Commit 0b6e573e authored by Stephen D. Smalley's avatar Stephen D. Smalley Committed by Linus Torvalds

[PATCH] SELinux: audit task comm if exe cannot be determined

This patch ensures that the comm is included in the audit message if avc_audit
is unable to determine the exe due to the mmap_sem being held.  This is
helpful in tracking down the causes of permission denials that occur in the
mmap/mprotect hooks.
Signed-off-by: default avatarStephen Smalley <sds@epoch.ncsc.mil>
Signed-off-by: default avatarJames Morris <jmorris@redhat.com>
Signed-off-by: default avatarAndrew Morton <akpm@osdl.org>
Signed-off-by: default avatarLinus Torvalds <torvalds@osdl.org>
parent 8a6f1605
......@@ -573,6 +573,8 @@ void avc_audit(u32 ssid, u32 tsid,
vma = vma->vm_next;
}
up_read(&mm->mmap_sem);
} else {
audit_log_format(ab, " comm=%s", tsk->comm);
}
if (tsk != current)
mmput(mm);
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment