Description of problem: Rebooted the pc. Opened the Spotify Flatpak. SELINUX: SELinux is preventing systemd-coredum from using the sys_admin capability. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that systemd-coredum should have the sys_admin capability by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'systemd-coredum' --raw | audit2allow -M my-systemdcoredum # semodule -X 300 -i my-systemdcoredum.pp Additional Information: Source Context system_u:system_r:systemd_coredump_t:s0 Target Context system_u:system_r:systemd_coredump_t:s0 Target Objects Unknown [ capability ] Source systemd-coredum Source Path systemd-coredum Port <Unknown> Host fedora-rnt Source RPM Packages Target RPM Packages SELinux Policy RPM selinux-policy-targeted-41.28-1.fc41.noarch Local Policy RPM selinux-policy-targeted-41.28-1.fc41.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name fedora-rnt Platform Linux fedora-rnt 6.12.10-200.fc41.x86_64 #1 SMP PREEMPT_DYNAMIC Fri Jan 17 18:05:24 UTC 2025 x86_64 Alert Count 32 First Seen 2024-12-26 19:16:41 MST Last Seen 2025-01-27 10:54:28 MST Local ID 3f5d2da5-b97e-4be0-bc1b-2f6328cb1033 Raw Audit Messages type=AVC msg=audit(1738000468.984:341): avc: denied { sys_admin } for pid=6283 comm="systemd-coredum" capability=21 scontext=system_u:system_r:systemd_coredump_t:s0 tcontext=system_u:system_r:systemd_coredump_t:s0 tclass=capability permissive=0 Hash: systemd-coredum,systemd_coredump_t,systemd_coredump_t,capability,sys_admin SELinux is preventing systemd-coredum from using the 'sys_admin' capabilities. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that systemd-coredum should have the sys_admin capability by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'systemd-coredum' --raw | audit2allow -M my-systemdcoredum # semodule -X 300 -i my-systemdcoredum.pp Additional Information: Source Context system_u:system_r:systemd_coredump_t:s0 Target Context system_u:system_r:systemd_coredump_t:s0 Target Objects Unknown [ capability ] Source systemd-coredum Source Path systemd-coredum Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages SELinux Policy RPM selinux-policy-targeted-41.28-1.fc41.noarch Local Policy RPM selinux-policy-targeted-41.28-1.fc41.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 6.12.10-200.fc41.x86_64 #1 SMP PREEMPT_DYNAMIC Fri Jan 17 18:05:24 UTC 2025 x86_64 Alert Count 32 First Seen 2024-12-26 19:16:41 MST Last Seen 2025-01-27 10:54:28 MST Local ID 3f5d2da5-b97e-4be0-bc1b-2f6328cb1033 Raw Audit Messages type=AVC msg=audit(1738000468.984:341): avc: denied { sys_admin } for pid=6283 comm="systemd-coredum" capability=21 scontext=system_u:system_r:systemd_coredump_t:s0 tcontext=system_u:system_r:systemd_coredump_t:s0 tclass=capability permissive=0 Hash: systemd-coredum,systemd_coredump_t,systemd_coredump_t,capability,sys_admin Version-Release number of selected component: selinux-policy-targeted-41.28-1.fc41.noarch Additional info: reporter: libreport-2.17.15 reason: SELinux is preventing systemd-coredum from using the 'sys_admin' capabilities. package: selinux-policy-targeted-41.28-1.fc41.noarch component: selinux-policy hashmarkername: setroubleshoot type: libreport kernel: 6.12.10-200.fc41.x86_64 component: selinux-policy
Created attachment 2074047 [details] File: description
Created attachment 2074048 [details] File: os_info
*** This bug has been marked as a duplicate of bug 2335200 ***