497343 – audit2allow -a does not find denials in /var/log/messages

Bug 497343 - audit2allow -a does not find denials in /var/log/messages

Summary: audit2allow -a does not find denials in /var/log/messages

Keywords:
Status:	CLOSED RAWHIDE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	policycoreutils
Sub Component:
Version:	rawhide
Hardware:	All
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	---
Assignee:	Daniel Walsh
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2009-04-23 13:34 UTC by Eric Paris
Modified:	2009-04-24 18:05 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2009-04-24 18:05:48 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Eric Paris 2009-04-23 13:34:11 UTC

I had a number of denials before auditd started and I have denials from dbus, both of which show up in /var/log/messages

I run audit2allow -a and I don't get any rules.

I run cat /var/log/messages | audit2allow and I get my allow rules

An example /var/log/messages can be provided if needed, but it doesn't seem to matter if the logging is from dbus or from kernel....

Comment 1 Daniel Walsh 2009-04-24 18:05:48 UTC

Fixed in  policycoreutils-2.0.62-12.1

Note You need to log in before you can comment on or make changes to this bug.