870542 – SELinux Errors With Subscription Manager on Fedora 17

Bug 870542 - SELinux Errors With Subscription Manager on Fedora 17

Summary: SELinux Errors With Subscription Manager on Fedora 17

Keywords:
Status:	CLOSED NEXTRELEASE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	selinux-policy
Sub Component:
Version:	17
Hardware:	Unspecified
OS:	Linux
Priority:	unspecified
Severity:	high
Target Milestone:	---
Assignee:	Miroslav Grepl
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	858227 (view as bug list)
Depends On:
Blocks:	rhsm-rhel70
TreeView+	depends on / blocked

Reported:	2012-10-26 19:20 UTC by Devan Goodwin
Modified:	2013-07-08 09:06 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2013-07-08 09:06:14 UTC
Type:	Bug
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Devan Goodwin 2012-10-26 19:20:20 UTC

Description of problem:

Appears to be a variety of issues with SELinux in rhsmcertd.

Version-Release number of selected component (if applicable):

subscription-manager-gui-1.1.3-1.git.44.7e0005a.fc17.x86_64
subscription-manager-1.1.3-1.git.44.7e0005a.fc17.x86_64
subscription-manager-migration-1.1.3-1.git.44.7e0005a.fc17.x86_64
subscription-manager-debuginfo-1.1.3-1.git.44.7e0005a.fc17.x86_64

How reproducible:

Very.

Steps to Reproduce:
1. Make sure selinux is enabled.
2. Drop a new installed product cert into /etc/pki/product/, or remove an existing one. (anything to trigger a change)
2. service rhsmcertd restart, and make sure to wait 2 minutes until rhsmcertd actually runs.
  
Actual results:

Firstly, errors in rhsm.log:

2012-10-26 12:16:00,819 [DEBUG]  @cert_sorter.py:107 - Sorting product and entitlement cert status for: 2012-10-26 15:16:00.819433+00:00
2012-10-26 12:16:00,821 [DEBUG]  @cert_sorter.py:160 - Installed product IDs: ['100000000000002', '37060']
2012-10-26 12:16:00,840 [DEBUG]  @cert_sorter.py:176 - Checking certificate: 1216144879176203600
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:176 - Checking certificate: 2770411572307165379
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:201 -   stack ID: 1
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:253 - Checking stack validity: 1
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:266 -   system has 1 sockets, 1 covered by entitlements
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:217 -   stack is valid
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:113 - valid entitled products: ['100000000000002', '37060']
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:114 - expired entitled products: []
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:115 - partially entitled products: []
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:116 - unentitled products: []
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:117 - future products: []
2012-10-26 12:16:00,841 [DEBUG]  @cert_sorter.py:118 - partial stacks: []
2012-10-26 12:16:00,842 [DEBUG]  @cert_sorter.py:119 - valid stacks: ['1']
2012-10-26 12:16:00,842 [INFO]  @cache.py:160 - Checking current system info against cache: /var/lib/rhsm/facts/facts.json
2012-10-26 12:16:00,842 [INFO]  @cache.py:162 - System data has changed, updating server.
2012-10-26 12:16:00,842 [DEBUG]  @facts.py:148 - Updating facts on server
2012-10-26 12:16:00,843 [DEBUG]  @connection.py:355 - Making request: PUT /candlepin/consumers/5ee35b1c-63aa-4a0d-a4eb-4b37ad54ad0f
2012-10-26 12:16:00,843 [ERROR]  @cache.py:170 - Error updating system data on the server
2012-10-26 12:16:00,843 [ERROR]  @cache.py:171 - [Errno 13] Permission denied
Traceback (most recent call last):
  File "/usr/share/rhsm/subscription_manager/cache.py", line 164, in update_check
    self._update_server(uep, consumer_uuid)
  File "/usr/share/rhsm/subscription_manager/facts.py", line 149, in _update_server
    uep.updateConsumer(consumer_uuid, facts=self.get_facts())
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 637, in updateConsumer
    ret = self.conn.request_put(method, params)
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 420, in request_put
    return self._request("PUT", method, params)
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 361, in _request
    conn.request(request_type, handler, body=body, headers=headers)
  File "/usr/lib64/python2.7/httplib.py", line 958, in request
    self._send_request(method, url, body, headers)
  File "/usr/lib64/python2.7/httplib.py", line 992, in _send_request
    self.endheaders(body)
  File "/usr/lib64/python2.7/httplib.py", line 954, in endheaders
    self._send_output(message_body)
  File "/usr/lib64/python2.7/httplib.py", line 814, in _send_output
    self.send(msg)
  File "/usr/lib64/python2.7/httplib.py", line 776, in send
    self.connect()
  File "/usr/lib64/python2.7/site-packages/M2Crypto/httpslib.py", line 73, in connect
    raise error
error: [Errno 13] Permission denied
2012-10-26 12:16:00,974 [WARNING]  @certmgr.py:103 - Exception caught while running <subscription_manager.factlib.FactLib object at 0x1411fd0> update
2012-10-26 12:16:00,974 [ERROR]  @certmgr.py:104 - Error updating system data on the server, see /var/log/rhsm/rhsm.log for more details.
Traceback (most recent call last):
  File "/usr/share/rhsm/subscription_manager/certmgr.py", line 99, in update
    updates += lib.update()
  File "/usr/share/rhsm/subscription_manager/certlib.py", line 61, in update
    return self._do_update()
  File "/usr/share/rhsm/subscription_manager/factlib.py", line 50, in _do_update
    facts.update_check(self.uep, consumer_uuid)
  File "/usr/share/rhsm/subscription_manager/cache.py", line 172, in update_check
    raise Exception(_("Error updating system data on the server, see /var/log/rhsm/rhsm.log "
Exception: Error updating system data on the server, see /var/log/rhsm/rhsm.log for more details.
2012-10-26 12:16:00,984 [DEBUG]  @connection.py:355 - Making request: GET /candlepin/
2012-10-26 12:16:00,984 [WARNING]  @certmgr.py:103 - Exception caught while running <subscription_manager.cache.PackageProfileLib object at 0x1411610> update
2012-10-26 12:16:00,984 [ERROR]  @certmgr.py:104 - [Errno 13] Permission denied
Traceback (most recent call last):
  File "/usr/share/rhsm/subscription_manager/certmgr.py", line 99, in update
    updates += lib.update()
  File "/usr/share/rhsm/subscription_manager/certlib.py", line 61, in update
    return self._do_update()
  File "/usr/share/rhsm/subscription_manager/cache.py", line 49, in _do_update
    return profile_mgr.update_check(self.uep, consumer_uuid)
  File "/usr/share/rhsm/subscription_manager/cache.py", line 214, in update_check
    if not uep.supports_resource(PACKAGES_RESOURCE):
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 549, in supports_resource
    self._load_supported_resources()
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 536, in _load_supported_resources
    resources_list = self.conn.request_get("/")
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 411, in request_get
    return self._request("GET", method)
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 361, in _request
    conn.request(request_type, handler, body=body, headers=headers)
  File "/usr/lib64/python2.7/httplib.py", line 958, in request
    self._send_request(method, url, body, headers)
  File "/usr/lib64/python2.7/httplib.py", line 992, in _send_request
    self.endheaders(body)
  File "/usr/lib64/python2.7/httplib.py", line 954, in endheaders
    self._send_output(message_body)
  File "/usr/lib64/python2.7/httplib.py", line 814, in _send_output
    self.send(msg)
  File "/usr/lib64/python2.7/httplib.py", line 776, in send
    self.connect()
  File "/usr/lib64/python2.7/site-packages/M2Crypto/httpslib.py", line 73, in connect
    raise error
error: [Errno 13] Permission denied
2012-10-26 12:16:00,986 [INFO]  @cache.py:160 - Checking current system info against cache: /var/lib/rhsm/cache/installed_products.json
2012-10-26 12:16:00,986 [INFO]  @cache.py:162 - System data has changed, updating server.
2012-10-26 12:16:00,987 [DEBUG]  @connection.py:355 - Making request: PUT /candlepin/consumers/5ee35b1c-63aa-4a0d-a4eb-4b37ad54ad0f
2012-10-26 12:16:00,987 [ERROR]  @cache.py:170 - Error updating system data on the server
2012-10-26 12:16:00,987 [ERROR]  @cache.py:171 - [Errno 13] Permission denied
Traceback (most recent call last):
  File "/usr/share/rhsm/subscription_manager/cache.py", line 164, in update_check
    self._update_server(uep, consumer_uuid)
  File "/usr/share/rhsm/subscription_manager/cache.py", line 291, in _update_server
    installed_products=self.format_for_server())
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 637, in updateConsumer
    ret = self.conn.request_put(method, params)
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 420, in request_put
    return self._request("PUT", method, params)
  File "/usr/lib64/python2.7/site-packages/rhsm/connection.py", line 361, in _request
    conn.request(request_type, handler, body=body, headers=headers)
  File "/usr/lib64/python2.7/httplib.py", line 958, in request
    self._send_request(method, url, body, headers)
  File "/usr/lib64/python2.7/httplib.py", line 992, in _send_request
    self.endheaders(body)
  File "/usr/lib64/python2.7/httplib.py", line 954, in endheaders
    self._send_output(message_body)
  File "/usr/lib64/python2.7/httplib.py", line 814, in _send_output
    self.send(msg)
  File "/usr/lib64/python2.7/httplib.py", line 776, in send
    self.connect()
  File "/usr/lib64/python2.7/site-packages/M2Crypto/httpslib.py", line 73, in connect
    raise error
error: [Errno 13] Permission denied
2012-10-26 12:16:00,987 [WARNING]  @certmgr.py:103 - Exception caught while running <subscription_manager.cache.InstalledProductsLib object at 0x1486310> update
2012-10-26 12:16:00,988 [ERROR]  @certmgr.py:104 - Error updating system data on the server, see /var/log/rhsm/rhsm.log for more details.
Traceback (most recent call last):
  File "/usr/share/rhsm/subscription_manager/certmgr.py", line 99, in update
    updates += lib.update()
  File "/usr/share/rhsm/subscription_manager/certlib.py", line 61, in update
    return self._do_update()
  File "/usr/share/rhsm/subscription_manager/cache.py", line 64, in _do_update
    return mgr.update_check(self.uep, consumer_uuid)
  File "/usr/share/rhsm/subscription_manager/cache.py", line 172, in update_check
    raise Exception(_("Error updating system data on the server, see /var/log/rhsm/rhsm.log "
Exception: Error updating system data on the server, see /var/log/rhsm/rhsm.log for more details.




Below are all the selinux errors from /var/log/audit/audit.log between running a service rhsmcertd restart, and waiting the 2 minutes for the server update to kick off:


type=AVC msg=audit(1351278623.886:608): avc:  denied  { signal } for  pid=12284 comm="rhsmcertd" scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:system_r:rhsmcertd_t:s0 tclass=process
type=SYSCALL msg=audit(1351278623.886:608): arch=c000003e syscall=234 success=no exit=-13 a0=2ffc a1=2ffc a2=f a3=8 items=0 ppid=1 pid=12284 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd" exe="/usr/bin/rhsmcertd" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=SERVICE_STOP msg=audit(1351278713.892:609): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=' comm="rhsmcertd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=failed'
type=SERVICE_START msg=audit(1351278713.962:610): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=' comm="rhsmcertd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
type=AVC msg=audit(1351278834.347:611): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="cpu" dev="sysfs" ino=37 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir
type=SYSCALL msg=audit(1351278834.347:611): arch=c000003e syscall=257 success=no exit=-13 a0=ffffffffffffff9c a1=24cd820 a2=90800 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.348:612): avc:  denied  { execute } for  pid=13234 comm="rhsmcertd-worke" name="bash" dev="dm-2" ino=264413 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1351278834.348:612): arch=c000003e syscall=59 success=no exit=-13 a0=3aee175a06 a1=7fffdc994ff0 a2=7fffdc998ca8 a3=7f876302ca10 items=0 ppid=13233 pid=13234 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.799:613): avc:  denied  { execute } for  pid=13253 comm="rhsmcertd-worke" name="bash" dev="dm-2" ino=264413 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1351278834.799:613): arch=c000003e syscall=59 success=no exit=-13 a0=24d0cf0 a1=2534370 a2=7fffdc998ca8 a3=20 items=0 ppid=13233 pid=13253 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.810:614): avc:  denied  { execute } for  pid=13255 comm="rhsmcertd-worke" name="bash" dev="dm-2" ino=264413 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1351278834.810:614): arch=c000003e syscall=59 success=no exit=-13 a0=3aee175a06 a1=7fffdc994b40 a2=7fffdc998ca8 a3=7f876302ca10 items=0 ppid=13233 pid=13255 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.845:615): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.845:615): arch=c000003e syscall=2 success=no exit=-13 a0=7f87573d0560 a1=0 a2=10000 a3=238 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.846:616): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.846:616): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fa0f4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.846:617): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.846:617): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fa304 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:618): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:618): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fa8f4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:619): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:619): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fccd4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:620): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:620): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fcee4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:621): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:621): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26faee4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:622): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:622): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fd4d4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:623): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:623): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fc2c4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:624): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:624): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fc4d4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:625): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:625): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fc6e4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:626): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:626): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fb4d4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:627): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:627): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fb6e4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278834.847:628): avc:  denied  { read } for  pid=13233 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278834.847:628): arch=c000003e syscall=21 success=no exit=-13 a0=7f87573d0560 a1=4 a2=26fdac4 a3=0 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278835.075:629): avc:  denied  { name_connect } for  pid=13233 comm="rhsmcertd-worke" dest=443 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:http_port_t:s0 tclass=tcp_socket
type=SYSCALL msg=audit(1351278835.075:629): arch=c000003e syscall=42 success=no exit=-13 a0=5 a1=7fffdc995c80 a2=10 a3=40 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278835.290:630): avc:  denied  { name_connect } for  pid=13233 comm="rhsmcertd-worke" dest=443 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:http_port_t:s0 tclass=tcp_socket
type=SYSCALL msg=audit(1351278835.290:630): arch=c000003e syscall=42 success=no exit=-13 a0=6 a1=7fffdc9961d0 a2=10 a3=40 items=0 ppid=13206 pid=13233 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278835.558:631): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="cpu" dev="sysfs" ino=37 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir
type=SYSCALL msg=audit(1351278835.558:631): arch=c000003e syscall=257 success=no exit=-13 a0=ffffffffffffff9c a1=2039e40 a2=90800 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278835.559:632): avc:  denied  { execute } for  pid=13338 comm="rhsmcertd-worke" name="bash" dev="dm-2" ino=264413 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1351278835.559:632): arch=c000003e syscall=59 success=no exit=-13 a0=3aee175a06 a1=7fffc3cfbaf0 a2=7fffc3cff7a0 a3=7f6516176a10 items=0 ppid=13313 pid=13338 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278835.994:633): avc:  denied  { execute } for  pid=13385 comm="rhsmcertd-worke" name="bash" dev="dm-2" ino=264413 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1351278835.994:633): arch=c000003e syscall=59 success=no exit=-13 a0=1a5fee0 a1=1ea8240 a2=7fffc3cff7a0 a3=20 items=0 ppid=13313 pid=13385 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278835.999:634): avc:  denied  { execute } for  pid=13386 comm="rhsmcertd-worke" name="bash" dev="dm-2" ino=264413 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1351278835.999:634): arch=c000003e syscall=59 success=no exit=-13 a0=3aee175a06 a1=7fffc3cfb640 a2=7fffc3cff7a0 a3=7f6516176a10 items=0 ppid=13313 pid=13386 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.009:635): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.009:635): arch=c000003e syscall=2 success=no exit=-13 a0=7f650a51a560 a1=0 a2=10000 a3=238 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.010:636): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.010:636): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217b134 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.010:637): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.010:637): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217b344 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:638): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:638): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217b934 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:639): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:639): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217dd14 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:640): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:640): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217df24 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:641): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:641): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217bf24 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:642): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:642): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217e514 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:643): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:643): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217d304 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:644): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:644): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217d514 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:645): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:645): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217d724 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:646): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:646): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217c514 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:647): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:647): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217c724 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.011:648): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278836.011:648): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217eb04 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.237:649): avc:  denied  { name_connect } for  pid=13313 comm="rhsmcertd-worke" dest=443 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:http_port_t:s0 tclass=tcp_socket
type=SYSCALL msg=audit(1351278836.237:649): arch=c000003e syscall=42 success=no exit=-13 a0=5 a1=7fffc3cfc780 a2=10 a3=40 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.461:650): avc:  denied  { name_connect } for  pid=13313 comm="rhsmcertd-worke" dest=443 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:http_port_t:s0 tclass=tcp_socket
type=SYSCALL msg=audit(1351278836.461:650): arch=c000003e syscall=42 success=no exit=-13 a0=6 a1=7fffc3cfccd0 a2=10 a3=40 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.676:651): avc:  denied  { name_connect } for  pid=13313 comm="rhsmcertd-worke" dest=443 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:http_port_t:s0 tclass=tcp_socket
type=SYSCALL msg=audit(1351278836.676:651): arch=c000003e syscall=42 success=no exit=-13 a0=5 a1=7fffc3cfc6e0 a2=10 a3=40 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.680:652): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="cpu" dev="sysfs" ino=37 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir
type=SYSCALL msg=audit(1351278836.680:652): arch=c000003e syscall=257 success=no exit=-13 a0=ffffffffffffff9c a1=21be4c0 a2=90800 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278836.681:653): avc:  denied  { execute } for  pid=13483 comm="rhsmcertd-worke" name="bash" dev="dm-2" ino=264413 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1351278836.681:653): arch=c000003e syscall=59 success=no exit=-13 a0=3aee175a06 a1=7fffc3cfbae0 a2=7fffc3cff7a0 a3=7f6516176a10 items=0 ppid=13313 pid=13483 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.115:654): avc:  denied  { execute } for  pid=13535 comm="rhsmcertd-worke" name="bash" dev="dm-2" ino=264413 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1351278837.115:654): arch=c000003e syscall=59 success=no exit=-13 a0=21add00 a1=21add40 a2=7fffc3cff7a0 a3=20 items=0 ppid=13313 pid=13535 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:655): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:655): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217b134 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:656): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:656): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217b344 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:657): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:657): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217b934 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:658): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:658): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217dd14 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:659): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:659): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217df24 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:660): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:660): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217bf24 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:661): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:661): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217e514 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:662): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:662): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217d304 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:663): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:663): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217d514 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:664): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:664): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217d724 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:665): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:665): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217c514 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:666): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:666): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217c724 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.118:667): avc:  denied  { read } for  pid=13313 comm="rhsmcertd-worke" name="mem" dev="devtmpfs" ino=6580 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:memory_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1351278837.118:667): arch=c000003e syscall=21 success=no exit=-13 a0=7f650a51a560 a1=4 a2=217eb04 a3=0 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.336:668): avc:  denied  { name_connect } for  pid=13313 comm="rhsmcertd-worke" dest=443 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:http_port_t:s0 tclass=tcp_socket
type=SYSCALL msg=audit(1351278837.336:668): arch=c000003e syscall=42 success=no exit=-13 a0=6 a1=7fffc3cfc770 a2=10 a3=40 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=AVC msg=audit(1351278837.555:669): avc:  denied  { name_connect } for  pid=13313 comm="rhsmcertd-worke" dest=443 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:object_r:http_port_t:s0 tclass=tcp_socket
type=SYSCALL msg=audit(1351278837.555:669): arch=c000003e syscall=42 success=no exit=-13 a0=5 a1=7fffc3cfc8d0 a2=10 a3=40 items=0 ppid=13206 pid=13313 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="rhsmcertd-worke" exe="/usr/bin/python2.7" subj=system_u:system_r:rhsmcertd_t:s0 key=(null)
type=USER_END msg=audit(1351278876.094:670): pid=6123 uid=0 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_close acct="root" exe="/usr/bin/su" hostname=? addr=? terminal=pts/4 res=success'
type=CRED_DISP msg=audit(1351278876.115:671): pid=6123 uid=0 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred acct="root" exe="/usr/bin/su" hostname=? addr=? terminal=pts/4 res=success'




Expected results:


No selinux errors.



Additional info:

The above was run on Fedora 17 registered to hosted. 

The first couple audit messages are from restarting the service itself, the service stop is very slow as a result of the first denial.

Comment 1 Devan Goodwin 2012-10-26 19:21:10 UTC

*** Bug 858227 has been marked as a duplicate of this bug. ***

Comment 2 Devan Goodwin 2012-10-26 19:28:59 UTC

I'm told this should be against selinux-policy, moving components.

Looks related to this RHEL 7 bug, maybe a backport needed? bug #822402

Comment 3 Fedora End Of Life 2013-07-04 00:51:57 UTC

This message is a reminder that Fedora 17 is nearing its end of life.
Approximately 4 (four) weeks from now Fedora will stop maintaining
and issuing updates for Fedora 17. It is Fedora's policy to close all
bug reports from releases that are no longer maintained. At that time
this bug will be closed as WONTFIX if it remains open with a Fedora 
'version' of '17'.

Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a currently maintained version, simply change the 'version' 
to a later Fedora version prior to Fedora 17's end of life.

Bug Reporter:  Thank you for reporting this issue and we are sorry that 
we may not be able to fix it before Fedora 17 is end of life. If you 
would still like  to see this bug fixed and are able to reproduce it 
against a later version  of Fedora, you are encouraged  change the 
'version' to a later Fedora version prior to Fedora 17's end of life.

Although we aim to fix as many bugs as possible during every release's 
lifetime, sometimes those efforts are overtaken by events. Often a 
more recent Fedora release includes newer upstream software that fixes 
bugs or makes them obsolete.

Note You need to log in before you can comment on or make changes to this bug.