Attachment 942911 Details for Bug 1147787 – ausearch data for denials

ausearch data for denials

zebra-sssd-avc.txt (text/plain), 11.11 KB, created by Kyle Brantley on 2014-10-01 04:18:19 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: Kyle Brantley

Created: 2014-10-01 04:18:19 UTC

Size: 11.11 KB

patch

obsolete

>----
>type=SYSCALL msg=audit(09/30/2014 03:29:39.815:1721) : arch=x86_64 syscall=connect success=no exit=-13(Permission denied) a0=0x4 a1=0x7fff30ead110 a2=0x6e a3=0x7fff30eace70 items=0 ppid=1 pid=12271 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:29:39.815:1721) : avc:  denied  { search } for  pid=12271 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:29:39.815:1720) : arch=x86_64 syscall=open success=no exit=-13(Permission denied) a0=0x7f0ccfe7c1f0 a1=O_RDONLY|O_CLOEXEC a2=0x7fff30ead144 a3=0x7fff30eaced0 items=0 ppid=1 pid=12271 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:29:39.815:1720) : avc:  denied  { search } for  pid=12271 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:30:41.008:1740) : arch=x86_64 syscall=open success=no exit=-13(Permission denied) a0=0x7f9ae50aa1f0 a1=O_RDONLY|O_CLOEXEC a2=0x7fff4af24644 a3=0x7fff4af243d0 items=0 ppid=1 pid=12311 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:30:41.008:1740) : avc:  denied  { search } for  pid=12311 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:30:41.009:1741) : arch=x86_64 syscall=connect success=no exit=-13(Permission denied) a0=0x4 a1=0x7fff4af24610 a2=0x6e a3=0x7fff4af24370 items=0 ppid=1 pid=12311 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:30:41.009:1741) : avc:  denied  { search } for  pid=12311 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:38:29.419:1746) : arch=x86_64 syscall=open success=no exit=-13(Permission denied) a0=0x7fef623791f0 a1=O_RDONLY|O_CLOEXEC a2=0x7fffdfde89a4 a3=0x7fffdfde8730 items=0 ppid=1 pid=21334 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:38:29.419:1746) : avc:  denied  { search } for  pid=21334 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:38:29.420:1747) : arch=x86_64 syscall=connect success=no exit=-13(Permission denied) a0=0x4 a1=0x7fffdfde8970 a2=0x6e a3=0x7fffdfde86d0 items=0 ppid=1 pid=21334 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:38:29.420:1747) : avc:  denied  { search } for  pid=21334 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:40:05.995:1750) : arch=x86_64 syscall=connect success=no exit=-13(Permission denied) a0=0x4 a1=0x7fffc63a91d0 a2=0x6e a3=0x7fffc63a8f30 items=0 ppid=1 pid=21552 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:40:05.995:1750) : avc:  denied  { search } for  pid=21552 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:40:05.994:1749) : arch=x86_64 syscall=open success=no exit=-13(Permission denied) a0=0x7fb83f1ef1f0 a1=O_RDONLY|O_CLOEXEC a2=0x7fffc63a9204 a3=0x7fffc63a8f90 items=0 ppid=1 pid=21552 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:40:05.994:1749) : avc:  denied  { search } for  pid=21552 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:42:39.737:1753) : arch=x86_64 syscall=connect success=no exit=-13(Permission denied) a0=0x4 a1=0x7fff1fd47a70 a2=0x6e a3=0x7fff1fd477d0 items=0 ppid=1 pid=21592 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:42:39.737:1753) : avc:  denied  { search } for  pid=21592 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:42:39.736:1752) : arch=x86_64 syscall=open success=no exit=-13(Permission denied) a0=0x7f2b8eb781f0 a1=O_RDONLY|O_CLOEXEC a2=0x7fff1fd47aa4 a3=0x7fff1fd47830 items=0 ppid=1 pid=21592 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:42:39.736:1752) : avc:  denied  { search } for  pid=21592 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:46:21.198:1762) : arch=x86_64 syscall=open success=yes exit=4 a0=0x7fecf03a91f0 a1=O_RDONLY|O_CLOEXEC a2=0x7fffee5fab14 a3=0x7fffee5fa8a0 items=0 ppid=1 pid=22029 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:46:21.198:1762) : avc:  denied  { open } for  pid=22029 comm=zebra path=/var/lib/sss/mc/group dev="dm-0" ino=13411 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_public_t:s0 tclass=file
>type=AVC msg=audit(09/30/2014 03:46:21.198:1762) : avc:  denied  { read } for  pid=22029 comm=zebra name=group dev="dm-0" ino=13411 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_public_t:s0 tclass=file
>type=AVC msg=audit(09/30/2014 03:46:21.198:1762) : avc:  denied  { search } for  pid=22029 comm=zebra name=mc dev="dm-0" ino=4551 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_public_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:46:21.199:1763) : arch=x86_64 syscall=fstat success=yes exit=0 a0=0x4 a1=0x7fffee5fab20 a2=0x7fffee5fab20 a3=0x7fffee5fa8d0 items=0 ppid=1 pid=22029 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:46:21.199:1763) : avc:  denied  { getattr } for  pid=22029 comm=zebra path=/var/lib/sss/mc/group dev="dm-0" ino=13411 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_public_t:s0 tclass=file
>----
>type=SYSCALL msg=audit(09/30/2014 03:46:21.200:1764) : arch=x86_64 syscall=connect success=yes exit=0 a0=0x5 a1=0x7fffee5faae0 a2=0x6e a3=0x7fffee5fa840 items=0 ppid=1 pid=22029 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:46:21.200:1764) : avc:  denied  { connectto } for  pid=22029 comm=zebra path=/var/lib/sss/pipes/nss scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:system_r:sssd_t:s0 tclass=unix_stream_socket
>type=AVC msg=audit(09/30/2014 03:46:21.200:1764) : avc:  denied  { write } for  pid=22029 comm=zebra name=nss dev="dm-0" ino=13370 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=sock_file
>----
>type=SYSCALL msg=audit(09/30/2014 03:51:26.717:1771) : arch=x86_64 syscall=open success=no exit=-13(Permission denied) a0=0x7f2f195a71f0 a1=O_RDONLY|O_CLOEXEC a2=0x7fff6d260ff4 a3=0x7fff6d260d80 items=0 ppid=1 pid=22072 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:51:26.717:1771) : avc:  denied  { search } for  pid=22072 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:51:26.718:1772) : arch=x86_64 syscall=connect success=no exit=-13(Permission denied) a0=0x4 a1=0x7fff6d260fc0 a2=0x6e a3=0x7fff6d260d20 items=0 ppid=1 pid=22072 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:51:26.718:1772) : avc:  denied  { search } for  pid=22072 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:52:07.925:1776) : arch=x86_64 syscall=open success=no exit=-13(Permission denied) a0=0x7f0361ef91f0 a1=O_RDONLY|O_CLOEXEC a2=0x7fff1dee6fe4 a3=0x7fff1dee6d70 items=0 ppid=1 pid=22081 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:52:07.925:1776) : avc:  denied  { search } for  pid=22081 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir
>----
>type=SYSCALL msg=audit(09/30/2014 03:52:07.925:1777) : arch=x86_64 syscall=connect success=no exit=-13(Permission denied) a0=0x4 a1=0x7fff1dee6fb0 a2=0x6e a3=0x7fff1dee6d10 items=0 ppid=1 pid=22081 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=zebra exe=/usr/sbin/zebra subj=system_u:system_r:zebra_t:s0 key=(null)
>type=AVC msg=audit(09/30/2014 03:52:07.925:1777) : avc:  denied  { search } for  pid=22081 comm=zebra name=sss dev="dm-0" ino=4549 scontext=system_u:system_r:zebra_t:s0 tcontext=system_u:object_r:sssd_var_lib_t:s0 tclass=dir

Actions: View

Attachments on bug 1147787: 942911