Description of problem: on current occasion i booted the computer, started a bash terminal, suddenly the message popped up. this message appears occasionally during last approx. 2 months. I do have some entries in .bashrc, .bash_alias, .bash_function, but no one throws an error sourcing it. hth SELinux is preventing bootc-systemd-g from 'execute' accesses on the Datei /usr/bin/bash. ***** Plugin catchall (100. confidence) suggests ************************** Wenn Sie denken, dass es bootc-systemd-g standardmäßig erlaubt sein sollte, execute Zugriff auf bash file zu erhalten. Then sie sollten dies als Fehler melden. Um diesen Zugriff zu erlauben, können Sie ein lokales Richtlinien-Modul erstellen. Do zugriff jetzt erlauben, indem Sie die nachfolgenden Befehle ausführen: # ausearch -c 'bootc-systemd-g' --raw | audit2allow -M my-bootcsystemdg # semodule -X 300 -i my-bootcsystemdg.pp Additional Information: Source Context system_u:system_r:systemd_generic_generator_t:s0 Target Context system_u:object_r:shell_exec_t:s0 Target Objects /usr/bin/bash [ file ] Source bootc-systemd-g Source Path bootc-systemd-g Port <Unbekannt> Host (removed) Source RPM Packages Target RPM Packages bash-5.2.32-1.fc41.x86_64 SELinux Policy RPM selinux-policy-targeted-41.34-1.fc41.noarch Local Policy RPM selinux-policy-targeted-41.34-1.fc41.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 6.13.6-200.fc41.x86_64 #1 SMP PREEMPT_DYNAMIC Fri Mar 7 21:33:48 UTC 2025 x86_64 Alert Count 34 First Seen 2025-02-21 08:37:48 CET Last Seen 2025-03-18 20:48:20 CET Local ID 18b06f91-0270-44cb-af44-6f0855898107 Raw Audit Messages type=AVC msg=audit(1742327300.374:648): avc: denied { execute } for pid=5652 comm="bootc-systemd-g" path="/usr/bin/bash" dev="sda3" ino=2754627 scontext=system_u:system_r:systemd_generic_generator_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file permissive=1 Hash: bootc-systemd-g,systemd_generic_generator_t,shell_exec_t,file,execute Version-Release number of selected component: selinux-policy-targeted-41.34-1.fc41.noarch Additional info: reporter: libreport-2.17.15 kernel: 6.13.6-200.fc41.x86_64 type: libreport component: selinux-policy package: selinux-policy-targeted-41.34-1.fc41.noarch hashmarkername: setroubleshoot reason: SELinux is preventing bootc-systemd-g from 'execute' accesses on the Datei /usr/bin/bash. component: selinux-policy
Created attachment 2080792 [details] File: os_info
Created attachment 2080793 [details] File: description
*** Bug 2353380 has been marked as a duplicate of this bug. ***
FEDORA-2025-73a887d073 (selinux-policy-41.35-1.fc41) has been submitted as an update to Fedora 41. https://bodhi.fedoraproject.org/updates/FEDORA-2025-73a887d073
FEDORA-2025-73a887d073 has been pushed to the Fedora 41 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-73a887d073` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-73a887d073 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
FEDORA-2025-c6d8815d3a has been pushed to the Fedora 41 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-c6d8815d3a` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-c6d8815d3a See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
FEDORA-2025-c6d8815d3a (selinux-policy-41.36-1.fc41) has been pushed to the Fedora 41 stable repository. If problem still persists, please make note of it in this bug report.