Lines Matching full:audit

21 """Tool to generate a minijail seccomp filter from strace or audit output."""
84       audit_logs: Mutually exclusive list of audit log filenames.
125                         help='strace and/or audit logs', nargs='+')
126     parser.add_argument('--audit-comm', type=str, metavar='PROCESS_NAME',
127                         help='relevant process name from the audit.log files')
131         parser.error('Python bindings for the audit subsystem were not found.\n'
132                      'Please install the python3-audit (sometimes python-audit)'
133                      ' package for your distro to process audit logs: '
137         parser.error(f'--audit-comm is required when using audit logs as input:'
141         parser.error('--audit-comm was specified yet none of the input files '
142                      'matched our hueristic for an audit log')
201     """Parses one audit.log file generated by the Linux audit subsystem."""
206     # Quick validity check for whether this parses as a valid audit log. The
209         raise ValueError(f'Unable to parse audit log file {audit_log.name}')
255             # audit-userspace and remove this workaround.
268                 # records wouldn't exist per our setup instructions but audit
311         print(f'Audit logs: {opts.audit_logs}', file=sys.stderr)