Bug 266401

Summary: Spurious message on processing files with no SELinux context
Product: Red Hat Enterprise Linux 5 Reporter: Jakub Hrozek <jhrozek>
Component: aideAssignee: Brian Stein <bstein>
Status: CLOSED NOTABUG QA Contact:
Severity: low Docs Contact:
Priority: medium    
Version: 5.0CC: bstevens, jwest, rnelson, tao
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-01-17 17:17:52 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Jakub Hrozek 2007-08-30 08:32:22 UTC 
Description of problem:
When processing a file with no SELinux label, aide prints out the following 
message:
---
lgetfileconv_raw failed for /path/to/file: No data available
---

Version-Release number of selected component (if applicable):
most recently aide-0.13, also aide-0.12-7

How reproducible:
always

Steps to Reproduce:
1. turn off SELinux
2. create a file, i.e. #touch /root/aide-no-context
3. verify that it has no context by # ls -lZ /root/aide-no-context
4. run #aide -i

Actual results:
lgetfileconv_raw messages - one for every file with no label


Expected results:
no such messages - they are not very descriptive and if running on a system 
with lots of unlabeled files, floods the terminal.


Additional info:
Aide up to 0.12-7 (version shipped with RHEL5-GA) used to segfault on 
processing files with no context.
Comment 2 Martin Poole 2010-06-22 14:35:07 UTC 
aide is working as designed.

selinux as a check item includes reporting when files have no context.

To eliminate these warnings the /etc/aide.conf should be modified to provide alternative for the R L & >  groups and change references to them, and also to remove selinux from other group definitions.