Merge git://git.kernel.org/pub/scm/linux/kernel/git/viro/audit-current

author Linus Torvalds <torvalds@linux-foundation.org>

Thu, 24 Sep 2009 15:31:04 +0000 (08:31 -0700)

committer Linus Torvalds <torvalds@linux-foundation.org>

Thu, 24 Sep 2009 15:31:04 +0000 (08:31 -0700)
author Linus Torvalds <torvalds@linux-foundation.org>
Thu, 24 Sep 2009 15:31:04 +0000 (08:31 -0700)
committer Linus Torvalds <torvalds@linux-foundation.org>
Thu, 24 Sep 2009 15:31:04 +0000 (08:31 -0700)
diff --git a/kernel/audit.c b/kernel/audit.c

index defc2e6f1e3bc9742606d7efc0a0af4e79095b14..5feed232be9d4b55f72f5b38a010e4e6619c7a19 100644 (file)
--- a/kernel/audit.c
+++ b/kernel/audit.c
@@ -855,18 +855,24 @@ static int audit_receive_msg(struct sk_buff *skb, struct nlmsghdr *nlh)
                 break;
         }
         case AUDIT_SIGNAL_INFO:
-               err = security_secid_to_secctx(audit_sig_sid, &ctx, &len);
-               if (err)
-                       return err;
+               len = 0;
+               if (audit_sig_sid) {
+                       err = security_secid_to_secctx(audit_sig_sid, &ctx, &len);
+                       if (err)
+                               return err;
+               }
                 sig_data = kmalloc(sizeof(*sig_data) + len, GFP_KERNEL);
                 if (!sig_data) {
-                       security_release_secctx(ctx, len);
+                       if (audit_sig_sid)
+                               security_release_secctx(ctx, len);
                         return -ENOMEM;
                 }
                 sig_data->uid = audit_sig_uid;
                 sig_data->pid = audit_sig_pid;
-               memcpy(sig_data->ctx, ctx, len);
-               security_release_secctx(ctx, len);
+               if (audit_sig_sid) {
+                       memcpy(sig_data->ctx, ctx, len);
+                       security_release_secctx(ctx, len);
+               }
                 audit_send_reply(NETLINK_CB(skb).pid, seq, AUDIT_SIGNAL_INFO,
                                 0, 0, sig_data, sizeof(*sig_data) + len);
                 kfree(sig_data);
diff --git a/kernel/audit_watch.c b/kernel/audit_watch.c

index 0e96dbc60ea9b45896a0a451287b406f2592b48c..cc7e87936cbc57f7a2eebebbd212fe297c530154 100644 (file)
--- a/kernel/audit_watch.c
+++ b/kernel/audit_watch.c
@@ -45,8 +45,8 @@
  
  struct audit_watch {
         atomic_t                count;  /* reference count */
-       char                    *path;  /* insertion path */
         dev_t                   dev;    /* associated superblock device */
+       char                    *path;  /* insertion path */
         unsigned long           ino;    /* associated inode number */
         struct audit_parent     *parent; /* associated parent */
         struct list_head        wlist;  /* entry in parent->watches list */
diff --git a/kernel/auditsc.c b/kernel/auditsc.c

index 68d3c6a0ecd635bbeba49c5de2d3e89b50315897..267e484f019817b87187c74bfa7aa12275411b0c 100644 (file)
--- a/kernel/auditsc.c
+++ b/kernel/auditsc.c
@@ -168,12 +168,12 @@ struct audit_context {
         int                 in_syscall; /* 1 if task is in a syscall */
         enum audit_state    state, current_state;
         unsigned int        serial;     /* serial number for record */
-       struct timespec     ctime;      /* time of syscall entry */
         int                 major;      /* syscall number */
+       struct timespec     ctime;      /* time of syscall entry */
         unsigned long       argv[4];    /* syscall arguments */
-       int                 return_valid; /* return code is valid */
         long                return_code;/* syscall return code */
         u64                 prio;
+       int                 return_valid; /* return code is valid */
         int                 name_count;
         struct audit_names  names[AUDIT_NAMES];
         char *              filterkey;  /* key for rule that triggered record */
@@ -198,8 +198,8 @@ struct audit_context {
         char                target_comm[TASK_COMM_LEN];
  
         struct audit_tree_refs *trees, *first_trees;
-       int tree_count;
         struct list_head killed_trees;
+       int tree_count;
  
         int type;
         union {
diff --git a/security/lsm_audit.c b/security/lsm_audit.c

index 500aad0ebd6acd8af2e63a7cbc8ae0965bbc5cdc..3bb90b6f1dd3db9d697e02209273008eb7a73cc1 100644 (file)
--- a/security/lsm_audit.c
+++ b/security/lsm_audit.c
@@ -187,7 +187,7 @@ static inline void print_ipv6_addr(struct audit_buffer *ab,
                                    char *name1, char *name2)
  {
         if (!ipv6_addr_any(addr))
-               audit_log_format(ab, " %s=%pI6", name1, addr);
+               audit_log_format(ab, " %s=%pI6c", name1, addr);
         if (port)
                 audit_log_format(ab, " %s=%d", name2, ntohs(port));
  }
author	Linus Torvalds <torvalds@linux-foundation.org>
	Thu, 24 Sep 2009 15:31:04 +0000 (08:31 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Thu, 24 Sep 2009 15:31:04 +0000 (08:31 -0700)
kernel/audit.c		patch \| blob \| blame \| history
kernel/audit_watch.c		patch \| blob \| blame \| history
kernel/auditsc.c		patch \| blob \| blame \| history
security/lsm_audit.c		patch \| blob \| blame \| history