SYNOPSIS
- void __audit_syscall_exit(intĀ success, longĀ return_code);
ARGUMENTS
success
-
- success value of the syscall
return_code
- return value of the syscall
DESCRIPTION
Tear down after system call. If the audit context has been marked as auditable (either because of the AUDIT_RECORD_CONTEXT state from filtering, or because some other part of the kernel wrote an audit message), then write out the syscall information. In call cases, free the names stored from getname.
COPYRIGHT