rawhide 20060213 -- SELinux "denied" audit messages

Miles Lane miles.lane at gmail.com
Tue Feb 14 21:19:42 UTC 2006 

Hello Rahul,

Yes, I have a TON of AVC messages.  I looked at the SELinux
troubleshooting information, and didn't find it very helpful.  It
talks about AVC messages, but doesn't cover my situation, afaict.  The
list of messages below were generated and "touch /.autorelabel",
reboot, and with SELinux in permissive mode (I'll file a bug report):

audit(1139919738.940:2): avc:  denied  { use } for  pid=358
comm="hostname" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:hostname_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139919739.196:3): avc:  denied  { use } for  pid=361
comm="mount" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:mount_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139919740.124:4): avc:  denied  { use } for  pid=376
comm="hwclock" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:hwclock_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139919740.124:5): avc:  denied  { read write } for  pid=376
comm="hwclock" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:hwclock_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937746.754:6): avc:  denied  { read write } for  pid=1105
comm="mount" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:mount_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937747.138:7): avc:  denied  { read write } for  pid=1110
comm="hostname" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:hostname_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937747.702:8): avc:  denied  { read write } for  pid=1140
comm="restorecon" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:restorecon_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937748.566:9): avc:  denied  { use } for  pid=1152
comm="fsck" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:fsadm_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937748.566:10): avc:  denied  { read write } for  pid=1152
comm="fsck" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:fsadm_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937977.245:11): avc:  denied  { read write } for  pid=1182
comm="ifconfig" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:ifconfig_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937979.705:12): avc:  granted  { execmem } for  pid=1188
comm="Xorg" scontext=system_u:system_r:xdm_xserver_t:s0
tcontext=system_u:system_r:xdm_xserver_t:s0 tclass=process
audit(1139937979.705:13): avc:  granted  { execmem } for  pid=1188
comm="Xorg" scontext=system_u:system_r:xdm_xserver_t:s0
tcontext=system_u:system_r:xdm_xserver_t:s0 tclass=process
audit(1139937979.705:14): avc:  granted  { execmem } for  pid=1188
comm="Xorg" scontext=system_u:system_r:xdm_xserver_t:s0
tcontext=system_u:system_r:xdm_xserver_t:s0 tclass=process
audit(1139937979.705:15): avc:  granted  { execmem } for  pid=1188
comm="Xorg" scontext=system_u:system_r:xdm_xserver_t:s0
tcontext=system_u:system_r:xdm_xserver_t:s0 tclass=process
audit(1139937986.313:16): avc:  denied  { read write } for  pid=1243
comm="pam_console_app" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:pam_console_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937986.825:17): avc:  denied  { use } for  pid=1257
comm="mount" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:mount_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937988.017:18): avc:  denied  { use } for  pid=1291
comm="cpuspeed" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:cpuspeed_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937988.017:19): avc:  denied  { read write } for  pid=1291
comm="cpuspeed" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:cpuspeed_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937988.657:20): avc:  denied  { use } for  pid=1339
comm="arping" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:netutils_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937988.657:21): avc:  denied  { read write } for  pid=1339
comm="arping" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:netutils_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937995.542:22): avc:  denied  { use } for  pid=1577
comm="syslogd" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:syslogd_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937995.542:23): avc:  denied  { read write } for  pid=1577
comm="syslogd" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:syslogd_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937995.666:24): avc:  denied  { use } for  pid=1580
comm="klogd" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:klogd_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937995.666:25): avc:  denied  { read write } for  pid=1580
comm="klogd" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:klogd_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937995.970:26): avc:  denied  { use } for  pid=1590
comm="named-checkconf" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:named_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937995.970:27): avc:  denied  { read write } for  pid=1590
comm="named-checkconf" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:named_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937997.354:28): avc:  denied  { use } for  pid=1609
comm="portmap" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:portmap_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937997.354:29): avc:  denied  { read write } for  pid=1609
comm="portmap" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:portmap_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937997.542:30): avc:  denied  { use } for  pid=1628
comm="rpc.statd" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:rpcd_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937997.542:31): avc:  denied  { read write } for  pid=1628
comm="rpc.statd" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:rpcd_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file
audit(1139937998.398:32): avc:  denied  { use } for  pid=1638
comm="auditd" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:auditd_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=fd
audit(1139937998.398:33): avc:  denied  { read write } for  pid=1638
comm="auditd" name="ptmx" dev=tmpfs ino=769
scontext=system_u:system_r:auditd_t:s0
tcontext=system_u:object_r:ptmx_t:s0 tclass=chr_file

More information about the test mailing list