mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git
synced 2025-01-04 04:02:26 +00:00
Audit: use == not = in if statements
Clearly this was supposed to be an == not an = in the if statement. This patch also causes us to stop processing execve args once we have failed rather than continuing to loop on failure over and over and over. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Al Viro <viro@zeniv.linux.org.uk> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
This commit is contained in:
parent
f702c58156
commit
b0abcfc146
@ -1000,9 +1000,10 @@ static int audit_log_single_execve_arg(struct audit_context *context,
|
|||||||
* for strings that are too long, we should not have created
|
* for strings that are too long, we should not have created
|
||||||
* any.
|
* any.
|
||||||
*/
|
*/
|
||||||
if (unlikely((len = -1) || len > MAX_ARG_STRLEN - 1)) {
|
if (unlikely((len == -1) || len > MAX_ARG_STRLEN - 1)) {
|
||||||
WARN_ON(1);
|
WARN_ON(1);
|
||||||
send_sig(SIGKILL, current, 0);
|
send_sig(SIGKILL, current, 0);
|
||||||
|
return -1;
|
||||||
}
|
}
|
||||||
|
|
||||||
/* walk the whole argument looking for non-ascii chars */
|
/* walk the whole argument looking for non-ascii chars */
|
||||||
@ -1020,6 +1021,7 @@ static int audit_log_single_execve_arg(struct audit_context *context,
|
|||||||
if (ret) {
|
if (ret) {
|
||||||
WARN_ON(1);
|
WARN_ON(1);
|
||||||
send_sig(SIGKILL, current, 0);
|
send_sig(SIGKILL, current, 0);
|
||||||
|
return -1;
|
||||||
}
|
}
|
||||||
buf[to_send] = '\0';
|
buf[to_send] = '\0';
|
||||||
has_cntl = audit_string_contains_control(buf, to_send);
|
has_cntl = audit_string_contains_control(buf, to_send);
|
||||||
@ -1083,6 +1085,7 @@ static int audit_log_single_execve_arg(struct audit_context *context,
|
|||||||
if (ret) {
|
if (ret) {
|
||||||
WARN_ON(1);
|
WARN_ON(1);
|
||||||
send_sig(SIGKILL, current, 0);
|
send_sig(SIGKILL, current, 0);
|
||||||
|
return -1;
|
||||||
}
|
}
|
||||||
buf[to_send] = '\0';
|
buf[to_send] = '\0';
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user