Lines Matching defs:auditing

27  * This file contains the audit hook support code for auditing.
150 	 * are we auditing only if error, or if it is not open or create
498 	 * tad_scid will be set by audit_start even if we are not auditing
503 		 * if we are auditing the exit system call, then complete
512 	 * Anyone auditing the system call that was aborted?
565 	/* if auditing not enabled, then don't generate an audit record */
742 	uint32_t auditing;
757 	/* if auditing not enabled, then don't generate an audit record */
758 	auditing = (tad->tad_audit == AUC_UNSET) ?
760 	if (auditing & ~(AUC_AUDITING | AUC_INIT_AUDIT | AUC_NOSPACE))
903 	/* if not auditing this event, then do nothing */
926 	/* if not auditing this event, then do nothing */
953  * This might be fairly useless if the auditing daemon is already dead....
967 	/* if not auditing this event, then do nothing */
1116 	/* if not auditing this event, then do nothing */
1169 	/* if not auditing this event, then do nothing */
1220 	/* if not auditing this event, then do nothing */
2111 		 * the auditing framework should create a new token type
2113 		 * Turn on general zone auditing to get the administrative zone.