Actions
Bug #7098
closed
Improve selinux reporting in foreman-debug
Difficulty:
Triaged:
Bugzilla link:
Pull request:
Description
We already added some information to foreman-debug (grep AVC and audit2allow).
Unfortunately when selinux interfaces are not installed and generated, -R option can fail:
COMMAND> audit2allow -R < /var/log/audit/audit.log could not open interface info [/var/lib/sepolgen/interface_info]
I am going to fix this:
- instead of grep AVC we will do sesearch -m AVC which gives nicer overview including SYSCALL lines
- instead audit2allow -R we will try to generate interfaces and if that fails we will do audit2allow without the -R option
Updated by The Foreman Bot over 9 years ago
- Status changed from Assigned to Ready For Testing
- Target version set to 1.7.5
- Pull request https://github.com/theforeman/foreman/pull/1691 added
- Pull request deleted (
)
Updated by Anonymous over 9 years ago
- Target version changed from 1.7.5 to 1.7.4
Updated by Anonymous about 9 years ago
- Target version changed from 1.7.4 to 1.7.3
Updated by Dominic Cleal about 9 years ago
- Target version changed from 1.7.3 to 1.7.2
Updated by Lukas Zapletal about 9 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Applied in changeset 80cc99f4b0d0af0afdba8def1256b37c4862430f.
Updated by
Actions