[XFRM]: Fix OOPSes in xfrm_audit_log().

Make sure that this function is called correctly, and add BUG() checking to ensure the arguments are sane. Based upon a patch by Joy Latten. Signed-off-by: David S. Miller <davem@davemloft.net>
author: David S. Miller <davem@sunset.davemloft.net> 2007-02-12 13:53:54 -0800
committer: David S. Miller <davem@sunset.davemloft.net> 2007-02-12 13:53:54 -0800
commit: 13fcfbb0675bf87da694f55dec11cada489a205c (patch)
tree: 2a1b81c5f7e69781f3e6ee523fd67c2b923531ca /net/xfrm/xfrm_user.c
parent: 9121c77706a4bd75a878573c913553ade120e9ce (diff)
1 files changed, 7 insertions, 5 deletions
diff --git a/net/xfrm/xfrm_user.c b/net/xfrm/xfrm_user.c
index d55436d00e86..256745321611 100644
--- a/net/xfrm/xfrm_user.c
+++ b/net/xfrm/xfrm_user.c
@@ -1273,10 +1273,6 @@ static int xfrm_get_policy(struct sk_buff *skb, struct nlmsghdr *nlh,
 		xp = xfrm_policy_bysel_ctx(type, p->dir, &p->sel, tmp.security, delete);
 		security_xfrm_policy_free(&tmp);
 	}
-	if (delete)
-		xfrm_audit_log(NETLINK_CB(skb).loginuid, NETLINK_CB(skb).sid,
-			       AUDIT_MAC_IPSEC_DELSPD, (xp) ? 1 : 0, xp, NULL);
-
 	if (xp == NULL)
 		return -ENOENT;
 
@@ -1292,8 +1288,14 @@ static int xfrm_get_policy(struct sk_buff *skb, struct nlmsghdr *nlh,
 					      MSG_DONTWAIT);
 		}
 	} else {
-		if ((err = security_xfrm_policy_delete(xp)) != 0)
+		err = security_xfrm_policy_delete(xp);
+
+		xfrm_audit_log(NETLINK_CB(skb).loginuid, NETLINK_CB(skb).sid,
+			       AUDIT_MAC_IPSEC_DELSPD, err ? 0 : 1, xp, NULL);
+
+		if (err != 0)
 			goto out;
+
 		c.data.byid = p->index;
 		c.event = nlh->nlmsg_type;
 		c.seq = nlh->nlmsg_seq;
author	David S. Miller <davem@sunset.davemloft.net>	2007-02-12 13:53:54 -0800
committer	David S. Miller <davem@sunset.davemloft.net>	2007-02-12 13:53:54 -0800
commit	13fcfbb0675bf87da694f55dec11cada489a205c (patch)
tree	2a1b81c5f7e69781f3e6ee523fd67c2b923531ca /net/xfrm/xfrm_user.c
parent	9121c77706a4bd75a878573c913553ade120e9ce (diff)