From mboxrd@z Thu Jan  1 00:00:00 1970
From: Vincas Dargis <vindrg@gmail.com>
Subject: Re: [PATCH] userspace: audit: ausearch doesn't return entries for
	AppArmor events that exist in the log
Date: Fri, 29 Apr 2016 19:58:46 +0300
Message-ID: <572392C6.10302@gmail.com>
References: <CAPNCXk2XY+bD6t7ZqkmE-Am24KqPw_6wraUc=6MhaRF7BZQ-cg@mail.gmail.com>
	<20160429154131.GB18488@madcap2.tricolour.ca>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"; Format="flowed"
Content-Transfer-Encoding: base64
Return-path: <linux-audit-bounces@redhat.com>
In-Reply-To: <20160429154131.GB18488@madcap2.tricolour.ca>
List-Unsubscribe: <https://www.redhat.com/mailman/options/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=unsubscribe>
List-Archive: <https://www.redhat.com/archives/linux-audit>
List-Post: <mailto:linux-audit@redhat.com>
List-Help: <mailto:linux-audit-request@redhat.com?subject=help>
List-Subscribe: <https://www.redhat.com/mailman/listinfo/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=subscribe>
Sender: linux-audit-bounces@redhat.com
Errors-To: linux-audit-bounces@redhat.com
To: Richard Guy Briggs <rgb@redhat.com>
Cc: linux-audit@redhat.com
List-Id: linux-audit@redhat.com

MjAxNi4wNC4yOSAxODo0MSwgUmljaGFyZCBHdXkgQnJpZ2dzIHJhxaHElzoKPiBZb3UgYXJlIHdl
bGNvbWUgdG8geW91ciByYW50LiAgSSBxdWl0ZSBsaWtlIG1haWxpbmcgbGlzdHMgYW5kIElSQy4g
IEkKPiBoYXRlIG1vc3Qgb3RoZXIgc29jaWFsIG1lZGlhIGFuZCBmb3J1bXMuICBXaGF0IGRvIHlv
dSBzdWdnZXN0IGluc3RlYWQ/CgpIaSwKCkkgZ3Vlc3MgaXQncyBwbGFpbiBwZXJzb25hbCBwcmVm
ZXJlbmNlLCBidXQgSSBqdXN0IGdldCBhbm5veWVkIG9uY2UgSSBoYXZlIHRvIGRlYWwgd2l0aCBs
aXN0cy4gVGhhdCdzIHdoeToKCjEuIE5vIGV4cGxpY2l0IHNlYXJjaCBmdW5jdGlvbi4gWWVzIEkg
a25vdyAoX25vd18pIHRoYXQgeW91IGNhbiB1c2UgeW91ciBzZWFyY2ggZW5naW5lIHdpdGggc2l0
ZTogcHJlZml4LCBidXQgdGhhdCdzIHRvbyAKImhpZGRlbiIgZmVhdHVyZSwgYW5kIG9uZSBoYXZl
IHRvICJrbm93IiB0aGF0IGZyb20gc29tZXdoZXJlLiBJIGRvbid0IGtub3cgd2h5IE1haWxtYW4g
b3IgKHdoYXRldmVyIHRoYXQgbGlzdCBlbmdpbmUgaXMpIApjb3VsZG4ndCBoYXZlIGF0IGxlYXN0
IHNlYXJjaCBib3ggdGhhdCByZWRpcmVjdHMgdG8gc29tZSBzZWFyY2ggZW5naW5lLCBpZiB0aGV5
IGRvbid0IHdhbnQgdG8gaW5jb3Jwb3JhdGUgbG9jYWwgc2VhcmNoIAplbmdpbmUgYnkgdGhlbXNl
bHZlcy4KCjIuIE5vIChlYXN5Pykgd2F5IHRvIGNvbnRpbnVlIHRocmVhZCBpZiBub3Qgc3Vic2Ny
aWJlZCBlYXJsaWVyLiBEZWJpYW4gYnVnIHRyYWNrZXIsIHRoYXQgaXMgYmFzZWQgb24gZW1haWws
IGRvZXMgaW4gZmFjdCAKaGFzICJtYm94IiBkb3dubG9hZCBsaW5rIGZvciBzcGVjaWZpYyBwb3N0
LiBCdXQgdGhhdCdzIHJhcml0eSBJIGd1ZXNzLiBJbiBmb3J1bXMgeW91IGp1c3QgY2xpY2sgInJl
cGx5IiBidXR0b24uIEluIGxpc3QsIAp5b3UgaGF2ZSB0byBkb3dubG9hZCAuZ3ogYXJjaGl2ZSAo
d2hpY2ggYXBwYXJlbnRseSBmYWlsZWQgaW4gbXkgbGF0ZXN0IEZpcmVmb3ggNDYgY2FzZSkgYW5k
IGVkaXQgaXQgdG8gbWFrZSBzaW5nbGUgLm1ib3ggCm9yIHdoYXRldmVyPyAuLi4KClN0ZXZlIHN1
Z2dlc3RlZCBqdXN0IHRvIHN0YXJ0IG5ldyB0aHJlYWQuIFllYWgsIGJ1dC4uIHRoYXQncyBraW5k
YSBjaGVhdGluZywgYW5kIGlzc3VlIHN0aWxsIGV4aXN0cyBhbmQgSSBndWVzcyBJIGFtIAoodG9v
KSBwaWNreSBmb3IgdGhlc2Uga2luZCBvZiB1c2FiaWxpdHkgInBhcHByZWN1dHMiLCBoZW5jZSwg
dGhlIHJhbnQgOi0pIC4KCjMuIE9uY2Ugc3Vic2NyaWJlZCwgeW91IG1heSBnZXQgbG90J3Mgb2Yg
bG90J3Mgb2YgZW1haWxzLCBldmVuIGlmIHlvdSBhcmUgaW50ZXJlc3RlZCBpbiBvbmx5IHRoYXQg
c2luZ2xlIHRvcGljIChvciBzb21lIAp0b3BpY3MsIG1heWJlIHN0YXJ0ZWQgbG9uZyB0aW1lIGFn
byksIHNvIHlvdSBjYW4ganVzdCAibG9zZSIvZm9yZ2V0L3NraXAgcmVsZXZhbnQgcmVwbHkuIE1l
YW53aGlsZSwgZm9ydW1zIGhhdmUgCm5vdGlmaWNhdGlvbiBmdW5jdGlvbiB5b3UgY2FuZSBlbmFi
bGUgZm9yIHRvcGljcyB5b3UgYXJlICJ3YXRjaGluZyIuCgo0LiBObyBmb3JtYXR0aW5nIG9wdGlv
bnMuIEl0J3Mgc29tZXRpbWVzIGhhcmQgdG8gcmVhZCBjb2RlIG9yIG90aGVyIHRlY2huaWNhbCB0
ZXh0IGVtYmVkZGVkIGluc2lkZSBwbGFpbiB0ZXh0IGVtYWlsLiAKTWVhbndoaWxlLCB1c2luZyBt
YXJrZG93bi9iYmNvZGUvd2hhdGV2ZXIgeW91IGNhbiBtYWtlIHRlY2huaWNhbCBrZXl3b3Jkcywg
ZmlsZSBwYXRocywgb3Igd2hvbGUgY29kZSBibG9ja3MgZGlzdGluY3QgCmZyb20gcGxhaW4gdGV4
dC4gTWFrZXMgZXllcyBoYXBweS4KCkZvcnVtcyBhbHNvIGhhdmUgaXNzdWVzLCBsaWtlLi4gaGF2
aW5nIGdhemlsbGlvbiBvZiBhY2NvdW50cyAodGhhdCBzaW1wbGUgZW1haWwgYWN0aXZhdGlvbiBp
biBsaXN0cyBtYWtlcyBpdCBtdWNoIGVhc2llciAKYWN0dWFsbHkpLiBBbHNvLCBJIGltYWdpbmUg
Z2V0dGluZyBhbGwgbGlzdCB0cmFmZmljIGJ5IGRlZmF1bHQgbWlnaHQgYmUgZ29vZCBmb3IgbWFp
bnRhaW5lcnMgd2hvIHdhbnQgdG8gaGVhciAob2ssIHJlYWQpIAphbGwgcmVsZXZhbnQgaXNzdWVz
LiBJbiBmb3J1bXMsIHlvdSBzaG91bGQgY2xpY2stdGhyb3VnaCBhbGwgImhpZ2hsaWdodGVkIiB0
b3BpY3MgbWFudWFsbHk/IE9oIG15Li4uCgpBbnl3YXksIHRoaXMgb2ZmLXRvcGljIHNob3VsZCBi
ZSBpbiBNYWlsbWFuIGxpc3QgcHJvYmFibHkgOi0pIC4gQWxsIHRoZXNlIGFyZSBhY3R1YWxseSBz
bWFsbCwgImJlbGxzLWFuZC13aXN0bGVzIiwgCiJwYXBwZXJjdXQiIGlzc3VlcyBJIGd1ZXNzLCBi
dXQgdGhhdCdzIGVub3VnaCB0byBtYWtlIG1lICpzaWdoKiB3aGVuIEkgc2VlIEkgd2lsbCBoYXZl
IHRvIGRlYWwgd2l0aCBtYWlsaW5nIGxpc3QgaW5zdGVhZCAKb2YgZnVsbC1mbGVkZ2VkIGJ1ZyB0
cmFja2VyIG9yIGF0IGxlYXN0IGEgZm9ydW0uCgotLQpMaW51eC1hdWRpdCBtYWlsaW5nIGxpc3QK
TGludXgtYXVkaXRAcmVkaGF0LmNvbQpodHRwczovL3d3dy5yZWRoYXQuY29tL21haWxtYW4vbGlz
dGluZm8vbGludXgtYXVkaXQ=