Subject: [SELinux AVC Alert] SELinux is preventing kerneloops (kerneloops_t) "read" inotifyfs_t.
From: SELinux_Troubleshoot@localhost.localdomain
Date: Sat, 07 Mar 2009 17:58:11 -0000
To: root@localhost.localdomain

Summary
SELinux is preventing kerneloops (kerneloops_t) "read" inotifyfs_t.
Detailed Description
SELinux denied access requested by kerneloops. It is not expected that this access is required by kerneloops and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access.
Allowing Access
You can generate a local policy module to allow this access - see FAQ Or you can disable SELinux protection altogether. Disabling SELinux protection is not recommended. Please file a bug report against this package.
Additional Information
Source Context:  system_u:system_r:kerneloops_t:s0-s0:c0.c1023
Target Context:  system_u:object_r:inotifyfs_t:s0
Target Objects:  inotify [ dir ]
Source:  kerneloops
Source Path:  /usr/sbin/kerneloops
Port:  <Unknown>
Host:  torrent01.frankly3d.local
Source RPM Packages:  kerneloops-0.12-3.fc11
Target RPM Packages:  
Policy RPM:  selinux-policy-3.6.7-2.fc11
Selinux Enabled:  True
Policy Type:  targeted
MLS Enabled:  True
Enforcing Mode:  Enforcing
Plugin Name:  catchall
Host Name:  torrent01.frankly3d.local
Platform:  Linux torrent01.frankly3d.local 2.6.29-0.207.rc7.fc11.i586 #1 SMP Thu Mar 5 03:30:16 EST 2009 i686 i686
Alert Count:  1
First Seen:  Sat Mar 7 17:57:34 2009
Last Seen:  Sat Mar 7 17:57:34 2009
Local ID:  6169c47d-c0c8-434b-8ec4-74992a243770
Line Numbers:  

Raw Audit Messages :

node=torrent01.frankly3d.local type=AVC msg=audit(1236448654.887:13): avc: denied { read } for pid=3201 comm="kerneloops" path="inotify" dev=inotifyfs ino=1 scontext=system_u:system_r:kerneloops_t:s0-s0:c0.c1023 tcontext=system_u:object_r:inotifyfs_t:s0 tclass=dir
node=torrent01.frankly3d.local type=SYSCALL msg=audit(1236448654.887:13): arch=40000003 syscall=11 success=yes exit=0 a0=883ee20 a1=883ede8 a2=883e008 a3=8841368 items=0 ppid=3200 pid=3201 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kerneloops" exe="/usr/sbin/kerneloops" subj=system_u:system_r:kerneloops_t:s0-s0:c0.c1023 key=(null)