函数逻辑报告

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:kernel\auditfilter.c Create Date:2022-07-27 12:28:29
Last Modify:2020-03-12 14:18:49 Copyright©Brick
首页 函数Tree
注解内核,赢得工具下载SCCTEnglish

函数名称:Log rule additions and removals

函数原型:static void audit_log_rule_change(char *action, struct audit_krule *rule, int res)

返回类型:void

参数:

类型参数名称
char *action
struct audit_krule *rule
intres
1102  如果非audit_enabled则返回
1105  ab等于申请审计缓冲区
1106  如果非ab则返回
1108  audit_log_session_info(ab)
1109  audit_log_task_context(ab)
1110  写入审计信息
1111  audit_log_key(ab, ties events to rules )
1112  写入审计信息
1113  发送审计信息,并释放缓冲区
调用者
名称描述
audit_rule_changeaudit_rule_change - apply all rules to the specified message type*@type: audit message type*@seq: netlink audit message sequence (serial) number*@data: payload data*@datasz: size of payload data