netfilter: create audit records for x_tables replaces
authorThomas Graf <tgraf@infradead.org>
Sun, 16 Jan 2011 17:12:59 +0000 (18:12 +0100)
committerPatrick McHardy <kaber@trash.net>
Sun, 16 Jan 2011 17:12:59 +0000 (18:12 +0100)
commitfbabf31e4d482149b5e2704eb0287cf9117bdcf3
treeb12a1123474ab9aa566fc1a6e57e050653588ba0
parent43f393caec0362abe03c72799d3f342af3973070
netfilter: create audit records for x_tables replaces

The setsockopt() syscall to replace tables is already recorded
in the audit logs. This patch stores additional information
such as table name and netfilter protocol.

Cc: Patrick McHardy <kaber@trash.net>
Cc: Eric Paris <eparis@parisplace.org>
Cc: Al Viro <viro@ZenIV.linux.org.uk>
Signed-off-by: Thomas Graf <tgraf@redhat.com>
Signed-off-by: Patrick McHardy <kaber@trash.net>
include/linux/audit.h
net/netfilter/x_tables.c