Description of problem: I updated my FC6 box to F7 and did a relabel after it to make sure that all files are labeled correctly. But I still get this avcs: audit(1180761094.595:10): avc: denied { getattr } for pid=3095 comm="pam_console_app" name="parport2" dev=tmpfs ino=1796 scontext=system_u:system_r:pam_console_t:s0-s0:c0.c1023 tcontext=system_u:object_r:printer_device_t:s0 tclass=chr_file audit(1180761094.595:11): avc: denied { getattr } for pid=3095 comm="pam_console_app" name="parport3" dev=tmpfs ino=1797 scontext=system_u:system_r:pam_console_t:s0-s0:c0.c1023 tcontext=system_u:object_r:printer_device_t:s0 tclass=chr_file Version-Release number of selected component (if applicable): selinux-policy-targeted-2.6.4-8.fc7 How reproducible: always Steps to Reproduce: 1. boot 2. login Actual results: avcs Expected results: no avcs Additional info: audit2allow -d shows this: #============= pam_console_t ============== allow pam_console_t printer_device_t:chr_file getattr;
Fixed in selinux-policy-2.6.4-13.fc7
I can confirm that this fixes it; thx for the quick fix.