SELinux: remove auditdeny from selinux_audit_data

It's just takin' up space. Signed-off-by: N Eric Paris <eparis@redhat.com>

SELinux: remove auditdeny from selinux_audit_data
It's just takin' up space. Signed-off-by: N Eric Paris <eparis@redhat.com>
1d349292 · Eric Paris · 50c205f5 · 1d349292
隐藏空白更改
内联并排

Showing with 1 addition and 8 deletion

security/selinux/include/avc.h security/selinux/include/avc.h +1 -8

未找到文件。
--- a/security/selinux/include/avc.h
+++ b/security/selinux/include/avc.h
@@ -63,11 +63,6 @@ struct selinux_late_audit_data {
 * We collect this at the beginning or during an selinux security operation
 */
 struct selinux_audit_data {
-	/*
-	 * auditdeny is a bit tricky and unintuitive.  See the
-	 * comments in avc.c for it's meaning and usage.
-	 */
-	u32 auditdeny;
 	struct selinux_late_audit_data *slad;
 };

@@ -145,9 +140,7 @@ static inline int avc_audit(u32 ssid, u32 tsid,
 			    struct common_audit_data *a, unsigned flags)
 {
 	u32 audited, denied;
-	audited = avc_audit_required(requested, avd, result,
-				     a ? a->selinux_audit_data->auditdeny : 0,
-				     &denied);
+	audited = avc_audit_required(requested, avd, result, 0, &denied);
 	if (likely(!audited))
 		return 0;
 	return slow_avc_audit(ssid, tsid, tclass,