Resolving syscall numbers - Linux-audit - Linux-Audit List Archives

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Resolving syscall numbers

[PATCH] log more info for...

Possibly wrong audit messages

Steve

Monday, 12 June 2006 Mon, 12 Jun '06

10:10 a.m.

This may not be appropriate for this list, if it isn't I apologize and you may ignore it. Is there an quick way to resolve the syscall number that auditd returns within a message to a syscall name? (ie. 5->open)? I am programming in C, if that helps. Thanks, Steve

Reply

Show replies by date

James Antill

Monday, 12 June Mon, 12 Jun

10:56 a.m.

On Mon, 2006-06-12 at 11:10 -0400, Steve wrote:

This may not be appropriate for this list, if it isn't I apologize and you may ignore it. Is there an quick way to resolve the syscall number that auditd returns within a message to a syscall name? (ie. 5->open)? I am programming in C, if that helps.

Use audit_syscall_to_name(num, audit_detect_machine()) -- James Antill <james.antill(a)redhat.com> Red Hat

Reply

Steve

11:15 a.m.

Use audit_syscall_to_name(num, audit_detect_machine())

Thanks!

Reply

6768

days inactive

6768

days old

linux-audit@lists.linux-audit.osci.io

Manage subscription

2 comments

2 participants

tags (0)

participants (2)

James Antill
Steve