From: Greg Edwards <gedwards@ddn.com>
To: linux-audit@redhat.com
Cc: Greg Edwards <gedwards@ddn.com>
Subject: [PATCH] audit: do not panic kernel on invalid audit parameter
Date: Tue, 20 Feb 2018 14:33:47 -0700 [thread overview]
Message-ID: <20180220213347.21926-1-gedwards@ddn.com> (raw)
If you pass in an invalid audit kernel boot parameter, e.g. 'audit=off',
the kernel panics very early in boot with no output on the console
indicating the problem.
This seems overly harsh. Instead, print the error indicating an invalid
audit parameter value and leave auditing disabled.
Fixes: 80ab4df62706 ("audit: don't use simple_strtol() anymore")
Signed-off-by: Greg Edwards <gedwards@ddn.com>
---
kernel/audit.c | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/kernel/audit.c b/kernel/audit.c
index 227db99b0f19..d8af7682d6a3 100644
--- a/kernel/audit.c
+++ b/kernel/audit.c
@@ -1572,8 +1572,10 @@ static int __init audit_enable(char *str)
{
long val;
- if (kstrtol(str, 0, &val))
- panic("audit: invalid 'audit' parameter value (%s)\n", str);
+ if (kstrtol(str, 0, &val)) {
+ pr_err("invalid 'audit' parameter value (%s)\n", str);
+ val = AUDIT_OFF;
+ }
audit_default = (val ? AUDIT_ON : AUDIT_OFF);
if (audit_default == AUDIT_OFF)
--
2.14.3
next reply other threads:[~2018-02-20 21:33 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-02-20 21:33 Greg Edwards [this message]
2018-02-20 21:45 ` [PATCH] audit: do not panic kernel on invalid audit parameter Paul Moore
2018-02-20 22:00 ` Greg Edwards
2018-02-20 22:06 ` Paul Moore
2018-02-21 5:12 ` Richard Guy Briggs
2018-02-21 16:18 ` [PATCH v2] " Greg Edwards
2018-02-21 21:08 ` Paul Moore
2018-02-21 22:51 ` Greg Edwards
2018-02-22 1:13 ` Richard Guy Briggs
2018-02-21 22:52 ` Steve Grubb
2018-03-05 22:05 ` [PATCH] audit: do not panic on invalid boot parameter Greg Edwards
2018-03-06 3:24 ` Richard Guy Briggs
2018-03-06 14:38 ` Paul Moore
2018-03-06 18:53 ` Paul Moore
2018-03-07 4:13 ` Richard Guy Briggs
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180220213347.21926-1-gedwards@ddn.com \
--to=gedwards@ddn.com \
--cc=linux-audit@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).