gdestuynder
commented
6 years ago that sounds bad can you run this in gdb, or extract a raw auditd log (setting logging to RAW without running the plugin) ?
Closed TomaszKlosinski closed 5 years ago
gdestuynder
commented
6 years ago that sounds bad can you run this in gdb, or extract a raw auditd log (setting logging to RAW without running the plugin) ?
gdestuynder
commented
5 years ago closing due to inactivity
Hi,
I've tried out your plugin on CentOS 7 and it seems not to work. After installation and enabling it, I get in /var/log/audit/audit.log:
type=ANOM_ABEND msg=audit(1494504182.616:549147): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=47929 comm="audisp-json" reason="memory violation" sig=11And it /var/log/messages I get:
kernel: audisp-json[47929]: segfault at 1 ip 00007feb746d0eb1 sp 00007ffd4604c4c8 error 4 in libc-2.17.so[7feb74596000+1b7000]Do you know what might be the problem?