Watching audit.log, I notice that when HAL probes my 5-in-1 card reader once a second, it's logging denials.. type=AVC msg=audit(1135742565.419:42026): avc: denied { read } for pid=4504 comm="hald-addon-stor" name="ubc" dev=tmpfs ino=13246 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=blk_file type=SYSCALL msg=audit(1135742565.419:42026): arch=c000003e syscall=2 success=no exit=-13 a0=7fffffc0ce38 a1=0 a2=0 a3=8 items=1 pid=4504 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="hald-addon-stor" exe="/usr/libexec/hald-addon-storage" type=CWD msg=audit(1135742565.419:42026): cwd="/" type=PATH msg=audit(1135742565.419:42026): item=0 name="/dev/ubc" flags=101 inode=13246 dev=00:10 mode=060640 ouid=0 ogid=6 rdev=b4:10 type=AVC msg=audit(1135742565.431:42027): avc: denied { read } for pid=4498 comm="hald-addon-stor" name="uba" dev=tmpfs ino=13237 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=blk_file type=SYSCALL msg=audit(1135742565.431:42027): arch=c000003e syscall=2 success=no exit=-13 a0=7fffffb52e3a a1=0 a2=0 a3=8 items=1 pid=4498 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="hald-addon-stor" exe="/usr/libexec/hald-addon-storage" type=CWD msg=audit(1135742565.431:42027): cwd="/" type=PATH msg=audit(1135742565.431:42027): item=0 name="/dev/uba" flags=101 inode=13237 dev=00:10 mode=060640 ouid=0 ogid=6 rdev=b4:00 type=AVC msg=audit(1135742565.435:42028): avc: denied { read } for pid=4527 comm="hald-addon-stor" name="ube" dev=tmpfs ino=13394 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=blk_file type=SYSCALL msg=audit(1135742565.435:42028): arch=c000003e syscall=2 success=no exit=-13 a0=7fffffe00e36 a1=0 a2=0 a3=8 items=1 pid=4527 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="hald-addon-stor" exe="/usr/libexec/hald-addon-storage" type=CWD msg=audit(1135742565.435:42028): cwd="/" type=PATH msg=audit(1135742565.435:42028): item=0 name="/dev/ube" flags=101 inode=13394 dev=00:10 mode=060640 ouid=0 ogid=6 rdev=b4:20 type=AVC msg=audit(1135742565.699:42029): avc: denied { read } for pid=4502 comm="hald-addon-stor" name="ubb" dev=tmpfs ino=13244 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=blk_file type=SYSCALL msg=audit(1135742565.699:42029): arch=c000003e syscall=2 success=no exit=-13 a0=7fffff99ee38 a1=0 a2=0 a3=8 items=1 pid=4502 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="hald-addon-stor" exe="/usr/libexec/hald-addon-storage" type=CWD msg=audit(1135742565.699:42029): cwd="/" type=PATH msg=audit(1135742565.699:42029): item=0 name="/dev/ubb" flags=101 inode=13244 dev=00:10 mode=060640 ouid=0 ogid=6 rdev=b4:08
Fixed in selinux-policy-2.1.6-20