Home Explore Help
Register Sign In
phyus
/
linux-vybrid_public
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

audit: improve GID/EGID comparation logic

It is useful to extend GID/EGID comparation logic to be able to
match not only the exact EID/EGID values but the group/egroup also.

Signed-off-by: Matvejchikov Ilya <matvejchikov@gmail.com>
Signed-off-by: Eric Paris <eparis@redhat.com>
Matvejchikov Ilya 13 years ago
parent
19f949f525
commit
37eebe39c9
1 changed files with 14 additions and 0 deletions
Split View Show Diff Stats
  1. 14 0
      kernel/auditsc.c

+ 14 - 0
kernel/auditsc.c
View File 

@@ -633,9 +633,23 @@ static int audit_filter_rules(struct task_struct *tsk,
 
 			break;
 
 		case AUDIT_GID:
 
 			result = audit_gid_comparator(cred->gid, f->op, f->gid);
 
+			if (f->op == Audit_equal) {
 
+				if (!result)
 
+					result = in_group_p(f->gid);
 
+			} else if (f->op == Audit_not_equal) {
 
+				if (result)
 
+					result = !in_group_p(f->gid);
 
+			}
 
 			break;
 
 		case AUDIT_EGID:
 
 			result = audit_gid_comparator(cred->egid, f->op, f->gid);
 
+			if (f->op == Audit_equal) {
 
+				if (!result)
 
+					result = in_egroup_p(f->gid);
 
+			} else if (f->op == Audit_not_equal) {
 
+				if (result)
 
+					result = !in_egroup_p(f->gid);
 
+			}
 
 			break;
 
 		case AUDIT_SGID:
 
 			result = audit_gid_comparator(cred->sgid, f->op, f->gid);