BUG: loginuid and sessionid invalid when !CONFIG_AUDITSYSCALL

linux-audit / audit-kernel

GitHub mirror of the Linux Kernel's audit repository

https://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit.git

Other

137 stars 36 forks source link

BUG: loginuid and sessionid invalid when !CONFIG_AUDITSYSCALL #104

Closed rgbriggs closed 5 years ago

rgbriggs commented 5 years ago

loginuid and sessionid (and audit_log_session_info) should be part of CONFIG_AUDIT scope and not CONFIG_AUDITSYSCALL since it is used in CONFIG_CHANGE, ANOM_LINK, FEATURE_CHANGE (and INTEGRITY_RULE), none of which are otherwise dependent on AUDITSYSCALL.

Note: ANOM_LINK does depend on syscall PATH record (which needs CWD record to be complete)

pcmoore commented 5 years ago

@rgbriggs I'm guessing you wanted this assigned to you? If not, let me know.

rgbriggs commented 5 years ago

Post v1 https://www.redhat.com/archives/linux-audit/2019-January/msg00078.html https://lkml.org/lkml/2019/1/22/1021

rgbriggs commented 5 years ago

Staged in audit/next v5.0-rc1: 4b7d248b3a1d ("audit: move loginuid and sessionid from CONFIG_AUDITSYSCALL to CONFIG_AUDIT")