| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
| |
Recent versions of kexec-utils automatically generate a text
file containing the dmesg buffer of the captured vmcore.
This is useful for first-fault debugging and should be included.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
The 'ipsec barf' debugging command has a nasty bug where it runs
grep on /var/log/lastlog. Since this can be a multi-gigabyte
sparse file this doesn't work very well and consumes huge amounts
of memory. This can lead to timeouts and aborts when running sos
since the openswan plug-in calls this command by default.
The barf information is seldom useful anyway - turn it off by
default to avoid this problem.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
|
|
|
| |
Add the pam_ldap.conf file to the data collected by the ldap
plug-in and tidy up substitution strings for this plug-in.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
|
|
|
| |
Use multi-line style for add_copy_specs() invocations in the ldap
plug-in per the recommendations in Issue #173.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
The lvm2 lvmdump options were a bit crazy, allowing the user to
specify a default ('lvmdump'), or an advanced collection
('lvmdump-a') but not the raw metadata ('-m') option which is
often useful for support purposes.
Replace 'lvmdump-a' with 'lvmdump-am' to collect both.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
|
|
|
|
|
|
| |
The lvmdump-a option currently collects 'advanced' data but not
raw metadata. Since it's off by default and the metadata is often
of interest in support cases rename the option to lvmdump-am and
have it also pass the '-m' (raw metadata) option to the lvmdump
script.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
| |
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
| |
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
|
|
|
|
|
| |
New plug-in to collect OpenHPI configuration files. These files
may contain passwords; a regex substitution rule has been added
based on information from the reporter but this needs testing
with a range of actual configuration files.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
| |
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
| |
Update unittests to reflect 4a594b6dce129f8d9837c0d93768576badf2b2b7
|
| |
|
|
|
|
|
|
| |
This commit brings sos-3.x behaviour into line with earlier
releases and produces captured command output that is consistent
with typical shell redirection use.
Resolves: bz971420
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Avoid collecting kerberos keytabs to prevent unintended
information disclosures. Instead retrieve a list using the klist
command.
Also remove the duplicative collection of this information from
the ipa plug-in (which should only be collecting non-system
keytabs that are specific to the IPA tools).
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |
|
|
|
|
|
|
|
| |
The krb5 data collection in the samba plug-in is misplaced. Since
this is collecting information about the system keytab move it
to its own plug-in that can be activated on any kerberos enabled
system.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |\
| |
| | |
Update debian changelog and watch file
|
| | |\
| |/
|/| |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Add a default call to rpm -V/--verify for a targeted subset of
packages. This greatly reduces the time taken relative to rpm -Va
while still capturing important diagnostic information.
In future this capability could be made a feature of the
PackageManager class interface and available to all ports/modules.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The samba module calls the wbinfo command to collect user and
group information. This by default will search all domains to
which the host has access. In a large AD environment with a number
of trusted domains this causes the winbindd process to consume
excessive CPU and memory resources.
The Samba developers have commented that fixing this would require
a complete rewrite of the winbind protocol and wbinfo client.
Since listing out the _entire_ set of visible users is unlikely
to be of any use anyway pass the --domain='.' option to restrict
the search to the current domain of the system.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| | |
| |
| | |
Now that sosreport is in Debian unstable and Ubuntu 13.10 update the readme to reflect a more 'official' way to install this application
|
| | |
| |
| |
| |
| |
| | |
release.
Signed-off-by: Adam Stokes <adam.stokes@ubuntu.com>
|
| |/
|
|
| |
Signed-off-by: Adam Stokes <adam.stokes@ubuntu.com>
|
| |\
| |
| | |
Add support for distutils
|
| |/
|
|
|
|
|
|
|
|
| |
- We are planning on moving to python distutils for future packaging
however, we still want to keep our current build infrastructure around
until we are able to test the builds overtime. For now distutils will
live alongside the current build process and slowly replace the Makefiles
once deemed fit.
Signed-off-by: Adam Stokes <adam.stokes@ubuntu.com>
|
| |
|
|
|
|
|
|
|
|
| |
The release URL has been temporarily moved to people.redhat.com
until we can find a way to make a good release infrastructure
with github (tarball names are nasty - other projects seem to host
their releases on fedorahosted which is what I'm looking into for
this).
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |\
| |
| | |
Patch debian fixes
|
| | |\
| |/
|/| |
|
| |\ \
| | |
| | | |
Correct archive unittests and pep8 conformity in archive class
|
| |/ /
| |
| |
| | |
Signed-off-by: Adam Stokes <adam.stokes@ubuntu.com>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
OpenStack was full of the add_copy_specs(string) anti-pattern.
While we should address this properly these instances all need
fixing to avoid collecting the whole file system.
They should also have been tested before being put forward as
a pull request.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| | |
| |
| |
| |
| |
| |
| |
| | |
We already know we are running on RHEL or Fedora if we are
executing a plug-in class tagged with RedHatPlugin. Do not check
for /etc/*-release.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The OpenStack plug-in attempts to check for the presence of
binaries before running them. To do this it passes a relative
path to os.path.exists(); clearly this will never succeed.
Ideally plug-ins should never need to do these checks. If the
binary exists we'll run it and if not we won't (with no harmful
side-effects). This is how sos is currently designed and if there
is a need for plug-ins to ever do this we should add a method to
the base plug-in class e.g. Plugin.find_command() to do this
properly (i.e. evaluating the policy-supplied PATH).
For now, just make all of this unconditional.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| | |
| |
| |
| |
| |
| |
| |
| | |
One call in openstack.py used the old addCopySpecs() method. This
will fail with current sos-3.x code. Update it to use the new
add_copy_specs() method instead.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |\ \
| | |
| | | |
cluster plugin: restrictions wrt. luci
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
Notably, avoid server cert being added. On the other hand, allow
collection of rotated log files for luci.
Signed-off-by: Jan Pokorný <jpokorny@redhat.com>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Jan Pokorný <jpokorny@redhat.com>
|
| |\ \ \
| | | |
| | | | |
Refactored OpenStack plugin
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
contains all non-distribution specific details. Also dropped all
logrotate parts since those are collected by logrotate plugin.
Signed-off-by: Ante Karamatic <ante.karamatic@canonical.com>
|
| | |/ /
| | |
| | |
| | | |
Signed-off-by: Ante Karamatic <ante.karamatic@canonical.com>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Pierguido Lambri <plambri@redhat.com>
|
| |/ /
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Add an sos plug-in for openshift to gathers several directories
and command output sepcific to Openshift systems.
Passwords and secrets are scrubbed for privacy reasons.
Signed-off-by: Nick Harvey <niharvey at redhat dot com>
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| |/
|
|
|
|
|
|
|
| |
- Made sure to include both companies AND individuals in AUTHORS file.
- Fixed a copyright issue on kernelrt plugin which is GPL-2 and not GPL-2 (or later)
- Treat the sosreport package as a private python module (currently a public one
as defined by the Debian python policy)
Signed-off-by: Adam Stokes <adam.stokes@ubuntu.com>
|
| |\
| |
| | |
import tempfile into policies
|
| | |
| |
| |
| | |
Signed-off-by: Adam Stokes <adam.stokes@ubuntu.com>
|
| |\ \
| | |
| | | |
Make debian packaging 'non-native'
|
| | |\ \ |
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Adam Stokes <adam.stokes@ubuntu.com>
|
| | |_|/
|/| |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The SELinux plug-in can now optionally collect object lists from
the semanage command. Since this command loads the SELinux python
run time (~4s/command) it can add considerably to the overall run
time of sosreport - for this reason these commands are disabled by
default and may be enabled via the selinux.list option:
# sosreport -k selinux.list
With the option turned on we also collect:
semanage fcontext -l
semanage login -l
semanage port -l
semanage user -l
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
Policy classes need to return the user-supplied temporary
directory if they decide not to override it.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| | |/
|/|
| |
| |
| |
| |
| | |
We expect not to find all commands; don't output a log message on
each missing binary.
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
|
| | |
| |
| |
| | |
Increment the spec file version to 3.0
|
