Question

0

How do I redirect Google Chrome Logs out of my kern.log

rated 0 times [ 0] [ 0] / answers: 1 / hits: 1678 / 1 Year ago, thu, february 16, 2023, 6:24:33

I have hundreds of these log entries:

Feb 13 16:46:56 XXXX kernel: [42982.178922] type=1701 audit(1360799216.852:1514): auid=4294967295 uid=1000 gid=1000 ses=4294967295 pid=5529 comm="chrome" reason="seccomp" sig=0 syscall=2 compat=0 ip=0x7f3060b476b0 code=0x50000

Feb 13 16:46:56 XXXX kernel: [42982.178943] type=1701 audit(1360799216.852:1515): auid=4294967295 uid=1000 gid=1000 ses=4294967295 pid=5529 comm="chrome" reason="seccomp" sig=0 syscall=2 compat=0 ip=0x7f3060b476b0 code=0x50000

This behavior is explained here: Why is there "seccomp" events related to Google Chrome in syslog?.

How do I redirect them out of my kern.log file?

I plan to figure out this log later, but I have other projects that would be easier with a smaller kern.log file.

I have seen this: How to enable logging for Google Chrome in Ubuntu 12.04?

The file mentioned is not under my home folder.

Default install. Edit: Basic plug-ins. Single profile. Checked the menu item and the only option %U (no --debug or anything like that)

about:

Google Chrome   24.0.1312.69 (Official Build 180721)

OS  Linux 

WebKit  537.17 (@140072)

JavaScript  V8 3.14.5.6

Flash   11.5.31.139

User Agent  Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.17 (KHTML, like Gecko)

Chrome/24.0.1312.69 Safari/537.17

Answers

Only authorized users can answer the question. Please sign in first, or register a free account.

darpose

Add To Favorites

Follow

Total Points: 424

Total Questions: 99

Total Answers: 121

Location: Jersey

Member since Fri, Oct 1, 2021

3 Years ago

darpose questions

2 Can't use su command to interactively login as another user

Sun, Jan 23, 22, 04:32, 2 Years ago

1 Why is `$(git branch)` outputting all files' names inside folder (besides git branches)?

Fri, Jan 7, 22, 10:51, 2 Years ago

1 GRUB doesn't detect my other hard drive

Tue, Apr 25, 23, 23:44, 1 Year ago

1 left and right ctrl key behaviour

Wed, Dec 15, 21, 14:42, 2 Years ago

1 20.04 keeps freezing randomly

Wed, Jun 2, 21, 23:41, 3 Years ago

View All

answered 1 Year ago llael · Accepted Answer

You'll need to tweak your rsyslog configuration to process those messages differently. So for example you can create /etc/rsyslog.d/30-seccomp.conf:

if $msg contains 'comm="chrome" reason="seccomp"' then /var/log/chrome.log

& ~

Followed by:

initctl restart syslog

The rule states if the message contains the string then forward it to /var/log/chrome.log. The second line means that anything that matched the first line should be dropped.

If you just want to drop all these messages:

if $msg contains 'comm="chrome" reason="seccomp"' then ~