AuroraMiddleware/glibc
1
0
Fork 0
mirror of https://sourceware.org/git/glibc.git synced 2024-11-23 21:40:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

elf: Do not signal LA_ACT_CONSISTENT for an empty namespace [BZ #26076]

Browse Source 
The auditing interface identifies namespaces by their first loaded
module.  Once the namespace is empty, it is no longer possible to signal
LA_ACT_CONSISTENT for it because the first loaded module is already gone
at that point.

Reviewed-by: Carlos O'Donell <carlos@redhat.com>
This commit is contained in:
Florian Weimer 2020-07-07 09:58:45 +02:00
parent 08538f360f
commit 3ad5dab476
1 changed files with 8 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
elf/dl-close.c
View File

@ -781,8 +781,14 @@ _dl_close_worker (struct link_map *map, bool force)
if (__glibc_unlikely (do_audit)) if (__glibc_unlikely (do_audit))
{ {
struct link_map *head = ns->_ns_loaded; struct link_map *head = ns->_ns_loaded;
/* Do not call the functions for any auditing object. */ /* If head is NULL, the namespace has become empty, and the
if (head->l_auditing == 0) audit interface does not give us a way to signal
LA_ACT_CONSISTENT for it because the first loaded module is
used to identify the namespace.
Furthermore, do not notify auditors of the cleanup of a
failed audit module loading attempt. */
if (head != NULL && head->l_auditing == 0)
{ {
struct audit_ifaces *afct = GLRO(dl_audit); struct audit_ifaces *afct = GLRO(dl_audit);
for (unsigned int cnt = 0; cnt < GLRO(dl_naudit); ++cnt) for (unsigned int cnt = 0; cnt < GLRO(dl_naudit); ++cnt)