From: Richard Guy Briggs Date: Thu, 21 Nov 2013 18:57:33 +0000 (-0500) Subject: smack: call WARN_ONCE() instead of calling audit_log_start() X-Git-Url: https://git.karo-electronics.de/?a=commitdiff_plain;h=4eb0f4abfb9441849530ea19389ae57cc62c8078;p=linux-beck.git smack: call WARN_ONCE() instead of calling audit_log_start() Remove the call to audit_log() (which call audit_log_start()) and deal with the errors in the caller, logging only once if the condition is met. Calling audit_log_start() in this location makes buffer allocation and locking more complicated in the calling tree (audit_filter_user()). Signed-off-by: Richard Guy Briggs Signed-off-by: Eric Paris --- diff --git a/security/smack/smack_lsm.c b/security/smack/smack_lsm.c index 8825375cc031..185e2e73cd33 100644 --- a/security/smack/smack_lsm.c +++ b/security/smack/smack_lsm.c @@ -3615,9 +3615,8 @@ static int smack_audit_rule_match(u32 secid, u32 field, u32 op, void *vrule, struct smack_known *skp; char *rule = vrule; - if (!rule) { - audit_log(actx, GFP_ATOMIC, AUDIT_SELINUX_ERR, - "Smack: missing rule\n"); + if (unlikely(!rule)) { + WARN_ONCE(1, "Smack: missing rule\n"); return -ENOENT; }