https://bugzilla.suse.com/show_bug.cgi?id=1227908 Bug ID: 1227908 Summary: auditd obsolete built-in options Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other URL: https://openqa.opensuse.org/tests/4344305/modules/jour nal_check/steps/15 OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: mloviska@suse.com QA Contact: qa-bugs@suse.de CC: jeos-internal@suse.de Target Milestone: --- Found By: openQA Blocker: No Created attachment 876065 --> https://bugzilla.suse.com/attachment.cgi?id=876065&action=edit first boot log ## Observation Messages reporting obsolete options used have been found in the journal after firstboot of openSUSE-Tumbleweed-Minimal-VM.x86_64-1.0.0-Cloud-Snapshot20240715.qcow2 image.

Jul 16 04:26:51.145571 localhost systemd[1]: Starting Update is Completed... Jul 16 04:26:51.185487 localhost auditd[1255]: Option builtin_af_unix line 10 is obsolete - using /sbin/audisp-af_unix Jul 16 04:26:51.185493 localhost auditd[1255]: Option builtin line 11 is obsolete - update it Jul 16 04:26:51.186062 localhost systemd[1]: Finished Update is Completed. Jul 16 04:26:51.186340 localhost auditd[1255]: No plugins found, not dispatching events Jul 16 04:26:51.186555 localhost auditd[1255]: Init complete, auditd 3.1.1 listening for events (startup state enable) Jul 16 04:26:51.187204 localhost systemd[1]: Started Security Auditing Service.

openQA test in scenario opensuse-Tumbleweed-JeOS-for-OpenStack-Cloud-x86_64-jeos-no-cloud@64bit_virtio fails in [journal_check](https://openqa.opensuse.org/tests/4344305/modules/journal_check/steps/15) ## Reproducible Image was tested previously in openQA -- You are receiving this mail because: You are on the CC list for the bug.