Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 16bec31db751030171b31d7767fa3a5bdbe980ea
commit16bec31db751030171b31d7767fa3a5bdbe980ea[log] [tgz]
authorEric Paris <eparis@redhat.com>Wed Mar 07 16:02:16 2007 -0800
committerDavid S. Miller <davem@sunset.davemloft.net>Wed Mar 07 16:08:11 2007 -0800
tree60b69d571ba42ef0bf9f54833bd10228220c87bd
parent215a2dd3b43e0dc425e81d21de9d961416b1dad4 [diff]
[IPSEC]: xfrm audit hook misplaced in pfkey_delete and xfrm_del_sa

Inside pfkey_delete and xfrm_del_sa the audit hooks were not called if
there was any permission/security failures in attempting to do the del
operation (such as permission denied from security_xfrm_state_delete).
This patch moves the audit hook to the exit path such that all failures
(and successes) will actually get audited.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Venkat Yekkirala <vyekkirala@trustedcs.com>
Acked-by: James Morris <jmorris@namei.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
2 files changed
tree: 60b69d571ba42ef0bf9f54833bd10228220c87bd
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. fs/
  7. include/
  8. init/
  9. ipc/
  10. kernel/
  11. lib/
  12. mm/
  13. net/
  14. scripts/
  15. security/
  16. sound/
  17. usr/
  18. .gitignore
  19. .mailmap
  20. COPYING
  21. CREDITS
  22. Kbuild
  23. MAINTAINERS
  24. Makefile
  25. README
  26. REPORTING-BUGS