Hide Forgot
Description of problem: Just found it in log http://beaker-archive.app.eng.bos.redhat.com/beaker-logs/2012/03/2009/200943/426298/4779846/26331681/test_log-Setup-avc.log when running useradd abrt-suid-test -M echo "kokotice" | passwd abrt-suid-test --stdin type=AVC msg=audit(1331109716.691:214428): avc: denied { write } for pid=19624 comm="passwd" path="/tmp/abrt-testsuite/test/bz783450-setuid-core-owned-by-root/full.log" dev=dm-0 ino=2229049 scontext=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_tmp_t:s0 tclass=file type=AVC msg=audit(1331109716.691:214428): avc: denied { write } for pid=19624 comm="passwd" path="/tmp/abrt-testsuite/test/bz783450-setuid-core-owned-by-root/full.log" dev=dm-0 ino=2229049 scontext=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_tmp_t:s0 tclass=file Version-Release number of selected component (if applicable): selinux-policy-3.7.19-138.el6.noarch
This is a test issue with beaker/passwd which is caused by $RUNNER_SCRIPT $test &> $logfile You will need to change a label for full.log to make this workig as you need. $ sesearch -A -s passwd_t -c file -p write
Please run "restorecon -Rv /etc" on that machine. rlFileRestore() is the culprit.