BUG: op ignored on several string fields

linux-audit / audit-kernel

GitHub mirror of the Linux Kernel's audit repository

https://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit.git

Other

140 stars 37 forks source link

BUG: op ignored on several string fields #114

Closed rgbriggs closed 5 years ago

rgbriggs commented 5 years ago

WATCH, DIR, PERM and FILETYPE field operators are completely ignored and meaningless since the op is not referenced in audit_filter_rules(). Range and bitwise operators are already addressed in ghak73. Adding a check for negation will make the operator meaningful.

rgbriggs commented 5 years ago

Posted v1: https://www.redhat.com/archives/linux-audit/2019-May/msg00037.html

rgbriggs commented 5 years ago

Staged in audit/next: 0223fad3c98a ("audit: enforce op for string fields")

rgbriggs commented 5 years ago

Merged for v5.3-rc1 in 61fc5771f5e729a2ce235af42f69c8506725e84a