[Logcheck-commits] Hannes von Haugwitz: Added some rules for wpasupplicant (closes: #544084)

Hannes von Haugwitz hvh-guest at alioth.debian.org
Sat Aug 29 08:16:26 UTC 2009 

Module: logcheck
Branch: master
Commit: f839aa31232177de11fc5a5ddf2e26eb89d53389
URL:    http://git.debian.org/?p=logcheck/logcheck.git;a=commit;h=f839aa31232177de11fc5a5ddf2e26eb89d53389

Author: Hannes von Haugwitz <hannes at vonhaugwitz.com>
Date:   Sat Aug 29 10:01:36 2009 +0200

Added some rules for wpasupplicant (closes: #544084)

---

 debian/changelog                                   |    1 +
 rulefiles/linux/ignore.d.workstation/wpasupplicant |    9 +++++++++
 2 files changed, 10 insertions(+), 0 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index 4033c71..5798d78 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,7 @@
 logcheck (1.3.4) experimental; urgency=low
 
   [ Hannes von Haugwitz ]
+  * Added some rules for wpasupplicant (closes: #544084)
   * ignore.d.server/su, violations.ignore.d/logcheck-su
     - adjusted su rules to also match /dev/ prefix
   * Added rule for apcupsd (closes: #535976)
diff --git a/rulefiles/linux/ignore.d.workstation/wpasupplicant b/rulefiles/linux/ignore.d.workstation/wpasupplicant
new file mode 100644
index 0000000..266dd12
--- /dev/null
+++ b/rulefiles/linux/ignore.d.workstation/wpasupplicant
@@ -0,0 +1,9 @@
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: Trying to associate with ([0-9a-f]{2}:){5}[0-9a-f]{2} \(SSID='[[:alnum:]-]+' freq=24([1-6][27]|72|84) MHz\)$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: Associated with ([0-9a-f]{2}:){5}[0-9a-f]{2}$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: WPA: Group rekeying completed with ([0-9a-f]{2}:){5}[0-9a-f]{2} \[GTK=(CCMP|TKIP)\]$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: WPA: Key negotiation completed with ([0-9a-f]{2}:){5}[0-9a-f]{2} \[PTK=(CCMP|TKIP) GTK=(CCMP|TKIP)\]$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: CTRL-EVENT-CONNECTED - Connection to ([0-9a-f]{2}:){5}[0-9a-f]{2} completed \((re)?auth\) \[id=[0-9]+ id_str=[[:alnum:]]+\]$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: CTRL-EVENT-SCAN-RESULTS$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: CTRL-EVENT-EAP-(STARTED EAP authentication started|SUCCESS EAP authentication completed successfully)$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: EAP-MSCHAPV2: Authentication succeeded$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wpa_supplicant\[[0-9]+\]: EAP-TLV: TLV Result - Success - EAP-TLV/Phase2 Completed$

More information about the Logcheck-commits mailing list