Browse Source

Merge "add sealert diagosis of selinux errors"

master
Zuul 3 weeks ago
committed by Gerrit Code Review
parent
commit
3b46f036ff
2 changed files with 11 additions and 1 deletions
  1. +4
    -1
      roles/collect_logs/defaults/main.yml
  2. +7
    -0
      roles/collect_logs/tasks/collect.yml

+ 4
- 1
roles/collect_logs/defaults/main.yml View File

@ -284,9 +284,12 @@ artcl_commands:
cmd: |
systemctl list-units --full --all
systemctl status "*"
denials:
selinux_denials:
cmd: >
grep -i denied /var/log/audit/audit*
selinux_denials_detail:
cmd: >
sealert -a /var/log/extra/selinux_denials.txt
seqfaults:
cmd: >
grep -v ansible-command /var/log/messages | grep segfault


+ 7
- 0
roles/collect_logs/tasks/collect.yml View File

@ -27,6 +27,13 @@
data: "{{ combined_cmds | dict2items|selectattr('key', 'in', collect_log_types) | list | items2dict }}"
register: artcl_commands_flatten
- name: install setools
ansible.builtin.package:
name:
- setools
- setroubleshoot
state: present
- name: Run artcl_commands
# noqa 305
# noqa 102 :: No Jinja2 in when


Loading…
Cancel
Save