Attachment 919941 Details for Bug 1122106 – ausearch output

ausearch output

avcs_recent.txt (text/plain), 5.59 KB, created by Miroslav Hradílek on 2014-07-22 14:39:09 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: Miroslav Hradílek

Created: 2014-07-22 14:39:09 UTC

Size: 5.59 KB

patch

obsolete

>----
>type=PATH msg=audit(07/22/2014 09:55:57.803:168) : item=1 name=/var/run/conman.pid inode=1702695 dev=fd:00 mode=file,644 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:var_run_t:s0 nametype=CREATE 
>type=PATH msg=audit(07/22/2014 09:55:57.803:168) : item=0 name=/var/run/ inode=1701426 dev=fd:00 mode=dir,755 ouid=root ogid=root rdev=00:00 obj=system_u:object_r:var_run_t:s0 nametype=PARENT 
>type=CWD msg=audit(07/22/2014 09:55:57.803:168) :  cwd=/ 
>type=SYSCALL msg=audit(07/22/2014 09:55:57.803:168) : arch=x86_64 syscall=open success=yes exit=7 a0=0x1439b90 a1=O_WRONLY|O_CREAT|O_TRUNC a2=0666 a3=0x0 items=2 ppid=1 pid=10753 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=3 comm=conmand exe=/usr/sbin/conmand subj=unconfined_u:system_r:conman_t:s0 key=(null) 
>type=AVC msg=audit(07/22/2014 09:55:57.803:168) : avc:  denied  { write open } for  pid=10753 comm=conmand name=conman.pid dev=dm-0 ino=1702695 scontext=unconfined_u:system_r:conman_t:s0 tcontext=unconfined_u:object_r:var_run_t:s0 tclass=file 
>type=AVC msg=audit(07/22/2014 09:55:57.803:168) : avc:  denied  { create } for  pid=10753 comm=conmand name=conman.pid scontext=unconfined_u:system_r:conman_t:s0 tcontext=unconfined_u:object_r:var_run_t:s0 tclass=file 
>type=AVC msg=audit(07/22/2014 09:55:57.803:168) : avc:  denied  { add_name } for  pid=10753 comm=conmand name=conman.pid scontext=unconfined_u:system_r:conman_t:s0 tcontext=system_u:object_r:var_run_t:s0 tclass=dir 
>type=AVC msg=audit(07/22/2014 09:55:57.803:168) : avc:  denied  { write } for  pid=10753 comm=conmand name=run dev=dm-0 ino=1701426 scontext=unconfined_u:system_r:conman_t:s0 tcontext=system_u:object_r:var_run_t:s0 tclass=dir 
>----
>type=SYSCALL msg=audit(07/22/2014 09:55:57.804:169) : arch=x86_64 syscall=fstat success=yes exit=0 a0=0x7 a1=0x7fff2ae37460 a2=0x7fff2ae37460 a3=0x0 items=0 ppid=1 pid=10753 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=3 comm=conmand exe=/usr/sbin/conmand subj=unconfined_u:system_r:conman_t:s0 key=(null) 
>type=AVC msg=audit(07/22/2014 09:55:57.804:169) : avc:  denied  { getattr } for  pid=10753 comm=conmand path=/var/run/conman.pid dev=dm-0 ino=1702695 scontext=unconfined_u:system_r:conman_t:s0 tcontext=unconfined_u:object_r:var_run_t:s0 tclass=file 
>----
>type=PATH msg=audit(07/22/2014 09:55:58.874:172) : item=1 name=/var/run/conman.pid inode=1702695 dev=fd:00 mode=file,644 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:var_run_t:s0 nametype=DELETE 
>type=PATH msg=audit(07/22/2014 09:55:58.874:172) : item=0 name=/var/run/ inode=1701426 dev=fd:00 mode=dir,755 ouid=root ogid=root rdev=00:00 obj=system_u:object_r:var_run_t:s0 nametype=PARENT 
>type=CWD msg=audit(07/22/2014 09:55:58.874:172) :  cwd=/ 
>type=SYSCALL msg=audit(07/22/2014 09:55:58.874:172) : arch=x86_64 syscall=unlink success=yes exit=0 a0=0x1439b90 a1=0x0 a2=0x0 a3=0x0 items=2 ppid=1 pid=10753 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=3 comm=conmand exe=/usr/sbin/conmand subj=unconfined_u:system_r:conman_t:s0 key=(null) 
>type=AVC msg=audit(07/22/2014 09:55:58.874:172) : avc:  denied  { unlink } for  pid=10753 comm=conmand name=conman.pid dev=dm-0 ino=1702695 scontext=unconfined_u:system_r:conman_t:s0 tcontext=unconfined_u:object_r:var_run_t:s0 tclass=file 
>type=AVC msg=audit(07/22/2014 09:55:58.874:172) : avc:  denied  { remove_name } for  pid=10753 comm=conmand name=conman.pid dev=dm-0 ino=1702695 scontext=unconfined_u:system_r:conman_t:s0 tcontext=system_u:object_r:var_run_t:s0 tclass=dir 
>----
>type=PATH msg=audit(07/22/2014 09:55:57.764:165) : item=0 name=(null) inode=32733 dev=00:08 mode=fifo,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:system_r:initrc_t:s0 nametype=NORMAL 
>type=SYSCALL msg=audit(07/22/2014 09:55:57.764:165) : arch=x86_64 syscall=fchown success=yes exit=0 a0=0x1 a1=0x0 a2=0x0 a3=0x2 items=1 ppid=10748 pid=10749 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=pts0 ses=3 comm=prelink exe=/usr/sbin/prelink subj=unconfined_u:system_r:prelink_t:s0 key=(null) 
>type=AVC msg=audit(07/22/2014 09:55:57.764:165) : avc:  denied  { setattr } for  pid=10749 comm=prelink name= dev=pipefs ino=32733 scontext=unconfined_u:system_r:prelink_t:s0 tcontext=unconfined_u:system_r:initrc_t:s0 tclass=fifo_file 
>----
>type=PATH msg=audit(07/22/2014 09:56:11.043:208) : item=1 name=/var/run/conman.pid inode=1702695 dev=fd:00 mode=file,644 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:var_run_t:s0 nametype=DELETE 
>type=PATH msg=audit(07/22/2014 09:56:11.043:208) : item=0 name=/var/run/ inode=1701426 dev=fd:00 mode=dir,755 ouid=root ogid=root rdev=00:00 obj=system_u:object_r:var_run_t:s0 nametype=PARENT 
>type=CWD msg=audit(07/22/2014 09:56:11.043:208) :  cwd=/ 
>type=SYSCALL msg=audit(07/22/2014 09:56:11.043:208) : arch=x86_64 syscall=unlink success=yes exit=0 a0=0x1c6eb90 a1=0x0 a2=0x0 a3=0x0 items=2 ppid=1 pid=11368 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=3 comm=conmand exe=/usr/sbin/conmand subj=unconfined_u:system_r:conman_t:s0 key=(null) 
>type=AVC msg=audit(07/22/2014 09:56:11.043:208) : avc:  denied  { remove_name } for  pid=11368 comm=conmand name=conman.pid dev=dm-0 ino=1702695 scontext=unconfined_u:system_r:conman_t:s0 tcontext=system_u:object_r:var_run_t:s0 tclass=dir 
>type=AVC msg=audit(07/22/2014 09:56:11.043:208) : avc:  denied  { write } for  pid=11368 comm=conmand name=run dev=dm-0 ino=1701426 scontext=unconfined_u:system_r:conman_t:s0 tcontext=system_u:object_r:var_run_t:s0 tclass=dir

Actions: View

Attachments on bug 1122106: 919941