diff options
| author | Phil Sutter <phil@nwl.cc> | 2023-09-23 03:53:50 +0200 |
|---|---|---|
| committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2023-10-10 22:00:43 +0200 |
| commit | 7ff9a9857b8b5197e0ced9bb37256decfc59b95b (patch) | |
| tree | 7ea99935d1e238c04a62347eaeb0be6830cb8509 /net/ipv4/tcp_input.c | |
| parent | e1bbe4afe1a38e679d8704ec16c11e542ad9acc4 (diff) | |
netfilter: nf_tables: Deduplicate nft_register_obj audit logs
[ Upstream commit 0d880dc6f032e0b541520e9926f398a77d3d433c ]
When adding/updating an object, the transaction handler emits suitable
audit log entries already, the one in nft_obj_notify() is redundant. To
fix that (and retain the audit logging from objects' 'update' callback),
Introduce an "audit log free" variant for internal use.
Fixes: c520292f29b8 ("audit: log nftables configuration change events once per table")
Signed-off-by: Phil Sutter <phil@nwl.cc>
Reviewed-by: Richard Guy Briggs <rgb@redhat.com>
Acked-by: Paul Moore <paul@paul-moore.com> (Audit)
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Sasha Levin <sashal@kernel.org>
Diffstat (limited to 'net/ipv4/tcp_input.c')
0 files changed, 0 insertions, 0 deletions