Re: [systemd-devel] [PATCH] audit: Fix journal failing on unsupported audit in containers [was: journal: don't complain about audit socket errors in a container.]

2015-05-21 Thread Serge Hallyn
Quoting Lennart Poettering (lenn...@poettering.net): > On Wed, 20.05.15 22:40, Martin Pitt (martin.p...@ubuntu.com) wrote: > > > Hey Lennart, > > > > Lennart Poettering [2015-05-20 17:49 +0200]: > > > Nope, ConditionSecurity=audit is only a simple boolean check that > > > holds when audit is enab

Re: [systemd-devel] [PATCH] audit: Fix journal failing on unsupported audit in containers [was: journal: don't complain about audit socket errors in a container.]

2015-05-21 Thread Lennart Poettering
On Wed, 20.05.15 22:40, Martin Pitt (martin.p...@ubuntu.com) wrote: > Hey Lennart, > > Lennart Poettering [2015-05-20 17:49 +0200]: > > Nope, ConditionSecurity=audit is only a simple boolean check that > > holds when audit is enabled at all. It doesn't tell you anything about > > the precise audi

Re: [systemd-devel] [PATCH] audit: Fix journal failing on unsupported audit in containers [was: journal: don't complain about audit socket errors in a container.]

2015-05-20 Thread Martin Pitt
Hey Lennart, Lennart Poettering [2015-05-20 17:49 +0200]: > Nope, ConditionSecurity=audit is only a simple boolean check that > holds when audit is enabled at all. It doesn't tell you anything about > the precise audit feature set of the kernel. Ah, thanks for the clarification. > I have now con

Re: [systemd-devel] [PATCH] audit: Fix journal failing on unsupported audit in containers [was: journal: don't complain about audit socket errors in a container.]

2015-05-20 Thread Lennart Poettering
On Wed, 20.05.15 15:48, Martin Pitt (martin.p...@ubuntu.com) wrote: > Lennart Poettering [2015-05-20 14:57 +0200]: > > On Wed, 20.05.15 13:53, Martin Pitt (martin.p...@ubuntu.com) wrote: > > > > > -cached_use = true; > > > +/* bind() fails in namesp

Re: [systemd-devel] [PATCH] audit: Fix journal failing on unsupported audit in containers [was: journal: don't complain about audit socket errors in a container.]

2015-05-20 Thread Martin Pitt
Lennart Poettering [2015-05-20 14:57 +0200]: > On Wed, 20.05.15 13:53, Martin Pitt (martin.p...@ubuntu.com) wrote: > > > -cached_use = true; > > +/* bind() fails in namespaces (containers), so > > check that too */ > > +stati

Re: [systemd-devel] [PATCH] audit: Fix journal failing on unsupported audit in containers [was: journal: don't complain about audit socket errors in a container.]

2015-05-20 Thread Lennart Poettering
On Wed, 20.05.15 13:53, Martin Pitt (martin.p...@ubuntu.com) wrote: > -cached_use = true; > +/* bind() fails in namespaces (containers), so check > that too */ > +static const union sockaddr_union sa = { > +

Re: [systemd-devel] [PATCH] audit: Fix journal failing on unsupported audit in containers [was: journal: don't complain about audit socket errors in a container.]

2015-05-20 Thread systemd github import bot
Patchset imported to github. Pull request: -- Generated by https://github.com/haraldh/mail2git ___ systemd-devel mailing list systemd-devel

[systemd-devel] [PATCH] audit: Fix journal failing on unsupported audit in containers [was: journal: don't complain about audit socket errors in a container.]

2015-05-20 Thread Martin Pitt
Hello Frank and systemd devs, frank.thalberg at tuta.io [2015-04-12 20:51 +]: > This fixes an issue within journald aborting when running inside > archlinux container via systemd-nspawn on a debian host with audit > enabled kernel. We have exactly the same problem with both standard nspawn as