audit 1.2.2 released
Michael C Thompson
thompsmc at us.ibm.com
Thu May 25 13:48:34 UTC 2006
James Antill wrote:
> On Wed, 2006-05-24 at 14:44 -0500, Michael C Thompson wrote:
>> Linda Knippers wrote:
>>> I'm running the .27 kernel and the 1.2.2 tools on an x86_64
>>> (Xeon/EM64T) SMP box with the targeted policy in enforcing mode.
>>> I tried to reproduce the problem discussed yesterday (the very fist
>>> rule doesn't take and the rest do) but it seems to work fine on my
>>> system.
>> I've been running mostly on an i686 (Intel) with the .27 kernel and
>> 1.2.2 tools with the MLS policy. I've tested this on an x86_64 (AMD
>> opteron) and see this problem too. However, this problem does NOT exist
>> when using targeted policy, so it is most likely an MLS SELinux issue.
>> My MLS policy is 2.2.42
>
> I've recently hit the same issue (or one that looks just like it[1]) on
> current FC-5 with targeted policy in permissive mode.
>
> [1] Program calls audit_log_user_message() at boot time, and gets -1
> (EPERM) ... if you put a "for (int i = 1; i < 1; ++i)" in front of it,
> it returns 0.
Do you mean to say that embedded audit_log_user_message() inside a loop
changes it's return code?
int i;
for (i=1;i<1;i++) {
audit_log_user_message();
}
Is that code sample correct?
Mike
More information about the Linux-audit
mailing list