automount policy still broken
Daniel J Walsh
dwalsh at redhat.com
Fri Jun 9 00:33:14 UTC 2006
Tom London wrote:
> Running latest rawhide, targeted/enforcing.
You mean automount is still broken, and SELinux is showing the evilness
of its ways. :^)
I have added some fixes in tonights rawhide, but will not allow
automount to execute insmod.
There is a bugzilla on this to make it use the init script.
>
> Automount still fails:
>
> type=AVC msg=audit(1149695027.054:8): avc: denied { search } for
> pid=2322 comm="automount" name="irq" dev=proc ino=-268435218
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:object_r:sysctl_irq_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.054:8): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.054:8): cwd="/"
> type=PATH msg=audit(1149695027.054:8): item=0 name="/proc/irq/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.054:9): avc: denied { search } for
> pid=2322 comm="automount" name="net" dev=proc ino=-268435432
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:object_r:proc_net_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.054:9): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.054:9): cwd="/"
> type=PATH msg=audit(1149695027.054:9): item=0 name="/proc/net/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.058:10): avc: denied { search } for
> pid=2322 comm="automount" name="1" dev=proc ino=65538
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:init_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.058:10): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.058:10): cwd="/"
> type=PATH msg=audit(1149695027.058:10): item=0 name="/proc/1/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.058:11): avc: denied { search } for
> pid=2322 comm="automount" name="2" dev=proc ino=131074
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.058:11): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.058:11): cwd="/"
> type=PATH msg=audit(1149695027.058:11): item=0 name="/proc/2/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.058:12): avc: denied { search } for
> pid=2322 comm="automount" name="3" dev=proc ino=196610
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.058:12): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.058:12): cwd="/"
> type=PATH msg=audit(1149695027.058:12): item=0 name="/proc/3/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.058:13): avc: denied { search } for
> pid=2322 comm="automount" name="4" dev=proc ino=262146
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.058:13): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.058:13): cwd="/"
> type=PATH msg=audit(1149695027.058:13): item=0 name="/proc/4/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.058:14): avc: denied { search } for
> pid=2322 comm="automount" name="5" dev=proc ino=327682
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.058:14): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.058:14): cwd="/"
> type=PATH msg=audit(1149695027.058:14): item=0 name="/proc/5/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.058:15): avc: denied { search } for
> pid=2322 comm="automount" name="6" dev=proc ino=393218
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.058:15): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.058:15): cwd="/"
> type=PATH msg=audit(1149695027.058:15): item=0 name="/proc/6/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.058:16): avc: denied { search } for
> pid=2322 comm="automount" name="7" dev=proc ino=458754
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.058:16): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.058:16): cwd="/"
> type=PATH msg=audit(1149695027.058:16): item=0 name="/proc/7/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:17): avc: denied { search } for
> pid=2322 comm="automount" name="9" dev=proc ino=589826
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:17): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:17): cwd="/"
> type=PATH msg=audit(1149695027.062:17): item=0 name="/proc/9/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:18): avc: denied { search } for
> pid=2322 comm="automount" name="10" dev=proc ino=655362
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:18): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:18): cwd="/"
> type=PATH msg=audit(1149695027.062:18): item=0 name="/proc/10/cmdline"
> obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:19): avc: denied { search } for
> pid=2322 comm="automount" name="119" dev=proc ino=7798786
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:19): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:19): cwd="/"
> type=PATH msg=audit(1149695027.062:19): item=0
> name="/proc/119/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:20): avc: denied { search } for
> pid=2322 comm="automount" name="121" dev=proc ino=7929858
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:20): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:20): cwd="/"
> type=PATH msg=audit(1149695027.062:20): item=0
> name="/proc/121/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:21): avc: denied { search } for
> pid=2322 comm="automount" name="175" dev=proc ino=11468802
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:21): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:21): cwd="/"
> type=PATH msg=audit(1149695027.062:21): item=0
> name="/proc/175/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:22): avc: denied { search } for
> pid=2322 comm="automount" name="176" dev=proc ino=11534338
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:22): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:22): cwd="/"
> type=PATH msg=audit(1149695027.062:22): item=0
> name="/proc/176/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:23): avc: denied { search } for
> pid=2322 comm="automount" name="177" dev=proc ino=11599874
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:23): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:23): cwd="/"
> type=PATH msg=audit(1149695027.062:23): item=0
> name="/proc/177/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:24): avc: denied { search } for
> pid=2322 comm="automount" name="178" dev=proc ino=11665410
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:24): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:24): cwd="/"
> type=PATH msg=audit(1149695027.062:24): item=0
> name="/proc/178/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:25): avc: denied { search } for
> pid=2322 comm="automount" name="325" dev=proc ino=21299202
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:25): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:25): cwd="/"
> type=PATH msg=audit(1149695027.062:25): item=0
> name="/proc/325/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:26): avc: denied { search } for
> pid=2322 comm="automount" name="336" dev=proc ino=22020098
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:26): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:26): cwd="/"
> type=PATH msg=audit(1149695027.062:26): item=0
> name="/proc/336/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:27): avc: denied { search } for
> pid=2322 comm="automount" name="357" dev=proc ino=23396354
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:27): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:27): cwd="/"
> type=PATH msg=audit(1149695027.062:27): item=0
> name="/proc/357/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.062:28): avc: denied { search } for
> pid=2322 comm="automount" name="362" dev=proc ino=23724034
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.062:28): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.062:28): cwd="/"
> type=PATH msg=audit(1149695027.062:28): item=0
> name="/proc/362/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:29): avc: denied { search } for
> pid=2322 comm="automount" name="393" dev=proc ino=25755650
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:29): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:29): cwd="/"
> type=PATH msg=audit(1149695027.066:29): item=0
> name="/proc/393/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:30): avc: denied { search } for
> pid=2322 comm="automount" name="403" dev=proc ino=26411010
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:30): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:30): cwd="/"
> type=PATH msg=audit(1149695027.066:30): item=0
> name="/proc/403/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:31): avc: denied { search } for
> pid=2322 comm="automount" name="474" dev=proc ino=31064066
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:udev_t:s0-s0:c0.c255 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:31): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:31): cwd="/"
> type=PATH msg=audit(1149695027.066:31): item=0
> name="/proc/474/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:32): avc: denied { search } for
> pid=2322 comm="automount" name="810" dev=proc ino=53084162
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:32): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:32): cwd="/"
> type=PATH msg=audit(1149695027.066:32): item=0
> name="/proc/810/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:33): avc: denied { search } for
> pid=2322 comm="automount" name="1588" dev=proc ino=104071170
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:33): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:33): cwd="/"
> type=PATH msg=audit(1149695027.066:33): item=0
> name="/proc/1588/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:34): avc: denied { search } for
> pid=2322 comm="automount" name="1651" dev=proc ino=108199938
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:34): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:34): cwd="/"
> type=PATH msg=audit(1149695027.066:34): item=0
> name="/proc/1651/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:35): avc: denied { search } for
> pid=2322 comm="automount" name="1705" dev=proc ino=111738882
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:cpuspeed_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:35): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:35): cwd="/"
> type=PATH msg=audit(1149695027.066:35): item=0
> name="/proc/1705/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:36): avc: denied { search } for
> pid=2322 comm="automount" name="1989" dev=proc ino=130351106
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:dhcpc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:36): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:36): cwd="/"
> type=PATH msg=audit(1149695027.066:36): item=0
> name="/proc/1989/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:37): avc: denied { search } for
> pid=2322 comm="automount" name="2036" dev=proc ino=133431298
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:auditd_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:37): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:37): cwd="/"
> type=PATH msg=audit(1149695027.066:37): item=0
> name="/proc/2036/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:38): avc: denied { search } for
> pid=2322 comm="automount" name="2038" dev=proc ino=133562370
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:38): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:38): cwd="/"
> type=PATH msg=audit(1149695027.066:38): item=0
> name="/proc/2038/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.066:39): avc: denied { search } for
> pid=2322 comm="automount" name="2052" dev=proc ino=134479874
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:setrans_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.066:39): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.066:39): cwd="/"
> type=PATH msg=audit(1149695027.066:39): item=0
> name="/proc/2052/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.070:40): avc: denied { search } for
> pid=2322 comm="automount" name="2061" dev=proc ino=135069698
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:syslogd_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.070:40): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.070:40): cwd="/"
> type=PATH msg=audit(1149695027.070:40): item=0
> name="/proc/2061/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.070:41): avc: denied { search } for
> pid=2322 comm="automount" name="2064" dev=proc ino=135266306
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:klogd_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.070:41): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.070:41): cwd="/"
> type=PATH msg=audit(1149695027.070:41): item=0
> name="/proc/2064/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.070:42): avc: denied { search } for
> pid=2322 comm="automount" name="2088" dev=proc ino=136839170
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:portmap_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.070:42): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.070:42): cwd="/"
> type=PATH msg=audit(1149695027.070:42): item=0
> name="/proc/2088/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.070:43): avc: denied { search } for
> pid=2322 comm="automount" name="2107" dev=proc ino=138084354
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:rpcd_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.070:43): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.070:43): cwd="/"
> type=PATH msg=audit(1149695027.070:43): item=0
> name="/proc/2107/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.070:44): avc: denied { search } for
> pid=2322 comm="automount" name="2136" dev=proc ino=139984898
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:rpcd_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.070:44): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.070:44): cwd="/"
> type=PATH msg=audit(1149695027.070:44): item=0
> name="/proc/2136/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:45): avc: denied { search } for
> pid=2322 comm="automount" name="2177" dev=proc ino=142671874
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:45): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:45): cwd="/"
> type=PATH msg=audit(1149695027.074:45): item=0
> name="/proc/2177/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:46): avc: denied { search } for
> pid=2322 comm="automount" name="2187" dev=proc ino=143327234
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:46): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:46): cwd="/"
> type=PATH msg=audit(1149695027.074:46): item=0
> name="/proc/2187/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:47): avc: denied { search } for
> pid=2322 comm="automount" name="2217" dev=proc ino=145293314
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:47): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:47): cwd="/"
> type=PATH msg=audit(1149695027.074:47): item=0
> name="/proc/2217/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:48): avc: denied { search } for
> pid=2322 comm="automount" name="2235" dev=proc ino=146472962
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:48): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:48): cwd="/"
> type=PATH msg=audit(1149695027.074:48): item=0
> name="/proc/2235/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:49): avc: denied { search } for
> pid=2322 comm="automount" name="2254" dev=proc ino=147718146
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:49): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:49): cwd="/"
> type=PATH msg=audit(1149695027.074:49): item=0
> name="/proc/2254/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:50): avc: denied { search } for
> pid=2322 comm="automount" name="2267" dev=proc ino=148570114
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:system_dbusd_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:50): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:50): cwd="/"
> type=PATH msg=audit(1149695027.074:50): item=0
> name="/proc/2267/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:51): avc: denied { search } for
> pid=2322 comm="automount" name="2268" dev=proc ino=148635650
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:51): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:51): cwd="/"
> type=PATH msg=audit(1149695027.074:51): item=0
> name="/proc/2268/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:52): avc: denied { search } for
> pid=2322 comm="automount" name="2271" dev=proc ino=148832258
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:52): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:52): cwd="/"
> type=PATH msg=audit(1149695027.074:52): item=0
> name="/proc/2271/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:53): avc: denied { search } for
> pid=2322 comm="automount" name="2310" dev=proc ino=151388162
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:bluetooth_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:53): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:53): cwd="/"
> type=PATH msg=audit(1149695027.074:53): item=0
> name="/proc/2310/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:54): avc: denied { search } for
> pid=2322 comm="automount" name="2318" dev=proc ino=151912450
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:initrc_t:s0 tclass=dir
> type=SYSCALL msg=audit(1149695027.074:54): arch=40000003 syscall=5
> success=no exit=-13 a0=bfec7988 a1=0 a2=1b6 a3=9e7b290 items=1
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.074:54): cwd="/"
> type=PATH msg=audit(1149695027.074:54): item=0
> name="/proc/2318/cmdline" obj=system_u:object_r:proc_t:s0
> type=AVC msg=audit(1149695027.074:55): avc: denied { setrlimit } for
> pid=2322 comm="automount" scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:system_r:automount_t:s0 tclass=process
> type=SYSCALL msg=audit(1149695027.074:55): arch=40000003 syscall=75
> success=no exit=-13 a0=7 a1=bfec9414 a2=b38ff4 a3=bfec9414 items=0
> pid=2322 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=AVC msg=audit(1149695027.078:56): avc: denied { execute } for
> pid=2327 comm="automount" name="modprobe" dev=dm-0 ino=2687054
> scontext=system_u:system_r:automount_t:s0
> tcontext=system_u:object_r:insmod_exec_t:s0 tclass=file
> type=SYSCALL msg=audit(1149695027.078:56): arch=40000003 syscall=11
> success=no exit=-13 a0=2edebf a1=bfec58b0 a2=9e791e8 a3=2edebf items=1
> pid=2327 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
> sgid=0 fsgid=0 tty=(none) comm="automount" exe="/usr/sbin/automount"
> subj=system_u:system_r:automount_t:s0
> type=CWD msg=audit(1149695027.078:56): cwd="/"
> type=PATH msg=audit(1149695027.078:56): item=0 name="/sbin/modprobe"
> inode=2687054 dev=fd:00 mode=0100755 ouid=0 ogid=0 rdev=00:00
> obj=system_u:object_r:insmod_exec_t:s0
>
>
More information about the fedora-selinux-list
mailing list