Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 306462 Details for
Bug 448060
host of SELinux AVC denials on starting kvm virtual machine
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
output of /sbin/ausearch -ts 10:00 -m AVC
virt-selinux.txt (text/plain), 12.16 KB, created by
Matěj Cepl
on 2008-05-23 08:58:00 UTC
(
hide
)
Description:
output of /sbin/ausearch -ts 10:00 -m AVC
Filename:
MIME Type:
Creator:
Matěj Cepl
Created:
2008-05-23 08:58:00 UTC
Size:
12.16 KB
patch
obsolete
>---- >time->Fri May 23 10:21:23 2008 >type=SYSCALL msg=audit(1211530883.607:2409): arch=40000003 syscall=85 success=no exit=-13 a0=bfb2dfe8 a1=bfb2e0c8 a2=fff a3=bfb2dfe8 items=0 ppid=1 pid=2416 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="libvirtd" exe="/usr/sbin/libvirtd" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211530883.607:2409): avc: denied { sys_ptrace } for pid=2416 comm="libvirtd" capability=19 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:system_r:virtd_t:s0 tclass=capability >---- >time->Fri May 23 10:21:23 2008 >type=SYSCALL msg=audit(1211530883.643:2410): arch=40000003 syscall=213 success=yes exit=0 a0=0 a1=a a2=0 a3=bfc9a140 items=0 ppid=2416 pid=29831 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="polkit-resolve-" exe="/usr/libexec/polkit-resolve-exe-helper" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211530883.643:2410): avc: denied { setuid } for pid=29831 comm="polkit-resolve-" capability=7 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:system_r:virtd_t:s0 tclass=capability >---- >time->Fri May 23 10:21:23 2008 >type=SYSCALL msg=audit(1211530883.653:2411): arch=40000003 syscall=3 success=no exit=-13 a0=4 a1=8427600 a2=fff a3=bfc99ebc items=0 ppid=2416 pid=29831 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="polkit-resolve-" exe="/usr/libexec/polkit-resolve-exe-helper" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211530883.653:2411): avc: denied { getattr } for pid=29831 comm="polkit-resolve-" scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:system_r:virtd_t:s0 tclass=process >---- >time->Fri May 23 10:21:23 2008 >type=SYSCALL msg=audit(1211530883.655:2412): arch=40000003 syscall=85 success=no exit=-13 a0=bfb2dfe8 a1=bfb2e0c8 a2=fff a3=bfb2dfe8 items=0 ppid=1 pid=2416 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="libvirtd" exe="/usr/sbin/libvirtd" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211530883.655:2412): avc: denied { sys_ptrace } for pid=2416 comm="libvirtd" capability=19 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:system_r:virtd_t:s0 tclass=capability >---- >time->Fri May 23 10:21:23 2008 >type=SYSCALL msg=audit(1211530883.660:2413): arch=40000003 syscall=213 success=yes exit=0 a0=0 a1=a a2=0 a3=bfecdb80 items=0 ppid=2416 pid=29832 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="polkit-resolve-" exe="/usr/libexec/polkit-resolve-exe-helper" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211530883.660:2413): avc: denied { setuid } for pid=29832 comm="polkit-resolve-" capability=7 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:system_r:virtd_t:s0 tclass=capability >---- >time->Fri May 23 10:21:23 2008 >type=SYSCALL msg=audit(1211530883.668:2414): arch=40000003 syscall=3 success=no exit=-13 a0=4 a1=9bd4600 a2=fff a3=bfecd8fc items=0 ppid=2416 pid=29832 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="polkit-resolve-" exe="/usr/libexec/polkit-resolve-exe-helper" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211530883.668:2414): avc: denied { getattr } for pid=29832 comm="polkit-resolve-" scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:system_r:virtd_t:s0 tclass=process >---- >time->Fri May 23 10:23:30 2008 >type=SYSCALL msg=audit(1211531010.157:2432): arch=40000003 syscall=85 success=yes exit=15 a0=bfb2dfe8 a1=bfb2e0c8 a2=fff a3=bfb2dfe8 items=0 ppid=1 pid=2416 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="libvirtd" exe="/usr/sbin/libvirtd" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531010.157:2432): avc: denied { ptrace } for pid=2416 comm="libvirtd" scontext=system_u:system_r:virtd_t:s0 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=process >type=AVC msg=audit(1211531010.157:2432): avc: denied { sys_ptrace } for pid=2416 comm="libvirtd" capability=19 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:system_r:virtd_t:s0 tclass=capability >---- >time->Fri May 23 10:24:10 2008 >type=SYSCALL msg=audit(1211531050.520:2442): arch=40000003 syscall=5 success=yes exit=11 a0=8c4d3f0 a1=98800 a2=bfdebf50 a3=22 items=0 ppid=30128 pid=30131 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="sh" exe="/bin/bash" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531050.520:2442): avc: denied { read } for pid=30131 comm="sh" name="2.6.25.4-26.fc9.i686" dev=dm-0 ino=4214717 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:object_r:modules_object_t:s0 tclass=dir >---- >time->Fri May 23 10:24:10 2008 >type=SYSCALL msg=audit(1211531050.563:2443): arch=40000003 syscall=195 success=yes exit=0 a0=8c4d508 a1=bfdebf10 a2=5a4ff4 a3=1 items=0 ppid=30128 pid=30131 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="sh" exe="/bin/bash" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531050.563:2443): avc: denied { getattr } for pid=30131 comm="sh" path="/lib/modules/2.6.25.4-26.fc9.i686/modules.seriomap" dev=dm-0 ino=4221487 scontext=system_u:system_r:virtd_t:s0 tcontext=unconfined_u:object_r:modules_dep_t:s0 tclass=file >---- >time->Fri May 23 10:24:10 2008 >type=SYSCALL msg=audit(1211531050.603:2444): arch=40000003 syscall=195 success=no exit=-2 a0=8c4d5b0 a1=bfdebf10 a2=5a4ff4 a3=2 items=0 ppid=30128 pid=30131 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="sh" exe="/bin/bash" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531050.603:2444): avc: denied { read } for pid=30131 comm="sh" name="source" dev=dm-0 ino=4221473 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:object_r:modules_object_t:s0 tclass=lnk_file >---- >time->Fri May 23 10:24:10 2008 >type=SYSCALL msg=audit(1211531050.659:2445): arch=40000003 syscall=195 success=yes exit=0 a0=8c4d738 a1=bfdebf10 a2=5a4ff4 a3=2 items=0 ppid=30128 pid=30131 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="sh" exe="/bin/bash" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531050.659:2445): avc: denied { getattr } for pid=30131 comm="sh" path="/lib/modules/2.6.25.4-26.fc9.i686/modules.block" dev=dm-0 ino=4221470 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:object_r:modules_dep_t:s0 tclass=file >---- >time->Fri May 23 10:24:11 2008 >type=SYSCALL msg=audit(1211531051.435:2446): arch=40000003 syscall=5 success=yes exit=3 a0=9fdcad8 a1=8241 a2=1b6 a3=240 items=0 ppid=2416 pid=30128 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="lokkit" exe="/usr/bin/python" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531051.435:2446): avc: denied { write } for pid=30128 comm="lokkit" name="system-config-firewall" dev=dm-0 ino=2092655 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:object_r:etc_t:s0 tclass=file >---- >time->Fri May 23 10:24:11 2008 >type=SYSCALL msg=audit(1211531051.436:2447): arch=40000003 syscall=15 success=yes exit=0 a0=9fdcad8 a1=180 a2=5470574 a3=b802e7cc items=0 ppid=2416 pid=30128 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="lokkit" exe="/usr/bin/python" subj=system_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531051.436:2447): avc: denied { setattr } for pid=30128 comm="lokkit" name="system-config-firewall" dev=dm-0 ino=2092655 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:object_r:etc_t:s0 tclass=file >---- >time->Fri May 23 10:24:26 2008 >type=SYSCALL msg=audit(1211531066.762:2448): arch=40000003 syscall=85 success=yes exit=15 a0=bfbfdb58 a1=bfbfdc38 a2=fff a3=bfbfdb58 items=0 ppid=1 pid=30178 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=103 comm="libvirtd" exe="/usr/sbin/libvirtd" subj=unconfined_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531066.762:2448): avc: denied { ptrace } for pid=30178 comm="libvirtd" scontext=unconfined_u:system_r:virtd_t:s0 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=process >type=AVC msg=audit(1211531066.762:2448): avc: denied { sys_ptrace } for pid=30178 comm="libvirtd" capability=19 scontext=unconfined_u:system_r:virtd_t:s0 tcontext=unconfined_u:system_r:virtd_t:s0 tclass=capability >---- >time->Fri May 23 10:27:17 2008 >type=SYSCALL msg=audit(1211531237.322:2467): arch=40000003 syscall=3 success=yes exit=203 a0=e a1=bfbfdd38 a2=1000 a3=0 items=0 ppid=1 pid=30178 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=103 comm="libvirtd" exe="/usr/sbin/libvirtd" subj=unconfined_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531237.322:2467): avc: denied { sys_nice } for pid=30178 comm="libvirtd" capability=23 scontext=unconfined_u:system_r:virtd_t:s0 tcontext=unconfined_u:system_r:virtd_t:s0 tclass=capability >---- >time->Fri May 23 10:31:21 2008 >type=SYSCALL msg=audit(1211531481.825:2489): arch=40000003 syscall=3 success=yes exit=203 a0=e a1=bfbfdd38 a2=1000 a3=0 items=0 ppid=1 pid=30178 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=103 comm="libvirtd" exe="/usr/sbin/libvirtd" subj=unconfined_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531481.825:2489): avc: denied { sys_nice } for pid=30178 comm="libvirtd" capability=23 scontext=unconfined_u:system_r:virtd_t:s0 tcontext=unconfined_u:system_r:virtd_t:s0 tclass=capability >---- >time->Fri May 23 10:36:32 2008 >type=SYSCALL msg=audit(1211531792.165:2518): arch=40000003 syscall=5 success=yes exit=11 a0=8059c9c a1=8000 a2=0 a3=8000 items=0 ppid=31252 pid=31255 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=103 comm="find" exe="/bin/find" subj=unconfined_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531792.165:2518): avc: denied { read } for pid=31255 comm="find" name="matej" dev=dm-6 ino=6635521 scontext=unconfined_u:system_r:virtd_t:s0 tcontext=unconfined_u:object_r:user_home_dir_t:s0 tclass=dir >---- >time->Fri May 23 10:38:12 2008 >type=SYSCALL msg=audit(1211531892.505:2539): arch=40000003 syscall=85 success=yes exit=15 a0=bfbc7278 a1=bfbc7358 a2=fff a3=bfbc7278 items=0 ppid=1 pid=31329 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=103 comm="libvirtd" exe="/usr/sbin/libvirtd" subj=unconfined_u:system_r:virtd_t:s0 key=(null) >type=AVC msg=audit(1211531892.505:2539): avc: denied { ptrace } for pid=31329 comm="libvirtd" scontext=unconfined_u:system_r:virtd_t:s0 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=process >---- >time->Fri May 23 10:45:40 2008 >type=SYSCALL msg=audit(1211532340.839:6): arch=40000003 syscall=292 success=no exit=-13 a0=6 a1=4e53620 a2=106 a3=8498e38 items=0 ppid=2623 pid=2624 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nm-system-setti" exe="/usr/sbin/nm-system-settings" subj=system_u:system_r:NetworkManager_t:s0-s0:c0.c1023 key=(null) >type=AVC msg=audit(1211532340.839:6): avc: denied { read } for pid=2624 comm="nm-system-setti" name="PolicyKit.reload" dev=dm-0 ino=1274685 scontext=system_u:system_r:NetworkManager_t:s0-s0:c0.c1023 tcontext=system_u:object_r:system_crond_var_lib_t:s0 tclass=file >---- >time->Fri May 23 10:45:41 2008 >type=SYSCALL msg=audit(1211532341.669:7): arch=40000003 syscall=195 success=no exit=-13 a0=702367d a1=bfff696c a2=5a4ff4 a3=702367d items=0 ppid=1 pid=2624 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nm-system-setti" exe="/usr/sbin/nm-system-settings" subj=system_u:system_r:NetworkManager_t:s0-s0:c0.c1023 key=(null) >type=AVC msg=audit(1211532341.669:7): avc: denied { getattr } for pid=2624 comm="nm-system-setti" path="/dev/root" dev=tmpfs ino=343 scontext=system_u:system_r:NetworkManager_t:s0-s0:c0.c1023 tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=306462">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 448060
: 306462