3:32 p.m.
John Florian/EngMOp/MAS/DCC wrote on 10/04/2012 14:50:10:
I'm building F18 images with livecd-creator on F18 and for the
first
build attempt after boot, I see many unexpected errors like this
snippet shows:
[snip]
Installing: libsemanage #####################
[315/492]
Installing: shadow-utils #####################
[316/492]
groupadd: failure while writing changes to /etc/group
groupadd: failure while writing changes to /etc/group
Installing: libutempter ###
[317/492]warning: group utempter does not exist - using root
warning: group utmp does not exist - using root
Installing: libutempter #####################
[317/492]
[snip]
Installing: parted #####################
[331/492]
groupadd: failure while writing changes to /etc/group
useradd: group 'dhcpd' does not exist
Installing: dhcp ####################
[332/492]warning: user dhcpd does not exist - using root
warning: group dhcpd does not exist - using root
warning: user dhcpd does not exist - using root
warning: group dhcpd does not exist - using root
warning: user dhcpd does not exist - using root
warning: group dhcpd does not exist - using root
Installing: dhcp #####################
[332/492]
[snip]
Installing: os-prober #####################
[335/492]
groupadd: failure while writing changes to /etc/group
Installing: openssh ##########
[336/492]warning: group ssh_keys does not exist - using root
[snip]
Installing: samba-common #####################
[338/492]
Failed to initialize SELinux context: No such file or directory
Installing: iputils #####################
[339/492]
[snip]
Installing: mesa-dri-drivers #####################
[347/492]
groupadd: failure while writing changes to /etc/group
useradd: group 'polkitd' does not exist
Installing: polkit
[348/492]warning: user polkitd does not exist - using root
[snip]
Installing: alsa-utils #####################
[354/492]
error: %pre(rpcbind-0.2.0-17.fc18.i686) scriptlet failed, exit status
6
error: rpcbind-0.2.0-17.fc18.i686: install failed
groupadd: failure while writing changes to /etc/group
useradd: group 'chrony' does not exist
Installing: chrony
[356/492]warning: group chrony does not exist - using root
Installing: chrony ####################
[356/492]warning: user chrony does not exist - using root
warning: group chrony does not exist - using root
warning: user chrony does not exist - using root
warning: group chrony does not exist - using root
Installing: chrony #####################
[356/492]
[snip]
If I let it run through to completion and rerun the exact same
command again, everything works normally. I used to see this
behavior for every build attempt prior to sssd coming along when I
was still using nscd, if nscd was running. Back then I'd have to
stop nscd for the duration of the build. I never had such a problem
with sssd, but this looks eerily familiar now with F18 (where I'm
still using sssd instead of nscd).
Has anyone else seen something similar, or is this a known bug? I
have not had a chance to dig into this yet, but I've been seeing
this with F18 since before Alpha was out.
PS. FWIW, this F18 box started life as F17 and was been yum distro-
sync'd and kept updated.
I believe I've already found the problem. On the host running
livecd-creator, I'm seeing AVCs like:
type=AVC msg=audit(1349382348.700:114): avc: denied { read } for
pid=2748 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382348.700:115): avc: denied { read } for
pid=2748 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382351.086:116): pid=2748 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="utmp" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382351.087:117): pid=2748 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="utmp" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382351.087:118): pid=2748 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
res=failed'
Why it only affects the first run of livecd-creator, I do not understand.
It looks like I'm being bitten by
https://bugzilla.redhat.com/show_bug.cgi?id=858373.
--
John Florian
9:12 p.m.
New subject: Odd user/group identity lookup problem
On Thu, 2012-10-04 at 16:32 -0400, John.Florian(a)dart.biz wrote:
I believe I've already found the problem. On the host running
livecd-creator, I'm seeing AVCs like:
Yeah, it's selinux. I've just been running setenforce Permissive when I
want to build live images. That used to be how it was for years anyhow,
it only started working in Enforcing mode a couple of releases back, so
I didn't figure it was a major issue.
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | identi.ca: adamwfedora
http://www.happyassassin.net
5:45 a.m.
New subject: Odd user/group identity lookup problem
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/04/2012 10:12 PM, Adam Williamson wrote:
On Thu, 2012-10-04 at 16:32 -0400, John.Florian(a)dart.biz wrote:
> I believe I've already found the problem. On the host running
> livecd-creator, I'm seeing AVCs like:
Yeah, it's selinux. I've just been running setenforce Permissive when I
want to build live images. That used to be how it was for years anyhow, it
only started working in Enforcing mode a couple of releases back, so I
didn't figure it was a major issue.
What AVC's are you seeing?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
iEYEARECAAYFAlBwC60ACgkQrlYvE4MpobPWlQCfTBgMVdasmMz24/bCeslJ1vUo
B3UAn2WV98wqri/0CkJDIqeQRUqd5PXb
=S/6q
-----END PGP SIGNATURE-----
7:43 a.m.
New subject: Odd user/group identity lookup problem
From: Daniel J Walsh <dwalsh(a)redhat.com>
To: For testing and quality assurance of Fedora releases
<test(a)lists.fedoraproject.org>
Date: 10/06/2012 06:45
Subject: Re: Odd user/group identity lookup problem
Sent by: test-bounces(a)lists.fedoraproject.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/04/2012 10:12 PM, Adam Williamson wrote:
> On Thu, 2012-10-04 at 16:32 -0400, John.Florian(a)dart.biz wrote:
>
>> I believe I've already found the problem. On the host running
>> livecd-creator, I'm seeing AVCs like:
>
> Yeah, it's selinux. I've just been running setenforce Permissive when
I
> want to build live images. That used to be how it was for years
anyhow, it
> only started working in Enforcing mode a couple of releases
back, so I
> didn't figure it was a major issue.
>
What AVC's are you seeing?
Here's the entire batch from one run of livecd-creator:
type=AVC msg=audit(1349382348.700:114): avc: denied { read } for
pid=2748 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382348.700:115): avc: denied { read } for
pid=2748 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382351.086:116): pid=2748 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="utmp" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382351.087:117): pid=2748 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="utmp" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382351.087:118): pid=2748 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
res=failed'
type=AVC msg=audit(1349382351.096:119): avc: denied { read } for
pid=2749 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382351.096:120): avc: denied { read } for
pid=2749 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382351.185:121): pid=2749 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="utempter" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382351.185:122): pid=2749 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="utempter" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382351.186:123): pid=2749 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="utempter" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
type=AVC msg=audit(1349382351.395:124): avc: denied { write } for
pid=2752 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382351.400:125): avc: denied { read } for
pid=2752 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382351.401:126): avc: denied { read } for
pid=2752 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382352.035:127): pid=2752 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="tcpdump" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382352.037:128): pid=2752 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="tcpdump" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382352.038:129): pid=2752 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="tcpdump" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
type=AVC msg=audit(1349382352.049:130): avc: denied { write } for
pid=2753 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382352.058:131): avc: denied { read } for
pid=2753 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382352.058:132): avc: denied { read } for
pid=2753 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382356.290:133): avc: denied { write } for
pid=2785 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382356.290:134): avc: denied { write } for
pid=2785 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382356.295:135): avc: denied { read } for
pid=2785 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382356.295:136): avc: denied { read } for
pid=2785 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382358.576:137): pid=2785 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="cdrom" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382358.577:138): pid=2785 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="cdrom" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382358.578:139): pid=2785 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="cdrom" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed'
type=AVC msg=audit(1349382358.591:140): avc: denied { write } for
pid=2788 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382358.591:141): avc: denied { write } for
pid=2788 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382358.596:142): avc: denied { read } for
pid=2788 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382358.596:143): avc: denied { read } for
pid=2788 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382358.691:144): pid=2788 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="tape" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382358.692:145): pid=2788 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="tape" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382358.693:146): pid=2788 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="tape" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed'
type=AVC msg=audit(1349382358.708:147): avc: denied { write } for
pid=2790 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382358.708:148): avc: denied { write } for
pid=2790 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382358.713:149): avc: denied { read } for
pid=2790 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382358.714:150): avc: denied { read } for
pid=2790 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382358.817:151): pid=2790 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="dialout" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382358.818:152): pid=2790 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="dialout" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382358.819:153): pid=2790 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="dialout" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed'
type=AVC msg=audit(1349382358.835:154): avc: denied { write } for
pid=2792 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382358.836:155): avc: denied { write } for
pid=2792 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382358.841:156): avc: denied { read } for
pid=2792 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382358.841:157): avc: denied { read } for
pid=2792 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382358.943:158): pid=2792 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="floppy" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382358.944:159): pid=2792 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="floppy" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382358.945:160): pid=2792 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="floppy" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed'
type=AVC msg=audit(1349382360.675:161): avc: denied { write } for
pid=2818 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382360.680:162): avc: denied { read } for
pid=2818 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382360.680:163): avc: denied { read } for
pid=2818 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382362.327:164): pid=2818 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="dbus" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382362.327:165): pid=2818 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="dbus" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382362.328:166): pid=2818 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="dbus" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
res=failed'
type=AVC msg=audit(1349382362.335:167): avc: denied { write } for
pid=2819 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382362.342:168): avc: denied { read } for
pid=2819 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382362.343:169): avc: denied { read } for
pid=2819 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382363.745:170): avc: denied { read } for
pid=2833 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382363.746:171): avc: denied { read } for
pid=2833 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382365.502:172): pid=2833 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="dhcpd" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382365.503:173): pid=2833 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="dhcpd" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382365.504:174): pid=2833 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="dhcpd" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
res=failed'
type=AVC msg=audit(1349382365.535:175): avc: denied { read } for
pid=2836 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382365.535:176): avc: denied { read } for
pid=2836 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.302:177): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.303:178): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.313:179): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.323:180): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.332:181): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.341:182): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.349:183): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.358:184): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382366.367:185): avc: denied { read } for
pid=2844 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382367.594:186): pid=2844 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="ssh_keys" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382367.595:187): pid=2844 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="ssh_keys" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382367.595:188): pid=2844 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="ssh_keys" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
type=AVC msg=audit(1349382377.744:189): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382377.744:190): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382377.755:191): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382377.765:192): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382377.774:193): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382377.783:194): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382377.792:195): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382377.802:196): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382377.811:197): avc: denied { read } for
pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382380.325:198): pid=2858 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="polkitd" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382380.326:199): pid=2858 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="polkitd" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382380.326:200): pid=2858 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="polkitd" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
type=AVC msg=audit(1349382380.346:201): avc: denied { read } for
pid=2861 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382380.347:202): avc: denied { read } for
pid=2861 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382381.943:203): avc: denied { write } for
pid=2872 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382381.943:204): avc: denied { write } for
pid=2872 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382381.948:205): avc: denied { read } for
pid=2872 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382381.949:206): avc: denied { read } for
pid=2872 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382384.099:207): pid=2872 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="rpc" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382384.100:208): pid=2872 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="rpc" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382384.102:209): pid=2872 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="rpc" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed'
type=AVC msg=audit(1349382384.109:210): avc: denied { write } for
pid=2873 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382384.109:211): avc: denied { write } for
pid=2873 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382384.116:212): avc: denied { read } for
pid=2873 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.116:213): avc: denied { read } for
pid=2873 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.167:214): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.168:215): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.178:216): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.187:217): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.196:218): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.205:219): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.214:220): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.223:221): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.232:222): avc: denied { read } for
pid=2876 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382384.349:223): pid=2876 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="chrony" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382384.351:224): pid=2876 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="chrony" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382384.352:225): pid=2876 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="chrony" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
type=AVC msg=audit(1349382384.373:226): avc: denied { read } for
pid=2878 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.374:227): avc: denied { read } for
pid=2878 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.544:228): avc: denied { write } for
pid=2883 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382384.547:229): avc: denied { read } for
pid=2883 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382384.547:230): avc: denied { read } for
pid=2883 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382385.075:231): pid=2883 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="ntp" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382385.075:232): pid=2883 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="ntp" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382385.076:233): pid=2883 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="ntp" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
res=failed'
type=AVC msg=audit(1349382385.083:234): avc: denied { write } for
pid=2884 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382385.091:235): avc: denied { read } for
pid=2884 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382385.092:236): avc: denied { read } for
pid=2884 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382386.856:237): avc: denied { read } for
pid=2902 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382386.857:238): avc: denied { read } for
pid=2902 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382388.308:239): pid=2902 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="utmp" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382388.309:240): pid=2902 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="utmp" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382388.310:241): pid=2902 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
res=failed'
type=AVC msg=audit(1349382398.850:242): avc: denied { write } for
pid=2946 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382398.850:243): avc: denied { write } for
pid=2946 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382398.853:244): avc: denied { read } for
pid=2946 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382398.853:245): avc: denied { read } for
pid=2946 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382401.131:246): pid=2946 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="puppet" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382401.133:247): pid=2946 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="puppet" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=? res=failed'
type=ADD_GROUP msg=audit(1349382401.134:248): pid=2946 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="puppet" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed'
type=AVC msg=audit(1349382401.152:249): avc: denied { write } for
pid=2948 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382401.153:250): avc: denied { write } for
pid=2948 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382401.158:251): avc: denied { read } for
pid=2948 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382401.159:252): avc: denied { read } for
pid=2948 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382425.444:253): avc: denied { write } for
pid=3027 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382425.451:254): avc: denied { read } for
pid=3027 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382425.452:255): avc: denied { read } for
pid=3027 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382425.454:256): avc: denied { read } for
pid=3027 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382425.455:257): avc: denied { read } for
pid=3027 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382425.459:258): pid=3027 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 msg='op=adding
group acct="rpcuser" exe="/usr/sbin/useradd" hostname=? addr=?
terminal=pts/0 res=success'
type=ADD_USER msg=audit(1349382425.460:259): pid=3027 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 msg='op=adding
user id=29 exe="/usr/sbin/useradd" hostname=? addr=? terminal=pts/0
res=success'
type=ADD_USER msg=audit(1349382426.571:260): pid=3027 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 msg='op=adding
user acct="rpcuser" exe="/usr/sbin/useradd" hostname=? addr=?
terminal=pts/0 res=failed'
type=AVC msg=audit(1349382426.579:261): avc: denied { write } for
pid=3028 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382426.584:262): avc: denied { read } for
pid=3028 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382426.585:263): avc: denied { read } for
pid=3028 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382426.686:264): pid=3028 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="rpcuser" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382426.688:265): pid=3028 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="rpcuser" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382426.689:266): pid=3028 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="rpcuser" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
type=AVC msg=audit(1349382426.706:267): avc: denied { write } for
pid=3032 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382426.711:268): avc: denied { read } for
pid=3032 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382426.712:269): avc: denied { read } for
pid=3032 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382426.812:270): pid=3032 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="nfsnobody" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382426.813:271): pid=3032 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="nfsnobody" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382426.814:272): pid=3032 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="nfsnobody" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
type=AVC msg=audit(1349382426.833:273): avc: denied { write } for
pid=3036 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382426.841:274): avc: denied { read } for
pid=3036 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382426.841:275): avc: denied { read } for
pid=3036 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382427.253:276): avc: denied { read } for
pid=3042 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382427.254:277): avc: denied { read } for
pid=3042 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382428.254:278): pid=3042 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="sshd" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382428.255:279): pid=3042 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="sshd" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382428.256:280): pid=3042 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="sshd" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
res=failed'
type=AVC msg=audit(1349382428.275:281): avc: denied { write } for
pid=3045 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file
type=AVC msg=audit(1349382428.283:282): avc: denied { read } for
pid=3045 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382428.284:283): avc: denied { read } for
pid=3045 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382429.395:284): avc: denied { read } for
pid=3058 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382429.395:285): avc: denied { read } for
pid=3058 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382431.146:286): pid=3058 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="screen" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382431.147:287): pid=3058 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="screen" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382431.149:288): pid=3058 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="screen" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
type=AVC msg=audit(1349382431.358:289): avc: denied { read } for
pid=3063 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=AVC msg=audit(1349382431.359:290): avc: denied { read } for
pid=3063 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=ADD_GROUP msg=audit(1349382431.946:291): pid=3063 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/gshadow acct="slocate" exe="/usr/sbin/groupadd"
hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382431.948:292): pid=3063 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding
group to /etc/group acct="slocate" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed'
type=ADD_GROUP msg=audit(1349382431.949:293): pid=3063 uid=0 auid=10325
ses=2 subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="slocate" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed'
Wtype=USER_CHAUTHTOK msg=audit(1349382629.166:294): pid=4889 uid=0
auid=10325 ses=2 subj=unconfined_u:system_r:livecd_t:s0-s0:c0.c1023
msg='op=changing password id=0 exe="/usr/sbin/usermod" hostname=? addr=?
terminal=pts/0 res=success'
type=USER_CHAUTHTOK msg=audit(1349382629.311:295): pid=4889 uid=0
auid=10325 ses=2 subj=unconfined_u:system_r:livecd_t:s0-s0:c0.c1023
msg='op=modifying account acct="root" exe="/usr/sbin/usermod"
hostname=?
addr=? terminal=pts/0 res=failed'
type=MAC_STATUS msg=audit(1349382632.173:296): enforcing=0 old_enforcing=1
auid=10325 ses=2
type=USER_END msg=audit(1349382889.770:297): pid=2351 uid=0 auid=10325
ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:session_close acct="root" exe="/usr/bin/sudo"
hostname=?
addr=? terminal=/dev/pts/0 res=success'
type=CRED_DISP msg=audit(1349382889.770:298): pid=2351 uid=0 auid=10325
ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:setcred acct="root" exe="/usr/bin/sudo" hostname=?
addr=?
terminal=/dev/pts/0 res=success'
--
John Florian
2:10 p.m.
New subject: Odd user/group identity lookup problem
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/08/2012 08:43 AM, John.Florian(a)dart.biz wrote:
> From: Daniel J Walsh <dwalsh(a)redhat.com> To: For testing
and quality
> assurance of Fedora releases <test(a)lists.fedoraproject.org> Date:
> 10/06/2012 06:45 Subject: Re: Odd user/group identity lookup problem Sent
> by: test-bounces(a)lists.fedoraproject.org
>
> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
>
> On 10/04/2012 10:12 PM, Adam Williamson wrote:
>> On Thu, 2012-10-04 at 16:32 -0400, John.Florian(a)dart.biz wrote:
>>
>>> I believe I've already found the problem. On the host running
>>> livecd-creator, I'm seeing AVCs like:
>>
>> Yeah, it's selinux. I've just been running setenforce Permissive when
>> I want to build live images. That used to be how it was for years
>> anyhow, it only started working in Enforcing mode a couple of releases
>> back, so I didn't figure it was a major issue.
>>
> What AVC's are you seeing?
Here's the entire batch from one run of livecd-creator:
type=AVC msg=audit(1349382348.700:114): avc: denied { read } for
pid=2748 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382348.700:115): avc: denied { read } for pid=2748
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382351.086:116): pid=2748 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="utmp" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382351.087:117):
pid=2748 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382351.087:118):
pid=2748 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="utmp"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
type=AVC msg=audit(1349382351.096:119): avc: denied { read } for
pid=2749 comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382351.096:120): avc: denied { read } for pid=2749
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382351.185:121): pid=2749 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="utempter" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382351.185:122):
pid=2749 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="utempter" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382351.186:123):
pid=2749 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="utempter" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382351.395:124): avc: denied { write }
for pid=2752 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382351.400:125): avc: denied { read } for pid=2752
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382351.401:126): avc: denied { read } for pid=2752
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382352.035:127): pid=2752 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="tcpdump" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382352.037:128):
pid=2752 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="tcpdump" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382352.038:129):
pid=2752 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="tcpdump" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382352.049:130): avc: denied { write }
for pid=2753 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382352.058:131): avc: denied { read } for pid=2753
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382352.058:132): avc: denied { read } for pid=2753
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382356.290:133): avc: denied { write } for pid=2785
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382356.290:134): avc: denied { write } for pid=2785
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382356.295:135): avc: denied { read } for pid=2785
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382356.295:136): avc: denied { read } for pid=2785
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382358.576:137): pid=2785 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="cdrom" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.577:138):
pid=2785 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="cdrom" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.578:139):
pid=2785 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="cdrom"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=? res=failed' type=AVC
msg=audit(1349382358.591:140): avc: denied { write } for pid=2788
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382358.591:141): avc: denied { write } for pid=2788
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382358.596:142): avc: denied { read } for pid=2788
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382358.596:143): avc: denied { read } for pid=2788
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382358.691:144): pid=2788 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="tape" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.692:145):
pid=2788 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="tape" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.693:146):
pid=2788 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="tape"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=? res=failed' type=AVC
msg=audit(1349382358.708:147): avc: denied { write } for pid=2790
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382358.708:148): avc: denied { write } for pid=2790
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382358.713:149): avc: denied { read } for pid=2790
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382358.714:150): avc: denied { read } for pid=2790
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382358.817:151): pid=2790 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="dialout" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.818:152):
pid=2790 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="dialout" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.819:153):
pid=2790 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="dialout" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed' type=AVC msg=audit(1349382358.835:154): avc: denied { write }
for pid=2792 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382358.836:155): avc: denied { write } for pid=2792
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382358.841:156): avc: denied { read } for pid=2792
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382358.841:157): avc: denied { read } for pid=2792
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382358.943:158): pid=2792 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="floppy" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.944:159):
pid=2792 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="floppy" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.945:160):
pid=2792 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="floppy" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed' type=AVC msg=audit(1349382360.675:161): avc: denied { write }
for pid=2818 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382360.680:162): avc: denied { read } for pid=2818
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382360.680:163): avc: denied { read } for pid=2818
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382362.327:164): pid=2818 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="dbus" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382362.327:165):
pid=2818 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="dbus" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382362.328:166):
pid=2818 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="dbus"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
type=AVC msg=audit(1349382362.335:167): avc: denied { write } for
pid=2819 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382362.342:168): avc: denied { read } for pid=2819
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382362.343:169): avc: denied { read } for pid=2819
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382363.745:170): avc: denied { read } for pid=2833
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382363.746:171): avc: denied { read } for pid=2833
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382365.502:172): pid=2833 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="dhcpd" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382365.503:173):
pid=2833 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="dhcpd" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382365.504:174):
pid=2833 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="dhcpd"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
type=AVC msg=audit(1349382365.535:175): avc: denied { read } for
pid=2836 comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382365.535:176): avc: denied { read } for pid=2836
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.302:177): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.303:178): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.313:179): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.323:180): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.332:181): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.341:182): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.349:183): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.358:184): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382366.367:185): avc: denied { read } for pid=2844
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382367.594:186): pid=2844 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="ssh_keys" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382367.595:187):
pid=2844 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="ssh_keys" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382367.595:188):
pid=2844 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="ssh_keys" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382377.744:189): avc: denied { read }
for pid=2858 comm="groupadd" name="run" dev="loop0"
ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382377.744:190): avc: denied { read } for pid=2858
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382377.755:191): avc: denied { read } for pid=2858
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382377.765:192): avc: denied { read } for pid=2858
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382377.774:193): avc: denied { read } for pid=2858
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382377.783:194): avc: denied { read } for pid=2858
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382377.792:195): avc: denied { read } for pid=2858
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382377.802:196): avc: denied { read } for pid=2858
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382377.811:197): avc: denied { read } for pid=2858
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382380.325:198): pid=2858 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="polkitd" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382380.326:199):
pid=2858 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="polkitd" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382380.326:200):
pid=2858 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="polkitd" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382380.346:201): avc: denied { read }
for pid=2861 comm="useradd" name="run" dev="loop0"
ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382380.347:202): avc: denied { read } for pid=2861
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382381.943:203): avc: denied { write } for pid=2872
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382381.943:204): avc: denied { write } for pid=2872
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382381.948:205): avc: denied { read } for pid=2872
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382381.949:206): avc: denied { read } for pid=2872
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382384.099:207): pid=2872 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="rpc" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382384.100:208):
pid=2872 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="rpc" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382384.102:209):
pid=2872 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="rpc"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=? res=failed' type=AVC
msg=audit(1349382384.109:210): avc: denied { write } for pid=2873
comm="useradd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382384.109:211): avc: denied { write } for pid=2873
comm="useradd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382384.116:212): avc: denied { read } for pid=2873
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.116:213): avc: denied { read } for pid=2873
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.167:214): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.168:215): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.178:216): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.187:217): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.196:218): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.205:219): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.214:220): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.223:221): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.232:222): avc: denied { read } for pid=2876
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382384.349:223): pid=2876 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="chrony" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382384.351:224):
pid=2876 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="chrony" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382384.352:225):
pid=2876 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="chrony" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382384.373:226): avc: denied { read }
for pid=2878 comm="useradd" name="run" dev="loop0"
ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.374:227): avc: denied { read } for pid=2878
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.544:228): avc: denied { write } for pid=2883
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382384.547:229): avc: denied { read } for pid=2883
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382384.547:230): avc: denied { read } for pid=2883
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382385.075:231): pid=2883 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="ntp" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382385.075:232):
pid=2883 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="ntp" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382385.076:233):
pid=2883 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="ntp"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
type=AVC msg=audit(1349382385.083:234): avc: denied { write } for
pid=2884 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382385.091:235): avc: denied { read } for pid=2884
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382385.092:236): avc: denied { read } for pid=2884
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382386.856:237): avc: denied { read } for pid=2902
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382386.857:238): avc: denied { read } for pid=2902
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382388.308:239): pid=2902 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="utmp" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382388.309:240):
pid=2902 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382388.310:241):
pid=2902 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="utmp"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
type=AVC msg=audit(1349382398.850:242): avc: denied { write } for
pid=2946 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382398.850:243): avc: denied { write } for pid=2946
comm="groupadd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382398.853:244): avc: denied { read } for pid=2946
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382398.853:245): avc: denied { read } for pid=2946
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382401.131:246): pid=2946 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="puppet" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382401.133:247):
pid=2946 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="puppet" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=? res=failed' type=ADD_GROUP msg=audit(1349382401.134:248):
pid=2946 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="puppet" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
res=failed' type=AVC msg=audit(1349382401.152:249): avc: denied { write }
for pid=2948 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382401.153:250): avc: denied { write } for pid=2948
comm="useradd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382401.158:251): avc: denied { read } for pid=2948
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382401.159:252): avc: denied { read } for pid=2948
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382425.444:253): avc: denied { write } for pid=3027
comm="useradd" path="/dev/null" dev="loop0" ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382425.451:254): avc: denied { read } for pid=3027
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382425.452:255): avc: denied { read } for pid=3027
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382425.454:256): avc: denied { read } for pid=3027
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382425.455:257): avc: denied { read } for pid=3027
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382425.459:258): pid=3027 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 msg='op=adding group
acct="rpcuser" exe="/usr/sbin/useradd" hostname=? addr=?
terminal=pts/0
res=success' type=ADD_USER msg=audit(1349382425.460:259): pid=3027 uid=0
auid=10325 ses=2 subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
msg='op=adding user id=29 exe="/usr/sbin/useradd" hostname=? addr=?
terminal=pts/0 res=success' type=ADD_USER msg=audit(1349382426.571:260):
pid=3027 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 msg='op=adding user
acct="rpcuser" exe="/usr/sbin/useradd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382426.579:261): avc: denied { write }
for pid=3028 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382426.584:262): avc: denied { read } for pid=3028
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382426.585:263): avc: denied { read } for pid=3028
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382426.686:264): pid=3028 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="rpcuser" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382426.688:265):
pid=3028 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="rpcuser" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382426.689:266):
pid=3028 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="rpcuser" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382426.706:267): avc: denied { write }
for pid=3032 comm="groupadd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382426.711:268): avc: denied { read } for pid=3032
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382426.712:269): avc: denied { read } for pid=3032
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382426.812:270): pid=3032 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="nfsnobody" exe="/usr/sbin/groupadd" hostname=?
addr=? terminal=pts/0 res=failed' type=ADD_GROUP
msg=audit(1349382426.813:271): pid=3032 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="nfsnobody" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382426.814:272):
pid=3032 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="nfsnobody" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382426.833:273): avc: denied { write }
for pid=3036 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382426.841:274): avc: denied { read } for pid=3036
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382426.841:275): avc: denied { read } for pid=3036
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382427.253:276): avc: denied { read } for pid=3042
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382427.254:277): avc: denied { read } for pid=3042
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382428.254:278): pid=3042 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="sshd" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382428.255:279):
pid=3042 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="sshd" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382428.256:280):
pid=3042 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="sshd"
exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
type=AVC msg=audit(1349382428.275:281): avc: denied { write } for
pid=3045 comm="useradd" path="/dev/null" dev="loop0"
ino=96004
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
msg=audit(1349382428.283:282): avc: denied { read } for pid=3045
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382428.284:283): avc: denied { read } for pid=3045
comm="useradd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382429.395:284): avc: denied { read } for pid=3058
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382429.395:285): avc: denied { read } for pid=3058
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382431.146:286): pid=3058 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="screen" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382431.147:287):
pid=3058 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="screen" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382431.149:288):
pid=3058 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="screen" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' type=AVC msg=audit(1349382431.358:289): avc: denied { read }
for pid=3063 comm="groupadd" name="run" dev="loop0"
ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
msg=audit(1349382431.359:290): avc: denied { read } for pid=3063
comm="groupadd" name="run" dev="loop0" ino=16053
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
msg=audit(1349382431.946:291): pid=3063 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/gshadow acct="slocate" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382431.948:292):
pid=3063 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
to /etc/group acct="slocate" exe="/usr/sbin/groupadd" hostname=?
addr=?
terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382431.949:293):
pid=3063 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
acct="slocate" exe="/usr/sbin/groupadd" hostname=? addr=?
terminal=pts/0
res=failed' Wtype=USER_CHAUTHTOK msg=audit(1349382629.166:294): pid=4889
uid=0 auid=10325 ses=2 subj=unconfined_u:system_r:livecd_t:s0-s0:c0.c1023
msg='op=changing password id=0 exe="/usr/sbin/usermod" hostname=? addr=?
terminal=pts/0 res=success' type=USER_CHAUTHTOK
msg=audit(1349382629.311:295): pid=4889 uid=0 auid=10325 ses=2
subj=unconfined_u:system_r:livecd_t:s0-s0:c0.c1023 msg='op=modifying
account acct="root" exe="/usr/sbin/usermod" hostname=? addr=?
terminal=pts/0 res=failed' type=MAC_STATUS msg=audit(1349382632.173:296):
enforcing=0 old_enforcing=1 auid=10325 ses=2 type=USER_END
msg=audit(1349382889.770:297): pid=2351 uid=0 auid=10325 ses=2
subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:session_close acct="root" exe="/usr/bin/sudo"
hostname=?
addr=? terminal=/dev/pts/0 res=success' type=CRED_DISP
msg=audit(1349382889.770:298): pid=2351 uid=0 auid=10325 ses=2
subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:setcred acct="root" exe="/usr/bin/sudo" hostname=?
addr=?
terminal=/dev/pts/0 res=success'
-- John Florian
Ok this looks like a bug in the livecd creator tool. Processes within livcd
are not supposed to be running as useradd_t or groupadd_t.
Please open a bug on the tool and CC me.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
iEYEARECAAYFAlBzJT0ACgkQrlYvE4MpobNUaACfb7DHl8wJolTIQMHsEe1K9UXl
3KQAn3JiWdP4teTlY/2w8n/iVVnUgU6y
=FS19
-----END PGP SIGNATURE-----
11:46 a.m.
New subject: Odd user/group identity lookup problem
On Sat, 2012-10-06 at 06:45 -0400, Daniel J Walsh wrote:
On 10/04/2012 10:12 PM, Adam Williamson wrote:
> On Thu, 2012-10-04 at 16:32 -0400, John.Florian(a)dart.biz wrote:
>
>> I believe I've already found the problem. On the host running
>> livecd-creator, I'm seeing AVCs like:
>
> Yeah, it's selinux. I've just been running setenforce Permissive when I
> want to build live images. That used to be how it was for years anyhow, it
> only started working in Enforcing mode a couple of releases back, so I
> didn't figure it was a major issue.
>
What AVC's are you seeing?
SELinux is preventing /usr/sbin/useradd from read access on the lnk_file
run.
type=AVC msg=audit(1349476458.298:737): avc: denied { read } for
pid=10030 comm="useradd" name="run" dev="loop0" ino=1094
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=SYSCALL msg=audit(1349476458.298:737): arch=x86_64 syscall=connect
success=no exit=ENOENT a0=5 a1=7fff5acdbc10 a2=6e a3=100 items=0
ppid=10025 pid=10030 auid=1001 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 tty=pts2 ses=1 comm=useradd exe=/usr/sbin/useradd
subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 key=(null)
------------------------
type=AVC msg=audit(1349476460.104:739): avc: denied { read } for
pid=10090 comm="groupadd" name="run" dev="loop0" ino=1094
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=SYSCALL msg=audit(1349476460.104:739): arch=x86_64 syscall=connect
success=no exit=ENOENT a0=4 a1=7fffac61a650 a2=6e a3=400 items=0
ppid=10088 pid=10090 auid=1001 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 tty=pts2 ses=1 comm=groupadd exe=/usr/sbin/groupadd
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 key=(null)
Happens each time a package being installed into the live image
environment tries to create a user or group.
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | identi.ca: adamwfedora
http://www.happyassassin.net
1:51 p.m.
New subject: Odd user/group identity lookup problem
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/09/2012 12:46 PM, Adam Williamson wrote:
On Sat, 2012-10-06 at 06:45 -0400, Daniel J Walsh wrote:
> On 10/04/2012 10:12 PM, Adam Williamson wrote:
>> On Thu, 2012-10-04 at 16:32 -0400, John.Florian(a)dart.biz wrote:
>>
>>> I believe I've already found the problem. On the host running
>>> livecd-creator, I'm seeing AVCs like:
>>
>> Yeah, it's selinux. I've just been running setenforce Permissive when I
>> want to build live images. That used to be how it was for years
>> anyhow, it only started working in Enforcing mode a couple of releases
>> back, so I didn't figure it was a major issue.
>>
> What AVC's are you seeing?
SELinux is preventing /usr/sbin/useradd from read access on the lnk_file
run.
type=AVC msg=audit(1349476458.298:737): avc: denied { read } for
pid=10030 comm="useradd" name="run" dev="loop0" ino=1094
scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=SYSCALL msg=audit(1349476458.298:737): arch=x86_64 syscall=connect
success=no exit=ENOENT a0=5 a1=7fff5acdbc10 a2=6e a3=100 items=0 ppid=10025
pid=10030 auid=1001 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
tty=pts2 ses=1 comm=useradd exe=/usr/sbin/useradd
subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 key=(null)
------------------------
type=AVC msg=audit(1349476460.104:739): avc: denied { read } for
pid=10090 comm="groupadd" name="run" dev="loop0" ino=1094
scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
type=SYSCALL msg=audit(1349476460.104:739): arch=x86_64 syscall=connect
success=no exit=ENOENT a0=4 a1=7fffac61a650 a2=6e a3=400 items=0 ppid=10088
pid=10090 auid=1001 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
tty=pts2 ses=1 comm=groupadd exe=/usr/sbin/groupadd
subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 key=(null)
Happens each time a package being installed into the live image environment
tries to create a user or group.
We have identified this as a livecd app problem. livecd has to tell rpm to not
do SELinux stuff. We had the same problem with mock. Basically we want rpm
to not transition to other domains when running in livecd, which will prevent
livecd_t -> rpm_script_t -> useradd_t ...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
iEYEARECAAYFAlB0cjYACgkQrlYvE4MpobNHMwCgrJZyWsUVG2O3SrdA8D/oyepP
vlYAnjlVGIZrQV7tj9l1nrN+sUr/QnNH
=aEdg
-----END PGP SIGNATURE-----
2:17 p.m.
New subject: Odd user/group identity lookup problem
On Tue, 2012-10-09 at 14:51 -0400, Daniel J Walsh wrote:
On 10/09/2012 12:46 PM, Adam Williamson wrote:
> On Sat, 2012-10-06 at 06:45 -0400, Daniel J Walsh wrote:
>> On 10/04/2012 10:12 PM, Adam Williamson wrote:
>>> On Thu, 2012-10-04 at 16:32 -0400, John.Florian(a)dart.biz wrote:
>>>
>>>> I believe I've already found the problem. On the host running
>>>> livecd-creator, I'm seeing AVCs like:
>>>
>>> Yeah, it's selinux. I've just been running setenforce Permissive
when I
>>> want to build live images. That used to be how it was for years
>>> anyhow, it only started working in Enforcing mode a couple of releases
>>> back, so I didn't figure it was a major issue.
>>>
>> What AVC's are you seeing?
>
> SELinux is preventing /usr/sbin/useradd from read access on the lnk_file
> run.
>
> type=AVC msg=audit(1349476458.298:737): avc: denied { read } for
> pid=10030 comm="useradd" name="run" dev="loop0"
ino=1094
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
>
> type=SYSCALL msg=audit(1349476458.298:737): arch=x86_64 syscall=connect
> success=no exit=ENOENT a0=5 a1=7fff5acdbc10 a2=6e a3=100 items=0 ppid=10025
> pid=10030 auid=1001 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
> tty=pts2 ses=1 comm=useradd exe=/usr/sbin/useradd
> subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 key=(null)
>
> ------------------------
>
> type=AVC msg=audit(1349476460.104:739): avc: denied { read } for
> pid=10090 comm="groupadd" name="run" dev="loop0"
ino=1094
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
>
>
> type=SYSCALL msg=audit(1349476460.104:739): arch=x86_64 syscall=connect
> success=no exit=ENOENT a0=4 a1=7fffac61a650 a2=6e a3=400 items=0 ppid=10088
> pid=10090 auid=1001 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
> tty=pts2 ses=1 comm=groupadd exe=/usr/sbin/groupadd
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 key=(null)
>
> Happens each time a package being installed into the live image environment
> tries to create a user or group.
>
We have identified this as a livecd app problem. livecd has to tell rpm to not
do SELinux stuff. We had the same problem with mock. Basically we want rpm
to not transition to other domains when running in livecd, which will prevent
livecd_t -> rpm_script_t -> useradd_t ...
Best let Brian know, then. CCing.
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | identi.ca: adamwfedora
http://www.happyassassin.net
8:11 a.m.
New subject: Odd user/group identity lookup problem
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/09/2012 03:17 PM, Adam Williamson wrote:
On Tue, 2012-10-09 at 14:51 -0400, Daniel J Walsh wrote:
> On 10/09/2012 12:46 PM, Adam Williamson wrote:
>> On Sat, 2012-10-06 at 06:45 -0400, Daniel J Walsh wrote:
>>> On 10/04/2012 10:12 PM, Adam Williamson wrote:
>>>> On Thu, 2012-10-04 at 16:32 -0400, John.Florian(a)dart.biz wrote:
>>>>
>>>>> I believe I've already found the problem. On the host running
>>>>> livecd-creator, I'm seeing AVCs like:
>>>>
>>>> Yeah, it's selinux. I've just been running setenforce Permissive
>>>> when I want to build live images. That used to be how it was for
>>>> years anyhow, it only started working in Enforcing mode a couple of
>>>> releases back, so I didn't figure it was a major issue.
>>>>
>>> What AVC's are you seeing?
>>
>> SELinux is preventing /usr/sbin/useradd from read access on the
>> lnk_file run.
>>
>> type=AVC msg=audit(1349476458.298:737): avc: denied { read } for
>> pid=10030 comm="useradd" name="run" dev="loop0"
ino=1094
>> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
>> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
>>
>> type=SYSCALL msg=audit(1349476458.298:737): arch=x86_64 syscall=connect
>> success=no exit=ENOENT a0=5 a1=7fff5acdbc10 a2=6e a3=100 items=0
>> ppid=10025 pid=10030 auid=1001 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
>> sgid=0 fsgid=0 tty=pts2 ses=1 comm=useradd exe=/usr/sbin/useradd
>> subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 key=(null)
>>
>> ------------------------
>>
>> type=AVC msg=audit(1349476460.104:739): avc: denied { read } for
>> pid=10090 comm="groupadd" name="run" dev="loop0"
ino=1094
>> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
>> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file
>>
>>
>> type=SYSCALL msg=audit(1349476460.104:739): arch=x86_64 syscall=connect
>> success=no exit=ENOENT a0=4 a1=7fffac61a650 a2=6e a3=400 items=0
>> ppid=10088 pid=10090 auid=1001 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
>> sgid=0 fsgid=0 tty=pts2 ses=1 comm=groupadd exe=/usr/sbin/groupadd
>> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 key=(null)
>>
>> Happens each time a package being installed into the live image
>> environment tries to create a user or group.
>>
>
> We have identified this as a livecd app problem. livecd has to tell rpm
> to not do SELinux stuff. We had the same problem with mock. Basically
> we want rpm to not transition to other domains when running in livecd,
> which will prevent livecd_t -> rpm_script_t -> useradd_t ...
Best let Brian know, then. CCing.
I updated the bugzilla, but I have no problem working with Brian to fix the
problem.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
iEYEARECAAYFAlB1dAAACgkQrlYvE4MpobPxKgCgvAyj6w8syLaBBYehT/2dcZp8
nv4Ani7tyEyyTNfK3CE/rLg9oII5FAWg
=3pip
-----END PGP SIGNATURE-----
4268
days inactive
4274
days old
8 comments
3 participants
participants (3)
-
Adam Williamson -
Daniel J Walsh -
John.Florian@dart.biz