AVCs on eject from DVD creator

[Tom London]

Running latest Rawhide, targeted/permissive.

Got this after burning a DVD with gnome-DVD-Creator (e.g., Places->DVD
Creator), and pressing the "Eject" button (running in Permissive
mode):

type=AVC msg=audit(1159390121.634:37): avc:  denied  { setexec } for
pid=4152 comm="userhelper" scontext=system_u:system_r:hald_t:s0
tcontext=system_u:system_r:hald_t:s0 tclass=process
type=SYSCALL msg=audit(1159390121.634:37): arch=40000003 syscall=4
success=yes exit=34 a0=4 a1=84329d8 a2=22 a3=48de06a9 items=0
ppid=4151 pid=4152 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0
egid=0 sgid=0 fsgid=0 tty=(none) comm="userhelper"
exe="/usr/sbin/userhelper" subj=system_u:system_r:hald_t:s0 key=(null)
type=AVC msg=audit(1159390121.634:38): avc:  denied  { transition }
for  pid=4152 comm="userhelper" name="eject" dev=dm-0 ino=5481735
scontext=system_u:system_r:hald_t:s0
tcontext=system_u:system_r:unconfined_t:s0 tclass=process
type=AVC msg=audit(1159390121.634:38): avc:  denied  { siginh } for
pid=4152 comm="eject" scontext=system_u:system_r:hald_t:s0
tcontext=system_u:system_r:unconfined_t:s0 tclass=process
type=AVC msg=audit(1159390121.634:38): avc:  denied  { rlimitinh } for
 pid=4152 comm="eject" scontext=system_u:system_r:hald_t:s0
tcontext=system_u:system_r:unconfined_t:s0 tclass=process
type=AVC msg=audit(1159390121.634:38): avc:  denied  { noatsecure }
for  pid=4152 comm="eject" scontext=system_u:system_r:hald_t:s0
tcontext=system_u:system_r:unconfined_t:s0 tclass=process
type=SYSCALL msg=audit(1159390121.634:38): arch=40000003 syscall=11
success=yes exit=0 a0=84320e0 a1=bfef3550 a2=8432930 a3=2 items=0
ppid=4151 pid=4152 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0
egid=0 sgid=0 fsgid=0 tty=(none) comm="eject" exe="/usr/sbin/eject"
subj=system_u:system_r:unconfined_t:s0 key=(null)
type=AVC_PATH msg=audit(1159390121.634:38):  path="/usr/sbin/eject"

tom
-- 
Tom London