SELinux: remove auditdeny from selinux_audit_data

author Eric Paris <eparis@redhat.com>

Wed, 4 Apr 2012 19:01:43 +0000 (15:01 -0400)

committer Eric Paris <eparis@redhat.com>

Mon, 9 Apr 2012 16:23:05 +0000 (12:23 -0400)
author Eric Paris <eparis@redhat.com>
Wed, 4 Apr 2012 19:01:43 +0000 (15:01 -0400)
committer Eric Paris <eparis@redhat.com>
Mon, 9 Apr 2012 16:23:05 +0000 (12:23 -0400)
diff --git a/security/selinux/include/avc.h b/security/selinux/include/avc.h

index e4e50bb218ee42f81b2e3583bae85d293f976067..faa277729cb45ecfcfb805fe6190459d41b88d81 100644 (file)
--- a/security/selinux/include/avc.h
+++ b/security/selinux/include/avc.h
@@ -63,11 +63,6 @@ struct selinux_late_audit_data {
   * We collect this at the beginning or during an selinux security operation
   */
  struct selinux_audit_data {
-       /*
-        * auditdeny is a bit tricky and unintuitive.  See the
-        * comments in avc.c for it's meaning and usage.
-        */
-       u32 auditdeny;
         struct selinux_late_audit_data *slad;
  };
  
@@ -145,9 +140,7 @@ static inline int avc_audit(u32 ssid, u32 tsid,
                             struct common_audit_data *a, unsigned flags)
  {
         u32 audited, denied;
-       audited = avc_audit_required(requested, avd, result,
-                                    a ? a->selinux_audit_data->auditdeny : 0,
-                                    &denied);
+       audited = avc_audit_required(requested, avd, result, 0, &denied);
         if (likely(!audited))
                 return 0;
         return slow_avc_audit(ssid, tsid, tclass,
author	Eric Paris <eparis@redhat.com>
	Wed, 4 Apr 2012 19:01:43 +0000 (15:01 -0400)
committer	Eric Paris <eparis@redhat.com>
	Mon, 9 Apr 2012 16:23:05 +0000 (12:23 -0400)