libreport version: 2.0.10 executable: /usr/bin/python2.7 hashmarkername: setroubleshoot kernel: 3.3.7-1.fc16.i686.PAE time: Sat 26 May 2012 05:22:12 AM EDT description: :SELinux is preventing sagator from 'read' accesses on the lnk_file /var/spool/vscan/var/spool/vscan. : :***** Plugin catchall (100. confidence) suggests *************************** : :If you believe that sagator should be allowed read access on the vscan lnk_file by default. :Then you should report this as a bug. :You can generate a local policy module to allow this access. :Do :allow this access for now by executing: :# grep sagator /var/log/audit/audit.log | audit2allow -M mypol :# semodule -i mypol.pp : :Additional Information: :Source Context system_u:system_r:sagator_t:SystemLow :Target Context system_u:object_r:sagator_var_t:SystemLow :Target Objects /var/spool/vscan/var/spool/vscan [ lnk_file ] :Source sagator :Source Path sagator :Port <Unknown> :Host (removed) :Source RPM Packages :Target RPM Packages :Policy RPM selinux-policy-3.10.0-86.fc16.noarch :Selinux Enabled True :Policy Type targeted :Enforcing Mode Permissive :Host Name (removed) :Platform Linux (removed) 3.3.7-1.fc16.i686.PAE #1 SMP Tue May : 22 14:07:22 UTC 2012 i686 i686 :Alert Count 1 :First Seen Sat 26 May 2012 03:11:20 AM EDT :Last Seen Sat 26 May 2012 03:11:20 AM EDT :Local ID 48bd8dbc-8e8f-4f51-91b1-29669437338d : :Raw Audit Messages :type=AVC msg=audit(1338016280.373:1430): avc: denied { read } for pid=11910 comm="sagator" name="vscan" dev="dm-1" ino=1593056 scontext=system_u:system_r:sagator_t:s0 tcontext=system_u:object_r:sagator_var_t:s0 tclass=lnk_file : : :Hash: sagator,sagator_t,sagator_var_t,lnk_file,read : :audit2allow : :#============= sagator_t ============== :allow sagator_t sagator_var_t:lnk_file read; : :audit2allow -R : :#============= sagator_t ============== :allow sagator_t sagator_var_t:lnk_file read; :
You are still reporting the same issue. Please read our previous comments.
*** Bug 825435 has been marked as a duplicate of this bug. ***
*** Bug 825434 has been marked as a duplicate of this bug. ***
*** Bug 825436 has been marked as a duplicate of this bug. ***
*** Bug 825438 has been marked as a duplicate of this bug. ***
*** Bug 825439 has been marked as a duplicate of this bug. ***
*** Bug 825440 has been marked as a duplicate of this bug. ***
*** Bug 825446 has been marked as a duplicate of this bug. ***
We have a lot of issues with the sagator policy. https://bugzilla.redhat.com/buglist.cgi?list_id=54965&classification=Fedora&query_format=advanced&bug_status=CLOSED&longdesc=sagator&component=selinux-policy&longdesc_type=allwordssubstr Probably this is a good time to work on it together.
I am just looking at your policy and it will need some work.
Fedora 16 changed to end-of-life (EOL) status on 2013-02-12. Fedora 16 is no longer maintained, which means that it will not receive any further security or bug fix updates. As a result we are closing this bug. If you can reproduce this bug against a currently maintained version of Fedora please feel free to reopen this bug against that version. Thank you for reporting this bug and we are sorry it could not be fixed.