bc9..939500317066 100644
--- a/kernel/audit.c
+++ b/kernel/audit.c
@@ -673,9 +673,9 @@ static int audit_receive_msg(struct sk_buff *skb, struct nlmsghdr *nlh)
        pid  = NETLINK_CREDS(skb)->pid;
        uid  = NETLINK_CREDS(skb)->uid;
-        loginuid = NETLINK_CB(skb).loginuid;
+        loginuid = audit_get_loginuid(current);
-        sessionid = NETLINK_CB(skb).sessionid;
+        sessionid = audit_get_sessionid(current);
-        sid  = NETLINK_CB(skb).sid;
+        security_task_getsecid(current, &sid);
        seq  = nlh->nlmsg_seq;
        data = NLMSG_DATA(nlh);
diff --git a/kernel/auditfilter.c b/kernel/auditfilter.c
index add2819af71b..f8277c80d678 100644
--- a/kernel/auditfilter.c
+++ b/kernel/auditfilter.c
@@ -1238,6 +1238,7 @@ static int audit_filter_user_rules(struct netlink_skb_parms *cb,
        for (i = 0; i < rule->field_count; i++) {
                struct audit_field *f = &rule->fields[i];
                int result = 0;
+                u32 sid;
                switch (f->type) {
                case AUDIT_PID:
@@ -1250,19 +1251,22 @@ static int audit_filter_user_rules(struct netlink_skb_parms *cb,
                        result = audit_comparator(cb->creds.gid, f->op, f->val);
                        break;
                case AUDIT_LOGINUID:
-                        result = audit_comparator(cb->loginuid, f->op, f->val);
+                        result = audit_comparator(audit_get_loginuid(current),
+                                                  f->op, f->val);
                        break;
                case AUDIT_SUBJ_USER:
                case AUDIT_SUBJ_ROLE:
                case AUDIT_SUBJ_TYPE:
                case AUDIT_SUBJ_SEN:
                case AUDIT_SUBJ_CLR:
-                        if (f->lsm_rule)
+                        if (f->lsm_rule) {
-                                result = security_audit_rule_match(cb->sid,
+                                security_task_getsecid(current, &sid);
+                                result = security_audit_rule_match(sid,
                                                                   f->type,
                                                                   f->op,
                                                                   f->lsm_rule,
                                                                   NULL);
+                        }
                        break;
                }
author	Patrick McHardy <kaber@trash.net>	2011-03-03 13:55:40 -0500
committer	David S. Miller <davem@davemloft.net>	2011-03-03 13:55:40 -0500
commit	c53fa1ed92cd671a1dfb1e7569e9ab672612ddc6 (patch)
tree	9bb539a7731af94cac0112b8f13771e4a33e0450 /kernel
parent	06dc94b1ed05f91e246315afeb1c652d6d0dc9ab (diff)