ericchiang/rkt run - selinux logs

## rkt run - selinux logs
$ sudo tail -f -n 0 /var/log/audit/audit.log
type=USER_CMD msg=audit(1447866797.682:2012): pid=11801 uid=1000 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='cwd="/home/eric/drafts" cmd=726B742072756E202D2D696E7365637572652D736B69702D766572696679207368613531322D336632353036376663363966 terminal=pts/2 res=success'
type=CRED_REFR msg=audit(1447866797.683:2013): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_env,pam_fprintd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success'
type=USER_START msg=audit(1447866797.686:2014): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_open grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success'
type=NETFILTER_CFG msg=audit(1447866807.325:2015): table=filter family=2 entries=0
type=NETFILTER_CFG msg=audit(1447866807.325:2016): table=mangle family=2 entries=0
type=NETFILTER_CFG msg=audit(1447866807.327:2017): table=nat family=2 entries=0
type=NETFILTER_CFG msg=audit(1447866807.327:2018): table=security family=2 entries=0
type=NETFILTER_CFG msg=audit(1447866807.327:2019): table=raw family=2 entries=0
type=NETFILTER_CFG msg=audit(1447866807.327:2020): table=filter family=10 entries=0
type=NETFILTER_CFG msg=audit(1447866807.327:2021): table=mangle family=10 entries=0
type=NETFILTER_CFG msg=audit(1447866807.327:2022): table=nat family=10 entries=0
type=NETFILTER_CFG msg=audit(1447866807.327:2023): table=security family=10 entries=0
type=NETFILTER_CFG msg=audit(1447866807.327:2024): table=raw family=10 entries=0
type=NETFILTER_CFG msg=audit(1447866807.360:2025): table=nat family=2 entries=72
type=NETFILTER_CFG msg=audit(1447866807.364:2026): table=nat family=2 entries=74
type=NETFILTER_CFG msg=audit(1447866807.367:2027): table=nat family=2 entries=75
type=NETFILTER_CFG msg=audit(1447866807.371:2028): table=nat family=2 entries=76
type=SERVICE_START msg=audit(1447866807.441:2029): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-machined comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
type=LOGIN msg=audit(1447866807.450:2030): pid=11850 uid=0 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 old-auid=1000 auid=4294967295 old-ses=1 ses=4294967295 res=1
type=USER_AVC msg=audit(1447866807.463:2031): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission start for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?'
type=AVC msg=audit(1447866807.475:2032): avc:  denied  { read } for  pid=11851 comm="systemd" name="libselinux.so.1" dev="dm-2" ino=6569480 scontext=system_u:system_r:svirt_lxc_net_t:s0:c330,c605 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=file permissive=0
type=AVC msg=audit(1447866807.475:2033): avc:  denied  { read } for  pid=11851 comm="systemd" name="libselinux.so.1" dev="dm-2" ino=6569480 scontext=system_u:system_r:svirt_lxc_net_t:s0:c330,c605 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=file permissive=0
type=USER_AVC msg=audit(1447866807.516:2034): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission stop for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?'
type=USER_AVC msg=audit(1447866807.517:2035): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission stop for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?'
type=USER_END msg=audit(1447866807.521:2036): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_close grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success'
type=CRED_DISP msg=audit(1447866807.521:2037): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_env,pam_fprintd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success'
type=SERVICE_START msg=audit(1447866808.979:2038): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=NetworkManager-dispatcher comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
type=SERVICE_STOP msg=audit(1447866819.746:2039): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=NetworkManager-dispatcher comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
	$ sudo tail -f -n 0 /var/log/audit/audit.log
	type=USER_CMD msg=audit(1447866797.682:2012): pid=11801 uid=1000 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='cwd="/home/eric/drafts" cmd=726B742072756E202D2D696E7365637572652D736B69702D766572696679207368613531322D336632353036376663363966 terminal=pts/2 res=success'
	type=CRED_REFR msg=audit(1447866797.683:2013): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_env,pam_fprintd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success'
	type=USER_START msg=audit(1447866797.686:2014): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_open grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success'
	type=NETFILTER_CFG msg=audit(1447866807.325:2015): table=filter family=2 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.325:2016): table=mangle family=2 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.327:2017): table=nat family=2 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.327:2018): table=security family=2 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.327:2019): table=raw family=2 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.327:2020): table=filter family=10 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.327:2021): table=mangle family=10 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.327:2022): table=nat family=10 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.327:2023): table=security family=10 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.327:2024): table=raw family=10 entries=0
	type=NETFILTER_CFG msg=audit(1447866807.360:2025): table=nat family=2 entries=72
	type=NETFILTER_CFG msg=audit(1447866807.364:2026): table=nat family=2 entries=74
	type=NETFILTER_CFG msg=audit(1447866807.367:2027): table=nat family=2 entries=75
	type=NETFILTER_CFG msg=audit(1447866807.371:2028): table=nat family=2 entries=76
	type=SERVICE_START msg=audit(1447866807.441:2029): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-machined comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
	type=LOGIN msg=audit(1447866807.450:2030): pid=11850 uid=0 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 old-auid=1000 auid=4294967295 old-ses=1 ses=4294967295 res=1
	type=USER_AVC msg=audit(1447866807.463:2031): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission start for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?'
	type=AVC msg=audit(1447866807.475:2032): avc: denied { read } for pid=11851 comm="systemd" name="libselinux.so.1" dev="dm-2" ino=6569480 scontext=system_u:system_r:svirt_lxc_net_t:s0:c330,c605 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=file permissive=0
	type=AVC msg=audit(1447866807.475:2033): avc: denied { read } for pid=11851 comm="systemd" name="libselinux.so.1" dev="dm-2" ino=6569480 scontext=system_u:system_r:svirt_lxc_net_t:s0:c330,c605 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=file permissive=0
	type=USER_AVC msg=audit(1447866807.516:2034): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission stop for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?'
	type=USER_AVC msg=audit(1447866807.517:2035): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission stop for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?'
	type=USER_END msg=audit(1447866807.521:2036): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_close grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success'
	type=CRED_DISP msg=audit(1447866807.521:2037): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_env,pam_fprintd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success'
	type=SERVICE_START msg=audit(1447866808.979:2038): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=NetworkManager-dispatcher comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
	type=SERVICE_STOP msg=audit(1447866819.746:2039): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=NetworkManager-dispatcher comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'