1 files changed, 28 insertions, 0 deletions
diff --git a/kernel/auditsc.c b/kernel/auditsc.c
index 8c454852d6a5..6f1931381bc9 100644
--- a/kernel/auditsc.c
+++ b/kernel/auditsc.c
@@ -610,6 +610,33 @@ static inline void audit_free_context(struct audit_context *context)
                printk(KERN_ERR "audit: freed %d contexts\n", count);
 }
+static void audit_log_task_info(struct audit_buffer *ab)
+{
+        char name[sizeof(current->comm)];
+        struct mm_struct *mm = current->mm;
+        struct vm_area_struct *vma;
+        get_task_comm(name, current);
+        audit_log_format(ab, " comm=%s", name);
+        if (!mm)
+                return;
+        down_read(&mm->mmap_sem);
+        vma = mm->mmap;
+        while (vma) {
+                if ((vma->vm_flags & VM_EXECUTABLE) &&
+                    vma->vm_file) {
+                        audit_log_d_path(ab, "exe=",
+                                         vma->vm_file->f_dentry,
+                                         vma->vm_file->f_vfsmnt);
+                        break;
+                }
+                vma = vma->vm_next;
+        }
+        up_read(&mm->mmap_sem);
+}
 static void audit_log_exit(struct audit_context *context)
 {
        int i;
@@ -639,6 +666,7 @@ static void audit_log_exit(struct audit_context *context)
                  context->gid,
                  context->euid, context->suid, context->fsuid,
                  context->egid, context->sgid, context->fsgid);
+        audit_log_task_info(ab);
        audit_log_end(ab);
        while (context->aux) {
                struct audit_aux_data *aux;

diff --git a/kernel/auditsc.c b/kernel/auditsc.c index 8c454852d6a5..6f1931381bc9 100644 --- a/kernel/auditsc.c +++ b/kernel/auditsc.c
@@ -610,6 +610,33 @@ static inline void audit_free_context(struct audit_context *context)
610	printk(KERN_ERR "audit: freed %d contexts\n", count);	610	printk(KERN_ERR "audit: freed %d contexts\n", count);
611	}	611	}
612		612
		613	static void audit_log_task_info(struct audit_buffer *ab)
		614	{
		615	char name[sizeof(current->comm)];
		616	struct mm_struct *mm = current->mm;
		617	struct vm_area_struct *vma;
		618
		619	get_task_comm(name, current);
		620	audit_log_format(ab, " comm=%s", name);
		621
		622	if (!mm)
		623	return;
		624
		625	down_read(&mm->mmap_sem);
		626	vma = mm->mmap;
		627	while (vma) {
		628	if ((vma->vm_flags & VM_EXECUTABLE) &&
		629	vma->vm_file) {
		630	audit_log_d_path(ab, "exe=",
		631	vma->vm_file->f_dentry,
		632	vma->vm_file->f_vfsmnt);
		633	break;
		634	}
		635	vma = vma->vm_next;
		636	}
		637	up_read(&mm->mmap_sem);
		638	}
		639
613	static void audit_log_exit(struct audit_context *context)	640	static void audit_log_exit(struct audit_context *context)
614	{	641	{
615	int i;	642	int i;
@@ -639,6 +666,7 @@ static void audit_log_exit(struct audit_context *context)
639	context->gid,	666	context->gid,
640	context->euid, context->suid, context->fsuid,	667	context->euid, context->suid, context->fsuid,
641	context->egid, context->sgid, context->fsgid);	668	context->egid, context->sgid, context->fsgid);
		669	audit_log_task_info(ab);
642	audit_log_end(ab);	670	audit_log_end(ab);
643	while (context->aux) {	671	while (context->aux) {
644	struct audit_aux_data *aux;	672	struct audit_aux_data *aux;