1 files changed, 12 insertions, 3 deletions
diff --git a/security/selinux/avc.c b/security/selinux/avc.c
index 81b3dff3cbf0..e8529e2f51e5 100644
--- a/security/selinux/avc.c
+++ b/security/selinux/avc.c
@@ -661,9 +661,18 @@ void avc_audit(u32 ssid, u32 tsid,
                                                    "daddr", "dest");
                                break;
                        }
-                        if (a->u.net.netif)
+                        if (a->u.net.netif > 0) {
-                                audit_log_format(ab, " netif=%s",
+                                struct net_device *dev;
-                                        a->u.net.netif);
+                                /* NOTE: we always use init's namespace */
+                                dev = dev_get_by_index(&init_net,
+                                                       a->u.net.netif);
+                                if (dev) {
+                                        audit_log_format(ab, " netif=%s",
+                                                         dev->name);
+                                        dev_put(dev);
+                                }
+                        }
                        break;
                }
        }

diff --git a/security/selinux/avc.c b/security/selinux/avc.c index 81b3dff3cbf0..e8529e2f51e5 100644 --- a/security/selinux/avc.c +++ b/security/selinux/avc.c
@@ -661,9 +661,18 @@ void avc_audit(u32 ssid, u32 tsid,
661	"daddr", "dest");	661	"daddr", "dest");
662	break;	662	break;
663	}	663	}
664	if (a->u.net.netif)	664	if (a->u.net.netif > 0) {
665	audit_log_format(ab, " netif=%s",	665	struct net_device *dev;
666	a->u.net.netif);	666
		667	/* NOTE: we always use init's namespace */
		668	dev = dev_get_by_index(&init_net,
		669	a->u.net.netif);
		670	if (dev) {
		671	audit_log_format(ab, " netif=%s",
		672	dev->name);
		673	dev_put(dev);
		674	}
		675	}
667	break;	676	break;
668	}	677	}
669	}	678	}