Hello list!
a have something strange :-) I'm playing with selinux and i got a lot of
avc messages(the complete dmesg output is attached). I suppose the
reason of the most avc-messages is the wrong labeling, wrong
booleans-settings, missing modules ... But my problem is that i don't
understand how some messages can occur.
One these msg:
avc: denied { getattr } for pid=1 comm="init" name="initctl" dev=hda2
ino=219229 scontext=system_u:system_r:init_t
tcontext=root:object_r:device_t tclass=fifo_file
But the fifo /dev/initctl has the context system_u:object_r:initctl_t
and the inode of /dev/initctl is 10609.
It looks as if udev after creating of /dev/... devices would first label
files in /dev as device_t, then init-process would access the file and
finally the /dev/initctl would be relabeled to initctl_t.
The similar story with /dev/null:
avc: denied { write } for pid=1126 comm="bash" name="null" dev=tmpfs
ino=1445 scontext=system_u:system_r:initrc_t
tcontext=system_u:object_r:device_t tclass=chr_file
but now the inode 1445 belongs to /dev/null
I tried to relabel again and again(with 'rlpkg -a' and with 'make
restorelabels'), i restarted the machine a lot of times.
Any ideas?
I'm using gentoo with hardened profile
(/usr/portage/profiles/selinux/2007.0/x86/hardened), reference-policy
version 20080402(compiled manually), xen-3.3 and kernel 2.6.21-xen
Sorry for my bad English :-)
Kind regards
Eugen
Linux version 2.6.21-xen (r...@vmfitx) (gcc version 3.4.6 (Gentoo Hardened
3.4.6-r2 p1.5, ssp-3.4.6-1.0, pie-8.7.10)) #1 SMP Thu May 28 11:30:01 CEST 2009
BIOS-provided physical RAM map:
sanitize start
sanitize bail 0
copy_e820_map() start: 0000000000000000 size: 00000000ef050000 end:
00000000ef050000 type: 1
Xen: 0000000000000000 - 00000000ef050000 (usable)
3096MB HIGHMEM available.
727MB LOWMEM available.
NX (Execute Disable) protection: active
Entering add_active_range(0, 0, 979024) 0 entries of 256 used
Zone PFN ranges:
DMA 0 -> 186366
Normal 186366 -> 186366
HighMem 186366 -> 979024
early_node_map[1] active PFN ranges
0: 0 -> 979024
On node 0 totalpages: 979024
DMA zone: 1455 pages used for memmap
DMA zone: 0 pages reserved
DMA zone: 184911 pages, LIFO batch:31
Normal zone: 0 pages used for memmap
HighMem zone: 6192 pages used for memmap
HighMem zone: 786466 pages, LIFO batch:31
found SMP MP-table at 000f73a0
DMI present.
ACPI: RSDP 000F72A0, 0014 (r0 PTLTD )
ACPI: RSDT DF4C4CD7, 0058 (r1 PTLTD RSDT 60000 LTP 0)
ACPI: FACP DF4C9A2B, 0074 (r1 FSC 60000 F4240)
ACPI: DSDT DF4C4D2F, 4CFC (r1 FSC D2584/A1 60000 MSFT 3000001)
ACPI: FACS DF4CAFC0, 0040
ACPI: TCPA DF4C9A9F, 0032 (r1 Phoeni x 60000 TL 0)
ACPI: DMAR DF4C9AD1, 00F8 (r1 Intel OEMDMAR 60000 LOHR 1)
ACPI: SSDT DF4C9BC9, 007A (r1 FSC CST_CPU0 60000 CSF 1)
ACPI: SSDT DF4C9C43, 007A (r1 FSC CST_CPU1 60000 CSF 1)
ACPI: SSDT DF4C9CBD, 00B6 (r1 FSC PST_CPU0 60000 CSF 1)
ACPI: SSDT DF4C9D73, 00B6 (r1 FSC PST_CPU1 60000 CSF 1)
ACPI: SPCR DF4C9E29, 0050 (r1 PTLTD $UCRTBL$ 60000 PTL 1)
ACPI: MCFG DF4C9E79, 003C (r1 PTLTD MCFG 60000 LTP 0)
ACPI: HPET DF4C9EB5, 0038 (r1 PTLTD HPETTBL 60000 LTP 1)
ACPI: APIC DF4C9EED, 0068 (r1 PTLTD APIC 60000 LTP 0)
ACPI: BOOT DF4C9F55, 0028 (r1 PTLTD $SBFTBL$ 60000 LTP 1)
ACPI: ASF! DF4C9F7D, 0083 (r16 CETP CETP 60000 PTL 1)
ACPI: Local APIC address 0xfee00000
ACPI: LAPIC (acpi_id[0x00] lapic_id[0x00] enabled)
ACPI: LAPIC (acpi_id[0x01] lapic_id[0x01] enabled)
ACPI: LAPIC_NMI (acpi_id[0x00] high edge lint[0x1])
ACPI: LAPIC_NMI (acpi_id[0x01] high edge lint[0x1])
ACPI: IOAPIC (id[0x02] address[0xfec00000] gsi_base[0])
IOAPIC[0]: apic_id 2, version 32, address 0xfec00000, GSI 0-23
ACPI: INT_SRC_OVR (bus 0 bus_irq 0 global_irq 2 high edge)
ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 high level)
ACPI: IRQ0 used by override.
ACPI: IRQ2 used by override.
ACPI: IRQ9 used by override.
Enabling APIC mode: Flat. Using 1 I/O APICs
Using ACPI (MADT) for SMP configuration information
Detected 2660.254 MHz processor.
Built 1 zonelists. Total pages: 971377
Kernel command line: root=/dev/hda2 ro panic=0 console=tty0 selinux=1
Enabling fast FPU save and restore... done.
Enabling unmasked SIMD FPU exception support... done.
Initializing CPU#0
PID hash table entries: 4096 (order: 12, 16384 bytes)
Xen reported: 2660.042 MHz processor.
Console: colour VGA+ 80x25
Dentry cache hash table entries: 131072 (order: 7, 524288 bytes)
Inode-cache hash table entries: 65536 (order: 6, 262144 bytes)
Software IO TLB enabled:
Aperture: 64 megabytes
Kernel range: c2ef0000 - c6ef0000
Address size: 27 bits
vmalloc area: ee000000-f51fe000, maxmem 2d7fe000
Memory: 3797016k/3916096k available (4038k kernel code, 109760k reserved, 1773k
data, 260k init, 3170632k highmem)
virtual kernel memory layout:
fixmap : 0xf54f5000 - 0xf57fe000 (3108 kB)
pkmap : 0xf5200000 - 0xf5400000 (2048 kB)
vmalloc : 0xee000000 - 0xf51fe000 ( 113 MB)
lowmem : 0xc0000000 - 0xed7fe000 ( 727 MB)
.init : 0xc06b6000 - 0xc06f7000 ( 260 kB)
.data : 0xc04f1b87 - 0xc06ad254 (1773 kB)
.text : 0xc0100000 - 0xc04f1b87 (4038 kB)
Checking if this processor honours the WP bit even in supervisor mode... Ok.
Calibrating delay using timer specific routine.. 5322.19 BogoMIPS (lpj=10644395)
Security Framework v1.0.0 initialized
SELinux: Initializing.
SELinux: Starting in permissive mode
selinux_register_security: Registering secondary module capability
Capability LSM initialized as secondary
Mount-cache hash table entries: 512
CPU: After generic identify, caps: 1fc99375 00100000 00000000 00000000 00000281
00000000 00000000
CPU: L1 I cache: 32K, L1 D cache: 32K
CPU: L2 cache: 4096K
CPU: After all inits, caps: 1fc99375 00100000 00000000 00000140 00000281
00000000 00000000
Checking 'hlt' instruction... OK.
Freeing SMP alternatives: 20k freed
ACPI: Core revision 20070126
Parsing all Control Methods:
Table [DSDT](id 0001) - 639 Objects with 61 Devices 135 Methods 34 Regions
Parsing all Control Methods:
Table [SSDT](id 0002) - 1 Objects with 0 Devices 0 Methods 0 Regions
Parsing all Control Methods:
Table [SSDT](id 0003) - 1 Objects with 0 Devices 0 Methods 0 Regions
Parsing all Control Methods:
Table [SSDT](id 0004) - 3 Objects with 0 Devices 0 Methods 0 Regions
Parsing all Control Methods:
Table [SSDT](id 0005) - 3 Objects with 0 Devices 0 Methods 0 Regions
tbxface-0587 [02] tb_load_namespace : ACPI Tables successfully acquired
evxfevnt-0091 [02] enable : Transition to ACPI mode successful
ENABLING IO-APIC IRQs
Brought up 2 CPUs
Initializing CPU#1
migration_cost=9
NET: Registered protocol family 16
ACPI: bus type pci registered
PCI: BIOS Bug: MCFG area at f8000000 is not E820-reserved
PCI: Not using MMCONFIG.
PCI: Using configuration type 1
Setting up standard PCI resources
Allocating PCI resources starting at e2000000 (gap: e0200000:17e00000)
evgpeblk-0952 [04] ev_create_gpe_block : GPE 00 to 3F [_GPE] 8 regs on int 0x9
evgpeblk-1049 [03] ev_initialize_gpe_bloc: Found 10 Wake, Enabled 2 Runtime
GPEs in this block
Completing Region/Field/Buffer/Package
initialization:....................................................................................
Initialized 34/34 Regions 0/0 Fields 28/28 Buffers 22/38 Packages (656 nodes)
Initializing Device/Processor/Thermal objects by executing _INI methods:..
Executed 2 _INI methods requiring 3 _STA executions (examined 71 objects)
ACPI: Interpreter enabled
ACPI: Using IOAPIC for interrupt routing
ACPI: Device [ECP] status [00000008]: functional but not present; setting
present
ACPI: Device [COM2] status [00000008]: functional but not present; setting
present
ACPI: PCI Root Bridge [PCI0] (0000:00)
PCI: Probing PCI hardware (bus 00)
Boot video device is 0000:00:02.0
PCI: Transparent bridge - 0000:00:1e.0
ACPI: PCI Interrupt Routing Table [\_SB_.PCI0._PRT]
ACPI: PCI Interrupt Routing Table [\_SB_.PCI0.PEXB._PRT]
ACPI: PCI Interrupt Routing Table [\_SB_.PCI0.PEXC._PRT]
ACPI: PCI Interrupt Routing Table [\_SB_.PCI0.PCIH._PRT]
ACPI: PCI Interrupt Link [LNKA] (IRQs 3 4 7 9 10 *11 12 14 15)
ACPI: PCI Interrupt Link [LNKB] (IRQs 3 4 7 9 10 11 12 14 15) *5
ACPI: PCI Interrupt Link [LNKC] (IRQs 3 4 7 9 *10 11 12 14 15)
ACPI: PCI Interrupt Link [LNKD] (IRQs 3 4 7 9 10 *11 12 14 15)
ACPI: PCI Interrupt Link [LNKE] (IRQs 3 4 7 *9 10 11 12 14 15)
ACPI: PCI Interrupt Link [LNKF] (IRQs 3 4 7 9 10 *11 12 14 15)
ACPI: PCI Interrupt Link [LNKG] (IRQs 3 4 7 9 10 *11 12 14 15)
ACPI: PCI Interrupt Link [LNKH] (IRQs 3 4 7 9 10 *11 12 14 15)
Linux Plug and Play Support v0.97 (c) Adam Belay
pnp: PnP ACPI init
pnp: PnP ACPI: found 14 devices
xen_mem: Initialising balloon driver.
SCSI subsystem initialized
libata version 2.20 loaded.
usbcore: registered new interface driver usbfs
usbcore: registered new interface driver hub
usbcore: registered new device driver usb
PCI: Using ACPI for IRQ routing
PCI: If a device doesn't work, try "pci=routeirq". If it helps, post a report
PCI: Cannot allocate resource region 7 of bridge 0000:00:1c.0
PCI: Cannot allocate resource region 7 of bridge 0000:00:1c.4
PCI: Cannot allocate resource region 2 of device 0000:00:02.0
pnp: 00:03: iomem range 0xfec00000-0xfecfffff could not be reserved
pnp: 00:03: iomem range 0xfee00000-0xfeefffff could not be reserved
pnp: 00:03: iomem range 0xf8000000-0xfbffffff could not be reserved
pnp: 00:03: iomem range 0xfed19000-0xfed19fff has been reserved
PCI: Ignore bogus resource 6 [0:0] of 0000:00:02.0
PCI: Bridge: 0000:00:1c.0
IO window: disabled.
MEM window: disabled.
PREFETCH window: disabled.
PCI: Bridge: 0000:00:1c.4
IO window: disabled.
MEM window: disabled.
PREFETCH window: disabled.
PCI: Bridge: 0000:00:1e.0
IO window: 2000-2fff
MEM window: f0100000-f01fffff
PREFETCH window: disabled.
ACPI: PCI Interrupt 0000:00:1c.0[A] -> GSI 18 (level, low) -> IRQ 16
PCI: Setting latency timer of device 0000:00:1c.0 to 64
ACPI: PCI Interrupt 0000:00:1c.4[B] -> GSI 22 (level, low) -> IRQ 17
PCI: Setting latency timer of device 0000:00:1c.4 to 64
PCI: Setting latency timer of device 0000:00:1e.0 to 64
NET: Registered protocol family 2
IP route cache hash table entries: 32768 (order: 5, 131072 bytes)
TCP established hash table entries: 131072 (order: 8, 1572864 bytes)
TCP bind hash table entries: 65536 (order: 7, 524288 bytes)
TCP: Hash tables configured (established 131072 bind 65536)
TCP reno registered
Simple Boot Flag at 0x43 set to 0x1
IA-32 Microcode Update Driver: v1.14a-xen <tig...@veritas.com>
audit: initializing netlink socket (disabled)
audit(1244023317.147:1): initialized
highmem bounce pool size: 64 pages
Installing knfsd (copyright (C) 1996 o...@monad.swb.de).
NTFS driver 2.1.28 [Flags: R/W].
JFS: nTxBlock = 8192, nTxLock = 65536
SGI XFS with security attributes, large block numbers, no debug enabled
io scheduler noop registered
io scheduler anticipatory registered (default)
io scheduler deadline registered
io scheduler cfq registered
input: Power Button (FF) as /class/input/input0
ACPI: Power Button (FF) [PWRF]
input: Power Button (CM) as /class/input/input1
ACPI: Power Button (CM) [PWRB]
ACPI: CPU0 (power states: C1[C1] C2[C2])
ACPI: CPU1 (power states: C1[C1] C2[C2])
Real Time Clock Driver v1.12ac
hpet_acpi_add: no address or irqs in _CRS
Linux agpgart interface v0.102 (c) Dave Jones
Hangcheck: starting hangcheck timer 0.9.0 (tick is 180 seconds, margin is 60
seconds).
Hangcheck: Using get_cycles().
Floppy drive(s): fd0 is 1.44M
FDC 0 is a post-1991 82077
RAMDISK driver initialized: 16 RAM disks of 8192K size 1024 blocksize
loop: loaded (max 8 devices)
Intel(R) PRO/1000 Network Driver - version 7.3.20-k2
Copyright (c) 1999-2006 Intel Corporation.
e100: Intel(R) PRO/100 Network Driver, 3.5.17-k2-NAPI
e100: Copyright(c) 1999-2006 Intel Corporation
forcedeth.c: Reverse Engineered nForce ethernet driver. Version 0.60.
8139cp: 10/100 PCI Ethernet driver v1.3 (Mar 22, 2004)
8139cp 0000:11:05.0: This (id 10ec:8139 rev 10) is not an 8139C+ compatible chip
8139cp 0000:11:05.0: Try the "8139too" driver instead.
8139too Fast Ethernet driver 0.9.28
ACPI: PCI Interrupt 0000:11:05.0[A] -> GSI 22 (level, low) -> IRQ 17
eth0: RealTek RTL8139 at 0xee020000, 00:40:f4:3c:73:08, IRQ 17
eth0: Identified 8139 chip type 'RTL-8139C'
netconsole: not configured, aborting
Xen virtual console successfully installed as ttyS0
Event-channel device installed.
Uniform Multi-Platform E-IDE driver Revision: 7.00alpha2
ide: Assuming 33MHz system bus speed for PIO modes; override with idebus=xx
Probing IDE interface ide0...
hda: ST3160815AS, ATA DISK drive
Probing IDE interface ide1...
hdc: TSSTcorp CDDVDW TS-H653B, ATAPI CD/DVD-ROM drive
ide0 at 0x1f0-0x1f7,0x3f6 on irq 14
ide1 at 0x170-0x177,0x376 on irq 15
hda: max request size: 512KiB
hda: 312581808 sectors (160041 MB) w/8192KiB Cache, CHS=19457/255/63
hda: cache flushes supported
hda: hda1 hda2 hda3 hda4 < hda5 hda6 hda7 >
hdc: ATAPI 32X DVD-ROM DVD-R-RAM CD-R/RW drive, 2048kB Cache
Uniform CD-ROM driver Revision: 3.20
3ware Storage Controller device driver for Linux v1.26.02.002.
ata_piix 0000:00:1f.2: version 2.10ac1
ata_piix 0000:00:1f.2: MAP [ P0 P2 P1 P3 ]
ACPI: PCI Interrupt 0000:00:1f.2[B] -> GSI 19 (level, low) -> IRQ 18
ata: 0x1F0 IDE port busy
ata: conflict with ide0
ata: 0x170 IDE port busy
ata: conflict with ide1
ata_piix: probe of 0000:00:1f.2 failed with error -16
ata_piix 0000:00:1f.5: MAP [ P0 P2 P1 P3 ]
ACPI: PCI Interrupt 0000:00:1f.5[C] -> GSI 22 (level, low) -> IRQ 17
PCI: Setting latency timer of device 0000:00:1f.5 to 64
ata1: SATA max UDMA/133 cmd 0x00011cc0 ctl 0x00011cb6 bmdma 0x00011c60 irq 17
ata2: SATA max UDMA/133 cmd 0x00011cb8 ctl 0x00011cb2 bmdma 0x00011c68 irq 17
scsi0 : ata_piix
ATA: abnormal status 0x7F on port 0x00011cc7
scsi1 : ata_piix
ATA: abnormal status 0x7F on port 0x00011cbf
Fusion MPT base driver 3.04.04
Copyright (c) 1999-2007 LSI Logic Corporation
Fusion MPT SPI Host driver 3.04.04
ieee1394: raw1394: /dev/raw1394 device initialized
usbmon: debugfs is not available
ACPI: PCI Interrupt 0000:00:1a.7[B] -> GSI 18 (level, low) -> IRQ 16
PCI: Setting latency timer of device 0000:00:1a.7 to 64
ehci_hcd 0000:00:1a.7: EHCI Host Controller
ehci_hcd 0000:00:1a.7: new USB bus registered, assigned bus number 1
ehci_hcd 0000:00:1a.7: debug port 1
PCI: cache line size of 32 is not supported by device 0000:00:1a.7
ehci_hcd 0000:00:1a.7: irq 16, io mem 0xf04a6800
ehci_hcd 0000:00:1a.7: USB 2.0 started, EHCI 1.00, driver 10 Dec 2004
usb usb1: configuration #1 chosen from 1 choice
hub 1-0:1.0: USB hub found
hub 1-0:1.0: 6 ports detected
ACPI: PCI Interrupt 0000:00:1d.7[A] -> GSI 20 (level, low) -> IRQ 19
PCI: Setting latency timer of device 0000:00:1d.7 to 64
ehci_hcd 0000:00:1d.7: EHCI Host Controller
ehci_hcd 0000:00:1d.7: new USB bus registered, assigned bus number 2
ehci_hcd 0000:00:1d.7: debug port 1
PCI: cache line size of 32 is not supported by device 0000:00:1d.7
ehci_hcd 0000:00:1d.7: irq 19, io mem 0xf04a6c00
ehci_hcd 0000:00:1d.7: USB 2.0 started, EHCI 1.00, driver 10 Dec 2004
usb usb2: configuration #1 chosen from 1 choice
hub 2-0:1.0: USB hub found
hub 2-0:1.0: 6 ports detected
ohci_hcd: 2006 August 04 USB 1.1 'Open' Host Controller (OHCI) Driver
USB Universal Host Controller Interface driver v3.0
ACPI: PCI Interrupt 0000:00:1a.0[A] -> GSI 20 (level, low) -> IRQ 19
PCI: Setting latency timer of device 0000:00:1a.0 to 64
uhci_hcd 0000:00:1a.0: UHCI Host Controller
uhci_hcd 0000:00:1a.0: new USB bus registered, assigned bus number 3
uhci_hcd 0000:00:1a.0: irq 19, io base 0x00001840
usb usb3: configuration #1 chosen from 1 choice
hub 3-0:1.0: USB hub found
hub 3-0:1.0: 2 ports detected
ACPI: PCI Interrupt 0000:00:1a.1[B] -> GSI 18 (level, low) -> IRQ 16
PCI: Setting latency timer of device 0000:00:1a.1 to 64
uhci_hcd 0000:00:1a.1: UHCI Host Controller
uhci_hcd 0000:00:1a.1: new USB bus registered, assigned bus number 4
uhci_hcd 0000:00:1a.1: irq 16, io base 0x00001860
usb usb4: configuration #1 chosen from 1 choice
hub 4-0:1.0: USB hub found
hub 4-0:1.0: 2 ports detected
ACPI: PCI Interrupt 0000:00:1a.2[C] -> GSI 19 (level, low) -> IRQ 18
PCI: Setting latency timer of device 0000:00:1a.2 to 64
uhci_hcd 0000:00:1a.2: UHCI Host Controller
uhci_hcd 0000:00:1a.2: new USB bus registered, assigned bus number 5
uhci_hcd 0000:00:1a.2: irq 18, io base 0x00001880
usb usb5: configuration #1 chosen from 1 choice
hub 5-0:1.0: USB hub found
hub 5-0:1.0: 2 ports detected
ACPI: PCI Interrupt 0000:00:1d.0[A] -> GSI 20 (level, low) -> IRQ 19
PCI: Setting latency timer of device 0000:00:1d.0 to 64
uhci_hcd 0000:00:1d.0: UHCI Host Controller
uhci_hcd 0000:00:1d.0: new USB bus registered, assigned bus number 6
uhci_hcd 0000:00:1d.0: irq 19, io base 0x000018a0
usb usb6: configuration #1 chosen from 1 choice
hub 6-0:1.0: USB hub found
hub 6-0:1.0: 2 ports detected
ACPI: PCI Interrupt 0000:00:1d.1[B] -> GSI 22 (level, low) -> IRQ 17
PCI: Setting latency timer of device 0000:00:1d.1 to 64
uhci_hcd 0000:00:1d.1: UHCI Host Controller
uhci_hcd 0000:00:1d.1: new USB bus registered, assigned bus number 7
uhci_hcd 0000:00:1d.1: irq 17, io base 0x000018c0
usb usb7: configuration #1 chosen from 1 choice
hub 7-0:1.0: USB hub found
hub 7-0:1.0: 2 ports detected
usb 4-1: new low speed USB device using uhci_hcd and address 2
ACPI: PCI Interrupt 0000:00:1d.2[C] -> GSI 21 (level, low) -> IRQ 20
PCI: Setting latency timer of device 0000:00:1d.2 to 64
uhci_hcd 0000:00:1d.2: UHCI Host Controller
uhci_hcd 0000:00:1d.2: new USB bus registered, assigned bus number 8
uhci_hcd 0000:00:1d.2: irq 20, io base 0x000018e0
usb usb8: configuration #1 chosen from 1 choice
hub 8-0:1.0: USB hub found
hub 8-0:1.0: 2 ports detected
usb 4-1: configuration #1 chosen from 1 choice
usbcore: registered new interface driver usblp
drivers/usb/class/usblp.c: v0.13: USB Printer Device Class driver
Initializing USB Mass Storage driver...
usbcore: registered new interface driver usb-storage
USB Mass Storage support registered.
input: Logitech USB-PS/2 Optical Mouse as /class/input/input2
input: USB HID v1.10 Mouse [Logitech USB-PS/2 Optical Mouse] on
usb-0000:00:1a.1-1
usbcore: registered new interface driver usbhid
drivers/usb/input/hid-core.c: v2.6:USB HID core driver
PNP: PS/2 Controller [PNP0303:KEYB,PNP0f13:PS2M] at 0x60,0x64 irq 1,12
serio: i8042 KBD port at 0x60,0x64 irq 1
serio: i8042 AUX port at 0x60,0x64 irq 12
mice: PS/2 mouse device common for all mice
input: AT Translated Set 2 keyboard as /class/input/input3
device-mapper: ioctl: 4.11.0-ioctl (2006-10-12) initialised: dm-de...@redhat.com
Intel 810 + AC97 Audio, version 1.01, 11:28:49 May 28 2009
xenoprofile_init: ret 0, events 2, xenoprof_is_primary 1
TCP cubic registered
NET: Registered protocol family 1
NET: Registered protocol family 10
IPv6 over IPv4 tunneling driver
NET: Registered protocol family 17
Using IPI Shortcut mode
kjournald starting. Commit interval 5 seconds
EXT3-fs: mounted filesystem with ordered data mode.
VFS: Mounted root (ext3 filesystem) readonly.
Freeing unused kernel memory: 260k freed
security: 6 users, 8 roles, 1054 types, 37 bools
security: 73 classes, 33092 rules
SELinux: Completing initialization.
SELinux: Setting up existing superblocks.
SELinux: initialized (dev hda2, type ext3), uses xattr
SELinux: initialized (dev usbfs, type usbfs), uses genfs_contexts
SELinux: initialized (dev selinuxfs, type selinuxfs), uses genfs_contexts
SELinux: initialized (dev mqueue, type mqueue), uses transition SIDs
SELinux: initialized (dev devpts, type devpts), uses transition SIDs
SELinux: initialized (dev eventpollfs, type eventpollfs), uses task SIDs
SELinux: initialized (dev inotifyfs, type inotifyfs), uses genfs_contexts
SELinux: initialized (dev tmpfs, type tmpfs), uses transition SIDs
SELinux: initialized (dev futexfs, type futexfs), uses genfs_contexts
SELinux: initialized (dev pipefs, type pipefs), uses task SIDs
SELinux: initialized (dev sockfs, type sockfs), uses task SIDs
SELinux: initialized (dev proc, type proc), uses genfs_contexts
SELinux: initialized (dev bdev, type bdev), uses genfs_contexts
SELinux: initialized (dev rootfs, type rootfs), uses genfs_contexts
SELinux: initialized (dev sysfs, type sysfs), uses genfs_contexts
audit(1244023322.747:2): policy loaded auid=4294967295
audit(1244023322.819:3): avc: denied { getattr } for pid=1 comm="init"
name="initctl" dev=hda2 ino=219229 scontext=system_u:system_r:init_t
tcontext=root:object_r:device_t tclass=fifo_file
audit(1244023322.819:4): avc: denied { read write } for pid=1 comm="init"
name="initctl" dev=hda2 ino=219229 scontext=system_u:system_r:init_t
tcontext=root:object_r:device_t tclass=fifo_file
SELinux: initialized (dev tmpfs, type tmpfs), uses transition SIDs
audit(1244023324.559:5): avc: denied { write } for pid=1126 comm="bash"
name="null" dev=tmpfs ino=1445 scontext=system_u:system_r:initrc_t
tcontext=system_u:object_r:device_t tclass=chr_file
audit(1244023324.659:6): avc: denied { read } for pid=1133
comm="write_root_link" name="console" dev=tmpfs ino=1439
scontext=system_u:system_r:initrc_t tcontext=system_u:object_r:device_t
tclass=chr_file
audit(1244023325.131:7): avc: denied { read write } for pid=1183
comm="modprobe" name="null" dev=tmpfs ino=1445
scontext=system_u:system_r:insmod_t tcontext=system_u:object_r:device_t
tclass=chr_file
audit(1244023325.131:8): avc: denied { getattr } for pid=1183
comm="modprobe" name="null" dev=tmpfs ino=1445
scontext=system_u:system_r:insmod_t tcontext=system_u:object_r:device_t
tclass=chr_file
udev: renamed network interface eth0 to eth1
audit(1244023326.303:9): avc: denied { sendto } for pid=2163 comm="udevadm"
path=002F6F72672F6B65726E656C2F756465762F7564657664
scontext=system_u:system_r:initrc_t tcontext=system_u:system_r:udev_t
tclass=unix_dgram_socket
***************************************************************
***************************************************************
** WARNING: Currently emulating unsupported memory accesses **
** in /lib/tls glibc libraries. The emulation is **
** slow. To ensure full performance you should **
** add -mno-tls-direct-seg-refs to your CFLAGS and **
** re-emerge glibc and any staticly linked programs **
** or emerge -e world to catch everything. **
** Offending process: lvm (pid=2164) **
***************************************************************
***************************************************************
Pausing... 5������������Pausing... 4������������Pausing...
3������������Pausing... 2������������Pausing... 1������������Continuing...
audit(1244023332.144:10): avc: denied { read write } for pid=2164 comm="lvm"
name="device-mapper" dev=tmpfs ino=3445 scontext=system_u:system_r:lvm_t
tcontext=system_u:object_r:device_t tclass=chr_file
audit(1244023332.144:11): avc: denied { ioctl } for pid=2164 comm="lvm"
name="device-mapper" dev=tmpfs ino=3445 scontext=system_u:system_r:lvm_t
tcontext=system_u:object_r:device_t tclass=chr_file
EXT3 FS on hda2, internal journal
audit(1244023334.156:12): avc: denied { mounton } for pid=2309 comm="mount"
name="portage" dev=hda2 ino=298170 scontext=system_u:system_r:mount_t
tcontext=system_u:object_r:portage_ebuild_t tclass=dir
kjournald starting. Commit interval 5 seconds
EXT3-fs warning: maximal mount count reached, running e2fsck is recommended
EXT3 FS on dm-0, internal journal
EXT3-fs: mounted filesystem with ordered data mode.
SELinux: initialized (dev dm-0, type ext3), uses xattr
kjournald starting. Commit interval 5 seconds
EXT3-fs warning: maximal mount count reached, running e2fsck is recommended
EXT3 FS on dm-1, internal journal
EXT3-fs: mounted filesystem with ordered data mode.
SELinux: initialized (dev dm-1, type ext3), uses xattr
SELinux: initialized (dev tmpfs, type tmpfs), uses transition SIDs
SELinux: initialized (dev securityfs, type securityfs), uses genfs_contexts
audit(1244023334.376:13): avc: denied { getattr } for pid=2335 comm="bash"
name="xen" dev=proc ino=-268434394 scontext=system_u:system_r:initrc_t
tcontext=system_u:object_r:proc_xen_t tclass=dir
audit(1244023334.376:14): avc: denied { search } for pid=2335 comm="bash"
name="xen" dev=proc ino=-268434394 scontext=system_u:system_r:initrc_t
tcontext=system_u:object_r:proc_xen_t tclass=dir
audit(1244023334.376:15): avc: denied { getattr } for pid=2335 comm="bash"
name="capabilities" dev=proc ino=-268434272 scontext=system_u:system_r:initrc_t
tcontext=system_u:object_r:proc_xen_t tclass=file
audit(1244023334.376:16): avc: denied { read } for pid=2335 comm="bash"
name="capabilities" dev=proc ino=-268434272 scontext=system_u:system_r:initrc_t
tcontext=system_u:object_r:proc_xen_t tclass=file
eth1: link up, 100Mbps, full-duplex, lpa 0xC5E1
audit(1244023339.558:17): avc: denied { execute_no_trans } for pid=3566
comm="dhcpcd" name="dhcpcd-run-hooks" dev=hda2 ino=228686
scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:lib_t tclass=file
audit(1244023349.347:18): avc: denied { create } for pid=4467 comm="agetty"
scontext=system_u:system_r:getty_t tcontext=system_u:system_r:getty_t
tclass=netlink_route_socket
audit(1244023349.347:19): avc: denied { create } for pid=4474 comm="agetty"
scontext=system_u:system_r:getty_t tcontext=system_u:system_r:getty_t
tclass=netlink_route_socket
audit(1244023349.347:20): avc: denied { bind } for pid=4474 comm="agetty"
scontext=system_u:system_r:getty_t tcontext=system_u:system_r:getty_t
tclass=netlink_route_socket
audit(1244023349.347:21): avc: denied { bind } for pid=4467 comm="agetty"
scontext=system_u:system_r:getty_t tcontext=system_u:system_r:getty_t
tclass=netlink_route_socket
audit(1244023349.347:22): avc: denied { getattr } for pid=4467 comm="agetty"
scontext=system_u:system_r:getty_t tcontext=system_u:system_r:getty_t
tclass=netlink_route_socket
audit(1244023349.347:23): avc: denied { getattr } for pid=4474 comm="agetty"
scontext=system_u:system_r:getty_t tcontext=system_u:system_r:getty_t
tclass=netlink_route_socket
audit(1244023349.347:24): avc: denied { write } for pid=4474 comm="agetty"
scontext=system_u:system_r:getty_t tcontext=system_u:system_r:getty_t
tclass=netlink_route_socket
audit(1244023349.347:25): avc: denied { nlmsg_read } for pid=4467
comm="agetty" scontext=system_u:system_r:getty_t
tcontext=system_u:system_r:getty_t tclass=netlink_route_socket
audit(1244023349.347:26): avc: denied { read } for pid=4474 comm="agetty"
scontext=system_u:system_r:getty_t tcontext=system_u:system_r:getty_t
tclass=netlink_route_socket
audit(1244023393.825:27): avc: denied { read } for pid=4490 comm="bash"
name=".bash_history" dev=hda2 ino=162884 scontext=root:staff_r:staff_t
tcontext=root:object_r:sysadm_home_t tclass=file
audit(1244023510.292:28): avc: denied { getattr } for pid=4507 comm="find"
name="xen" dev=proc ino=-268434394 scontext=root:sysadm_r:sysadm_t
tcontext=system_u:object_r:proc_xen_t tclass=dir
audit(1244023510.292:29): avc: denied { read } for pid=4507 comm="find"
name="xen" dev=proc ino=-268434394 scontext=root:sysadm_r:sysadm_t
tcontext=system_u:object_r:proc_xen_t tclass=dir
audit(1244023510.292:30): avc: denied { search } for pid=4507 comm="find"
name="xen" dev=proc ino=-268434394 scontext=root:sysadm_r:sysadm_t
tcontext=system_u:object_r:proc_xen_t tclass=dir
audit(1244023510.292:31): avc: denied { getattr } for pid=4507 comm="find"
name="capabilities" dev=proc ino=-268434272 scontext=root:sysadm_r:sysadm_t
tcontext=system_u:object_r:proc_xen_t tclass=file
audit(1244024637.256:32): avc: denied { read } for pid=4518 comm="bash"
name=".bash_history" dev=hda2 ino=162884 scontext=root:staff_r:staff_t
tcontext=root:object_r:sysadm_home_t tclass=file
audit(1244024742.914:33): avc: denied { dac_override } for pid=4527
comm="find" capability=1 scontext=root:staff_r:staff_t
tcontext=root:staff_r:staff_t tclass=capability
audit(1244024742.914:34): avc: denied { getattr } for pid=4527 comm="find"
name="audit" dev=hda2 ino=283375 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:auditd_log_t tclass=dir
audit(1244024742.914:35): avc: denied { read } for pid=4527 comm="find"
name="audit" dev=hda2 ino=283375 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:auditd_log_t tclass=dir
audit(1244024742.914:36): avc: denied { search } for pid=4527 comm="find"
name="audit" dev=hda2 ino=283375 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:auditd_log_t tclass=dir
audit(1244024742.914:37): avc: denied { getattr } for pid=4527 comm="find"
name=".keep_sys-process_audit-0" dev=hda2 ino=283310
scontext=root:staff_r:staff_t tcontext=system_u:object_r:auditd_log_t
tclass=file
audit(1244024742.938:38): avc: denied { getattr } for pid=4527 comm="find"
name="gntdev" dev=tmpfs ino=10063 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:device_t tclass=chr_file
audit(1244024742.974:39): avc: denied { getattr } for pid=4527 comm="find"
name="audit" dev=hda2 ino=283378 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:auditd_etc_t tclass=dir
audit(1244024742.974:40): avc: denied { read } for pid=4527 comm="find"
name="audit" dev=hda2 ino=283378 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:auditd_etc_t tclass=dir
audit(1244024742.974:41): avc: denied { search } for pid=4527 comm="find"
name="audit" dev=hda2 ino=283378 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:auditd_etc_t tclass=dir
audit(1244024742.974:42): avc: denied { getattr } for pid=4527 comm="find"
name="auditd.conf" dev=hda2 ino=283203 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:auditd_etc_t tclass=file
audit(1244024742.974:43): avc: denied { getattr } for pid=4527 comm="find"
name="mtrr" dev=proc ino=-268434389 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:mtrr_device_t tclass=file
audit(1244024742.974:44): avc: denied { getattr } for pid=4527 comm="find"
name="xen" dev=proc ino=-268434394 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:proc_xen_t tclass=dir
audit(1244024742.974:45): avc: denied { read } for pid=4527 comm="find"
name="xen" dev=proc ino=-268434394 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:proc_xen_t tclass=dir
audit(1244024742.974:46): avc: denied { search } for pid=4527 comm="find"
name="xen" dev=proc ino=-268434394 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:proc_xen_t tclass=dir
audit(1244024742.974:47): avc: denied { getattr } for pid=4527 comm="find"
name="capabilities" dev=proc ino=-268434272 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:proc_xen_t tclass=file
audit(1244024742.974:48): avc: denied { getattr } for pid=4527 comm="find"
name="irq" dev=proc ino=-268435420 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:sysctl_irq_t tclass=dir
audit(1244024742.974:49): avc: denied { read } for pid=4527 comm="find"
name="irq" dev=proc ino=-268435420 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:sysctl_irq_t tclass=dir
audit(1244024742.974:50): avc: denied { search } for pid=4527 comm="find"
name="irq" dev=proc ino=-268435420 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:sysctl_irq_t tclass=dir
audit(1244024742.974:51): avc: denied { getattr } for pid=4527 comm="find"
name="smp_affinity" dev=proc ino=-268434396 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:sysctl_irq_t tclass=file
audit(1244024742.990:52): avc: denied { read } for pid=4527 comm="find"
scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysctl_vm_t tclass=file
audit(1244024742.990:53): avc: denied { search } for pid=4527 comm="find"
scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysctl_vm_t tclass=dir
audit(1244024743.006:54): avc: denied { read } for pid=4527 comm="find"
scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysctl_net_unix_t
tclass=file
audit(1244024743.006:55): avc: denied { search } for pid=4527 comm="find"
scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysctl_net_unix_t
tclass=dir
audit(1244024743.022:56): avc: denied { read } for pid=4527 comm="find"
scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysctl_fs_t tclass=file
audit(1244024743.026:57): avc: denied { read } for pid=4527 comm="find"
scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysctl_t tclass=file
audit(1244024743.026:58): avc: denied { getattr } for pid=4527 comm="find"
name="rpc" dev=proc ino=-268434344 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:sysctl_rpc_t tclass=dir
audit(1244024743.026:59): avc: denied { read } for pid=4527 comm="find"
name="rpc" dev=proc ino=-268434344 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:sysctl_rpc_t tclass=dir
audit(1244024743.026:60): avc: denied { search } for pid=4527 comm="find"
name="rpc" dev=proc ino=-268434344 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:sysctl_rpc_t tclass=dir
audit(1244024743.026:61): avc: denied { getattr } for pid=4527 comm="find"
name="content" dev=proc ino=-268434190 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:sysctl_rpc_t tclass=file
audit(1244024743.026:62): avc: denied { getattr } for pid=4527 comm="find"
name="kcore" dev=proc ino=-268435435 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:proc_kcore_t tclass=file
audit(1244024743.026:63): avc: denied { getattr } for pid=4527 comm="find"
name="kmsg" dev=proc ino=-268435447 scontext=root:staff_r:staff_t
tcontext=system_u:object_r:proc_kmsg_t tclass=file
audit(1244025145.109:64): avc: denied { execute_no_trans } for pid=4528
comm="dhcpcd" name="dhcpcd-run-hooks" dev=hda2 ino=228686
scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:lib_t tclass=file
audit(1244025878.895:65): avc: denied { write } for pid=4557 comm="bash"
name="root" dev=hda2 ino=162881 scontext=root:staff_r:staff_t
tcontext=root:object_r:sysadm_home_dir_t tclass=dir
audit(1244025878.895:66): avc: denied { add_name } for pid=4557 comm="bash"
name="dmesg.output.txt" scontext=root:staff_r:staff_t
tcontext=root:object_r:sysadm_home_dir_t tclass=dir
audit(1244025878.895:67): avc: denied { create } for pid=4557 comm="bash"
name="dmesg.output.txt" scontext=root:staff_r:staff_t
tcontext=root:object_r:sysadm_home_dir_t tclass=file
