Odd user/group identity lookup problem
Daniel J Walsh
dwalsh at redhat.com
Mon Oct 8 19:10:53 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/08/2012 08:43 AM, John.Florian at dart.biz wrote:
>> From: Daniel J Walsh <dwalsh at redhat.com> To: For testing and quality
>> assurance of Fedora releases <test at lists.fedoraproject.org> Date:
>> 10/06/2012 06:45 Subject: Re: Odd user/group identity lookup problem Sent
>> by: test-bounces at lists.fedoraproject.org
>>
>> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
>>
>> On 10/04/2012 10:12 PM, Adam Williamson wrote:
>>> On Thu, 2012-10-04 at 16:32 -0400, John.Florian at dart.biz wrote:
>>>
>>>> I believe I've already found the problem. On the host running
>>>> livecd-creator, I'm seeing AVCs like:
>>>
>>> Yeah, it's selinux. I've just been running setenforce Permissive when
>>> I want to build live images. That used to be how it was for years
>>> anyhow, it only started working in Enforcing mode a couple of releases
>>> back, so I didn't figure it was a major issue.
>>>
>> What AVC's are you seeing?
>
> Here's the entire batch from one run of livecd-creator:
>
> type=AVC msg=audit(1349382348.700:114): avc: denied { read } for
> pid=2748 comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382348.700:115): avc: denied { read } for pid=2748
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382351.086:116): pid=2748 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382351.087:117):
> pid=2748 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382351.087:118):
> pid=2748 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="utmp"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
> type=AVC msg=audit(1349382351.096:119): avc: denied { read } for
> pid=2749 comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382351.096:120): avc: denied { read } for pid=2749
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382351.185:121): pid=2749 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="utempter" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382351.185:122):
> pid=2749 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="utempter" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382351.186:123):
> pid=2749 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="utempter" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382351.395:124): avc: denied { write }
> for pid=2752 comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382351.400:125): avc: denied { read } for pid=2752
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382351.401:126): avc: denied { read } for pid=2752
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382352.035:127): pid=2752 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="tcpdump" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382352.037:128):
> pid=2752 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="tcpdump" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382352.038:129):
> pid=2752 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="tcpdump" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382352.049:130): avc: denied { write }
> for pid=2753 comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382352.058:131): avc: denied { read } for pid=2753
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382352.058:132): avc: denied { read } for pid=2753
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382356.290:133): avc: denied { write } for pid=2785
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382356.290:134): avc: denied { write } for pid=2785
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382356.295:135): avc: denied { read } for pid=2785
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382356.295:136): avc: denied { read } for pid=2785
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382358.576:137): pid=2785 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="cdrom" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.577:138):
> pid=2785 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="cdrom" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.578:139):
> pid=2785 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="cdrom"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=? res=failed' type=AVC
> msg=audit(1349382358.591:140): avc: denied { write } for pid=2788
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382358.591:141): avc: denied { write } for pid=2788
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382358.596:142): avc: denied { read } for pid=2788
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382358.596:143): avc: denied { read } for pid=2788
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382358.691:144): pid=2788 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="tape" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.692:145):
> pid=2788 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="tape" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.693:146):
> pid=2788 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="tape"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=? res=failed' type=AVC
> msg=audit(1349382358.708:147): avc: denied { write } for pid=2790
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382358.708:148): avc: denied { write } for pid=2790
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382358.713:149): avc: denied { read } for pid=2790
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382358.714:150): avc: denied { read } for pid=2790
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382358.817:151): pid=2790 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="dialout" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.818:152):
> pid=2790 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="dialout" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.819:153):
> pid=2790 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="dialout" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
> res=failed' type=AVC msg=audit(1349382358.835:154): avc: denied { write }
> for pid=2792 comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382358.836:155): avc: denied { write } for pid=2792
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382358.841:156): avc: denied { read } for pid=2792
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382358.841:157): avc: denied { read } for pid=2792
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382358.943:158): pid=2792 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="floppy" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.944:159):
> pid=2792 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="floppy" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382358.945:160):
> pid=2792 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="floppy" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
> res=failed' type=AVC msg=audit(1349382360.675:161): avc: denied { write }
> for pid=2818 comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382360.680:162): avc: denied { read } for pid=2818
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382360.680:163): avc: denied { read } for pid=2818
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382362.327:164): pid=2818 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="dbus" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382362.327:165):
> pid=2818 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="dbus" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382362.328:166):
> pid=2818 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="dbus"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
> type=AVC msg=audit(1349382362.335:167): avc: denied { write } for
> pid=2819 comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382362.342:168): avc: denied { read } for pid=2819
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382362.343:169): avc: denied { read } for pid=2819
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382363.745:170): avc: denied { read } for pid=2833
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382363.746:171): avc: denied { read } for pid=2833
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382365.502:172): pid=2833 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="dhcpd" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382365.503:173):
> pid=2833 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="dhcpd" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382365.504:174):
> pid=2833 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="dhcpd"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
> type=AVC msg=audit(1349382365.535:175): avc: denied { read } for
> pid=2836 comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382365.535:176): avc: denied { read } for pid=2836
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.302:177): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.303:178): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.313:179): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.323:180): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.332:181): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.341:182): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.349:183): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.358:184): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382366.367:185): avc: denied { read } for pid=2844
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382367.594:186): pid=2844 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="ssh_keys" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382367.595:187):
> pid=2844 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="ssh_keys" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382367.595:188):
> pid=2844 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="ssh_keys" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382377.744:189): avc: denied { read }
> for pid=2858 comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382377.744:190): avc: denied { read } for pid=2858
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382377.755:191): avc: denied { read } for pid=2858
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382377.765:192): avc: denied { read } for pid=2858
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382377.774:193): avc: denied { read } for pid=2858
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382377.783:194): avc: denied { read } for pid=2858
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382377.792:195): avc: denied { read } for pid=2858
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382377.802:196): avc: denied { read } for pid=2858
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382377.811:197): avc: denied { read } for pid=2858
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382380.325:198): pid=2858 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="polkitd" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382380.326:199):
> pid=2858 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="polkitd" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382380.326:200):
> pid=2858 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="polkitd" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382380.346:201): avc: denied { read }
> for pid=2861 comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382380.347:202): avc: denied { read } for pid=2861
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382381.943:203): avc: denied { write } for pid=2872
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382381.943:204): avc: denied { write } for pid=2872
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382381.948:205): avc: denied { read } for pid=2872
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382381.949:206): avc: denied { read } for pid=2872
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382384.099:207): pid=2872 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="rpc" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382384.100:208):
> pid=2872 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="rpc" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382384.102:209):
> pid=2872 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="rpc"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=? res=failed' type=AVC
> msg=audit(1349382384.109:210): avc: denied { write } for pid=2873
> comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382384.109:211): avc: denied { write } for pid=2873
> comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382384.116:212): avc: denied { read } for pid=2873
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.116:213): avc: denied { read } for pid=2873
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.167:214): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.168:215): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.178:216): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.187:217): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.196:218): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.205:219): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.214:220): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.223:221): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.232:222): avc: denied { read } for pid=2876
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382384.349:223): pid=2876 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="chrony" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382384.351:224):
> pid=2876 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="chrony" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382384.352:225):
> pid=2876 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="chrony" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382384.373:226): avc: denied { read }
> for pid=2878 comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.374:227): avc: denied { read } for pid=2878
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.544:228): avc: denied { write } for pid=2883
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382384.547:229): avc: denied { read } for pid=2883
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382384.547:230): avc: denied { read } for pid=2883
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382385.075:231): pid=2883 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="ntp" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382385.075:232):
> pid=2883 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="ntp" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382385.076:233):
> pid=2883 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="ntp"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
> type=AVC msg=audit(1349382385.083:234): avc: denied { write } for
> pid=2884 comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382385.091:235): avc: denied { read } for pid=2884
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382385.092:236): avc: denied { read } for pid=2884
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382386.856:237): avc: denied { read } for pid=2902
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382386.857:238): avc: denied { read } for pid=2902
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382388.308:239): pid=2902 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382388.309:240):
> pid=2902 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="utmp" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382388.310:241):
> pid=2902 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="utmp"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
> type=AVC msg=audit(1349382398.850:242): avc: denied { write } for
> pid=2946 comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382398.850:243): avc: denied { write } for pid=2946
> comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382398.853:244): avc: denied { read } for pid=2946
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382398.853:245): avc: denied { read } for pid=2946
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382401.131:246): pid=2946 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="puppet" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382401.133:247):
> pid=2946 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="puppet" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=? res=failed' type=ADD_GROUP msg=audit(1349382401.134:248):
> pid=2946 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="puppet" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=?
> res=failed' type=AVC msg=audit(1349382401.152:249): avc: denied { write }
> for pid=2948 comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382401.153:250): avc: denied { write } for pid=2948
> comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382401.158:251): avc: denied { read } for pid=2948
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382401.159:252): avc: denied { read } for pid=2948
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382425.444:253): avc: denied { write } for pid=3027
> comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382425.451:254): avc: denied { read } for pid=3027
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382425.452:255): avc: denied { read } for pid=3027
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382425.454:256): avc: denied { read } for pid=3027
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382425.455:257): avc: denied { read } for pid=3027
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382425.459:258): pid=3027 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 msg='op=adding group
> acct="rpcuser" exe="/usr/sbin/useradd" hostname=? addr=? terminal=pts/0
> res=success' type=ADD_USER msg=audit(1349382425.460:259): pid=3027 uid=0
> auid=10325 ses=2 subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> msg='op=adding user id=29 exe="/usr/sbin/useradd" hostname=? addr=?
> terminal=pts/0 res=success' type=ADD_USER msg=audit(1349382426.571:260):
> pid=3027 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023 msg='op=adding user
> acct="rpcuser" exe="/usr/sbin/useradd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382426.579:261): avc: denied { write }
> for pid=3028 comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382426.584:262): avc: denied { read } for pid=3028
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382426.585:263): avc: denied { read } for pid=3028
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382426.686:264): pid=3028 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="rpcuser" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382426.688:265):
> pid=3028 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="rpcuser" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382426.689:266):
> pid=3028 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="rpcuser" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382426.706:267): avc: denied { write }
> for pid=3032 comm="groupadd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382426.711:268): avc: denied { read } for pid=3032
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382426.712:269): avc: denied { read } for pid=3032
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382426.812:270): pid=3032 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="nfsnobody" exe="/usr/sbin/groupadd" hostname=?
> addr=? terminal=pts/0 res=failed' type=ADD_GROUP
> msg=audit(1349382426.813:271): pid=3032 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="nfsnobody" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382426.814:272):
> pid=3032 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="nfsnobody" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382426.833:273): avc: denied { write }
> for pid=3036 comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382426.841:274): avc: denied { read } for pid=3036
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382426.841:275): avc: denied { read } for pid=3036
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382427.253:276): avc: denied { read } for pid=3042
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382427.254:277): avc: denied { read } for pid=3042
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382428.254:278): pid=3042 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="sshd" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382428.255:279):
> pid=3042 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="sshd" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382428.256:280):
> pid=3042 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op= acct="sshd"
> exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0 res=failed'
> type=AVC msg=audit(1349382428.275:281): avc: denied { write } for
> pid=3045 comm="useradd" path="/dev/null" dev="loop0" ino=96004
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:file_t:s0 tclass=chr_file type=AVC
> msg=audit(1349382428.283:282): avc: denied { read } for pid=3045
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382428.284:283): avc: denied { read } for pid=3045
> comm="useradd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:useradd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382429.395:284): avc: denied { read } for pid=3058
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382429.395:285): avc: denied { read } for pid=3058
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382431.146:286): pid=3058 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="screen" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382431.147:287):
> pid=3058 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="screen" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382431.149:288):
> pid=3058 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="screen" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' type=AVC msg=audit(1349382431.358:289): avc: denied { read }
> for pid=3063 comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=AVC
> msg=audit(1349382431.359:290): avc: denied { read } for pid=3063
> comm="groupadd" name="run" dev="loop0" ino=16053
> scontext=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023
> tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file type=ADD_GROUP
> msg=audit(1349382431.946:291): pid=3063 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/gshadow acct="slocate" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382431.948:292):
> pid=3063 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=adding group
> to /etc/group acct="slocate" exe="/usr/sbin/groupadd" hostname=? addr=?
> terminal=pts/0 res=failed' type=ADD_GROUP msg=audit(1349382431.949:293):
> pid=3063 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:groupadd_t:s0-s0:c0.c1023 msg='op=
> acct="slocate" exe="/usr/sbin/groupadd" hostname=? addr=? terminal=pts/0
> res=failed' Wtype=USER_CHAUTHTOK msg=audit(1349382629.166:294): pid=4889
> uid=0 auid=10325 ses=2 subj=unconfined_u:system_r:livecd_t:s0-s0:c0.c1023
> msg='op=changing password id=0 exe="/usr/sbin/usermod" hostname=? addr=?
> terminal=pts/0 res=success' type=USER_CHAUTHTOK
> msg=audit(1349382629.311:295): pid=4889 uid=0 auid=10325 ses=2
> subj=unconfined_u:system_r:livecd_t:s0-s0:c0.c1023 msg='op=modifying
> account acct="root" exe="/usr/sbin/usermod" hostname=? addr=?
> terminal=pts/0 res=failed' type=MAC_STATUS msg=audit(1349382632.173:296):
> enforcing=0 old_enforcing=1 auid=10325 ses=2 type=USER_END
> msg=audit(1349382889.770:297): pid=2351 uid=0 auid=10325 ses=2
> subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
> msg='op=PAM:session_close acct="root" exe="/usr/bin/sudo" hostname=?
> addr=? terminal=/dev/pts/0 res=success' type=CRED_DISP
> msg=audit(1349382889.770:298): pid=2351 uid=0 auid=10325 ses=2
> subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
> msg='op=PAM:setcred acct="root" exe="/usr/bin/sudo" hostname=? addr=?
> terminal=/dev/pts/0 res=success'
>
> -- John Florian
>
>
Ok this looks like a bug in the livecd creator tool. Processes within livcd
are not supposed to be running as useradd_t or groupadd_t.
Please open a bug on the tool and CC me.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
iEYEARECAAYFAlBzJT0ACgkQrlYvE4MpobNUaACfb7DHl8wJolTIQMHsEe1K9UXl
3KQAn3JiWdP4teTlY/2w8n/iVVnUgU6y
=FS19
-----END PGP SIGNATURE-----
More information about the test
mailing list