The following was filed automatically by setroubleshoot: Summary: SELinux is preventing klauncher (hotplug_t) "getattr" restorecond_exec_t. Detailed Description: [SELinux is in permissive mode, the operation would have been denied but was permitted due to permissive mode.] SELinux denied access requested by klauncher. It is not expected that this access is required by klauncher and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access. Allowing Access: You can generate a local policy module to allow this access - see FAQ (http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable SELinux protection altogether. Disabling SELinux protection is not recommended. Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi) against this package. Additional Information: Source Context unconfined_u:system_r:hotplug_t:s0 Target Context system_u:object_r:restorecond_exec_t:s0 Target Objects /usr/sbin/restorecond [ file ] Source klauncher Source Path /usr/libexec/kde4/klauncher Port <Unknown> Host (removed) Source RPM Packages kdelibs-4.2.95-1.fc12 Target RPM Packages policycoreutils-2.0.64-1.fc12 Policy RPM selinux-policy-3.6.20-1.fc12 Selinux Enabled True Policy Type targeted MLS Enabled True Enforcing Mode Permissive Plugin Name catchall Host Name (removed) Platform Linux (removed) 2.6.30-0.1.2.32.rc8.xendom0.fc12.x86_64 #1 SMP Thu Jun 4 17:46:39 EDT 2009 x86_64 x86_64 Alert Count 1 First Seen Mon 29 Jun 2009 08:57:33 AM CDT Last Seen Mon 29 Jun 2009 08:57:33 AM CDT Local ID de93094a-28c7-4fd3-8bf6-901b46b80c49 Line Numbers Raw Audit Messages node=(removed) type=AVC msg=audit(1246283853.761:39119): avc: denied { getattr } for pid=2774 comm="klauncher" path="/usr/sbin/restorecond" dev=dm-1 ino=101764 scontext=unconfined_u:system_r:hotplug_t:s0 tcontext=system_u:object_r:restorecond_exec_t:s0 tclass=file node=(removed) type=SYSCALL msg=audit(1246283853.761:39119): arch=c000003e syscall=4 success=yes exit=0 a0=1f3bce8 a1=1ee4ef8 a2=1ee4ef8 a3=8 items=0 ppid=2773 pid=2774 auid=2355 uid=2355 gid=100 euid=2355 suid=2355 fsuid=2355 egid=100 sgid=100 fsgid=100 tty=(none) ses=1 comm="klauncher" exe="/usr/libexec/kde4/klauncher" subj=unconfined_u:system_r:hotplug_t:s0 key=(null) audit2allow suggests: #============= hotplug_t ============== allow hotplug_t restorecond_exec_t:file getattr;
Summary: SELinux is preventing klauncher (hotplug_t) "execute" restorecond_exec_t. Detailed Description: [SELinux is in permissive mode, the operation would have been denied but was permitted due to permissive mode.] SELinux denied access requested by klauncher. It is not expected that this access is required by klauncher and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access. Allowing Access: You can generate a local policy module to allow this access - see FAQ (http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable SELinux protection altogether. Disabling SELinux protection is not recommended. Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi) against this package. Additional Information: Source Context unconfined_u:system_r:hotplug_t:s0 Target Context system_u:object_r:restorecond_exec_t:s0 Target Objects /usr/sbin/restorecond [ file ] Source klauncher Source Path /usr/libexec/kde4/klauncher Port <Unknown> Host jerry-opti755 Source RPM Packages kdelibs-4.2.95-1.fc12 Target RPM Packages policycoreutils-2.0.64-1.fc12 Policy RPM selinux-policy-3.6.20-1.fc12 Selinux Enabled True Policy Type targeted MLS Enabled True Enforcing Mode Permissive Plugin Name catchall Host Name jerry-opti755 Platform Linux jerry-opti755 2.6.30-0.1.2.32.rc8.xendom0.fc12.x86_64 #1 SMP Thu Jun 4 17:46:39 EDT 2009 x86_64 x86_64 Alert Count 1 First Seen Mon 29 Jun 2009 08:57:33 AM CDT Last Seen Mon 29 Jun 2009 08:57:33 AM CDT Local ID 4635eeff-5268-45ff-adb7-3637e290821c Line Numbers Raw Audit Messages node=jerry-opti755 type=AVC msg=audit(1246283853.762:39120): avc: denied { execute } for pid=2774 comm="klauncher" name="restorecond" dev=dm-1 ino=101764 scontext=unconfined_u:system_r:hotplug_t:s0 tcontext=system_u:object_r:restorecond_exec_t:s0 tclass=file node=jerry-opti755 type=SYSCALL msg=audit(1246283853.762:39120): arch=c000003e syscall=21 success=yes exit=0 a0=1f48718 a1=1 a2=1f48718 a3=5f items=0 ppid=2773 pid=2774 auid=2355 uid=2355 gid=100 euid=2355 suid=2355 fsuid=2355 egid=100 sgid=100 fsgid=100 tty=(none) ses=1 comm="klauncher" exe="/usr/libexec/kde4/klauncher" subj=unconfined_u:system_r:hotplug_t:s0 key=(null)
*** This bug has been marked as a duplicate of bug 508718 ***