Summary: SELinux is preventing shutdown (consolekit_t) "create" consolekit_t. Detailed Description: SELinux denied access requested by shutdown. It is not expected that this access is required by shutdown and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access. Allowing Access: You can generate a local policy module to allow this access - see FAQ (http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable SELinux protection altogether. Disabling SELinux protection is not recommended. Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi) against this package. Additional Information: Source Context system_u:system_r:consolekit_t:s0-s0:c0.c1023 Target Context system_u:system_r:consolekit_t:s0-s0:c0.c1023 Target Objects None [ netlink_audit_socket ] Source shutdown Source Path /sbin/shutdown Port <Unknown> Host (removed) Source RPM Packages upstart-0.3.9-24.fc11 Target RPM Packages Policy RPM selinux-policy-3.6.12-23.fc11 Selinux Enabled True Policy Type targeted MLS Enabled True Enforcing Mode Enforcing Plugin Name catchall Host Name (removed) Platform Linux localhost.localdomain 2.6.29.1-111.fc11.x86_64 #1 SMP Fri Apr 24 10:57:09 EDT 2009 x86_64 x86_64 Alert Count 20 First Seen Sat 02 May 2009 10:21:07 AM CEST Last Seen Tue 05 May 2009 07:21:35 PM CEST Local ID f062a19b-a620-48da-9a72-4a42d30f8c11 Line Numbers Raw Audit Messages node=localhost.localdomain type=AVC msg=audit(1241544095.329:32): avc: denied { create } for pid=3754 comm="shutdown" scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=netlink_audit_socket node=localhost.localdomain type=SYSCALL msg=audit(1241544095.329:32): arch=c000003e syscall=41 success=no exit=-13 a0=10 a1=3 a2=9 a3=0 items=0 ppid=3753 pid=3754 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="shutdown" exe="/sbin/shutdown" subj=system_u:system_r:consolekit_t:s0-s0:c0.c1023 key=(null) Hash String generated from selinux-policy-3.6.12-23.fc11,catchall,shutdown,consolekit_t,consolekit_t,netlink_audit_socket,create audit2allow suggests: #============= consolekit_t ============== allow consolekit_t self:netlink_audit_socket create;
*** This bug has been marked as a duplicate of bug 538428 ***