audit: allow matching on obj_uid (efaffd6e) · Commits · e / devices / android_kernel_fairphone_FP5

include/linux/audit.h

+1 −0

+1 −0

Original line number	Diff line number	Diff line
		@@ -461,6 +461,7 @@ static struct audit_entry audit_data_to_entry(struct audit_rule_data data,
		case AUDIT_ARG1:
		case AUDIT_ARG2:
		case AUDIT_ARG3:
		case AUDIT_OBJ_UID:
		break;
		case AUDIT_ARCH:
		entry->rule.arch_f = f;

+12 −0

Original line number	Diff line number	Diff line
		@@ -586,6 +586,18 @@ static int audit_filter_rules(struct task_struct *tsk,
		}
		}
		break;
		case AUDIT_OBJ_UID:
		if (name) {
		result = audit_comparator(name->uid, f->op, f->val);
		} else if (ctx) {
		list_for_each_entry(n, &ctx->names_list, list) {
		if (audit_comparator(n->uid, f->op, f->val)) {
		++result;
		break;
		}
		}
		}
		break;
		case AUDIT_WATCH:
		if (name)
		result = audit_watch_compare(rule->watch, name->ino, name->dev);