Thanks guys, it looks like you found the root cause. It was on my
todo list to play with this on Rawhide but I wanted to get through
Richard's patches first.
On Thu, Nov 5, 2015 at 6:19 PM, Laurent Bigonville wrote:
> Le 06/11/15 00:03, Steve Grubb a écrit :
>
>> On Thursday, November 05, 2015 0
On Thursday, October 22, 2015 02:53:20 PM Richard Guy Briggs wrote:
> When auditd is restarted, even though the kauditd_thread is present, it
> remains dormant until the next audit log message is queued.
>
> Wake up the kauditd_thread in the kauditd_wait queue immediately when
> auditd registers i
On Thursday, October 22, 2015 02:53:19 PM Richard Guy Briggs wrote:
> When auditd goes away (died, killed or shutdown, or net namespace shut
> down), there is no point in sleeping waiting for auditd to drain the
> queue since that message would be distined for the hold queue after the
> timeout any
On Thursday, October 22, 2015 02:53:17 PM Richard Guy Briggs wrote:
> If the audit_backlog_limit is changed from a limited value to an
> unlimited value (zero) while the queue was overflowed, wake up the
> audit_backlog_wait queue to allow those processes to continue.
>
> Signed-off-by: Richard Gu
On Thursday, October 22, 2015 02:53:18 PM Richard Guy Briggs wrote:
> If we hold the audit_cmd_mutex, we should never sleep waiting for auditd
> to drain the queue since auditd may need the mutex to shut down.
>
> This was first implemented with mutex_trylock(), but since
> audit_log_start() can b
Le 06/11/15 00:03, Steve Grubb a écrit :
On Thursday, November 05, 2015 09:32:09 AM Laurent Bigonville wrote:
Le 05/11/15 04:23, Steve Grubb a écrit :
On Tuesday, November 03, 2015 09:48:31 PM Laurent Bigonville wrote:
Le 03/11/15 21:08, Richard Guy Briggs a écrit :
On 15/11/03, Steve Grubb w
On Thursday, November 05, 2015 09:32:09 AM Laurent Bigonville wrote:
> Le 05/11/15 04:23, Steve Grubb a écrit :
> > On Tuesday, November 03, 2015 09:48:31 PM Laurent Bigonville wrote:
> >> Le 03/11/15 21:08, Richard Guy Briggs a écrit :
> >>> On 15/11/03, Steve Grubb wrote:
> On Tuesday, Novem
On Thursday, October 22, 2015 03:51:59 PM Richard Guy Briggs wrote:
> On 15/10/22, Steve Grubb wrote:
> > On Thursday, October 22, 2015 02:53:16 PM Richard Guy Briggs wrote:
> > > Treat systemd the same way as auditd, allowing it to overrun the queue
> > > to avoid blocking.
> >
> > Do you mind ex
On Wed, Nov 4, 2015 at 10:13 PM, Richard Guy Briggs wrote:
> On 15/11/04, Paul Moore wrote:
>> On Thursday, October 22, 2015 02:53:14 PM Richard Guy Briggs wrote:
>> > After auditd has recovered from an overflowed queue, the first process
>> > that doesn't use reserves to make it through the queue
On Thursday, November 05, 2015 10:26:17 AM Laurent Bigonville wrote:
> Le 05/11/15 09:32, Laurent Bigonville a écrit :
> > Le 05/11/15 04:23, Steve Grubb a écrit :
> >> I tested this on Fedora 22 and did not get a USER_AVC from dbus, but
> >> I also did not get an error message in syslog. So, I don
Le 05/11/15 09:32, Laurent Bigonville a écrit :
Le 05/11/15 04:23, Steve Grubb a écrit :
I tested this on Fedora 22 and did not get a USER_AVC from dbus, but
I also
did not get an error message in syslog. So, I don't know what to make
of it.
(And for the record, I have a bz open saying that U
Le 05/11/15 04:23, Steve Grubb a écrit :
On Tuesday, November 03, 2015 09:48:31 PM Laurent Bigonville wrote:
Le 03/11/15 21:08, Richard Guy Briggs a écrit :
On 15/11/03, Steve Grubb wrote:
On Tuesday, November 03, 2015 06:12:07 PM Laurent Bigonville wrote:
I'm running in permissive mode.
I'm
12 matches
Mail list logo
