Gitiles
Code Review Sign In
gerrit.openfyde.cn / github.com / raspberrypi / raspberrypi-kernel / c0b0ae8a871bc2ebbe1ff9c9871efcf88994ffec^! / .
commitc0b0ae8a871bc2ebbe1ff9c9871efcf88994ffec[log] [tgz]
authorRichard Guy Briggs <rgb@redhat.com>Sat May 12 21:58:21 2018 -0400
committerPaul Moore <paul@paul-moore.com>Mon May 14 17:45:21 2018 -0400
tree6f3c9f546f71dc837d22b4c5a9167e1d7c33414e
parentcdfb6b341f0f2409aba24b84f3b4b2bba50be5c5 [diff]
audit: use inline function to set audit context

Recognizing that the audit context is an internal audit value, use an
access function to set the audit context pointer for the task
rather than reaching directly into the task struct to set it.

Signed-off-by: Richard Guy Briggs <rgb@redhat.com>
[PM: merge fuzz in audit.h]
Signed-off-by: Paul Moore <paul@paul-moore.com>

diff --git a/include/linux/audit.h b/include/linux/audit.h
index 831a468..69c7847 100644
--- a/include/linux/audit.h
+++ b/include/linux/audit.h

@@ -237,6 +237,11 @@
 					 const char *old_names, int res);
 extern void __audit_ptrace(struct task_struct *t);
 
+static inline void audit_set_context(struct task_struct *task, struct audit_context *ctx)
+{
+	task->audit_context = ctx;
+}
+
 static inline struct audit_context *audit_context(void)
 {
 	return current->audit_context;
@@ -469,6 +474,8 @@
 {
 	return true;
 }
+static inline void audit_set_context(struct task_struct *task, struct audit_context *ctx)
+{ }
 static inline struct audit_context *audit_context(void)
 {
 	return NULL;

diff --git a/kernel/auditsc.c b/kernel/auditsc.c
index fce4acb..cbab0da 100644
--- a/kernel/auditsc.c
+++ b/kernel/auditsc.c

@@ -865,7 +865,7 @@
 		audit_filter_inodes(tsk, context);
 	}
 
-	tsk->audit_context = NULL;
+	audit_set_context(tsk, NULL);
 	return context;
 }
 
@@ -952,7 +952,7 @@
 	}
 	context->filterkey = key;
 
-	tsk->audit_context  = context;
+	audit_set_context(tsk, context);
 	set_tsk_thread_flag(tsk, TIF_SYSCALL_AUDIT);
 	return 0;
 }
@@ -1554,7 +1554,6 @@
  */
 void __audit_syscall_exit(int success, long return_code)
 {
-	struct task_struct *tsk = current;
 	struct audit_context *context;
 
 	if (success)
@@ -1589,7 +1588,7 @@
 		kfree(context->filterkey);
 		context->filterkey = NULL;
 	}
-	tsk->audit_context = context;
+	audit_set_context(current, context);
 }
 
 static inline void handle_one(const struct inode *inode)

diff --git a/kernel/fork.c b/kernel/fork.c
index 242c8c9..cd18448 100644
--- a/kernel/fork.c
+++ b/kernel/fork.c

@@ -1713,7 +1713,7 @@
 	p->start_time = ktime_get_ns();
 	p->real_start_time = ktime_get_boot_ns();
 	p->io_context = NULL;
-	p->audit_context = NULL;
+	audit_set_context(p, NULL);
 	cgroup_fork(p);
 #ifdef CONFIG_NUMA
 	p->mempolicy = mpol_dup(p->mempolicy);