[Open-scap] XCCDF with Shell Script Engine
Przemek Klosowski
przemek.klosowski at nist.gov
Thu Dec 22 22:03:17 UTC 2011
I ran scap-workbench on F16 (default supplied version, 0.6.1), with the
provided XCCDF file scap-fedora14-xccdf.xml. The scan gets stuck on rule
2.2.3.5.a (Find files unowned by user) in some weird deadlock where all
subprocesses are waiting on futexes:
2706 xxxx poll_s Dec15 python /usr/bin/scap-workbench
9148 2706 futex_ Dec19 /usr/libexec/openscap/probe_rpminfo
9153 2706 futex_ Dec19 /usr/libexec/openscap/probe_textfilecontent54
9161 2706 futex_ Dec19 /usr/libexec/openscap/probe_file
[root at localhost pam.d]# strace -p 2706
restart_syscall(<... resuming interrupted call ...>^C <unfinished ...>
[root at localhost pam.d]# strace -p 9148
futex(0xb70bbba8, FUTEX_WAIT, 9150, NULL^C <unfinished ...>
[root at localhost pam.d]# strace -p 9153
futex(0xb7043ba8, FUTEX_WAIT, 9155, NULL^C <unfinished ...>
[root at localhost pam.d]# strace -p 9161
futex(0xb70b8ba8, FUTEX_WAIT, 9163, NULL^C <unfinished ...>
I tried attaching the debugger to see where it's stuck, but it just says
it is in the middle of the Python interpreter---is there a way to find
out what python code is being executed?
More information about the Open-scap-list
mailing list