Merge branch 'stable-4.11' of git://git.infradead.org/users/pcmoore/audit

				  const struct cred *old);

extern void __audit_log_capset(const struct cred *new, const struct cred *old);

extern void __audit_mmap_fd(int fd, int flags);

extern void __audit_log_kern_module(char *name);

static inline void audit_ipc_obj(struct kern_ipc_perm *ipcp)

{

		return __audit_socketcall(nargs, args);

	return 0;

}

static inline int audit_socketcall_compat(int nargs, u32 *args)

{

	unsigned long a[AUDITSC_ARGS];

	int i;

	if (audit_dummy_context())

		return 0;

	for (i = 0; i < nargs; i++)

		a[i] = (unsigned long)args[i];

	return __audit_socketcall(nargs, a);

}

static inline int audit_sockaddr(int len, void *addr)

{

	if (unlikely(!audit_dummy_context()))

		__audit_mmap_fd(fd, flags);

}

static inline void audit_log_kern_module(char *name)

{

	if (!audit_dummy_context())

		__audit_log_kern_module(name);

}

extern int audit_n_rules;

extern int audit_signals;

#else /* CONFIG_AUDITSYSCALL */

{

	return 0;

}

static inline int audit_socketcall_compat(int nargs, u32 *args)

{

	return 0;

}

static inline void audit_fd_pair(int fd1, int fd2)

{ }

static inline int audit_sockaddr(int len, void *addr)

{ }

static inline void audit_mmap_fd(int fd, int flags)

{ }

static inline void audit_log_kern_module(char *name)

{

}

static inline void audit_ptrace(struct task_struct *t)

{ }

#define audit_n_rules 0

#define AUDIT_PROCTITLE		1327	/* Proctitle emit event */

#define AUDIT_FEATURE_CHANGE	1328	/* audit log listing feature changes */

#define AUDIT_REPLACE		1329	/* Replace auditd if this packet unanswerd */

#define AUDIT_KERN_MODULE	1330	/* Kernel Module events */

#define AUDIT_AVC		1400	/* SE Linux avc denial or grant */

#define AUDIT_SELINUX_ERR	1401	/* Internal SE Linux Errors */

#define AUDIT_STATUS_RATE_LIMIT		0x0008

#define AUDIT_STATUS_BACKLOG_LIMIT	0x0010

#define AUDIT_STATUS_BACKLOG_WAIT_TIME	0x0020

#define AUDIT_STATUS_LOST		0x0040

#define AUDIT_FEATURE_BITMAP_BACKLOG_LIMIT	0x00000001

#define AUDIT_FEATURE_BITMAP_BACKLOG_WAIT_TIME	0x00000002

#define AUDIT_FEATURE_BITMAP_EXECUTABLE_PATH	0x00000004

#define AUDIT_FEATURE_BITMAP_EXCLUDE_EXTEND	0x00000008

#define AUDIT_FEATURE_BITMAP_SESSIONID_FILTER	0x00000010

#define AUDIT_FEATURE_BITMAP_LOST_RESET		0x00000020

#define AUDIT_FEATURE_BITMAP_ALL (AUDIT_FEATURE_BITMAP_BACKLOG_LIMIT | \

				  AUDIT_FEATURE_BITMAP_BACKLOG_WAIT_TIME | \

				  AUDIT_FEATURE_BITMAP_EXECUTABLE_PATH | \

				  AUDIT_FEATURE_BITMAP_EXCLUDE_EXTEND | \

				  AUDIT_FEATURE_BITMAP_SESSIONID_FILTER)

				  AUDIT_FEATURE_BITMAP_SESSIONID_FILTER | \

				  AUDIT_FEATURE_BITMAP_LOST_RESET)

/* deprecated: AUDIT_VERSION_* */

#define AUDIT_VERSION_LATEST 		AUDIT_FEATURE_BITMAP_ALL

			if (err < 0)

				return err;

		}

		if (s.mask == AUDIT_STATUS_LOST) {

			u32 lost = atomic_xchg(&audit_lost, 0);

			audit_log_config_change("lost", 0, lost, 1);

			return lost;

		}

		break;

	}

	case AUDIT_GET_FEATURE:

		panic("audit: failed to start the kauditd thread (%d)\n", err);

	}

	audit_log(NULL, GFP_KERNEL, AUDIT_KERNEL, "initialized");

	audit_log(NULL, GFP_KERNEL, AUDIT_KERNEL,

		"state=initialized audit_enabled=%u res=1",

		 audit_enabled);

	return 0;

}

		struct {

			int			argc;

		} execve;

		struct {

			char			*name;

		} module;

	};

	int fds[2];

	struct audit_proctitle proctitle;

				context->ipc.perm_mode);

		}

		break; }

	case AUDIT_MQ_OPEN: {

	case AUDIT_MQ_OPEN:

		audit_log_format(ab,

			"oflag=0x%x mode=%#ho mq_flags=0x%lx mq_maxmsg=%ld "

			"mq_msgsize=%ld mq_curmsgs=%ld",

			context->mq_open.attr.mq_maxmsg,

			context->mq_open.attr.mq_msgsize,

			context->mq_open.attr.mq_curmsgs);

		break; }

	case AUDIT_MQ_SENDRECV: {

		break;

	case AUDIT_MQ_SENDRECV:

		audit_log_format(ab,

			"mqdes=%d msg_len=%zd msg_prio=%u "

			"abs_timeout_sec=%ld abs_timeout_nsec=%ld",

			context->mq_sendrecv.msg_prio,

			context->mq_sendrecv.abs_timeout.tv_sec,

			context->mq_sendrecv.abs_timeout.tv_nsec);

		break; }

	case AUDIT_MQ_NOTIFY: {

		break;

	case AUDIT_MQ_NOTIFY:

		audit_log_format(ab, "mqdes=%d sigev_signo=%d",

				context->mq_notify.mqdes,

				context->mq_notify.sigev_signo);

		break; }

		break;

	case AUDIT_MQ_GETSETATTR: {

		struct mq_attr *attr = &context->mq_getsetattr.mqstat;

		audit_log_format(ab,

			attr->mq_flags, attr->mq_maxmsg,

			attr->mq_msgsize, attr->mq_curmsgs);

		break; }

	case AUDIT_CAPSET: {

	case AUDIT_CAPSET:

		audit_log_format(ab, "pid=%d", context->capset.pid);

		audit_log_cap(ab, "cap_pi", &context->capset.cap.inheritable);

		audit_log_cap(ab, "cap_pp", &context->capset.cap.permitted);

		audit_log_cap(ab, "cap_pe", &context->capset.cap.effective);

		break; }

	case AUDIT_MMAP: {

		break;

	case AUDIT_MMAP:

		audit_log_format(ab, "fd=%d flags=0x%x", context->mmap.fd,

				 context->mmap.flags);

		break; }

	case AUDIT_EXECVE: {

		break;

	case AUDIT_EXECVE:

		audit_log_execve_info(context, &ab);

		break; }

		break;

	case AUDIT_KERN_MODULE:

		audit_log_format(ab, "name=");

		audit_log_untrustedstring(ab, context->module.name);

		kfree(context->module.name);

		break;

	}

	audit_log_end(ab);

}

	context->type = AUDIT_MMAP;

}

void __audit_log_kern_module(char *name)

{

	struct audit_context *context = current->audit_context;

	context->module.name = kmalloc(strlen(name) + 1, GFP_KERNEL);

	strcpy(context->module.name, name);

	context->type = AUDIT_KERN_MODULE;

}

static void audit_log_task(struct audit_buffer *ab)

{

	kuid_t auid, uid;

	if (unlikely(!ab))

		return;

	audit_log_task(ab);

	audit_log_format(ab, " sig=%ld", signr);

	audit_log_format(ab, " sig=%ld res=1", signr);

	audit_log_end(ab);

}