audit_syscall_exit(9) suse man page | unix.com

Suse Man Pages Research

Man Page: audit_syscall_exit

Operating Environment: suse

Section: 9

AUDIT_SYSCALL_EXIT(9)						 Audit Interfaces					     AUDIT_SYSCALL_EXIT(9)


NAME

       audit_syscall_exit - deallocate audit context after a system call


SYNOPSIS

       void audit_syscall_exit(int valid, long return_code);


ARGUMENTS

       valid
	   success/failure flag

       return_code
	   syscall return value


DESCRIPTION

       Tear down after system call. If the audit context has been marked as auditable (either because of the AUDIT_RECORD_CONTEXT state from
       filtering, or because some other part of the kernel write an audit message), then write out the syscall information. In call cases, free
       the names stored from getname.


COPYRIGHT

Kernel Hackers Manual 2.6.					     July 2010						     AUDIT_SYSCALL_EXIT(9)
Related Man Pages
audit_add_rule_data(3) - debian
audit_add_rule_data(3) - suse
s390_sthyi(2) - linux
s390_sthyi(2) - xfree86
s390_sthyi(2) - php
Similar Topics in the Unix Linux Community
Grant unprivileged user rights to see the output of echo|format but not modify disks
SOCKS proxy & PAM configuration exposure
Docker learning Phase-I
Shopt -s histappend
32 bit process addressing more than 4GB