Bug 1030109

Summary: Asus Eee 100H, Test Day:2013-11-14 Power management, got AVCs
Product: [Fedora] Fedora Reporter: Miro Hrončok <mhroncok>
Component: selinux-policyAssignee: Miroslav Grepl <mgrepl>
Status: CLOSED CURRENTRELEASE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 20CC: bblaskov, dominick.grift, dwalsh, lvrabec, mgrepl, psklenar
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-08-22 13:10:49 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Attachments:
Description Flags
pmtd-selinux-test output none

Description Miro Hrončok 2013-11-13 23:00:00 UTC 
Description of problem:
Honestly I have no idea what it means, but during Test Day:2013-11-14 Power management [0] I've had AVCs during Tuned test [1].

Steps to Reproduce:
1. Run pmtd-selinux-test from Test day package on Asus Eee 1000H

Actual results:
http://paste.fedoraproject.org/53848/37353013/

Expected results:
No AVCs

Additional info:
Will provide any additional info requested (if I'm capable of obtaining it).

[0] https://fedoraproject.org/wiki/Test_Day:2013-11-14_Power_management
[1] https://fedoraproject.org/wiki/QA:Testcase_Power_Management_tuned_basic
Comment 1 Branislav Blaškovič 2013-11-14 10:03:34 UTC 
Created attachment 823847 [details]
pmtd-selinux-test output

I have similar AVCs.
Comment 2 Petr Sklenar 2013-11-14 10:04:05 UTC 
There is also avc with my T61 laptop:
[root@localhost ~]# pmtd-selinux-test
AVCs: ----
type=SYSCALL msg=audit(11/14/2013 04:58:07.521:556) : arch=x86_64 syscall=stat success=yes exit=0 a0=0x1ec6400 a1=0x7fff3c8207f0 a2=0x7fff3c8207f0 a3=0x8 items=0 ppid=2921 pid=2933 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root ses=unset tty=(none) comm=virt-what exe=/usr/bin/bash subj=system_u:system_r:tuned_t:s0 key=(null) 
type=AVC msg=audit(11/14/2013 04:58:07.521:556) : avc:  denied  { getattr } for  pid=2933 comm=virt-what path=/proc/1/environ dev="proc" ino=48020 scontext=system_u:system_r:tuned_t:s0 tcontext=system_u:system_r:init_t:s0 tclass=file 
----
type=SYSCALL msg=audit(11/14/2013 04:58:07.524:557) : arch=x86_64 syscall=open success=yes exit=3 a0=0x7fff0d502f50 a1=O_RDONLY a2=0x1fffffffffff0000 a3=0x7fff0d502240 items=0 ppid=2933 pid=2945 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root ses=unset tty=(none) comm=cat exe=/usr/bin/cat subj=system_u:system_r:tuned_t:s0 key=(null) 
type=AVC msg=audit(11/14/2013 04:58:07.524:557) : avc:  denied  { open } for  pid=2945 comm=cat path=/proc/1/environ dev="proc" ino=48020 scontext=system_u:system_r:tuned_t:s0 tcontext=system_u:system_r:init_t:s0 tclass=file 
type=AVC msg=audit(11/14/2013 04:58:07.524:557) : avc:  denied  { read } for  pid=2945 comm=cat name=environ dev="proc" ino=48020 scontext=system_u:system_r:tuned_t:s0 tcontext=system_u:system_r:init_t:s0 tclass=file
Comment 3 Branislav Blaškovič 2013-11-14 10:05:51 UTC 
Additional information to comment #1:
Running on Lenovo T420s
# rpm -q fedora-release tuned tuned-utils 
fedora-release-20-0.7.noarch
tuned-2.3.0-2.fc20.noarch
tuned-utils-2.3.0-2.fc20.noarch
# uname -a
Linux bblaskov.brq.redhat.com 3.11.7-300.fc20.x86_64 #1 SMP Mon Nov 4 15:07:39 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux