[XFRM]: Fix OOPSes in xfrm_audit_log(). Make sure that this function is called correctly, and add BUG() checking to ensure the arguments are sane. Based upon a patch by Joy Latten. Signed-off-by: David S. Miller <davem@davemloft.net>

commit: 13fcfbb0675bf87da694f55dec11cada489a205c [log] [tgz]
author: David S. Miller <davem@sunset.davemloft.net> Mon Feb 12 13:53:54 2007 -0800
committer: David S. Miller <davem@sunset.davemloft.net> Mon Feb 12 13:53:54 2007 -0800
tree: 2a1b81c5f7e69781f3e6ee523fd67c2b923531ca
parent: 9121c77706a4bd75a878573c913553ade120e9ce [diff] [blame]
diff --git a/net/key/af_key.c b/net/key/af_key.c
index f3a026f..1c58204 100644
--- a/net/key/af_key.c
+++ b/net/key/af_key.c

@@ -2297,16 +2297,17 @@
 				   &sel, tmp.security, 1);
 	security_xfrm_policy_free(&tmp);
 
-	xfrm_audit_log(audit_get_loginuid(current->audit_context), 0,
-		       AUDIT_MAC_IPSEC_DELSPD, (xp) ? 1 : 0, xp, NULL);
-
 	if (xp == NULL)
 		return -ENOENT;
 
-	err = 0;
+	err = security_xfrm_policy_delete(xp);
 
-	if ((err = security_xfrm_policy_delete(xp)))
+	xfrm_audit_log(audit_get_loginuid(current->audit_context), 0,
+		       AUDIT_MAC_IPSEC_DELSPD, err ? 0 : 1, xp, NULL);
+
+	if (err)
 		goto out;
+
 	c.seq = hdr->sadb_msg_seq;
 	c.pid = hdr->sadb_msg_pid;
 	c.event = XFRM_MSG_DELPOLICY;
commit	13fcfbb0675bf87da694f55dec11cada489a205c	[log] [tgz]
author	David S. Miller <davem@sunset.davemloft.net>	Mon Feb 12 13:53:54 2007 -0800
committer	David S. Miller <davem@sunset.davemloft.net>	Mon Feb 12 13:53:54 2007 -0800
tree	2a1b81c5f7e69781f3e6ee523fd67c2b923531ca
parent	9121c77706a4bd75a878573c913553ade120e9ce [diff] [blame]