3fbc112632
- Update to upstream * Remove non-working OUTFILE from fixfiles from Dan Walsh. * Additional exception handling in chcat from Dan Walsh.
62 lines
2.5 KiB
Diff
62 lines
2.5 KiB
Diff
diff --exclude-from=exclude -N -u -r nsasepolgen/src/sepolgen/audit.py policycoreutils-2.0.77/sepolgen-1.0.19/src/sepolgen/audit.py
|
|
--- nsasepolgen/src/sepolgen/audit.py 2009-12-01 15:46:50.000000000 -0500
|
|
+++ policycoreutils-2.0.77/sepolgen-1.0.19/src/sepolgen/audit.py 2009-11-24 10:27:28.000000000 -0500
|
|
@@ -23,6 +23,27 @@
|
|
|
|
# Convenience functions
|
|
|
|
+def get_audit_boot_msgs():
|
|
+ """Obtain all of the avc and policy load messages from the audit
|
|
+ log. This function uses ausearch and requires that the current
|
|
+ process have sufficient rights to run ausearch.
|
|
+
|
|
+ Returns:
|
|
+ string contain all of the audit messages returned by ausearch.
|
|
+ """
|
|
+ import subprocess
|
|
+ import time
|
|
+ fd=open("/proc/uptime", "r")
|
|
+ off=float(fd.read().split()[0])
|
|
+ fd.close
|
|
+ s = time.localtime(time.time() - off)
|
|
+ date = time.strftime("%D/%Y", s).split("/")
|
|
+ bootdate="%s/%s/%s" % (date[0], date[1], date[3])
|
|
+ boottime = time.strftime("%X", s)
|
|
+ output = subprocess.Popen(["/sbin/ausearch", "-m", "AVC,USER_AVC,MAC_POLICY_LOAD,DAEMON_START,SELINUX_ERR", "-ts", bootdate, boottime],
|
|
+ stdout=subprocess.PIPE).communicate()[0]
|
|
+ return output
|
|
+
|
|
def get_audit_msgs():
|
|
"""Obtain all of the avc and policy load messages from the audit
|
|
log. This function uses ausearch and requires that the current
|
|
@@ -47,6 +68,17 @@
|
|
stdout=subprocess.PIPE).communicate()[0]
|
|
return output
|
|
|
|
+def get_log_msgs():
|
|
+ """Obtain all of the avc and policy load messages from /var/log/messages.
|
|
+
|
|
+ Returns:
|
|
+ string contain all of the audit messages returned by /var/log/messages.
|
|
+ """
|
|
+ import subprocess
|
|
+ output = subprocess.Popen(["/bin/grep", "avc", "/var/log/messages"],
|
|
+ stdout=subprocess.PIPE).communicate()[0]
|
|
+ return output
|
|
+
|
|
# Classes representing audit messages
|
|
|
|
class AuditMessage:
|
|
diff --exclude-from=exclude -N -u -r nsasepolgen/src/sepolgen/refparser.py policycoreutils-2.0.77/sepolgen-1.0.19/src/sepolgen/refparser.py
|
|
--- nsasepolgen/src/sepolgen/refparser.py 2009-10-29 15:21:39.000000000 -0400
|
|
+++ policycoreutils-2.0.77/sepolgen-1.0.19/src/sepolgen/refparser.py 2009-11-24 10:27:28.000000000 -0500
|
|
@@ -973,7 +919,7 @@
|
|
def list_headers(root):
|
|
modules = []
|
|
support_macros = None
|
|
- blacklist = ["init.if", "inetd.if", "uml.if", "thunderbird.if"]
|
|
+ blacklist = ["uml.if", "thunderbird.if", "unconfined.if"]
|
|
|
|
for dirpath, dirnames, filenames in os.walk(root):
|
|
for name in filenames:
|