Description of problem: SELinux is preventing colord from 'read' accesses on the file hwdb.bin. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that colord should be allowed read access on the hwdb.bin file by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep colord /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context system_u:system_r:colord_t:s0 Target Context unconfined_u:object_r:systemd_hwdb_etc_t:s0 Target Objects hwdb.bin [ file ] Source colord Source Path colord Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-178.fc24.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 4.5.0-0.rc7.git0.2.fc24.x86_64 #1 SMP Tue Mar 8 02:20:08 UTC 2016 x86_64 x86_64 Alert Count 2 First Seen 2016-03-13 14:16:08 CET Last Seen 2016-03-13 14:16:08 CET Local ID e426d9d4-b668-438f-88fa-b2d6fd3b0470 Raw Audit Messages type=AVC msg=audit(1457874968.901:306): avc: denied { read } for pid=1528 comm="colord" name="hwdb.bin" dev="dm-0" ino=800518 scontext=system_u:system_r:colord_t:s0 tcontext=unconfined_u:object_r:systemd_hwdb_etc_t:s0 tclass=file permissive=0 Hash: colord,colord_t,systemd_hwdb_etc_t,file,read Version-Release number of selected component: selinux-policy-3.13.1-178.fc24.noarch Additional info: reporter: libreport-2.6.4 hashmarkername: setroubleshoot kernel: 4.5.0-0.rc7.git0.2.fc24.x86_64 type: libreport Potential duplicate: bug 1316514
*** This bug has been marked as a duplicate of bug 1316514 ***