[XFRM]: Assorted IPsec fixups

This patch fixes a number of small but potentially troublesome things in the XFRM/IPsec code: * Use the 'audit_enabled' variable already in include/linux/audit.h Removed the need for extern declarations local to each XFRM audit fuction * Convert 'sid' to 'secid' everywhere we can The 'sid' name is specific to SELinux, 'secid' is the common naming convention used by the kernel when refering to tokenized LSM labels, unfortunately we have to leave 'ctx_sid' in 'struct xfrm_sec_ctx' otherwise we risk breaking userspace * Convert address display to use standard NIP* macros Similar to what was recently done with the SPD audit code, this also also includes the removal of some unnecessary memcpy() calls * Move common code to xfrm_audit_common_stateinfo() Code consolidation from the "less is more" book on software development * Proper spacing around commas in function arguments Minor style tweak since I was already touching the code Signed-off-by: Paul Moore <paul.moore@hp.com> Acked-by: James Morris <jmorris@namei.org> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Paul Moore <paul.moore@hp.com> 2007-12-20 23:49:33 -0500
committer: David S. Miller <davem@davemloft.net> 2008-01-28 17:59:40 -0500
commit: 68277accb3a5f004344f4346498640601b8b7016 (patch)
tree: e6b541283a516406fbd936051028845a20f5a7c4 /net/xfrm/xfrm_policy.c
parent: 8ea843495df36036cb7f22f61994b34f8362b443 (diff)
1 files changed, 7 insertions, 8 deletions
diff --git a/net/xfrm/xfrm_policy.c b/net/xfrm/xfrm_policy.c
index 74807a7d3d69..abc3e39b115b 100644
--- a/net/xfrm/xfrm_policy.c
+++ b/net/xfrm/xfrm_policy.c
@@ -24,6 +24,7 @@
 #include <linux/netfilter.h>
 #include <linux/module.h>
 #include <linux/cache.h>
+#include <linux/audit.h>
 #include <net/dst.h>
 #include <net/xfrm.h>
 #include <net/ip.h>
@@ -2401,15 +2402,14 @@ static inline void xfrm_audit_common_policyinfo(struct xfrm_policy *xp,
        }
 }
-void
+void xfrm_audit_policy_add(struct xfrm_policy *xp, int result,
-xfrm_audit_policy_add(struct xfrm_policy *xp, int result, u32 auid, u32 sid)
+                           u32 auid, u32 secid)
 {
        struct audit_buffer *audit_buf;
-        extern int audit_enabled;
        if (audit_enabled == 0)
                return;
-        audit_buf = xfrm_audit_start(auid, sid);
+        audit_buf = xfrm_audit_start(auid, secid);
        if (audit_buf == NULL)
                return;
        audit_log_format(audit_buf, " op=SPD-add res=%u", result);
@@ -2418,15 +2418,14 @@ xfrm_audit_policy_add(struct xfrm_policy *xp, int result, u32 auid, u32 sid)
 }
 EXPORT_SYMBOL_GPL(xfrm_audit_policy_add);
-void
+void xfrm_audit_policy_delete(struct xfrm_policy *xp, int result,
-xfrm_audit_policy_delete(struct xfrm_policy *xp, int result, u32 auid, u32 sid)
+                              u32 auid, u32 secid)
 {
        struct audit_buffer *audit_buf;
-        extern int audit_enabled;
        if (audit_enabled == 0)
                return;
-        audit_buf = xfrm_audit_start(auid, sid);
+        audit_buf = xfrm_audit_start(auid, secid);
        if (audit_buf == NULL)
                return;
        audit_log_format(audit_buf, " op=SPD-delete res=%u", result);
author	Paul Moore <paul.moore@hp.com>	2007-12-20 23:49:33 -0500
committer	David S. Miller <davem@davemloft.net>	2008-01-28 17:59:40 -0500
commit	68277accb3a5f004344f4346498640601b8b7016 (patch)
tree	e6b541283a516406fbd936051028845a20f5a7c4 /net/xfrm/xfrm_policy.c
parent	8ea843495df36036cb7f22f61994b34f8362b443 (diff)