1 files changed, 16 insertions, 0 deletions
diff --git a/kernel/auditsc.c b/kernel/auditsc.c
index 091409996577..c10e7aae04d7 100644
--- a/kernel/auditsc.c
+++ b/kernel/auditsc.c
@@ -280,6 +280,19 @@ static int audit_match_perm(struct audit_context *ctx, int mask)
        }
 }
+static int audit_match_filetype(struct audit_context *ctx, int which)
+{
+        unsigned index = which & ~S_IFMT;
+        mode_t mode = which & S_IFMT;
+        if (index >= ctx->name_count)
+                return 0;
+        if (ctx->names[index].ino == -1)
+                return 0;
+        if ((ctx->names[index].mode ^ mode) & S_IFMT)
+                return 0;
+        return 1;
+}
 /*
 * We keep a linked list of fixed-sized (31 pointer) arrays of audit_chunk *;
 * ->first_trees points to its beginning, ->trees - to the current end of data.
@@ -589,6 +602,9 @@ static int audit_filter_rules(struct task_struct *tsk,
                case AUDIT_PERM:
                        result = audit_match_perm(ctx, f->val);
                        break;
+                case AUDIT_FILETYPE:
+                        result = audit_match_filetype(ctx, f->val);
+                        break;
                }
                if (!result)

diff --git a/kernel/auditsc.c b/kernel/auditsc.c index 091409996577..c10e7aae04d7 100644 --- a/kernel/auditsc.c +++ b/kernel/auditsc.c
@@ -280,6 +280,19 @@ static int audit_match_perm(struct audit_context *ctx, int mask)
280	}	280	}
281	}	281	}
282		282
		283	static int audit_match_filetype(struct audit_context *ctx, int which)
		284	{
		285	unsigned index = which & ~S_IFMT;
		286	mode_t mode = which & S_IFMT;
		287	if (index >= ctx->name_count)
		288	return 0;
		289	if (ctx->names[index].ino == -1)
		290	return 0;
		291	if ((ctx->names[index].mode ^ mode) & S_IFMT)
		292	return 0;
		293	return 1;
		294	}
		295
283	/*	296	/*
284	* We keep a linked list of fixed-sized (31 pointer) arrays of audit_chunk *;	297	* We keep a linked list of fixed-sized (31 pointer) arrays of audit_chunk *;
285	* ->first_trees points to its beginning, ->trees - to the current end of data.	298	* ->first_trees points to its beginning, ->trees - to the current end of data.
@@ -589,6 +602,9 @@ static int audit_filter_rules(struct task_struct *tsk,
589	case AUDIT_PERM:	602	case AUDIT_PERM:
590	result = audit_match_perm(ctx, f->val);	603	result = audit_match_perm(ctx, f->val);
591	break;	604	break;
		605	case AUDIT_FILETYPE:
		606	result = audit_match_filetype(ctx, f->val);
		607	break;
592	}	608	}
593		609
594	if (!result)	610	if (!result)