Merge branch 'for-5.18/amd-sfh' into for-linus

- dead code elimination (Christophe JAILLET)
author: Jiri Kosina <jkosina@suse.cz> 2022-03-23 09:58:40 +0100
committer: Jiri Kosina <jkosina@suse.cz> 2022-03-23 09:58:40 +0100
commit: b690490d6d466972ade172ee2e7f6ffa49e7e910 (patch)
tree: 50a93da28c9128e19eb7a3038aecf75dab6b36e1 /kernel/auditsc.c
parent: f97ec5d75e9261a5da78dc28a8955b7cc0c4468b (diff)
parent: 0f203948230720e849ad50d158adac1cd32c282f (diff)
1 files changed, 10 insertions, 1 deletions
diff --git a/kernel/auditsc.c b/kernel/auditsc.c
index b517947bfa48..fce5d43a933f 100644
--- a/kernel/auditsc.c
+++ b/kernel/auditsc.c
@@ -666,7 +666,16 @@ static int audit_filter_rules(struct task_struct *tsk,
 			   logged upon error */
 			if (f->lsm_rule) {
 				if (need_sid) {
-					security_task_getsecid_subj(tsk, &sid);
+					/* @tsk should always be equal to
+					 * @current with the exception of
+					 * fork()/copy_process() in which case
+					 * the new @tsk creds are still a dup
+					 * of @current's creds so we can still
+					 * use security_current_getsecid_subj()
+					 * here even though it always refs
+					 * @current's creds
+					 */
+					security_current_getsecid_subj(&sid);
 					need_sid = 0;
 				}
 				result = security_audit_rule_match(sid, f->type,
author	Jiri Kosina <jkosina@suse.cz>	2022-03-23 09:58:40 +0100
committer	Jiri Kosina <jkosina@suse.cz>	2022-03-23 09:58:40 +0100
commit	b690490d6d466972ade172ee2e7f6ffa49e7e910 (patch)
tree	50a93da28c9128e19eb7a3038aecf75dab6b36e1 /kernel/auditsc.c
parent	f97ec5d75e9261a5da78dc28a8955b7cc0c4468b (diff)
parent	0f203948230720e849ad50d158adac1cd32c282f (diff)