Red Hat Bugzilla – Bug 1640522
SELinux Security Context probe produces a flood of annoying messages
Last modified: 2018-11-02 02:48:00 EDT
Description of problem: SELinux Security Context probe produces a flood of annoying messages that look like this: Can't get context ... This makes the output hard to orient in. Version-Release number of selected component (if applicable): openscap-1.2.17 How reproducible: always Steps to Reproduce: 1.oscap xccdf eval --oval-results --report xccdf_org.ssgproject.content_profile_ospp42-draft.html --progress --profile xccdf_org.ssgproject.content_profile_ospp42-draft /usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml 2. see the stderr 3. Actual results: A lot of "Can't get context" messages are written on stderr. Expected results: These messages are displayed only in DEVEL verbosity level. Additional info:
This was fixed upstream in https://github.com/OpenSCAP/openscap/pull/1222
Just a note (for testing purposes) this is triggered specifically by rule xccdf_org.ssgproject.content_rule_selinux_confinement_of_daemons