From mboxrd@z Thu Jan 1 00:00:00 1970 From: Laura Lazzati Subject: SELinux log Date: Tue, 4 Jun 2019 18:28:03 -0300 Message-ID: Mime-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Return-path: Received: from eggs.gnu.org ([209.51.188.92]:49228) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1hYGz5-0001b4-KB for guix-devel@gnu.org; Tue, 04 Jun 2019 17:28:44 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1hYGz4-0002Ga-E6 for guix-devel@gnu.org; Tue, 04 Jun 2019 17:28:43 -0400 Received: from mail-wr1-x442.google.com ([2a00:1450:4864:20::442]:42374) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1hYGz4-0002Ex-79 for guix-devel@gnu.org; Tue, 04 Jun 2019 17:28:42 -0400 Received: by mail-wr1-x442.google.com with SMTP id o12so10215746wrj.9 for ; Tue, 04 Jun 2019 14:28:41 -0700 (PDT) List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: Guix-devel Hi Guix! Today I've been installing Guix on top of Fedora (relase30), and I faced issues with guix-daemon, getting it did not have permissions for running. It was a SELinux problem, since after disabling it and restarting the daemon I could use guix normally. Here is my audit.log file, in case someone is interested. AFAIK I don't see anything terrible. Regards :) Laura <------------------------------------start here -----------------------------------------------> type=USER_START msg=audit(1559677185.958:270): pid=3429 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_open grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/0 res=success'^]UID="root" AUID="laura" type=USER_AUTH msg=audit(1559677185.980:271): pid=3435 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/bin/su" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" type=USER_ACCT msg=audit(1559677185.980:272): pid=3435 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:accounting grantors=pam_succeed_if acct="root" exe="/usr/bin/su" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" type=CRED_ACQ msg=audit(1559677185.984:273): pid=3435 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/bin/su" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" type=USER_START msg=audit(1559677186.010:274): pid=3435 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_open grantors=pam_keyinit,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask acct="root" exe="/usr/bin/su" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" type=SERVICE_STOP msg=audit(1559677213.721:275): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=fprintd comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'^]UID="root" AUID="unset" type=ADD_GROUP msg=audit(1559677295.645:276): pid=3555 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=add-group id=976 exe="/usr/sbin/groupadd" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" ID="guixbuild" type=GRP_MGMT msg=audit(1559677296.166:277): pid=3555 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=add-shadow-group id=976 exe="/usr/sbin/groupadd" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" ID="guixbuild" type=ADD_USER msg=audit(1559677307.042:278): pid=3565 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=add-user id=978 exe="/usr/sbin/useradd" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" ID="unknown(978)" type=USER_MGMT msg=audit(1559677307.048:279): pid=3565 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=add-user-to-group grp="guixbuild" acct="guixbuilder01" exe="/usr/sbin/useradd" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" type=USER_MGMT msg=audit(1559677307.060:280): pid=3565 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=add-to-shadow-group grp="guixbuild" acct="guixbuilder01" exe="/usr/sbin/useradd" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" type=ADD_USER msg=audit(1559677309.363:281): pid=3577 uid=0 auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=add-user id=977 exe="/usr/sbin/useradd" hostname=localhost.localdomain addr=? terminal=pts/0 res=success'^]UID="root" AUID="laura" ID="unknown(977)" <------------------------------------end here ----------------------------------------------->