Query regarding the lib audit-userspace

Tuesday, 13 September 2022

Hi team,

I was working on leveraging the libaudit shared library to generate audit events from a
user space daemon. I have been using the audit_open as well as audit_log_acct_message()
API’s to send message to the kernel audit subsystem. From the man pages I understand that
every message to the kernel audit subsystem would get an ACK back. Now my question is does
the daemon[single threaded] consuming this libaudit for sending events using 
audit_log_acct_message() API be blocked until it gets an ACK back from the kernel ?

If yes , is there a way to not have the application blocked during this period ?

Thanks,

Manoj

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Query regarding the lib audit-userspace