From mboxrd@z Thu Jan  1 00:00:00 1970
From: Laura Lazzati <laura.lazzati.15@gmail.com>
Subject: Re: SELinux log
Date: Fri, 7 Jun 2019 20:12:59 -0300
Message-ID: <CAPNLzUMu=LYRxc_c5fJAmFv+Ef7nk8iBXUF1ZAGqsjypGk+vgQ@mail.gmail.com>
References: <CAPNLzUMak3sEm53s=DScGaKSG2ffx6dbPs6aMkpetNzW+5g11A@mail.gmail.com>
 <87sgsocqx5.fsf@elephly.net>
 <CAPNLzUNS-zJTEDWFz8JAgXM5UXM--aiPw_fBn6zTpq+mHfNt4w@mail.gmail.com>
 <87k1dyk33n.fsf@elephly.net>
 <CAPNLzUNRchOyMV=t1guAUcPr+Wg6Ho1pTXeNEYYxhJVod8atYw@mail.gmail.com>
 <87ef4586oh.fsf@elephly.net>
 <CAPNLzUPCGCvVbS=pcHi_9_TY8J9tBTME2aGhu6269HB+TiwJdg@mail.gmail.com>
 <CAPNLzUM3o0irXqsdPMj+utjpPsPas2qHwKVRDJo=N9u5mynpZg@mail.gmail.com>
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="000000000000dd2b4e058ac3fa23"
Return-path: <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([2001:470:142:3::10]:40438)
 by lists.gnu.org with esmtp (Exim 4.86_2)
 (envelope-from <laura.lazzati.15@gmail.com>) id 1hZO3G-0003ND-Ct
 for guix-devel@gnu.org; Fri, 07 Jun 2019 19:13:39 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <laura.lazzati.15@gmail.com>) id 1hZO3F-0001Rd-AG
 for guix-devel@gnu.org; Fri, 07 Jun 2019 19:13:38 -0400
Received: from mail-wr1-x436.google.com ([2a00:1450:4864:20::436]:33376)
 by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
 (Exim 4.71) (envelope-from <laura.lazzati.15@gmail.com>)
 id 1hZO3F-0001O0-2W
 for guix-devel@gnu.org; Fri, 07 Jun 2019 19:13:37 -0400
Received: by mail-wr1-x436.google.com with SMTP id n9so3670863wru.0
 for <guix-devel@gnu.org>; Fri, 07 Jun 2019 16:13:36 -0700 (PDT)
In-Reply-To: <CAPNLzUM3o0irXqsdPMj+utjpPsPas2qHwKVRDJo=N9u5mynpZg@mail.gmail.com>
List-Id: "Development of GNU Guix and the GNU System distribution."
 <guix-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-devel>,
 <mailto:guix-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/guix-devel>
List-Post: <mailto:guix-devel@gnu.org>
List-Help: <mailto:guix-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-devel>,
 <mailto:guix-devel-request@gnu.org?subject=subscribe>
Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org
Sender: "Guix-devel" <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
To: Ricardo Wurmus <rekado@elephly.net>
Cc: Guix-devel <guix-devel@gnu.org>

--000000000000dd2b4e058ac3fa23
Content-Type: text/plain; charset="UTF-8"

--8<---------------cut here---------------start------------->8---
type=FS_RELABEL msg=audit(1559947443.686:26389): pid=2658 uid=0 auid=1000
ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=mass relabel exe="/usr/sbin/setfiles"
hostname=localhost.localdomain addr=? terminal=pts/1 res=failed'UID="root"
AUID="laura"
type=MAC_POLICY_LOAD msg=audit(1559947618.423:26390): auid=1000 ses=3
lsm=selinux res=1AUID="laura"

type=USER_AVC msg=audit(1559947745.466:39283): pid=1 uid=0 auid=4294967295
ses=4294967295 subj=system_u:system_r:init_t:s0 msg='avc:  received
policyload notice (seqno=3)  exe="/usr/lib/systemd/systemd" sauid=0
hostname=? addr=? terminal=?'UID="root" AUID="unset" SAUID="root"
type=USER_AVC msg=audit(1559947745.467:39284): pid=1 uid=0 auid=4294967295
ses=4294967295 subj=system_u:system_r:init_t:s0 msg='avc:  received
policyload notice (seqno=4)  exe="/usr/lib/systemd/systemd" sauid=0
hostname=? addr=? terminal=?'UID="root" AUID="unset" SAUID="root"
type=AVC msg=audit(1559947746.785:39285): avc:  denied { relabelto } for
 pid=2688 comm="restorecon" name="guix" dev="dm-0" ino=311508
scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:guix_daemon.guix_daemon_conf_t:s0 tclass=dir
permissive=0
type=AVC msg=audit(1559947746.787:39286): avc:  denied { relabelto } for
 pid=2688 comm="restorecon" name="acl" dev="dm-0" ino=306189
scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:guix_daemon.guix_daemon_conf_t:s0
tclass=file permissive=0
--8<---------------cut here---------------end--------------->8---

--000000000000dd2b4e058ac3fa23
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div dir=3D"ltr"><div><br></div><div>
--8&lt;---------------cut here---------------start-------------&gt;8---</di=
v><div>type=3DFS_RELABEL msg=3Daudit(1559947443.686:26389): pid=3D2658 uid=
=3D0 auid=3D1000 ses=3D3 subj=3Dunconfined_u:unconfined_r:unconfined_t:s0-s=
0:c0.c1023
 msg=3D&#39;op=3Dmass relabel exe=3D&quot;/usr/sbin/setfiles&quot;=20
hostname=3Dlocalhost.localdomain addr=3D? terminal=3Dpts/1=20
res=3Dfailed&#39;UID=3D&quot;root&quot; AUID=3D&quot;laura&quot;</div>type=
=3DMAC_POLICY_LOAD msg=3Daudit(1559947618.423:26390): auid=3D1000 ses=3D3 l=
sm=3Dselinux res=3D1AUID=3D&quot;laura&quot;<br><br>type=3DUSER_AVC msg=3Da=
udit(1559947745.466:39283): pid=3D1 uid=3D0 auid=3D4294967295 ses=3D4294967=
295 subj=3Dsystem_u:system_r:init_t:s0 msg=3D&#39;avc: =C2=A0received polic=
yload notice (seqno=3D3) =C2=A0exe=3D&quot;/usr/lib/systemd/systemd&quot; s=
auid=3D0 hostname=3D? addr=3D? terminal=3D?&#39;UID=3D&quot;root&quot; AUID=
=3D&quot;unset&quot; SAUID=3D&quot;root&quot;<br>type=3DUSER_AVC msg=3Daudi=
t(1559947745.467:39284): pid=3D1 uid=3D0 auid=3D4294967295 ses=3D4294967295=
 subj=3Dsystem_u:system_r:init_t:s0 msg=3D&#39;avc: =C2=A0received policylo=
ad notice (seqno=3D4) =C2=A0exe=3D&quot;/usr/lib/systemd/systemd&quot; saui=
d=3D0 hostname=3D? addr=3D? terminal=3D?&#39;UID=3D&quot;root&quot; AUID=3D=
&quot;unset&quot; SAUID=3D&quot;root&quot;<br>type=3DAVC msg=3Daudit(155994=
7746.785:39285): avc: =C2=A0denied { relabelto } for =C2=A0pid=3D2688 comm=
=3D&quot;restorecon&quot; name=3D&quot;guix&quot; dev=3D&quot;dm-0&quot; in=
o=3D311508 scontext=3Dunconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023=
 tcontext=3Dunconfined_u:object_r:guix_daemon.guix_daemon_conf_t:s0 tclass=
=3Ddir permissive=3D0<br><div>type=3DAVC msg=3Daudit(1559947746.787:39286):=
 avc: =C2=A0denied { relabelto } for =C2=A0pid=3D2688 comm=3D&quot;restorec=
on&quot; name=3D&quot;acl&quot; dev=3D&quot;dm-0&quot; ino=3D306189 scontex=
t=3Dunconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tcontext=3Dunconf=
ined_u:object_r:guix_daemon.guix_daemon_conf_t:s0 tclass=3Dfile permissive=
=3D0</div><div>
--8&lt;---------------cut here---------------end---------------&gt;8---</di=
v></div></div>

--000000000000dd2b4e058ac3fa23--