Bug 159218 - dbus updates for new audit system
dbus updates for new audit system
Product: Red Hat Enterprise Linux 4
Classification: Red Hat
Component: dbus (Show other bugs)
All Linux
high Severity medium
: ---
: ---
Assigned To: John (J5) Palmieri
: FutureFeature
Depends On:
Blocks: 113381 156322 192822
  Show dependency treegraph
Reported: 2005-05-31 13:40 EDT by Steve Grubb
Modified: 2013-03-13 00:48 EDT (History)
1 user (show)

See Also:
Fixed In Version: RHEA-2005-515
Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2005-10-05 10:32:19 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
patch to add audit enhancements (2.80 KB, patch)
2005-05-31 15:22 EDT, Steve Grubb
no flags Details | Diff
Script for testing AVC messages (1.46 KB, text/plain)
2005-08-02 15:50 EDT, John (J5) Palmieri
no flags Details

  None (edit)
Description Steve Grubb 2005-05-31 13:40:37 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050513 Fedora/1.0.4-1.3.1 Firefox/1.0.4

Description of problem:
dbus needs an update for the new audit system. I will attach a patch that provides the needed functionality.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. New functionality

Additional info:
Comment 1 Steve Grubb 2005-05-31 13:41:38 EDT
It should be noted that the patch that will be provided is to steer SE LInux avc
denila messages into the audit system.
Comment 2 Steve Grubb 2005-05-31 15:22:11 EDT
Created attachment 115008 [details]
patch to add audit enhancements

This patch is similar to the one put into FC4. It uses the new interface for
user space AVC denial reporting, though. It has a dependency on
audit-libs-devel >= 0.9. This patch is safe to push into FC4 should the
opportunity arise. 

Also, please put this into rawhide for FC5. Thanks.
Comment 5 John (J5) Palmieri 2005-06-09 15:20:29 EDT
I have this built in rawhide but it is not building in the RHEL-4 tree.  I am
getting this error:

if gcc -DHAVE_CONFIG_H -I. -I. -I.. -I..  -DDAEMON_NAME=\"dbus-daemon-1\" 
-DDBUS_COMPILATION -DDBUS_SYSTEM_CONFIG_FILE=\""/etc/dbus-1/system.conf"\"
-fexceptions -m32 -march=i386 -mtune=pentium4 -fasynchronous-unwind-tables -Wall
-Wchar-subscripts -Wmissing-declarations -Wmissing-prototypes -Wnested-externs
-Wpointer-arith -Wcast-align -Wsign-compare -MT selinux.o -MD -MP -MF
".deps/selinux.Tpo" -c -o selinux.o selinux.c; \
then mv -f ".deps/selinux.Tpo" ".deps/selinux.Po"; else rm -f
".deps/selinux.Tpo"; exit 1; fi
In file included from selinux.c:41:
/usr/include/libaudit.h:101: error: redefinition of ‘struct audit_message’
selinux.c: In function ‘bus_selinux_pre_init’:
selinux.c:232: warning: unused variable ‘bus_context’
selinux.c: In function ‘bus_selinux_full_init’:
selinux.c:260: warning: unused variable ‘r’
make: *** [selinux.o] Error 1

The line -
/usr/include/libaudit.h:101: error: redefinition of ‘struct audit_message’
says there is a redefinition but doesn't tell me where it is being redefined from. 

I have the updated spec and patch checked into CVS.  Steve, can you take a look?

Comment 6 Steve Grubb 2005-06-09 15:31:46 EDT
I think the error is related to some stuff that was moved into
glibc-kernheaders. I didn't know that glibc-kernheaders was updated in the RHEL4
build area yet. If it is, I'll upgrade the audit package and then we're set.
Comment 7 John (J5) Palmieri 2005-06-09 15:38:23 EDT
I was building on my local machine.  Let me try a build in beehive.  The rawhide
tree built fine on my local machine.
Comment 8 John (J5) Palmieri 2005-06-09 16:00:23 EDT
My fault.  I assumed it would build fine localy since the same patch built in
the rawhide tree.  Builds fine in beehive.  Writting up errata.
Comment 14 John (J5) Palmieri 2005-08-02 15:48:44 EDT
new package built.  Attaching test script.
Comment 15 John (J5) Palmieri 2005-08-02 15:50:00 EDT
Created attachment 117371 [details]
Script for testing AVC messages
Comment 20 Red Hat Bugzilla 2005-10-05 10:32:19 EDT
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.


Note You need to log in before you can comment on or make changes to this bug.