audit: allow unsetting the loginuid (with priv) If a task has CAP_AUDIT_CONTROL allow that task to unset their loginuid. This would allow a child of that task to set their loginuid without CAP_AUDIT_CONTROL. Thus when launching a new login daemon, a priviledged helper would be able to unset the loginuid and then the daemon, which may be malicious user facing, do not need priv to function correctly. Signed-off-by: Eric Paris <eparis@redhat.com> Signed-off-by: Richard Guy Briggs <rgb@redhat.com> Signed-off-by: Eric Paris <eparis@redhat.com>

commit: 81407c84ace88368ff23abb81caaeacf050c8450 [log] [tgz]
author: Eric Paris <eparis@redhat.com> Fri May 24 09:49:14 2013 -0400
committer: Eric Paris <eparis@redhat.com> Tue Nov 05 11:08:09 2013 -0500
tree: 16073582364ac97b798010640da348a68460b73d
parent: 83fa6bbe4c4541ae748b550b4ec391f8a0acfe94 [diff] [blame]
diff --git a/kernel/auditsc.c b/kernel/auditsc.c
index b55788b..c75d781 100644
--- a/kernel/auditsc.c
+++ b/kernel/auditsc.c

@@ -2019,7 +2019,9 @@
 	if (rc)
 		goto out;
 
-	sessionid = atomic_inc_return(&session_id);
+	/* are we setting or clearing? */
+	if (uid_valid(loginuid))
+		sessionid = atomic_inc_return(&session_id);
 
 	task->sessionid = sessionid;
 	task->loginuid = loginuid;
commit	81407c84ace88368ff23abb81caaeacf050c8450	[log] [tgz]
author	Eric Paris <eparis@redhat.com>	Fri May 24 09:49:14 2013 -0400
committer	Eric Paris <eparis@redhat.com>	Tue Nov 05 11:08:09 2013 -0500
tree	16073582364ac97b798010640da348a68460b73d
parent	83fa6bbe4c4541ae748b550b4ec391f8a0acfe94 [diff] [blame]