Description of problem: Doing a hibernate (System -> Shut Down... -> Suspend) causes an selinux denial to appear in audit.log. I don't know of any symptoms that this causes, but it's possible that it could cause some. Version-Release number of selected component (if applicable): pm-utils-0.15-1 kernel-2.6.16-1.2111_FC5 selinux-policy-2.2.38-1.fc5 selinux-policy-targeted-2.2.38-1.fc5 How reproducible: Every time, I think, judging from the number in my audit log. Steps to Reproduce: 1. Use targeted selinux policy in enforcing mode. 2. System -> Shut Down... -> Suspend 3. look at audit.log after resume. Actual results: /var/log/audit/audit.log contains: type=AVC msg=audit(1147817989.047:882): avc: denied { getattr } for pid=14974 comm="pm-hibernate" name="vmlinuz-2.6.16-1.2111_FC5" dev=hda1 ino=13 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:boot_t:s0 tclass=file type=SYSCALL msg=audit(1147817989.047:882): arch=40000003 syscall=195 success=no exit=-13 a0=9382498 a1=bfd7cb38 a2=4d9bdff4 a3=9382470 items=1 pid=14974 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="pm-hibernate" exe="/bin/bash" type=AVC_PATH msg=audit(1147817989.047:882): path="/boot/vmlinuz-2.6.16-1.2111_FC5" type=CWD msg=audit(1147817989.047:882): cwd="/usr/share/hal/scripts" type=PATH msg=audit(1147817989.047:882): item=0 name="/boot/vmlinuz-2.6.16-1.2111_FC5" flags=1 inode=13 dev=03:01 mode=0100644 ouid=0 ogid=0 rdev=00:00 Expected results: no denials Additional information: this is *not* a regression from the most recent policy changes; I was seeing it before those as well.
Fixed in selinux-policy-targeted-2.2.42-2.fc5
Closing bugs