[RFC PATCH 2/4] quota: Don't issue audit messages on quota enforcing

Next message: cem: "[RFC PATCH 0/4] Introduce capable_noaudit"
Previous message: Pavel Machek: "Re: [PATCH 7.0 00/49] 7.0.14-rc1 review"
In reply to: cem: "[RFC PATCH 0/4] Introduce capable_noaudit"
Next in thread: Darrick J. Wong: "Re: [RFC PATCH 2/4] quota: Don't issue audit messages on quota enforcing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: cem

Date: Fri Jun 26 2026 - 07:46:18 EST

From: Carlos Maiolino <cem@xxxxxxxxxx>

Calling capable() to determine if we can bypass quota enforcement or not
can trigger spurious audit messages. We don't really require it here so
just use the capable_noaudit() version.

Signed-off-by: Carlos Maiolino <cmaiolino@xxxxxxxxxx>
---
fs/quota/dquot.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/fs/quota/dquot.c b/fs/quota/dquot.c
index 64cf42721496..1122a29215f7 100644
--- a/fs/quota/dquot.c
+++ b/fs/quota/dquot.c
@@ -1308,7 +1308,7 @@ static int ignore_hardlimit(struct dquot *dquot)
{
struct mem_dqinfo *info = &sb_dqopt(dquot->dq_sb)->info[dquot->dq_id.type];

- return capable(CAP_SYS_RESOURCE) &&
+ return capable_noaudit(CAP_SYS_RESOURCE) &&
(info->dqi_format->qf_fmt_id != QFMT_VFS_OLD ||
!(info->dqi_flags & DQF_ROOT_SQUASH));
}
--
2.54.0