Project

Profile

Help

Download (222 KB)

Issue #7922 ยป avc-denials.txt

bmclaugh, 12/04/2020 03:56 PM

 
type=SERVICE_START msg=audit(1607091924.096:987): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'UID="root" AUID="unset"
type=AVC msg=audit(1607091939.797:988): avc: denied { getattr } for pid=38126 comm="rq" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091939.797:989): avc: denied { execute } for pid=38126 comm="rq" name="podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.670:990): avc: denied { read open } for pid=38147 comm="rq" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.670:990): avc: denied { execute_no_trans } for pid=38147 comm="rq" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.670:990): avc: denied { map } for pid=38147 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.698:991): avc: denied { read } for pid=38147 comm="podman" name="hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.698:991): avc: denied { open } for pid=38147 comm="podman" path="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:992): avc: denied { create } for pid=38147 comm="podman" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607091940.719:993): avc: denied { setopt } for pid=38147 comm="podman" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607091940.719:994): avc: denied { bind } for pid=38147 comm="podman" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607091940.719:995): avc: denied { getattr } for pid=38147 comm="podman" path=003030303564 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607091940.719:996): avc: denied { search } for pid=38147 comm="podman" name="/" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091940.719:996): avc: denied { getattr } for pid=38147 comm="podman" path="/sys/fs/cgroup/memory/memory.memsw.limit_in_bytes" dev="cgroup" ino=33 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:997): avc: denied { read } for pid=38147 comm="podman" name="cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:997): avc: denied { open } for pid=38147 comm="podman" path="/sys/fs/cgroup/cpuset/cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:998): avc: denied { search } for pid=38147 comm="podman" name="net" dev="proc" ino=11197 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091940.719:998): avc: denied { read } for pid=38147 comm="podman" name="ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:998): avc: denied { open } for pid=38147 comm="podman" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:999): avc: denied { getattr } for pid=38147 comm="podman" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:1000): avc: denied { getattr } for pid=38147 comm="podman" path="/var/lib/pulp/.config/containers/storage.conf" dev="dm-0" ino=598350 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:1001): avc: denied { read } for pid=38147 comm="podman" name="storage.conf" dev="dm-0" ino=598350 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.719:1001): avc: denied { open } for pid=38147 comm="podman" path="/var/lib/pulp/.config/containers/storage.conf" dev="dm-0" ino=598350 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.740:1002): avc: denied { write } for pid=38147 comm="podman" name="bolt_state.db" dev="dm-0" ino=19869575 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.740:1003): avc: denied { lock } for pid=38147 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/libpod/bolt_state.db" dev="dm-0" ino=19869575 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.740:1004): avc: denied { map } for pid=38147 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/libpod/bolt_state.db" dev="dm-0" ino=19869575 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.740:1005): avc: denied { sys_ptrace } for pid=38147 comm="podman" capability=19 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091940.740:1006): avc: denied { sys_admin } for pid=38153 comm="podman" capability=21 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091940.740:1007): avc: denied { sys_chroot } for pid=38153 comm="podman" capability=18 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091940.740:1008): avc: denied { setgid } for pid=38153 comm="podman" capability=6 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091940.740:1009): avc: denied { setuid } for pid=38153 comm="podman" capability=7 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091940.811:1010): avc: denied { mounton } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay" dev="dm-0" ino=598353 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091940.811:1011): avc: denied { write } for pid=38153 comm="podman" name="overlay" dev="dm-0" ino=598353 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091940.811:1012): avc: denied { getattr } for pid=38153 comm="podman" path="/sys/fs/cgroup/systemd/system.slice/system-pulpcore\x2dworker.slice/pulpcore-worker@2.service" dev="cgroup" ino=833 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091940.811:1013): avc: denied { dac_read_search } for pid=38153 comm="podman" capability=2 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091940.811:1013): avc: denied { dac_override } for pid=38153 comm="podman" capability=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091940.811:1014): avc: denied { unmount } for pid=38153 comm="podman" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091940.878:1015): avc: denied { read } for pid=38153 comm="podman" name="lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.878:1015): avc: denied { open } for pid=38153 comm="podman" path="/etc/selinux/targeted/contexts/lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.878:1016): avc: denied { add_name } for pid=38153 comm="podman" name="0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091940.878:1016): avc: denied { create } for pid=38153 comm="podman" name="0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091940.878:1017): avc: denied { create } for pid=38153 comm="podman" name="X3IFEC5EXV3R3EWHYCOJ36PT2B" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091940.878:1018): avc: denied { create } for pid=38153 comm="podman" name="link" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.907:1019): avc: denied { setattr } for pid=38153 comm="podman" name=".tmp-layers.json017598442" dev="dm-0" ino=5017060 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.907:1020): avc: denied { remove_name } for pid=38153 comm="podman" name=".tmp-layers.json017598442" dev="dm-0" ino=5017060 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091940.907:1020): avc: denied { rename } for pid=38153 comm="podman" name=".tmp-layers.json017598442" dev="dm-0" ino=5017060 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.907:1020): avc: denied { unlink } for pid=38153 comm="podman" name="layers.json" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091940.987:1021): avc: denied { read } for pid=38153 comm="podman" name="XCCVN56OCEOYF5MS2RCFJ55VTE" dev="dm-0" ino=23133461 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091940.987:1022): avc: denied { getattr } for pid=38162 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/l/XCCVN56OCEOYF5MS2RCFJ55VTE" dev="dm-0" ino=23133461 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091940.987:1023): avc: denied { read write } for pid=38162 comm="fuse-overlayfs" name="fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607091940.987:1023): avc: denied { open } for pid=38162 comm="fuse-overlayfs" path="/dev/fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607091940.987:1024): avc: denied { mount } for pid=38162 comm="fuse-overlayfs" name="/" dev="fuse" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091941.135:1025): avc: denied { search } for pid=38165 comm="exe" name="/" dev="fuse" ino=23414700 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.135:1026): avc: denied { read } for pid=38165 comm="exe" name="passwd" dev="fuse" ino=18226057 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.135:1026): avc: denied { open } for pid=38165 comm="exe" path="/etc/passwd" dev="fuse" ino=18226057 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.166:1027): avc: denied { execute } for pid=38172 comm="podman" name="podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.166:1027): avc: denied { read open } for pid=38172 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.166:1027): avc: denied { execute_no_trans } for pid=38172 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.166:1027): avc: denied { map } for pid=38172 comm="exe" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.246:1028): avc: denied { create } for pid=38172 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607091941.246:1029): avc: denied { setopt } for pid=38172 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607091941.246:1030): avc: denied { bind } for pid=38172 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607091941.246:1031): avc: denied { getattr } for pid=38172 comm="exe" path=003030303630 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607091941.246:1032): avc: denied { getattr } for pid=38163 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/f2e520692ac8ed4e96dcd1f6baf73627c7edc810b1092bcb5abb4bbdb1b63ad3/diff/etc/group" dev="dm-0" ino=18225974 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.246:1033): avc: denied { read } for pid=38163 comm="fuse-overlayfs" name="group" dev="dm-0" ino=18225974 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.246:1033): avc: denied { open } for pid=38163 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/f2e520692ac8ed4e96dcd1f6baf73627c7edc810b1092bcb5abb4bbdb1b63ad3/diff/etc/group" dev="dm-0" ino=18225974 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.253:1034): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/merged" dev="fuse" ino=23414700 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1035): avc: denied { relabelfrom } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=50736888 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1035): avc: denied { relabelto } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=50736888 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1036): avc: denied { write } for pid=38153 comm="podman" name="containers.lock" dev="dm-0" ino=35835618 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1037): avc: denied { lock } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/containers.lock" dev="dm-0" ino=35835618 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1038): avc: denied { getattr } for pid=38153 comm="podman" path="/etc/rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1039): avc: denied { read } for pid=38153 comm="podman" name="rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1039): avc: denied { open } for pid=38153 comm="podman" path="/etc/rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1040): avc: denied { search } for pid=38153 comm="podman" name="rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1041): avc: denied { getattr } for pid=38153 comm="podman" path="/etc/rhsm/logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1042): avc: denied { read } for pid=38153 comm="podman" name="logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1042): avc: denied { open } for pid=38153 comm="podman" path="/etc/rhsm/logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1043): avc: denied { relabelfrom } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1043): avc: denied { relabelto } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1044): avc: denied { setattr } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1045): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/89f0afcd5719c99d6913e14c5480df2352879119227ef9dc9f17e723b1b72dbc/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1046): avc: denied { read } for pid=38153 comm="podman" name="run" dev="fuse" ino=36679021 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1046): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/merged/run" dev="fuse" ino=36679021 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.313:1047): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/merged/run/initctl" dev="fuse" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091941.313:1048): avc: denied { read } for pid=38153 comm="podman" name="initctl" dev="fuse" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091941.313:1049): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/merged/run/mount/utab" dev="fuse" ino=738969 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1050): avc: denied { read } for pid=38153 comm="podman" name="container" dev="fuse" ino=36679099 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.313:1050): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/merged/run/systemd/container" dev="fuse" ino=36679099 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.424:1051): avc: denied { mounton } for pid=38178 comm="exe" path="/" dev="dm-0" ino=128 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.424:1052): avc: denied { mounton } for pid=38178 comm="exe" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/89f0afcd5719c99d6913e14c5480df2352879119227ef9dc9f17e723b1b72dbc/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.424:1053): avc: denied { search } for pid=38178 comm="exe" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.424:1053): avc: denied { write } for pid=38178 comm="exe" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.424:1053): avc: denied { add_name } for pid=38178 comm="exe" name=".pivot_root241291157" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.424:1053): avc: denied { create } for pid=38178 comm="exe" name=".pivot_root241291157" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.424:1054): avc: denied { remove_name } for pid=38178 comm="exe" name=".pivot_root241291157" dev="dm-0" ino=23414704 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.424:1054): avc: denied { rmdir } for pid=38178 comm="exe" name=".pivot_root241291157" dev="dm-0" ino=23414704 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091941.424:1055): avc: denied { create } for pid=38178 comm="exe" name="initctl" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091941.424:1056): avc: denied { getattr } for pid=38178 comm="exe" path="/initctl" dev="dm-0" ino=5017061 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091941.424:1057): avc: denied { setattr } for pid=38178 comm="exe" name="initctl" dev="dm-0" ino=5017061 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091941.424:1058): avc: denied { create } for pid=38178 comm="exe" name="utab" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091941.424:1058): avc: denied { write open } for pid=38178 comm="exe" path="/mount/utab" dev="dm-0" ino=23414705 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091941.424:1059): avc: denied { setattr } for pid=38178 comm="exe" name="utab" dev="dm-0" ino=23414705 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091941.424:1060): avc: denied { chown } for pid=38178 comm="exe" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091941.424:1061): avc: denied { fowner } for pid=38178 comm="exe" capability=3 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091941.424:1061): avc: denied { fsetid } for pid=38178 comm="exe" capability=4 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091941.519:1062): avc: denied { write } for pid=38153 comm="podman" name="sys" dev="fuse" ino=50767906 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.519:1062): avc: denied { add_name } for pid=38153 comm="podman" name="fs" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.519:1062): avc: denied { create } for pid=38153 comm="podman" name="fs" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.519:1063): avc: denied { setattr } for pid=38163 comm="fuse-overlayfs" name="3" dev="dm-0" ino=52798825 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.519:1064): avc: denied { relabelto } for pid=38163 comm="fuse-overlayfs" name="3" dev="dm-0" ino=52798825 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.519:1065): avc: denied { rename } for pid=38163 comm="fuse-overlayfs" name="3" dev="dm-0" ino=52798825 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.519:1065): avc: denied { reparent } for pid=38163 comm="fuse-overlayfs" name="3" dev="dm-0" ino=52798825 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.519:1066): avc: denied { create } for pid=38163 comm="fuse-overlayfs" name=".wh..wh..opq" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.882:1067): avc: denied { mounton } for pid=38199 comm="exe" path="/var/tmp/buildah523335328/mnt" dev="dm-0" ino=5017071 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.962:1068): avc: denied { read } for pid=38205 comm="runc" name="hugepages" dev="sysfs" ino=2382 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091941.962:1069): avc: denied { getattr } for pid=38205 comm="runc" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091941.962:1070): avc: denied { getattr } for pid=38205 comm="runc" name="/" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.016:1071): avc: denied { create } for pid=38205 comm="runc" name="exec.fifo" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607091942.016:1072): avc: denied { setattr } for pid=38205 comm="runc" name="exec.fifo" dev="dm-0" ino=19920330 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607091942.016:1073): avc: denied { mounton } for pid=38209 comm="exe" path="/tmp/run-976/runc/buildah-buildah523335328/runc.Z10Xvh" dev="dm-0" ino=23398310 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.016:1074): avc: denied { remount } for pid=38209 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1075): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/var/tmp/buildah523335328/mnt/rootfs" dev="fuse" ino=23414700 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1076): avc: denied { relabelfrom } for pid=38211 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1076): avc: denied { relabelto } for pid=38211 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1076): avc: denied { relabelfrom } for pid=38211 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1076): avc: denied { mount } for pid=38211 comm="runc:[2:INIT]" name="/" dev="tmpfs" ino=299857 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1077): avc: denied { mount } for pid=38211 comm="runc:[2:INIT]" name="/" dev="mqueue" ino=299848 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1078): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/var/tmp/buildah523335328/mnt/rootfs/dev/mqueue" dev="mqueue" ino=299848 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1079): avc: denied { relabelfrom } for pid=38211 comm="runc:[2:INIT]" name="/" dev="mqueue" ino=299848 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1080): avc: denied { relabelfrom } for pid=38211 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:devpts_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1081): avc: denied { mount } for pid=38211 comm="runc:[2:INIT]" name="/" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1082): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/var/tmp/buildah523335328/mnt/rootfs/proc" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1083): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/var/tmp/buildah523335328/mnt/rootfs/sys" dev="sysfs" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1084): avc: denied { remount } for pid=38211 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1085): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/var/tmp/buildah523335328/mnt/rootfs/etc/hosts" dev="fuse" ino=598187 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.031:1086): avc: denied { read } for pid=38211 comm="runc:[2:INIT]" path="/var/tmp/buildah523335328/mnt/rootfs/run/.containerenv" dev="dm-0" ino=5017073 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091942.031:1087): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/var/tmp/buildah523335328/mnt/rootfs/run/.containerenv" dev="dm-0" ino=5017073 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091942.031:1088): avc: denied { remount } for pid=38211 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607091942.031:1089): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/proc/irq" dev="proc" ino=4026531861 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_irq_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1090): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/proc/sys" dev="proc" ino=4026531854 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1091): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/proc/sysrq-trigger" dev="proc" ino=4026532094 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.031:1092): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/proc/kcore" dev="proc" ino=4026532029 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_kcore_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.031:1093): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/proc/keys" dev="proc" ino=4026532076 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.031:1094): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/sys/fs/cgroup" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1095): avc: denied { mounton } for pid=38211 comm="runc:[2:INIT]" path="/sys/fs/selinux" dev="selinuxfs" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:security_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091942.031:1096): avc: denied { setrlimit getrlimit } for pid=38205 comm="runc" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607091942.031:1097): avc: denied { setexec } for pid=38211 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607091942.486:1098): avc: denied { setpcap } for pid=38211 comm="runc:[2:INIT]" capability=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091942.486:1099): avc: denied { setgid } for pid=38211 comm="runc:[2:INIT]" capability=6 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091942.486:1100): avc: denied { setuid } for pid=38211 comm="runc:[2:INIT]" capability=7 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091942.486:1101): avc: denied { setcap } for pid=38211 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607091942.486:1102): avc: denied { write } for pid=38211 comm="runc:[2:INIT]" name="exec.fifo" dev="dm-0" ino=19920330 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607091942.486:1102): avc: denied { open } for pid=38211 comm="runc:[2:INIT]" path="/tmp/run-976/runc/buildah-buildah523335328/exec.fifo" dev="dm-0" ino=19920330 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607091942.486:1103): avc: denied { sys_ptrace } for pid=38205 comm="runc" capability=19 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091942.486:1104): avc: denied { getattr } for pid=38205 comm="runc" path="net:[4026531992]" dev="nsfs" ino=4026531992 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:NetworkManager_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.486:1105): avc: denied { getattr } for pid=38205 comm="runc" path="/tmp/run-976/runc/buildah-buildah523335328/exec.fifo" dev="dm-0" ino=19920330 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607091942.565:1106): avc: denied { read } for pid=38220 comm="runc" name="exec.fifo" dev="dm-0" ino=19920330 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607091942.565:1107): avc: denied { execute } for pid=38211 comm="runc:[2:INIT]" name="dash" dev="fuse" ino=18169843 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.565:1107): avc: denied { transition } for pid=38211 comm="runc:[2:INIT]" path="/bin/dash" dev="fuse" ino=18169843 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c426,c722 tclass=process permissive=1
type=AVC msg=audit(1607091942.565:1107): avc: denied { read } for pid=38211 comm="sh" path="pipe:[299819]" dev="pipefs" ino=299819 scontext=system_u:system_r:container_t:s0:c426,c722 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607091942.565:1107): avc: denied { write } for pid=38211 comm="sh" path="pipe:[299820]" dev="pipefs" ino=299820 scontext=system_u:system_r:container_t:s0:c426,c722 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607091942.565:1107): avc: denied { write } for pid=38211 comm="sh" path="pipe:[299821]" dev="pipefs" ino=299821 scontext=system_u:system_r:container_t:s0:c426,c722 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607091942.565:1108): avc: denied { unlink } for pid=38220 comm="runc" name="exec.fifo" dev="dm-0" ino=19920330 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607091942.667:1109): avc: denied { search } for pid=38225 comm="runc" name="38211" dev="proc" ino=299849 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607091942.667:1109): avc: denied { read } for pid=38225 comm="runc" name="stat" dev="proc" ino=299875 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091942.667:1109): avc: denied { open } for pid=38225 comm="runc" path="/proc/38211/stat" dev="proc" ino=299875 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091942.667:1110): avc: denied { getattr } for pid=38225 comm="runc" path="/proc/38211/stat" dev="proc" ino=299875 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607091942.925:1111): avc: denied { ioctl } for pid=38163 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/work/work/6" dev="dm-0" ino=35739214 ioctlcmd=0x9409 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.925:1112): avc: denied { setattr } for pid=38163 comm="fuse-overlayfs" name="6" dev="dm-0" ino=35739214 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.925:1113): avc: denied { relabelfrom } for pid=38163 comm="fuse-overlayfs" name="6" dev="dm-0" ino=35739214 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.925:1113): avc: denied { relabelto } for pid=38163 comm="fuse-overlayfs" name="6" dev="dm-0" ino=35739214 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.925:1114): avc: denied { rename } for pid=38163 comm="fuse-overlayfs" name="6" dev="dm-0" ino=35739214 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.925:1115): avc: denied { link } for pid=38163 comm="fuse-overlayfs" name="passwd.6" dev="dm-0" ino=35739216 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.925:1116): avc: denied { unlink } for pid=38163 comm="fuse-overlayfs" name="10" dev="dm-0" ino=35739216 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607091942.925:1117): avc: denied { chown } for pid=38163 comm="fuse-overlayfs" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091943.241:1118): avc: denied { dac_read_search } for pid=38163 comm="fuse-overlayfs" capability=2 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091943.306:1119): avc: denied { fsetid } for pid=38163 comm="fuse-overlayfs" capability=4 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607091945.893:1120): avc: denied { rmdir } for pid=38163 comm="fuse-overlayfs" name="71" dev="dm-0" ino=52798838 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=SERVICE_STOP msg=audit(1607091954.166:1121): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'UID="root" AUID="unset"
type=AVC msg=audit(1607091973.602:1122): avc: denied { read } for pid=38163 comm="fuse-overlayfs" name="run" dev="dm-0" ino=469677 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091979.876:1123): avc: denied { getattr } for pid=38163 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/cc4590d6a7187ce8879dd8ea931ffaa18bc52a1c1df702c9d538b2f0c927709d/diff/lib/x86_64-linux-gnu/libutil.so.1" dev="dm-0" ino=36787494 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607091985.969:1124): avc: denied { write } for pid=38163 comm="fuse-overlayfs" name="work" dev="dm-0" ino=35264432 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091985.969:1124): avc: denied { add_name } for pid=38163 comm="fuse-overlayfs" name="84" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091985.969:1124): avc: denied { create } for pid=38163 comm="fuse-overlayfs" name="84" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091985.969:1125): avc: denied { setattr } for pid=38163 comm="fuse-overlayfs" name="84" dev="dm-0" ino=52469707 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091985.969:1126): avc: denied { relabelfrom } for pid=38163 comm="fuse-overlayfs" name="84" dev="dm-0" ino=52469707 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091985.969:1126): avc: denied { relabelto } for pid=38163 comm="fuse-overlayfs" name="84" dev="dm-0" ino=52469707 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091985.969:1127): avc: denied { remove_name } for pid=38163 comm="fuse-overlayfs" name="84" dev="dm-0" ino=52469707 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091985.969:1127): avc: denied { rename } for pid=38163 comm="fuse-overlayfs" name="84" dev="dm-0" ino=52469707 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607091985.969:1127): avc: denied { reparent } for pid=38163 comm="fuse-overlayfs" name="84" dev="dm-0" ino=52469707 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092027.506:1128): avc: denied { chown } for pid=38163 comm="fuse-overlayfs" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092027.506:1129): avc: denied { create } for pid=38163 comm="fuse-overlayfs" name=".wh..wh..opq" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092027.506:1129): avc: denied { write open } for pid=38163 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/work/work/96/.wh..wh..opq" dev="dm-0" ino=52704251 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092027.506:1130): avc: denied { read } for pid=38163 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/diff/usr/local/lib/python3.6/dist-packages/ansible/__init__.py" dev="dm-0" ino=52704252 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092027.506:1131): avc: denied { getattr } for pid=38163 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/diff/usr/local/lib/python3.6/dist-packages/ansible/__init__.py" dev="dm-0" ino=52704252 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092027.506:1132): avc: denied { setattr } for pid=38163 comm="fuse-overlayfs" name="__init__.py" dev="dm-0" ino=52704252 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092035.056:1133): avc: denied { rename } for pid=38163 comm="fuse-overlayfs" name="INSTALLER.pip" dev="dm-0" ino=38696089 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092035.177:1134): avc: denied { unlink } for pid=38163 comm="fuse-overlayfs" name="12450" dev="dm-0" ino=38696088 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.145:1135): avc: denied { ioctl } for pid=38163 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/work/work/12459" dev="dm-0" ino=35736896 ioctlcmd=0x9409 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.145:1136): avc: denied { relabelfrom } for pid=38163 comm="fuse-overlayfs" name="12459" dev="dm-0" ino=35736896 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.145:1136): avc: denied { relabelto } for pid=38163 comm="fuse-overlayfs" name="12459" dev="dm-0" ino=35736896 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.161:1137): avc: denied { rmdir } for pid=38163 comm="fuse-overlayfs" name="12463" dev="dm-0" ino=23607662 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.296:1138): avc: denied { link } for pid=38163 comm="fuse-overlayfs" name="localhost.centos82-859aa740.151110557603878514097" dev="dm-0" ino=5017049 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.434:1139): avc: denied { execute } for pid=38525 comm="exe" name="runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.434:1139): avc: denied { read open } for pid=38525 comm="exe" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.434:1139): avc: denied { execute_no_trans } for pid=38525 comm="exe" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.434:1139): avc: denied { map } for pid=38525 comm="runc" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.434:1140): avc: denied { read } for pid=38525 comm="runc" name="hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.434:1140): avc: denied { open } for pid=38525 comm="runc" path="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.434:1141): avc: denied { read } for pid=38525 comm="runc" name="hugepages" dev="sysfs" ino=2382 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.434:1142): avc: denied { getattr } for pid=38525 comm="runc" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.434:1143): avc: denied { search } for pid=38525 comm="runc" name="/" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.434:1144): avc: denied { getattr } for pid=38199 comm="exe" path="/var/tmp/buildah523335328/mnt/buildah-bind-target-8" dev="dm-0" ino=52798826 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607092037.434:1145): avc: denied { sys_admin } for pid=38199 comm="exe" capability=21 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092037.434:1145): avc: denied { unmount } for pid=38199 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092037.434:1146): avc: denied { dac_override } for pid=38199 comm="exe" capability=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092037.434:1147): avc: denied { getattr } for pid=38199 comm="exe" path="/var/tmp/buildah523335328/mnt/rootfs" dev="fuse" ino=23414700 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.434:1148): avc: denied { unmount } for pid=38199 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092037.497:1149): avc: denied { lock } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/containers.lock" dev="dm-0" ino=35835618 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.683:1150): avc: denied { unlink } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=50736888 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607092037.683:1151): avc: denied { dac_read_search } for pid=38153 comm="podman" capability=2 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092037.743:1152): avc: denied { read } for pid=38153 comm="podman" name="XCCVN56OCEOYF5MS2RCFJ55VTE" dev="dm-0" ino=23133461 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092037.743:1153): avc: denied { getattr } for pid=38530 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/l/N6U5TJIAR5OFTAB3WN4XTWXUJG" dev="dm-0" ino=22908434 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092037.743:1154): avc: denied { read write } for pid=38530 comm="fuse-overlayfs" name="fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092037.743:1154): avc: denied { open } for pid=38530 comm="fuse-overlayfs" path="/dev/fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092037.743:1155): avc: denied { mounton } for pid=38530 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/bc13a9de753585475801de66d31c9366284daad8750d05941be61328fdcb2815/merged" dev="dm-0" ino=5147985 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.743:1155): avc: denied { mount } for pid=38530 comm="fuse-overlayfs" name="/" dev="fuse" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092037.743:1156): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/bc13a9de753585475801de66d31c9366284daad8750d05941be61328fdcb2815/merged" dev="fuse" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.743:1157): avc: denied { read } for pid=38153 comm="podman" name="/" dev="fuse" ino=35277461 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.743:1157): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/bc13a9de753585475801de66d31c9366284daad8750d05941be61328fdcb2815/merged" dev="fuse" ino=35277461 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.769:1158): avc: denied { search } for pid=38153 comm="podman" name="/" dev="fuse" ino=35277461 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092037.769:1159): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/bc13a9de753585475801de66d31c9366284daad8750d05941be61328fdcb2815/merged/bin/bash" dev="fuse" ino=19869622 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092037.769:1160): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/bc13a9de753585475801de66d31c9366284daad8750d05941be61328fdcb2815/merged/bin/bzcmp" dev="fuse" ino=19869624 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092059.962:1161): avc: denied { read } for pid=38531 comm="fuse-overlayfs" name="version.py" dev="dm-0" ino=21952127 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092059.962:1161): avc: denied { open } for pid=38531 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/9d3318e7d80a794e990c27c1881c1c6da63097510027af15cf79a88e6171e11f/diff/usr/local/lib/python2.7/dist-packages/azure/mgmt/network/version.py" dev="dm-0" ino=21952127 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092059.963:1162): avc: denied { getattr } for pid=38531 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/9d3318e7d80a794e990c27c1881c1c6da63097510027af15cf79a88e6171e11f/diff/usr/local/lib/python2.7/dist-packages/azure/mgmt/network/version.py" dev="dm-0" ino=21952127 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092059.974:1163): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/bc13a9de753585475801de66d31c9366284daad8750d05941be61328fdcb2815/merged/usr/local/lib/python2.7/dist-packages/azure/mgmt/__init__.py" dev="fuse" ino=57530689 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092116.113:1164): avc: denied { dac_read_search } for pid=38531 comm="fuse-overlayfs" capability=2 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092116.917:1165): avc: denied { sys_admin } for pid=38153 comm="podman" capability=21 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092116.917:1165): avc: denied { unmount } for pid=38153 comm="podman" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092117.773:1166): avc: denied { write } for pid=38153 comm="podman" name="bc13a9de753585475801de66d31c9366284daad8750d05941be61328fdcb2815" dev="dm-0" ino=23133460 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092117.773:1166): avc: denied { remove_name } for pid=38153 comm="podman" name="merged" dev="dm-0" ino=5147985 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092117.773:1166): avc: denied { rmdir } for pid=38153 comm="podman" name="merged" dev="dm-0" ino=5147985 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092117.938:1167): avc: denied { read } for pid=38153 comm="podman" name="passwd" dev="fuse" ino=35739231 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092117.938:1167): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/0b147cd36b381183a9d4e5d41cc315399702dcd23313b29a05fd2c09ccb4a4d0/merged/etc/passwd" dev="fuse" ino=35739231 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092148.266:1168): avc: denied { lock } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/cache/blob-info-cache-v1.boltdb" dev="dm-0" ino=598530 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092148.266:1169): avc: denied { map } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/cache/blob-info-cache-v1.boltdb" dev="dm-0" ino=598530 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092148.268:1170): avc: denied { add_name } for pid=38153 comm="podman" name="storage.lock" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092148.268:1170): avc: denied { create } for pid=38153 comm="podman" name="storage.lock" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092148.268:1170): avc: denied { write } for pid=38153 comm="podman" name="storage.lock" dev="dm-0" ino=598354 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092151.532:1171): avc: denied { write } for pid=38153 comm="podman" name="overlay-containers" dev="dm-0" ino=35835617 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092151.532:1171): avc: denied { add_name } for pid=38153 comm="podman" name="containers.lock" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092151.611:1172): avc: denied { create } for pid=38153 comm="podman" name="c7a89bd12170f2ebb26ff1890372efd4e7fff60312201bf5fab8f722ef801162" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092151.626:1173): avc: denied { create } for pid=38153 comm="podman" name="VBIXQ2U76M72YAUAEXE7P7BPW6" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092151.819:1174): avc: denied { setattr } for pid=38153 comm="podman" name=".tmp-layers.json691986504" dev="dm-0" ino=2500034 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092151.819:1175): avc: denied { remove_name } for pid=38153 comm="podman" name=".tmp-layers.json691986504" dev="dm-0" ino=2500034 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092151.819:1175): avc: denied { rename } for pid=38153 comm="podman" name=".tmp-layers.json691986504" dev="dm-0" ino=2500034 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092151.819:1175): avc: denied { unlink } for pid=38153 comm="podman" name="layers.json" dev="dm-0" ino=5017060 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092151.980:1176): avc: denied { read } for pid=38153 comm="podman" name="XCCVN56OCEOYF5MS2RCFJ55VTE" dev="dm-0" ino=23133461 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092152.075:1177): avc: denied { execute } for pid=38658 comm="podman" name="podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.075:1177): avc: denied { read open } for pid=38658 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.075:1177): avc: denied { execute_no_trans } for pid=38658 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.075:1177): avc: denied { map } for pid=38658 comm="exe" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.174:1178): avc: denied { read } for pid=38658 comm="exe" name="hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.174:1178): avc: denied { open } for pid=38658 comm="exe" path="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.526:1179): avc: denied { create } for pid=38658 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092152.526:1180): avc: denied { setopt } for pid=38658 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092152.526:1181): avc: denied { bind } for pid=38658 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092152.526:1182): avc: denied { getattr } for pid=38658 comm="exe" path=003030303636 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092152.526:1183): avc: denied { search } for pid=38658 comm="exe" name="/" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092152.526:1183): avc: denied { getattr } for pid=38658 comm="exe" path="/sys/fs/cgroup/memory/memory.memsw.limit_in_bytes" dev="cgroup" ino=33 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.526:1184): avc: denied { read } for pid=38658 comm="exe" name="cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.526:1184): avc: denied { open } for pid=38658 comm="exe" path="/sys/fs/cgroup/cpuset/cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.526:1185): avc: denied { search } for pid=38658 comm="exe" name="net" dev="proc" ino=11197 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092152.526:1185): avc: denied { read } for pid=38658 comm="exe" name="ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.526:1185): avc: denied { open } for pid=38658 comm="exe" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.526:1186): avc: denied { getattr } for pid=38658 comm="exe" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092152.526:1187): avc: denied { mounton } for pid=38658 comm="exe" path="/" dev="dm-0" ino=128 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092152.526:1188): avc: denied { mounton } for pid=38658 comm="exe" path="/var/lib/pulp/.local/share/containers/storage/overlay/c7a89bd12170f2ebb26ff1890372efd4e7fff60312201bf5fab8f722ef801162/diff" dev="dm-0" ino=38696095 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092152.526:1189): avc: denied { unmount } for pid=38658 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092152.526:1190): avc: denied { rmdir } for pid=38658 comm="exe" name=".pivot_root098583507" dev="dm-0" ino=23607665 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092152.526:1191): avc: denied { setattr } for pid=38658 comm="exe" name="ansible_collections" dev="dm-0" ino=38696096 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092152.526:1191): avc: denied { chown } for pid=38658 comm="exe" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092152.526:1192): avc: denied { fowner } for pid=38658 comm="exe" capability=3 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092152.526:1193): avc: denied { fsetid } for pid=38658 comm="exe" capability=4 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092164.009:1194): avc: denied { read } for pid=38153 comm="podman" name="lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.009:1194): avc: denied { open } for pid=38153 comm="podman" path="/etc/selinux/targeted/contexts/lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.041:1195): avc: denied { create } for pid=38153 comm="podman" name="link" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.041:1195): avc: denied { write open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/2a307571d1745d009462de56d117c0ac659ef0850fcd5c5d8ce40d1c15651ae7/link" dev="dm-0" ino=23461503 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.041:1196): avc: denied { read } for pid=38153 comm="podman" name="link" dev="dm-0" ino=23607663 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.041:1197): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/c7a89bd12170f2ebb26ff1890372efd4e7fff60312201bf5fab8f722ef801162/link" dev="dm-0" ino=23607663 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.096:1198): avc: denied { setattr } for pid=38153 comm="podman" name=".tmp-layers.json020780876" dev="dm-0" ino=5172220 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.096:1199): avc: denied { rename } for pid=38153 comm="podman" name=".tmp-layers.json020780876" dev="dm-0" ino=5172220 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.096:1199): avc: denied { unlink } for pid=38153 comm="podman" name="layers.json" dev="dm-0" ino=2500034 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.328:1200): avc: denied { lock } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/containers.lock" dev="dm-0" ino=35835618 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092164.575:1201): avc: denied { getattr } for pid=38696 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/l/VBIXQ2U76M72YAUAEXE7P7BPW6" dev="dm-0" ino=19869592 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092164.575:1202): avc: denied { read write } for pid=38696 comm="fuse-overlayfs" name="fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092164.575:1202): avc: denied { open } for pid=38696 comm="fuse-overlayfs" path="/dev/fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092164.575:1203): avc: denied { mount } for pid=38696 comm="fuse-overlayfs" name="/" dev="fuse" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092165.032:1204): avc: denied { execute } for pid=38699 comm="podman" name="podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092165.032:1204): avc: denied { read open } for pid=38699 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092165.032:1204): avc: denied { execute_no_trans } for pid=38699 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092165.032:1204): avc: denied { map } for pid=38699 comm="exe" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092165.165:1205): avc: denied { create } for pid=38699 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092165.165:1206): avc: denied { setopt } for pid=38699 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092165.165:1207): avc: denied { bind } for pid=38699 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092165.165:1208): avc: denied { getattr } for pid=38699 comm="exe" path=003030303637 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092165.165:1209): avc: denied { search } for pid=38699 comm="exe" name="/" dev="fuse" ino=35741002 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.165:1210): avc: denied { sys_chroot } for pid=38699 comm="exe" capability=18 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092165.349:1211): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/2a307571d1745d009462de56d117c0ac659ef0850fcd5c5d8ce40d1c15651ae7/merged" dev="fuse" ino=35741002 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.480:1212): avc: denied { relabelfrom } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=5172222 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092165.480:1212): avc: denied { relabelto } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=5172222 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092165.615:1213): avc: denied { getattr } for pid=38153 comm="podman" path="/etc/rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.615:1214): avc: denied { read } for pid=38153 comm="podman" name="rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.615:1214): avc: denied { open } for pid=38153 comm="podman" path="/etc/rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.615:1215): avc: denied { search } for pid=38153 comm="podman" name="rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.631:1216): avc: denied { getattr } for pid=38153 comm="podman" path="/etc/rhsm/logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092165.714:1217): avc: denied { read } for pid=38153 comm="podman" name="logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092165.714:1217): avc: denied { open } for pid=38153 comm="podman" path="/etc/rhsm/logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092165.723:1218): avc: denied { dac_read_search } for pid=38153 comm="podman" capability=2 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092165.723:1218): avc: denied { dac_override } for pid=38153 comm="podman" capability=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092165.723:1219): avc: denied { relabelfrom } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.723:1219): avc: denied { relabelto } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.797:1220): avc: denied { setattr } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.797:1221): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/d50490e6a3fc6d0d0313efa7361b7683ce296b8e7c53901a38f17c1e9fd85290/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.797:1222): avc: denied { read } for pid=38153 comm="podman" name="run" dev="fuse" ino=36679021 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.797:1222): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/2a307571d1745d009462de56d117c0ac659ef0850fcd5c5d8ce40d1c15651ae7/merged/run" dev="fuse" ino=36679021 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092165.816:1223): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/2a307571d1745d009462de56d117c0ac659ef0850fcd5c5d8ce40d1c15651ae7/merged/run/initctl" dev="fuse" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092165.816:1224): avc: denied { read } for pid=38153 comm="podman" name="initctl" dev="fuse" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092165.994:1225): avc: denied { sys_admin } for pid=38711 comm="exe" capability=21 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092165.994:1226): avc: denied { mounton } for pid=38711 comm="exe" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/d50490e6a3fc6d0d0313efa7361b7683ce296b8e7c53901a38f17c1e9fd85290/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.994:1227): avc: denied { search } for pid=38711 comm="exe" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.994:1227): avc: denied { write } for pid=38711 comm="exe" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.994:1227): avc: denied { add_name } for pid=38711 comm="exe" name=".pivot_root216558258" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.994:1227): avc: denied { create } for pid=38711 comm="exe" name=".pivot_root216558258" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.994:1228): avc: denied { remove_name } for pid=38711 comm="exe" name=".pivot_root216558258" dev="dm-0" ino=35741007 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.994:1228): avc: denied { rmdir } for pid=38711 comm="exe" name=".pivot_root216558258" dev="dm-0" ino=35741007 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092165.994:1229): avc: denied { create } for pid=38711 comm="exe" name="initctl" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092165.994:1230): avc: denied { getattr } for pid=38711 comm="exe" path="/initctl" dev="dm-0" ino=23461572 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092165.994:1231): avc: denied { setattr } for pid=38711 comm="exe" name="initctl" dev="dm-0" ino=23461572 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092165.994:1232): avc: denied { create } for pid=38711 comm="exe" name="utab" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092165.994:1232): avc: denied { write open } for pid=38711 comm="exe" path="/mount/utab" dev="dm-0" ino=35741008 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092165.994:1233): avc: denied { setattr } for pid=38711 comm="exe" name="utab" dev="dm-0" ino=35741008 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092165.994:1234): avc: denied { chown } for pid=38711 comm="exe" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092165.994:1235): avc: denied { fowner } for pid=38711 comm="exe" capability=3 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092165.994:1235): avc: denied { fsetid } for pid=38711 comm="exe" capability=4 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092166.770:1236): avc: denied { getattr } for pid=38153 comm="podman" path="/sys/fs/cgroup" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092166.861:1237): avc: denied { mounton } for pid=38734 comm="exe" path="/var/tmp/buildah237714034/mnt" dev="dm-0" ino=35741014 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.083:1238): avc: denied { read } for pid=38742 comm="runc" name="hugepages" dev="sysfs" ino=2382 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.083:1239): avc: denied { getattr } for pid=38742 comm="runc" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092167.083:1240): avc: denied { getattr } for pid=38742 comm="runc" name="/" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.114:1241): avc: denied { create } for pid=38742 comm="runc" name="exec.fifo" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092167.114:1242): avc: denied { setattr } for pid=38742 comm="runc" name="exec.fifo" dev="dm-0" ino=53108549 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092167.114:1243): avc: denied { mounton } for pid=38747 comm="exe" path="/tmp/run-976/runc/buildah-buildah237714034/runc.gLDspL" dev="dm-0" ino=53108550 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092167.114:1244): avc: denied { remount } for pid=38747 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.114:1245): avc: denied { setuid } for pid=38747 comm="runc:[0:PARENT]" capability=7 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092167.114:1246): avc: denied { setgid } for pid=38747 comm="runc:[0:PARENT]" capability=6 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092167.114:1247): avc: denied { sys_ptrace } for pid=38742 comm="runc" capability=19 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092167.179:1248): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/var/tmp/buildah237714034/mnt/rootfs" dev="fuse" ino=35741002 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1249): avc: denied { relabelfrom } for pid=38749 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1249): avc: denied { relabelto } for pid=38749 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1249): avc: denied { relabelfrom } for pid=38749 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1249): avc: denied { mount } for pid=38749 comm="runc:[2:INIT]" name="/" dev="tmpfs" ino=307963 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1250): avc: denied { mount } for pid=38749 comm="runc:[2:INIT]" name="/" dev="mqueue" ino=307954 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1251): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/var/tmp/buildah237714034/mnt/rootfs/dev/mqueue" dev="mqueue" ino=307954 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1252): avc: denied { relabelfrom } for pid=38749 comm="runc:[2:INIT]" name="/" dev="mqueue" ino=307954 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1253): avc: denied { relabelfrom } for pid=38749 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:devpts_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1254): avc: denied { mount } for pid=38749 comm="runc:[2:INIT]" name="/" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1255): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/var/tmp/buildah237714034/mnt/rootfs/proc" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1256): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/var/tmp/buildah237714034/mnt/rootfs/sys" dev="sysfs" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1257): avc: denied { remount } for pid=38749 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1258): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/var/tmp/buildah237714034/mnt/rootfs/etc/hosts" dev="fuse" ino=598187 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092167.179:1259): avc: denied { read } for pid=38749 comm="runc:[2:INIT]" path="/var/tmp/buildah237714034/mnt/rootfs/run/.containerenv" dev="dm-0" ino=23461587 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092167.179:1260): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/var/tmp/buildah237714034/mnt/rootfs/run/.containerenv" dev="dm-0" ino=23461587 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092167.179:1261): avc: denied { remount } for pid=38749 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092167.179:1262): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/proc/irq" dev="proc" ino=4026531861 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_irq_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1263): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/proc/sys" dev="proc" ino=4026531854 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1264): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/proc/sysrq-trigger" dev="proc" ino=4026532094 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092167.179:1265): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/proc/kcore" dev="proc" ino=4026532029 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_kcore_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092167.179:1266): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/proc/keys" dev="proc" ino=4026532076 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092167.179:1267): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/sys/fs/cgroup" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1268): avc: denied { mounton } for pid=38749 comm="runc:[2:INIT]" path="/sys/fs/selinux" dev="selinuxfs" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:security_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092167.179:1269): avc: denied { setrlimit getrlimit } for pid=38742 comm="runc" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607092167.179:1270): avc: denied { setexec } for pid=38749 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607092167.683:1271): avc: denied { setpcap } for pid=38749 comm="runc:[2:INIT]" capability=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092167.683:1272): avc: denied { setcap } for pid=38749 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607092167.740:1273): avc: denied { write } for pid=38749 comm="runc:[2:INIT]" name="exec.fifo" dev="dm-0" ino=53108549 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092167.740:1273): avc: denied { open } for pid=38749 comm="runc:[2:INIT]" path="/tmp/run-976/runc/buildah-buildah237714034/exec.fifo" dev="dm-0" ino=53108549 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092167.740:1274): avc: denied { getattr } for pid=38742 comm="runc" path="net:[4026531992]" dev="nsfs" ino=4026531992 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:NetworkManager_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092167.740:1275): avc: denied { getattr } for pid=38742 comm="runc" path="/tmp/run-976/runc/buildah-buildah237714034/exec.fifo" dev="dm-0" ino=53108549 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092167.801:1276): avc: denied { read } for pid=38758 comm="runc" name="exec.fifo" dev="dm-0" ino=53108549 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092167.801:1277): avc: denied { execute } for pid=38749 comm="runc:[2:INIT]" name="dash" dev="fuse" ino=18169843 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092167.801:1277): avc: denied { transition } for pid=38749 comm="runc:[2:INIT]" path="/bin/dash" dev="fuse" ino=18169843 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c375,c625 tclass=process permissive=1
type=AVC msg=audit(1607092167.801:1277): avc: denied { read } for pid=38749 comm="sh" path="pipe:[307904]" dev="pipefs" ino=307904 scontext=system_u:system_r:container_t:s0:c375,c625 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092167.801:1277): avc: denied { write } for pid=38749 comm="sh" path="pipe:[307905]" dev="pipefs" ino=307905 scontext=system_u:system_r:container_t:s0:c375,c625 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092167.801:1277): avc: denied { write } for pid=38749 comm="sh" path="pipe:[307906]" dev="pipefs" ino=307906 scontext=system_u:system_r:container_t:s0:c375,c625 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092168.068:1278): avc: denied { unlink } for pid=38758 comm="runc" name="exec.fifo" dev="dm-0" ino=53108549 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092168.068:1279): avc: denied { search } for pid=38767 comm="runc" name="38749" dev="proc" ino=307955 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092168.068:1279): avc: denied { read } for pid=38767 comm="runc" name="stat" dev="proc" ino=307981 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092168.068:1279): avc: denied { open } for pid=38767 comm="runc" path="/proc/38749/stat" dev="proc" ino=307981 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092168.068:1280): avc: denied { getattr } for pid=38767 comm="runc" path="/proc/38749/stat" dev="proc" ino=307981 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092173.113:1281): avc: denied { relabelto } for pid=38698 comm="fuse-overlayfs" name="3" dev="dm-0" ino=5180573 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092173.113:1282): avc: denied { rename } for pid=38698 comm="fuse-overlayfs" name="6" dev="dm-0" ino=53108549 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092173.113:1282): avc: denied { reparent } for pid=38698 comm="fuse-overlayfs" name="6" dev="dm-0" ino=53108549 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092173.433:1283): avc: denied { unmount } for pid=38734 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092173.722:1284): avc: denied { unlink } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=5172222 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092258.074:1285): avc: denied { map } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/cache/blob-info-cache-v1.boltdb" dev="dm-0" ino=598530 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092258.894:1286): avc: denied { read } for pid=38928 comm="exe" name="hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092258.894:1286): avc: denied { open } for pid=38928 comm="exe" path="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.026:1287): avc: denied { search } for pid=38928 comm="exe" name="/" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.026:1287): avc: denied { getattr } for pid=38928 comm="exe" path="/sys/fs/cgroup/memory/memory.memsw.limit_in_bytes" dev="cgroup" ino=33 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.026:1288): avc: denied { read } for pid=38928 comm="exe" name="cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.026:1288): avc: denied { open } for pid=38928 comm="exe" path="/sys/fs/cgroup/cpuset/cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.026:1289): avc: denied { search } for pid=38928 comm="exe" name="net" dev="proc" ino=11197 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.026:1289): avc: denied { read } for pid=38928 comm="exe" name="ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.026:1289): avc: denied { open } for pid=38928 comm="exe" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.026:1290): avc: denied { getattr } for pid=38928 comm="exe" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.026:1291): avc: denied { mounton } for pid=38928 comm="exe" path="/" dev="dm-0" ino=128 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.026:1292): avc: denied { unmount } for pid=38928 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092259.570:1293): avc: denied { getattr } for pid=38938 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/f2e520692ac8ed4e96dcd1f6baf73627c7edc810b1092bcb5abb4bbdb1b63ad3/diff/etc/mtab" dev="dm-0" ino=18226054 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092259.671:1294): avc: denied { relabelto } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=5180582 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092259.673:1295): avc: denied { getattr } for pid=38153 comm="podman" path="/etc/rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.673:1296): avc: denied { read } for pid=38153 comm="podman" name="rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.673:1296): avc: denied { open } for pid=38153 comm="podman" path="/etc/rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.673:1297): avc: denied { search } for pid=38153 comm="podman" name="rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.673:1298): avc: denied { getattr } for pid=38153 comm="podman" path="/etc/rhsm/logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.674:1299): avc: denied { read } for pid=38153 comm="podman" name="logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.674:1299): avc: denied { open } for pid=38153 comm="podman" path="/etc/rhsm/logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092259.674:1300): avc: denied { relabelto } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.674:1301): avc: denied { search } for pid=38153 comm="podman" name="/" dev="fuse" ino=35741022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.674:1301): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/merged/run" dev="fuse" ino=36679021 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.675:1302): avc: denied { setattr } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.675:1303): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/a3bfd84bc173c3e438006ba1b4ece89cdc5091b82eeaa1ba8d055c091a198e35/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.675:1304): avc: denied { read } for pid=38153 comm="podman" name="run" dev="fuse" ino=36679021 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.675:1304): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/merged/run" dev="fuse" ino=36679021 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092259.677:1305): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/merged/run/initctl" dev="fuse" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092259.677:1306): avc: denied { read } for pid=38153 comm="podman" name="initctl" dev="fuse" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092259.677:1307): avc: denied { read } for pid=38938 comm="fuse-overlayfs" name="initctl" dev="dm-0" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092259.732:1308): avc: denied { mounton } for pid=38950 comm="exe" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/a3bfd84bc173c3e438006ba1b4ece89cdc5091b82eeaa1ba8d055c091a198e35/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.732:1309): avc: denied { search } for pid=38950 comm="exe" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.732:1309): avc: denied { write } for pid=38950 comm="exe" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.732:1309): avc: denied { add_name } for pid=38950 comm="exe" name=".pivot_root539014376" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.732:1309): avc: denied { create } for pid=38950 comm="exe" name=".pivot_root539014376" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.732:1310): avc: denied { remove_name } for pid=38950 comm="exe" name=".pivot_root539014376" dev="dm-0" ino=35741025 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.732:1310): avc: denied { rmdir } for pid=38950 comm="exe" name=".pivot_root539014376" dev="dm-0" ino=35741025 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092259.732:1311): avc: denied { create } for pid=38950 comm="exe" name="initctl" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092259.732:1312): avc: denied { getattr } for pid=38950 comm="exe" path="/initctl" dev="dm-0" ino=23461605 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092259.732:1313): avc: denied { setattr } for pid=38950 comm="exe" name="initctl" dev="dm-0" ino=23461605 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092259.732:1314): avc: denied { create } for pid=38950 comm="exe" name="utab" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092259.732:1314): avc: denied { write open } for pid=38950 comm="exe" path="/mount/utab" dev="dm-0" ino=35741026 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092259.732:1315): avc: denied { setattr } for pid=38950 comm="exe" name="utab" dev="dm-0" ino=35741026 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092260.098:1316): avc: denied { getattr } for pid=38153 comm="podman" path="/sys/fs/cgroup" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.228:1317): avc: denied { read } for pid=38979 comm="runc" name="hugepages" dev="sysfs" ino=2382 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.245:1318): avc: denied { getattr } for pid=38979 comm="runc" name="/" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.247:1319): avc: denied { mounton } for pid=38984 comm="exe" path="/tmp/run-976/runc/buildah-buildah096606484/runc.wYc6ir" dev="dm-0" ino=53108574 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092260.247:1320): avc: denied { remount } for pid=38984 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1321): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/var/tmp/buildah096606484/mnt/rootfs" dev="fuse" ino=35741022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.298:1322): avc: denied { relabelfrom } for pid=38986 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1322): avc: denied { relabelto } for pid=38986 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1322): avc: denied { relabelfrom } for pid=38986 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1322): avc: denied { mount } for pid=38986 comm="runc:[2:INIT]" name="/" dev="tmpfs" ino=310785 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1323): avc: denied { mount } for pid=38986 comm="runc:[2:INIT]" name="/" dev="mqueue" ino=310776 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1324): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/var/tmp/buildah096606484/mnt/rootfs/dev/mqueue" dev="mqueue" ino=310776 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.298:1325): avc: denied { relabelfrom } for pid=38986 comm="runc:[2:INIT]" name="/" dev="mqueue" ino=310776 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.298:1326): avc: denied { relabelfrom } for pid=38986 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:devpts_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1327): avc: denied { mount } for pid=38986 comm="runc:[2:INIT]" name="/" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1328): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/var/tmp/buildah096606484/mnt/rootfs/proc" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.298:1329): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/var/tmp/buildah096606484/mnt/rootfs/sys" dev="sysfs" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.298:1330): avc: denied { remount } for pid=38986 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1331): avc: denied { read } for pid=38986 comm="runc:[2:INIT]" path="/var/tmp/buildah096606484/mnt/rootfs/run/.containerenv" dev="dm-0" ino=23461620 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092260.298:1332): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/var/tmp/buildah096606484/mnt/rootfs/run/.containerenv" dev="dm-0" ino=23461620 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092260.298:1333): avc: denied { remount } for pid=38986 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092260.298:1334): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/proc/irq" dev="proc" ino=4026531861 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_irq_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.298:1335): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/proc/sys" dev="proc" ino=4026531854 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.298:1336): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/proc/sysrq-trigger" dev="proc" ino=4026532094 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092260.298:1337): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/proc/kcore" dev="proc" ino=4026532029 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_kcore_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092260.298:1338): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/proc/keys" dev="proc" ino=4026532076 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092260.298:1339): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/sys/fs/cgroup" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.298:1340): avc: denied { mounton } for pid=38986 comm="runc:[2:INIT]" path="/sys/fs/selinux" dev="selinuxfs" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:security_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092260.583:1341): avc: denied { getattr } for pid=38979 comm="runc" path="net:[4026531992]" dev="nsfs" ino=4026531992 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:NetworkManager_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092260.596:1342): avc: denied { transition } for pid=38986 comm="runc:[2:INIT]" path="/bin/dash" dev="fuse" ino=18169843 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c327,c555 tclass=process permissive=1
type=AVC msg=audit(1607092260.596:1342): avc: denied { read } for pid=38986 comm="sh" path="pipe:[310739]" dev="pipefs" ino=310739 scontext=system_u:system_r:container_t:s0:c327,c555 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092260.596:1342): avc: denied { write } for pid=38986 comm="sh" path="pipe:[310740]" dev="pipefs" ino=310740 scontext=system_u:system_r:container_t:s0:c327,c555 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092260.596:1342): avc: denied { write } for pid=38986 comm="sh" path="pipe:[310741]" dev="pipefs" ino=310741 scontext=system_u:system_r:container_t:s0:c327,c555 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092260.653:1343): avc: denied { search } for pid=39000 comm="runc" name="38986" dev="proc" ino=310777 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092260.653:1343): avc: denied { read } for pid=39000 comm="runc" name="stat" dev="proc" ino=310803 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092260.653:1343): avc: denied { open } for pid=39000 comm="runc" path="/proc/38986/stat" dev="proc" ino=310803 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092260.653:1344): avc: denied { getattr } for pid=39000 comm="runc" path="/proc/38986/stat" dev="proc" ino=310803 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092261.440:1345): avc: denied { write } for pid=38938 comm="fuse-overlayfs" name="work" dev="dm-0" ino=53108553 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1345): avc: denied { add_name } for pid=38938 comm="fuse-overlayfs" name="3" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1345): avc: denied { create } for pid=38938 comm="fuse-overlayfs" name="3" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1346): avc: denied { setattr } for pid=38938 comm="fuse-overlayfs" name="3" dev="dm-0" ino=1703877 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1347): avc: denied { relabelfrom } for pid=38938 comm="fuse-overlayfs" name="3" dev="dm-0" ino=1703877 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1347): avc: denied { relabelto } for pid=38938 comm="fuse-overlayfs" name="3" dev="dm-0" ino=1703877 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1348): avc: denied { remove_name } for pid=38938 comm="fuse-overlayfs" name="6" dev="dm-0" ino=53108573 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1348): avc: denied { rename } for pid=38938 comm="fuse-overlayfs" name="6" dev="dm-0" ino=53108573 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1348): avc: denied { reparent } for pid=38938 comm="fuse-overlayfs" name="6" dev="dm-0" ino=53108573 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092261.440:1349): avc: denied { ioctl } for pid=38938 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/work/work/10" dev="dm-0" ino=53108575 ioctlcmd=0x9409 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092261.440:1350): avc: denied { relabelfrom } for pid=38938 comm="fuse-overlayfs" name="10" dev="dm-0" ino=53108575 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092261.440:1350): avc: denied { relabelto } for pid=38938 comm="fuse-overlayfs" name="10" dev="dm-0" ino=53108575 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092263.394:1351): avc: denied { read } for pid=38938 comm="fuse-overlayfs" name="archive.ubuntu.com_ubuntu_dists_bionic-updates_restricted_binary-amd64_Packages.gz" dev="dm-0" ino=53108584 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092263.394:1351): avc: denied { open } for pid=38938 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/diff/var/lib/apt/lists/partial/archive.ubuntu.com_ubuntu_dists_bionic-updates_restricted_binary-amd64_Packages.gz" dev="dm-0" ino=53108584 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092263.394:1352): avc: denied { getattr } for pid=38938 comm="fuse-overlayfs" name="archive.ubuntu.com_ubuntu_dists_bionic-updates_restricted_binary-amd64_Packages.gz" dev="dm-0" ino=53108584 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092264.156:1353): avc: denied { setattr } for pid=38938 comm="fuse-overlayfs" name="archive.ubuntu.com_ubuntu_dists_bionic-updates_restricted_binary-amd64_Packages.gz" dev="dm-0" ino=53108584 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092264.175:1354): avc: denied { create } for pid=38938 comm="fuse-overlayfs" name="47" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092264.175:1354): avc: denied { write } for pid=38938 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/work/work/47" dev="dm-0" ino=53108585 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092264.175:1355): avc: denied { rename } for pid=38938 comm="fuse-overlayfs" name="47" dev="dm-0" ino=53108585 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092268.507:1356): avc: denied { dac_read_search } for pid=38938 comm="fuse-overlayfs" capability=2 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092268.653:1357): avc: denied { fowner } for pid=38938 comm="fuse-overlayfs" capability=3 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092268.653:1358): avc: denied { dac_override } for pid=38938 comm="fuse-overlayfs" capability=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092268.653:1359): avc: denied { chown } for pid=38938 comm="fuse-overlayfs" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092272.309:1360): avc: denied { fsetid } for pid=38938 comm="fuse-overlayfs" capability=4 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092273.230:1361): avc: denied { ioctl } for pid=38938 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/work/work/92" dev="dm-0" ino=53169856 ioctlcmd=0x9409 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092273.230:1362): avc: denied { relabelfrom } for pid=38938 comm="fuse-overlayfs" name="92" dev="dm-0" ino=53169856 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092273.230:1362): avc: denied { relabelto } for pid=38938 comm="fuse-overlayfs" name="92" dev="dm-0" ino=53169856 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092273.230:1363): avc: denied { unlink } for pid=38938 comm="fuse-overlayfs" name="93" dev="dm-0" ino=53169856 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092287.405:1364): avc: denied { rmdir } for pid=38938 comm="fuse-overlayfs" name="206" dev="dm-0" ino=35741037 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092287.479:1365): avc: denied { link } for pid=38938 comm="fuse-overlayfs" name="status" dev="dm-0" ino=53179972 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.577:1366): avc: denied { execute } for pid=39507 comm="exe" name="runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.577:1366): avc: denied { read open } for pid=39507 comm="exe" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.577:1366): avc: denied { execute_no_trans } for pid=39507 comm="exe" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.577:1366): avc: denied { map } for pid=39507 comm="runc" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.594:1367): avc: denied { read } for pid=39507 comm="runc" name="hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.594:1367): avc: denied { open } for pid=39507 comm="runc" path="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.594:1368): avc: denied { read } for pid=39507 comm="runc" name="hugepages" dev="sysfs" ino=2382 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092289.594:1369): avc: denied { getattr } for pid=39507 comm="runc" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.594:1370): avc: denied { search } for pid=39507 comm="runc" name="/" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092289.594:1371): avc: denied { getattr } for pid=38971 comm="exe" path="/var/tmp/buildah096606484/mnt/buildah-bind-target-8" dev="dm-0" ino=23461612 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092289.594:1372): avc: denied { sys_admin } for pid=38971 comm="exe" capability=21 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092289.594:1373): avc: denied { unmount } for pid=38971 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092289.602:1374): avc: denied { lock } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/containers.lock" dev="dm-0" ino=35835618 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092289.751:1375): avc: denied { unlink } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=5180582 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092289.897:1376): avc: denied { mounton } for pid=39513 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/866c8ee731b99fc8398b29f2a8c7aa2185c04a953ff099e444edc8186b27d938/merged" dev="dm-0" ino=53108552 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092289.897:1376): avc: denied { mount } for pid=39513 comm="fuse-overlayfs" name="/" dev="fuse" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092289.902:1377): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/866c8ee731b99fc8398b29f2a8c7aa2185c04a953ff099e444edc8186b27d938/merged/bin/bash" dev="fuse" ino=19869622 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092353.185:1378): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/866c8ee731b99fc8398b29f2a8c7aa2185c04a953ff099e444edc8186b27d938/merged/usr/local/man" dev="fuse" ino=53019116 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092353.185:1379): avc: denied { getattr } for pid=38938 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/cc4590d6a7187ce8879dd8ea931ffaa18bc52a1c1df702c9d538b2f0c927709d/diff/usr/local/man" dev="dm-0" ino=53019116 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092363.821:1380): avc: denied { write } for pid=38153 comm="podman" name="866c8ee731b99fc8398b29f2a8c7aa2185c04a953ff099e444edc8186b27d938" dev="dm-0" ino=2500032 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092363.821:1380): avc: denied { remove_name } for pid=38153 comm="podman" name="merged" dev="dm-0" ino=53108552 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092363.821:1380): avc: denied { rmdir } for pid=38153 comm="podman" name="merged" dev="dm-0" ino=53108552 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092363.854:1381): avc: denied { read } for pid=38153 comm="podman" name="entrypoint" dev="fuse" ino=35741049 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092363.854:1381): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/merged/entrypoint" dev="fuse" ino=35741049 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092364.013:1382): avc: denied { read } for pid=38938 comm="fuse-overlayfs" name="shells" dev="dm-0" ino=3110811 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092364.013:1382): avc: denied { open } for pid=38938 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/a3a668a8a6b663d53879fe9085dc8985ac199a87186ce18cfb7fd699f85b3a1e/diff/etc/shells" dev="dm-0" ino=3110811 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092364.013:1383): avc: denied { getattr } for pid=38938 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/a3a668a8a6b663d53879fe9085dc8985ac199a87186ce18cfb7fd699f85b3a1e/diff/etc/shells" dev="dm-0" ino=3110811 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092371.803:1384): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/merged/var/lib/apt/extended_states" dev="fuse" ino=23461629 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092371.803:1385): avc: denied { read } for pid=38153 comm="podman" name="extended_states" dev="fuse" ino=23461629 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092371.803:1385): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/ca3584777ea715ccd4e83a0d5f01039103a6a972d30d24d3fba42a862edf3250/merged/var/lib/apt/extended_states" dev="fuse" ino=23461629 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092374.250:1386): avc: denied { lock } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/cache/blob-info-cache-v1.boltdb" dev="dm-0" ino=598530 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092374.250:1387): avc: denied { map } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/cache/blob-info-cache-v1.boltdb" dev="dm-0" ino=598530 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092374.358:1388): avc: denied { add_name } for pid=38153 comm="podman" name="storage.lock" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092374.358:1388): avc: denied { create } for pid=38153 comm="podman" name="storage.lock" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092374.358:1388): avc: denied { write } for pid=38153 comm="podman" name="storage.lock" dev="dm-0" ino=598354 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092380.107:1389): avc: denied { create } for pid=38153 comm="podman" name="5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092380.107:1390): avc: denied { create } for pid=38153 comm="podman" name="ZSR5PWUL3FYTZEWYRGCE7PR3C3" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092380.205:1391): avc: denied { setattr } for pid=38153 comm="podman" name=".tmp-layers.json962773820" dev="dm-0" ino=1703929 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092380.226:1392): avc: denied { rename } for pid=38153 comm="podman" name=".tmp-layers.json962773820" dev="dm-0" ino=1703929 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092380.226:1392): avc: denied { unlink } for pid=38153 comm="podman" name="layers.json" dev="dm-0" ino=5180552 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092380.410:1393): avc: denied { read } for pid=38153 comm="podman" name="3PEN4UOVNUDINMR2Y6QXXZWZC7" dev="dm-0" ino=23445473 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092380.556:1394): avc: denied { execute } for pid=39599 comm="podman" name="podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092380.556:1394): avc: denied { read open } for pid=39599 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092380.556:1394): avc: denied { execute_no_trans } for pid=39599 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092380.556:1394): avc: denied { map } for pid=39599 comm="exe" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092381.360:1395): avc: denied { create } for pid=39599 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092381.360:1396): avc: denied { setopt } for pid=39599 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092381.360:1397): avc: denied { bind } for pid=39599 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092381.360:1398): avc: denied { getattr } for pid=39599 comm="exe" path=003030303736 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092381.360:1399): avc: denied { getattr } for pid=39599 comm="exe" path="/sys/fs/cgroup/memory/memory.memsw.limit_in_bytes" dev="cgroup" ino=33 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092381.360:1400): avc: denied { read } for pid=39599 comm="exe" name="cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092381.360:1400): avc: denied { open } for pid=39599 comm="exe" path="/sys/fs/cgroup/cpuset/cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092381.360:1401): avc: denied { search } for pid=39599 comm="exe" name="net" dev="proc" ino=11197 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092381.360:1401): avc: denied { read } for pid=39599 comm="exe" name="ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092381.360:1401): avc: denied { open } for pid=39599 comm="exe" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092381.360:1402): avc: denied { getattr } for pid=39599 comm="exe" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092381.360:1403): avc: denied { sys_admin } for pid=39599 comm="exe" capability=21 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092381.360:1404): avc: denied { mounton } for pid=39599 comm="exe" path="/var/lib/pulp/.local/share/containers/storage/overlay/5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513/diff" dev="dm-0" ino=1703918 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092381.360:1405): avc: denied { unmount } for pid=39599 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092381.370:1406): avc: denied { setattr } for pid=39599 comm="exe" name="etc" dev="dm-0" ino=1703932 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092385.734:1407): avc: denied { chown } for pid=39599 comm="exe" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092385.734:1408): avc: denied { fsetid } for pid=39599 comm="exe" capability=4 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092387.331:1409): avc: denied { read } for pid=38153 comm="podman" name="lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092387.331:1409): avc: denied { open } for pid=38153 comm="podman" path="/etc/selinux/targeted/contexts/lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092387.801:1410): avc: denied { read write } for pid=39622 comm="fuse-overlayfs" name="fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092387.801:1410): avc: denied { open } for pid=39622 comm="fuse-overlayfs" path="/dev/fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092387.801:1411): avc: denied { mount } for pid=39622 comm="fuse-overlayfs" name="/" dev="fuse" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092388.441:1412): avc: denied { sys_chroot } for pid=39625 comm="exe" capability=18 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092388.684:1413): avc: denied { write } for pid=39636 comm="exe" name="/" dev="fuse" ino=35740498 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1413): avc: denied { add_name } for pid=39636 comm="exe" name=".pivot_root026980338" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1413): avc: denied { create } for pid=39636 comm="exe" name=".pivot_root026980338" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1414): avc: denied { rename } for pid=39624 comm="fuse-overlayfs" name="2" dev="dm-0" ino=5092354 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1414): avc: denied { reparent } for pid=39624 comm="fuse-overlayfs" name="2" dev="dm-0" ino=5092354 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1415): avc: denied { remove_name } for pid=39636 comm="exe" name=".pivot_root026980338" dev="fuse" ino=5092354 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1415): avc: denied { rmdir } for pid=39636 comm="exe" name=".pivot_root026980338" dev="fuse" ino=5092354 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1416): avc: denied { create } for pid=39636 comm="exe" name="archive.tar.gz" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092388.684:1417): avc: denied { relabelfrom } for pid=39624 comm="fuse-overlayfs" name="5" dev="dm-0" ino=23537939 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1417): avc: denied { relabelto } for pid=39624 comm="fuse-overlayfs" name="5" dev="dm-0" ino=23537939 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092388.684:1416): avc: denied { write } for pid=39636 comm="exe" path="/archive/archive.tar.gz" dev="fuse" ino=23537940 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092388.700:1418): avc: denied { setattr } for pid=39636 comm="exe" name="archive.tar.gz" dev="fuse" ino=23537940 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092418.891:1419): avc: denied { search } for pid=38153 comm="podman" name="/" dev="fuse" ino=35740498 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092418.891:1419): avc: denied { read } for pid=38153 comm="podman" name="python2.7" dev="fuse" ino=3690633 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092418.891:1419): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/00aaf8081d6fbde19c3a4851251164ba7467c04340c85296e3e15a4a5572a2f6/merged/usr/local/lib/python2.7" dev="fuse" ino=3690633 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092418.986:1420): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513/merged/usr/local/lib/python2.7/dist-packages" dev="fuse" ino=21910004 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=SERVICE_START msg=audit(1607092419.501:1421): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=packagekit comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'UID="root" AUID="unset"
type=AVC msg=audit(1607092431.210:1422): avc: denied { getattr } for pid=39656 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/9d3318e7d80a794e990c27c1881c1c6da63097510027af15cf79a88e6171e11f/diff/usr/local/lib/python2.7/dist-packages/boto/opsworks/layer1.pyc" dev="dm-0" ino=21980335 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092431.210:1423): avc: denied { read } for pid=39656 comm="fuse-overlayfs" name="__init__.py" dev="dm-0" ino=21980330 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092431.210:1423): avc: denied { open } for pid=39656 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/9d3318e7d80a794e990c27c1881c1c6da63097510027af15cf79a88e6171e11f/diff/usr/local/lib/python2.7/dist-packages/boto/opsworks/__init__.py" dev="dm-0" ino=21980330 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092431.570:1424): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513/merged/usr/local/lib/python2.7/dist-packages/boto3/__init__.py" dev="fuse" ino=35334094 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=SERVICE_START msg=audit(1607092432.136:1425): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'UID="root" AUID="unset"
type=SERVICE_STOP msg=audit(1607092462.224:1426): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'UID="root" AUID="unset"
type=AVC msg=audit(1607092485.527:1427): avc: denied { search } for pid=38153 comm="podman" name="/" dev="fuse" ino=1703918 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092485.527:1427): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513/merged/usr/local/lib/python3.8/dist-packages/sphinx/locale/ru/LC_MESSAGES" dev="fuse" ino=35290937 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092485.527:1428): avc: denied { read } for pid=38153 comm="podman" name="LC_MESSAGES" dev="fuse" ino=35290937 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092485.527:1428): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513/merged/usr/local/lib/python3.8/dist-packages/sphinx/locale/ru/LC_MESSAGES" dev="fuse" ino=35290937 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092498.422:1429): avc: denied { getattr } for pid=39656 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/cc4590d6a7187ce8879dd8ea931ffaa18bc52a1c1df702c9d538b2f0c927709d/diff/usr/local/man" dev="dm-0" ino=53019116 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092498.422:1430): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513/merged/usr/local/man" dev="fuse" ino=53019116 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092508.406:1431): avc: denied { read } for pid=39656 comm="fuse-overlayfs" name="system.threading.4.3.0.nupkg" dev="dm-0" ino=3493711 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092508.406:1431): avc: denied { open } for pid=39656 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/a3a668a8a6b663d53879fe9085dc8985ac199a87186ce18cfb7fd699f85b3a1e/diff/usr/share/dotnet/sdk/NuGetFallbackFolder/system.threading/4.3.0/system.threading.4.3.0.nupkg" dev="dm-0" ino=3493711 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092508.438:1432): avc: denied { getattr } for pid=39656 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/a3a668a8a6b663d53879fe9085dc8985ac199a87186ce18cfb7fd699f85b3a1e/diff/usr/share/dotnet/sdk/NuGetFallbackFolder/system.threading/4.3.0/system.threading.4.3.0.nupkg" dev="dm-0" ino=3493711 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092508.501:1433): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513/merged/usr/share/dotnet/sdk/NuGetFallbackFolder/system.threading/4.0.11/.nupkg.metadata" dev="fuse" ino=56908057 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=SERVICE_START msg=audit(1607092508.977:1434): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'UID="root" AUID="unset"
type=AVC msg=audit(1607092510.090:1435): avc: denied { dac_read_search } for pid=39656 comm="fuse-overlayfs" capability=2 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092511.513:1436): avc: denied { sys_admin } for pid=38153 comm="podman" capability=21 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092511.513:1436): avc: denied { unmount } for pid=38153 comm="podman" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092511.830:1437): avc: denied { write } for pid=38153 comm="podman" name="5f0e44292f6a1d15928766acf27733ee0f1e9a42e713b704487bf3d637369513" dev="dm-0" ino=53179968 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092511.830:1437): avc: denied { remove_name } for pid=38153 comm="podman" name="merged" dev="dm-0" ino=35741050 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092511.830:1437): avc: denied { rmdir } for pid=38153 comm="podman" name="merged" dev="dm-0" ino=35741050 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092511.830:1438): avc: denied { read } for pid=38153 comm="podman" name="archive.tar.gz" dev="fuse" ino=23537940 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092511.830:1438): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/00aaf8081d6fbde19c3a4851251164ba7467c04340c85296e3e15a4a5572a2f6/merged/archive/archive.tar.gz" dev="fuse" ino=23537940 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092511.921:1439): avc: denied { lock } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/cache/blob-info-cache-v1.boltdb" dev="dm-0" ino=598530 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092511.933:1440): avc: denied { map } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/cache/blob-info-cache-v1.boltdb" dev="dm-0" ino=598530 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092511.950:1441): avc: denied { add_name } for pid=38153 comm="podman" name="storage.lock" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092511.950:1441): avc: denied { create } for pid=38153 comm="podman" name="storage.lock" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092511.950:1441): avc: denied { write } for pid=38153 comm="podman" name="storage.lock" dev="dm-0" ino=598354 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092512.866:1442): avc: denied { create } for pid=38153 comm="podman" name="28bd9cb5dffc14c5699e7e834b16256694025ad174ac4a691492b5e4619abc1d" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092512.866:1443): avc: denied { create } for pid=38153 comm="podman" name="J7LS7IOBTEHSUKTN565I2JAYGB" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092512.978:1444): avc: denied { setattr } for pid=38153 comm="podman" name=".tmp-layers.json276576464" dev="dm-0" ino=1703876 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092512.978:1445): avc: denied { rename } for pid=38153 comm="podman" name=".tmp-layers.json276576464" dev="dm-0" ino=1703876 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092512.978:1445): avc: denied { unlink } for pid=38153 comm="podman" name="layers.json" dev="dm-0" ino=1703874 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.154:1446): avc: denied { read } for pid=38153 comm="podman" name="ZSR5PWUL3FYTZEWYRGCE7PR3C3" dev="dm-0" ino=23461619 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092513.201:1447): avc: denied { execute } for pid=39904 comm="podman" name="podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.201:1447): avc: denied { read open } for pid=39904 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.201:1447): avc: denied { execute_no_trans } for pid=39904 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.201:1447): avc: denied { map } for pid=39904 comm="exe" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.329:1448): avc: denied { read } for pid=39904 comm="exe" name="hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.329:1448): avc: denied { open } for pid=39904 comm="exe" path="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.446:1449): avc: denied { create } for pid=39904 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092513.446:1450): avc: denied { setopt } for pid=39904 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092513.446:1451): avc: denied { bind } for pid=39904 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092513.446:1452): avc: denied { getattr } for pid=39904 comm="exe" path=003030303763 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092513.446:1453): avc: denied { search } for pid=39904 comm="exe" name="/" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092513.446:1453): avc: denied { getattr } for pid=39904 comm="exe" path="/sys/fs/cgroup/memory/memory.memsw.limit_in_bytes" dev="cgroup" ino=33 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.446:1454): avc: denied { read } for pid=39904 comm="exe" name="cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.446:1454): avc: denied { open } for pid=39904 comm="exe" path="/sys/fs/cgroup/cpuset/cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.446:1455): avc: denied { search } for pid=39904 comm="exe" name="net" dev="proc" ino=11197 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092513.446:1455): avc: denied { read } for pid=39904 comm="exe" name="ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.446:1455): avc: denied { open } for pid=39904 comm="exe" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.446:1456): avc: denied { getattr } for pid=39904 comm="exe" path="/proc/sys/net/ipv4/ip_forward" dev="proc" ino=30531 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092513.446:1457): avc: denied { mounton } for pid=39904 comm="exe" path="/" dev="dm-0" ino=128 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092513.446:1458): avc: denied { mounton } for pid=39904 comm="exe" path="/var/lib/pulp/.local/share/containers/storage/overlay/28bd9cb5dffc14c5699e7e834b16256694025ad174ac4a691492b5e4619abc1d/diff" dev="dm-0" ino=53179996 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092513.446:1459): avc: denied { unmount } for pid=39904 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092513.446:1460): avc: denied { setattr } for pid=39904 comm="exe" name="archive" dev="dm-0" ino=53179997 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092514.846:1461): avc: denied { read } for pid=38153 comm="podman" name="lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092514.846:1461): avc: denied { open } for pid=38153 comm="podman" path="/etc/selinux/targeted/contexts/lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092515.337:1462): avc: denied { read write } for pid=39920 comm="fuse-overlayfs" name="fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092515.337:1462): avc: denied { open } for pid=39920 comm="fuse-overlayfs" path="/dev/fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092515.337:1463): avc: denied { mount } for pid=39920 comm="fuse-overlayfs" name="/" dev="fuse" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092515.962:1464): avc: denied { sys_chroot } for pid=39928 comm="exe" capability=18 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092516.361:1465): avc: denied { relabelfrom } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=5092364 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092516.361:1465): avc: denied { relabelto } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=5092364 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092516.455:1466): avc: denied { getattr } for pid=38153 comm="podman" path="/etc/rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092516.455:1467): avc: denied { read } for pid=38153 comm="podman" name="rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092516.455:1467): avc: denied { open } for pid=38153 comm="podman" path="/etc/rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092516.455:1468): avc: denied { search } for pid=38153 comm="podman" name="rhsm" dev="dm-0" ino=35906466 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092516.538:1469): avc: denied { getattr } for pid=38153 comm="podman" path="/etc/rhsm/logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092516.586:1470): avc: denied { read } for pid=38153 comm="podman" name="logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092516.586:1470): avc: denied { open } for pid=38153 comm="podman" path="/etc/rhsm/logging.conf" dev="dm-0" ino=36919240 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:rhsmcertd_config_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092516.618:1471): avc: denied { dac_override } for pid=38153 comm="podman" capability=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092516.618:1472): avc: denied { relabelfrom } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092516.618:1472): avc: denied { relabelto } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.650:1473): avc: denied { getattr } for pid=39922 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/f2e520692ac8ed4e96dcd1f6baf73627c7edc810b1092bcb5abb4bbdb1b63ad3/diff/run/initctl" dev="dm-0" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092516.683:1474): avc: denied { setattr } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.683:1475): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/bf83c9a67a52360f044a67706aed915628bffbe5c77944b25f5942b523d9f494/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.715:1476): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/de7fc2c80c07bbe58183c9e52bd2bc0f6ce19a3d6d92cff3c59c3fea37309b11/merged/run/initctl" dev="fuse" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092516.715:1477): avc: denied { read } for pid=38153 comm="podman" name="initctl" dev="fuse" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092516.715:1478): avc: denied { read } for pid=39922 comm="fuse-overlayfs" name="initctl" dev="dm-0" ino=36679022 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092516.839:1479): avc: denied { mounton } for pid=39953 comm="exe" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/bf83c9a67a52360f044a67706aed915628bffbe5c77944b25f5942b523d9f494/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.839:1480): avc: denied { search } for pid=39953 comm="exe" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.839:1480): avc: denied { write } for pid=39953 comm="exe" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.839:1480): avc: denied { add_name } for pid=39953 comm="exe" name=".pivot_root616001953" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.839:1480): avc: denied { create } for pid=39953 comm="exe" name=".pivot_root616001953" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.839:1481): avc: denied { unmount } for pid=39953 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092516.839:1482): avc: denied { remove_name } for pid=39953 comm="exe" name=".pivot_root616001953" dev="dm-0" ino=35740512 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.839:1482): avc: denied { rmdir } for pid=39953 comm="exe" name=".pivot_root616001953" dev="dm-0" ino=35740512 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092516.864:1483): avc: denied { create } for pid=39953 comm="exe" name="initctl" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092516.864:1484): avc: denied { getattr } for pid=39953 comm="exe" path="/initctl" dev="dm-0" ino=23537953 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092516.864:1485): avc: denied { setattr } for pid=39953 comm="exe" name="initctl" dev="dm-0" ino=23537953 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092516.864:1486): avc: denied { create } for pid=39953 comm="exe" name="utab" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092516.864:1486): avc: denied { write open } for pid=39953 comm="exe" path="/mount/utab" dev="dm-0" ino=35740513 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092516.864:1487): avc: denied { setattr } for pid=39953 comm="exe" name="utab" dev="dm-0" ino=35740513 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092516.864:1488): avc: denied { chown } for pid=39953 comm="exe" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092516.864:1489): avc: denied { fowner } for pid=39953 comm="exe" capability=3 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092516.864:1489): avc: denied { fsetid } for pid=39953 comm="exe" capability=4 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092516.864:1490): avc: denied { write } for pid=38153 comm="podman" name="buildah-volumes" dev="dm-0" ino=5092366 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092516.864:1490): avc: denied { add_name } for pid=38153 comm="podman" name="2b5a67687b84c492b2ecc3ca4be26a982d19d95234d5c81011b0ee2999f14982" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092516.864:1490): avc: denied { create } for pid=38153 comm="podman" name="2b5a67687b84c492b2ecc3ca4be26a982d19d95234d5c81011b0ee2999f14982" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092516.864:1491): avc: denied { relabelfrom } for pid=38153 comm="podman" name="2b5a67687b84c492b2ecc3ca4be26a982d19d95234d5c81011b0ee2999f14982" dev="dm-0" ino=5092372 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.599:1492): avc: denied { getattr } for pid=38153 comm="podman" path="/sys/fs/cgroup" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.672:1493): avc: denied { mounton } for pid=39984 comm="exe" path="/var/tmp/buildah399776570/mnt" dev="dm-0" ino=35740519 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.775:1494): avc: denied { read } for pid=39991 comm="runc" name="hugepages" dev="sysfs" ino=2382 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.775:1495): avc: denied { getattr } for pid=39991 comm="runc" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092517.775:1496): avc: denied { getattr } for pid=39991 comm="runc" name="/" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.810:1497): avc: denied { create } for pid=39991 comm="runc" name="exec.fifo" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092517.810:1498): avc: denied { setattr } for pid=39991 comm="runc" name="exec.fifo" dev="dm-0" ino=53180019 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092517.810:1499): avc: denied { mounton } for pid=39996 comm="exe" path="/tmp/run-976/runc/buildah-buildah399776570/runc.RprBzE" dev="dm-0" ino=53180020 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092517.810:1500): avc: denied { remount } for pid=39996 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.859:1501): avc: denied { setuid } for pid=39996 comm="runc:[0:PARENT]" capability=7 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092517.859:1502): avc: denied { setgid } for pid=39996 comm="runc:[0:PARENT]" capability=6 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092517.859:1503): avc: denied { sys_ptrace } for pid=39991 comm="runc" capability=19 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092517.891:1504): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/var/tmp/buildah399776570/mnt/rootfs" dev="fuse" ino=35740501 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1505): avc: denied { relabelfrom } for pid=40001 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1505): avc: denied { relabelto } for pid=40001 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1505): avc: denied { relabelfrom } for pid=40001 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1505): avc: denied { mount } for pid=40001 comm="runc:[2:INIT]" name="/" dev="tmpfs" ino=321575 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1506): avc: denied { mount } for pid=40001 comm="runc:[2:INIT]" name="/" dev="mqueue" ino=321564 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1507): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/var/tmp/buildah399776570/mnt/rootfs/dev/mqueue" dev="mqueue" ino=321564 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1508): avc: denied { relabelfrom } for pid=40001 comm="runc:[2:INIT]" name="/" dev="mqueue" ino=321564 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1509): avc: denied { relabelfrom } for pid=40001 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:devpts_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1510): avc: denied { mount } for pid=40001 comm="runc:[2:INIT]" name="/" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1511): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/var/tmp/buildah399776570/mnt/rootfs/proc" dev="proc" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1512): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/var/tmp/buildah399776570/mnt/rootfs/sys" dev="sysfs" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1513): avc: denied { remount } for pid=40001 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1514): avc: denied { read } for pid=40001 comm="runc:[2:INIT]" path="/var/tmp/buildah399776570/mnt/rootfs/run/.containerenv" dev="dm-0" ino=23537968 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092517.891:1515): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/var/tmp/buildah399776570/mnt/rootfs/run/.containerenv" dev="dm-0" ino=23537968 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092517.891:1516): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/var/tmp/buildah399776570/mnt/rootfs/etc/hosts" dev="fuse" ino=598187 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092517.891:1517): avc: denied { remount } for pid=40001 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092517.891:1518): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/proc/irq" dev="proc" ino=4026531861 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_irq_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1519): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/proc/sys" dev="proc" ino=4026531854 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1520): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/proc/sysrq-trigger" dev="proc" ino=4026532094 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092517.891:1521): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/proc/kcore" dev="proc" ino=4026532029 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_kcore_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092517.891:1522): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/proc/keys" dev="proc" ino=4026532076 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:proc_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092517.891:1523): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/sys/fs/cgroup" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1524): avc: denied { mounton } for pid=40001 comm="runc:[2:INIT]" path="/sys/fs/selinux" dev="selinuxfs" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:security_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092517.891:1525): avc: denied { setrlimit getrlimit } for pid=39991 comm="runc" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607092517.891:1526): avc: denied { setexec } for pid=40001 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607092518.322:1527): avc: denied { setpcap } for pid=40001 comm="runc:[2:INIT]" capability=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092518.322:1528): avc: denied { setcap } for pid=40001 comm="runc:[2:INIT]" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=process permissive=1
type=AVC msg=audit(1607092518.433:1529): avc: denied { write } for pid=40001 comm="runc:[2:INIT]" name="exec.fifo" dev="dm-0" ino=53180019 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092518.433:1529): avc: denied { open } for pid=40001 comm="runc:[2:INIT]" path="/tmp/run-976/runc/buildah-buildah399776570/exec.fifo" dev="dm-0" ino=53180019 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092518.433:1530): avc: denied { getattr } for pid=39991 comm="runc" path="net:[4026531992]" dev="nsfs" ino=4026531992 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:NetworkManager_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092518.433:1531): avc: denied { getattr } for pid=39991 comm="runc" path="/tmp/run-976/runc/buildah-buildah399776570/exec.fifo" dev="dm-0" ino=53180019 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092518.466:1532): avc: denied { read } for pid=40010 comm="runc" name="exec.fifo" dev="dm-0" ino=53180019 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092518.466:1533): avc: denied { execute } for pid=40001 comm="runc:[2:INIT]" name="dash" dev="fuse" ino=18169843 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092518.466:1533): avc: denied { transition } for pid=40001 comm="runc:[2:INIT]" path="/bin/dash" dev="fuse" ino=18169843 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c591,c640 tclass=process permissive=1
type=AVC msg=audit(1607092518.466:1533): avc: denied { read } for pid=40001 comm="sh" path="pipe:[321509]" dev="pipefs" ino=321509 scontext=system_u:system_r:container_t:s0:c591,c640 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092518.466:1533): avc: denied { write } for pid=40001 comm="sh" path="pipe:[321510]" dev="pipefs" ino=321510 scontext=system_u:system_r:container_t:s0:c591,c640 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092518.466:1533): avc: denied { write } for pid=40001 comm="sh" path="pipe:[321511]" dev="pipefs" ino=321511 scontext=system_u:system_r:container_t:s0:c591,c640 tcontext=system_u:system_r:pulpcore_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1607092518.658:1534): avc: denied { unlink } for pid=40010 comm="runc" name="exec.fifo" dev="dm-0" ino=53180019 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:pulpcore_tmp_t:s0 tclass=fifo_file permissive=1
type=AVC msg=audit(1607092518.658:1535): avc: denied { search } for pid=40029 comm="runc" name="40001" dev="proc" ino=321565 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092518.658:1535): avc: denied { read } for pid=40029 comm="runc" name="stat" dev="proc" ino=321593 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092518.658:1535): avc: denied { open } for pid=40029 comm="runc" path="/proc/40001/stat" dev="proc" ino=321593 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092518.658:1536): avc: denied { getattr } for pid=40029 comm="runc" path="/proc/40001/stat" dev="proc" ino=321593 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:container_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092519.775:1537): avc: denied { setattr } for pid=39922 comm="fuse-overlayfs" name="3" dev="dm-0" ino=5092396 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092519.775:1538): avc: denied { relabelto } for pid=39922 comm="fuse-overlayfs" name="3" dev="dm-0" ino=5092396 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092519.775:1539): avc: denied { remove_name } for pid=39922 comm="fuse-overlayfs" name="3" dev="dm-0" ino=5092396 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092519.775:1539): avc: denied { rename } for pid=39922 comm="fuse-overlayfs" name="3" dev="dm-0" ino=5092396 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092519.775:1539): avc: denied { reparent } for pid=39922 comm="fuse-overlayfs" name="3" dev="dm-0" ino=5092396 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092519.775:1540): avc: denied { ioctl } for pid=39922 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/de7fc2c80c07bbe58183c9e52bd2bc0f6ce19a3d6d92cff3c59c3fea37309b11/work/work/2" dev="dm-0" ino=53180019 ioctlcmd=0x9409 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092519.790:1541): avc: denied { relabelfrom } for pid=39922 comm="fuse-overlayfs" name="2" dev="dm-0" ino=53180019 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092519.790:1541): avc: denied { relabelto } for pid=39922 comm="fuse-overlayfs" name="2" dev="dm-0" ino=53180019 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092519.954:1542): avc: denied { unlink } for pid=38153 comm="podman" name="hosts" dev="dm-0" ino=5092364 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092519.970:1543): avc: denied { read write } for pid=40054 comm="fuse-overlayfs" name="fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092519.970:1543): avc: denied { open } for pid=40054 comm="fuse-overlayfs" path="/dev/fuse" dev="devtmpfs" ino=11628 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fuse_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1607092519.970:1544): avc: denied { mounton } for pid=40054 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/28bd9cb5dffc14c5699e7e834b16256694025ad174ac4a691492b5e4619abc1d/merged" dev="dm-0" ino=23537945 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092533.802:1545): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/28bd9cb5dffc14c5699e7e834b16256694025ad174ac4a691492b5e4619abc1d/merged/usr/lib/apt/apt-helper" dev="fuse" ino=37860069 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=SERVICE_STOP msg=audit(1607092539.124:1546): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'UID="root" AUID="unset"
type=AVC msg=audit(1607092599.090:1547): avc: denied { dac_read_search } for pid=40055 comm="fuse-overlayfs" capability=2 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092599.732:1548): avc: denied { sys_admin } for pid=38153 comm="podman" capability=21 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092599.732:1548): avc: denied { unmount } for pid=38153 comm="podman" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092600.259:1549): avc: denied { rmdir } for pid=38153 comm="podman" name="merged" dev="dm-0" ino=23537945 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092600.282:1550): avc: denied { read } for pid=38153 comm="podman" name="archive.tar.gz" dev="fuse" ino=53179998 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092600.282:1550): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay/de7fc2c80c07bbe58183c9e52bd2bc0f6ce19a3d6d92cff3c59c3fea37309b11/merged/archive/archive.tar.gz" dev="fuse" ino=53179998 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.088:1551): avc: denied { create } for pid=38153 comm="podman" name="7XAKBTHNMA3QLMN4TWZKDAC7PX" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092601.168:1552): avc: denied { execute } for pid=40152 comm="podman" name="podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.168:1552): avc: denied { read open } for pid=40152 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.168:1552): avc: denied { execute_no_trans } for pid=40152 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.168:1552): avc: denied { map } for pid=40152 comm="exe" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.178:1553): avc: denied { read } for pid=40152 comm="exe" name="hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.178:1553): avc: denied { open } for pid=40152 comm="exe" path="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" dev="sysfs" ino=2414 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.260:1554): avc: denied { create } for pid=40152 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092601.260:1555): avc: denied { setopt } for pid=40152 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092601.260:1556): avc: denied { bind } for pid=40152 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092601.260:1557): avc: denied { getattr } for pid=40152 comm="exe" path=003030303834 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=unix_dgram_socket permissive=1
type=AVC msg=audit(1607092601.260:1558): avc: denied { search } for pid=40152 comm="exe" name="/" dev="tmpfs" ino=11152 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092601.260:1558): avc: denied { getattr } for pid=40152 comm="exe" path="/sys/fs/cgroup/memory/memory.memsw.limit_in_bytes" dev="cgroup" ino=33 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.260:1559): avc: denied { read } for pid=40152 comm="exe" name="cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.260:1559): avc: denied { open } for pid=40152 comm="exe" path="/sys/fs/cgroup/cpuset/cpuset.cpus" dev="cgroup" ino=8 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.260:1560): avc: denied { search } for pid=40152 comm="exe" name="net" dev="proc" ino=11197 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092601.260:1561): avc: denied { mounton } for pid=40152 comm="exe" path="/" dev="dm-0" ino=128 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092601.260:1562): avc: denied { unmount } for pid=40152 comm="exe" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092601.260:1563): avc: denied { chown } for pid=40152 comm="exe" capability=0 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092601.260:1564): avc: denied { fowner } for pid=40152 comm="exe" capability=3 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092601.543:1565): avc: denied { read } for pid=38153 comm="podman" name="lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.543:1565): avc: denied { open } for pid=38153 comm="podman" path="/etc/selinux/targeted/contexts/lxc_contexts" dev="dm-0" ino=17908349 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:default_context_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092601.551:1566): avc: denied { create } for pid=38153 comm="podman" name="E52JI752LCWHPTENKGEFT5IATQ" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092601.624:1567): avc: denied { read } for pid=38153 comm="podman" name="7XAKBTHNMA3QLMN4TWZKDAC7PX" dev="dm-0" ino=23537969 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092601.667:1568): avc: denied { getattr } for pid=40158 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/l/7XAKBTHNMA3QLMN4TWZKDAC7PX" dev="dm-0" ino=23537969 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092601.667:1569): avc: denied { mount } for pid=40158 comm="fuse-overlayfs" name="/" dev="fuse" ino=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:fusefs_t:s0 tclass=filesystem permissive=1
type=AVC msg=audit(1607092602.925:1570): avc: denied { write } for pid=38153 comm="podman" name="userdata" dev="dm-0" ino=35740525 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092602.925:1570): avc: denied { add_name } for pid=38153 comm="podman" name=".tmp-buildah.json008721504" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092602.929:1571): avc: denied { remove_name } for pid=38153 comm="podman" name=".tmp-buildah.json008721504" dev="dm-0" ino=35740527 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092603.790:1572): avc: denied { create } for pid=38153 comm="podman" name="877df0774c8334bf75e2dcc0393940222b60adccc1e273150018e4490a42cdb4" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092603.972:1573): avc: denied { mounton } for pid=40165 comm="fuse-overlayfs" path="/var/lib/pulp/.local/share/containers/storage/overlay/208fd238d8a2d3db9193af626668b25ad5cef13d0cd5deeda86ac499b5a815ea/merged" dev="dm-0" ino=35740532 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092605.428:1574): avc: denied { rmdir } for pid=38153 comm="podman" name="merged" dev="dm-0" ino=35740532 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
type=AVC msg=audit(1607092605.546:1575): avc: denied { unlink } for pid=38153 comm="podman" name="KTBBCOMBSEGLRCGHSMFFR2ZB7N" dev="dm-0" ino=23537977 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092612.952:1576): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/89f0afcd5719c99d6913e14c5480df2352879119227ef9dc9f17e723b1b72dbc/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607092612.952:1577): avc: denied { read } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607092612.952:1577): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/89f0afcd5719c99d6913e14c5480df2352879119227ef9dc9f17e723b1b72dbc/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607092612.952:1578): avc: denied { search } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607092612.952:1578): avc: denied { write } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=598348 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607092612.952:1578): avc: denied { remove_name } for pid=38153 comm="podman" name="initctl" dev="dm-0" ino=5017061 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607092612.952:1578): avc: denied { unlink } for pid=38153 comm="podman" name="initctl" dev="dm-0" ino=5017061 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092612.952:1579): avc: denied { rmdir } for pid=38153 comm="podman" name="subsys" dev="dm-0" ino=52798819 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=dir permissive=1
type=AVC msg=audit(1607092612.952:1580): avc: denied { unlink } for pid=38153 comm="podman" name="utab" dev="dm-0" ino=23414705 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c426,c722 tclass=file permissive=1
type=AVC msg=audit(1607092612.952:1581): avc: denied { dac_override } for pid=38153 comm="podman" capability=1 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092613.486:1582): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/d50490e6a3fc6d0d0313efa7361b7683ce296b8e7c53901a38f17c1e9fd85290/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092613.486:1583): avc: denied { read } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092613.486:1583): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/d50490e6a3fc6d0d0313efa7361b7683ce296b8e7c53901a38f17c1e9fd85290/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092613.486:1584): avc: denied { search } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092613.486:1584): avc: denied { write } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461571 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092613.486:1584): avc: denied { remove_name } for pid=38153 comm="podman" name="initctl" dev="dm-0" ino=23461572 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092613.486:1584): avc: denied { unlink } for pid=38153 comm="podman" name="initctl" dev="dm-0" ino=23461572 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092613.486:1585): avc: denied { rmdir } for pid=38153 comm="podman" name="subsys" dev="dm-0" ino=5180544 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=dir permissive=1
type=AVC msg=audit(1607092613.486:1586): avc: denied { unlink } for pid=38153 comm="podman" name="utab" dev="dm-0" ino=35741008 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c375,c625 tclass=file permissive=1
type=AVC msg=audit(1607092614.087:1587): avc: denied { getattr } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/a3bfd84bc173c3e438006ba1b4ece89cdc5091b82eeaa1ba8d055c091a198e35/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092614.087:1588): avc: denied { read } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092614.087:1588): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/a3bfd84bc173c3e438006ba1b4ece89cdc5091b82eeaa1ba8d055c091a198e35/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092614.087:1589): avc: denied { search } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092614.087:1589): avc: denied { write } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23461604 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092614.087:1589): avc: denied { remove_name } for pid=38153 comm="podman" name="initctl" dev="dm-0" ino=23461605 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092614.087:1589): avc: denied { unlink } for pid=38153 comm="podman" name="initctl" dev="dm-0" ino=23461605 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092614.087:1590): avc: denied { rmdir } for pid=38153 comm="podman" name="subsys" dev="dm-0" ino=5180585 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=dir permissive=1
type=AVC msg=audit(1607092614.087:1591): avc: denied { unlink } for pid=38153 comm="podman" name="utab" dev="dm-0" ino=35741026 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c327,c555 tclass=file permissive=1
type=AVC msg=audit(1607092615.835:1592): avc: denied { read } for pid=38153 comm="podman" name="b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092615.835:1592): avc: denied { open } for pid=38153 comm="podman" path="/var/lib/pulp/.local/share/containers/storage/overlay-containers/bf83c9a67a52360f044a67706aed915628bffbe5c77944b25f5942b523d9f494/userdata/buildah-volumes/b3d46fe883f343fe8d86cceea5141710f5cf97ab3b21a0d813982e1155d4c717" dev="dm-0" ino=23537952 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=dir permissive=1
type=AVC msg=audit(1607092615.835:1593): avc: denied { unlink } for pid=38153 comm="podman" name="initctl" dev="dm-0" ino=23537953 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=lnk_file permissive=1
type=AVC msg=audit(1607092615.835:1594): avc: denied { unlink } for pid=38153 comm="podman" name="utab" dev="dm-0" ino=35740513 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_file_t:s0:c591,c640 tclass=file permissive=1
type=AVC msg=audit(1607092618.090:1595): avc: denied { execute } for pid=40233 comm="rq" name="podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092618.090:1595): avc: denied { read open } for pid=40233 comm="rq" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092618.090:1595): avc: denied { execute_no_trans } for pid=40233 comm="rq" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092618.090:1595): avc: denied { map } for pid=40233 comm="podman" path="/usr/bin/podman" dev="dm-0" ino=736210 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092618.522:1596): avc: denied { getattr } for pid=40233 comm="podman" path="/usr/bin/runc" dev="dm-0" ino=468623 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:container_runtime_exec_t:s0 tclass=file permissive=1
type=AVC msg=audit(1607092618.561:1597): avc: denied { sys_ptrace } for pid=40233 comm="podman" capability=19 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092618.561:1598): avc: denied { sys_chroot } for pid=40244 comm="podman" capability=18 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092618.561:1599): avc: denied { setgid } for pid=40244 comm="podman" capability=6 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092618.561:1600): avc: denied { setuid } for pid=40244 comm="podman" capability=7 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:system_r:pulpcore_t:s0 tclass=cap_userns permissive=1
type=AVC msg=audit(1607092618.715:1601): avc: denied { getattr } for pid=40244 comm="podman" path="/sys/fs/cgroup/systemd/system.slice/system-pulpcore\x2dworker.slice/pulpcore-worker@2.service" dev="cgroup" ino=833 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=dir permissive=1
type=SERVICE_STOP msg=audit(1607092725.085:1602): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=packagekit comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'UID="root" AUID="unset"
    (1-1/1)