git.baikalelectronics.ru Git - kernel.git/commit

author	Richard Guy Briggs <rgb@redhat.com>
	Fri, 3 Jul 2020 16:56:19 +0000 (12:56 -0400)
committer	Paul Moore <paul@paul-moore.com>
	Wed, 8 Jul 2020 23:02:11 +0000 (19:02 -0400)
commit	9532c285b455349766125b6c16326079d55d7cb3
tree	0809d95b1ab314464940e38ffaa640eb9670fe65	tree \| snapshot
parent	64e745ba17602fc742e5f83ce6ea142b75c4ed5f	commit \| diff

audit: issue CWD record to accompany LSM_AUDIT_DATA_* records

The LSM_AUDIT_DATA_* records for PATH, FILE, IOCTL_OP, DENTRY and INODE
are incomplete without the task context of the AUDIT Current Working
Directory record. Add it.

This record addition can't use audit_dummy_context to determine whether
or not to store the record information since the LSM_AUDIT_DATA_*
records are initiated by various LSMs independent of any audit rules.
context->in_syscall is used to determine if it was called in user
context like audit_getname.

Please see the upstream issue
https://github.com/linux-audit/audit-kernel/issues/96

Adapted from Vladis Dronov's v2 patch.

Signed-off-by: Richard Guy Briggs <rgb@redhat.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>

include/linux/audit.h		diff \| blob \| history
kernel/auditsc.c		diff \| blob \| history
security/lsm_audit.c		diff \| blob \| history