2443825 – Selinux failure for bootupctl

Bug 2443825 - Selinux failure for bootupctl

Summary: Selinux failure for bootupctl

Keywords:
Status:	ASSIGNED
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	selinux-policy
Sub Component:
Version:	rawhide
Hardware:	Unspecified
OS:	Linux
Priority:	high
Severity:	medium
Target Milestone:	---
Assignee:	Zdenek Pytela
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-03-02 14:04 UTC by Cristian Le
Modified:	2026-03-03 16:21 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Type:	---
Embargoed:
Dependent Products:
Flags:	zpytela: mirror+

Attachments	(Terms of Use)
avc.txt (3.52 KB, text/plain) 2026-03-02 14:05 UTC, Cristian Le	no flags	Details
View All

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	FC-3269	0	None	None	None	2026-03-03 16:21:16 UTC

Description Cristian Le 2026-03-02 14:04:37 UTC

Started to get these selinux failure for bootpctl (part of bootc)

```
----
type=AVC msg=audit(02/27/26 15:09:37.739:2040) : avc:  denied  { nnp_transition nosuid_transition } for  pid=13078 comm=bootupctl scontext=system_u:system_r:install_t:s0:c75,c789 tcontext=system_u:system_r:mount_t:s0:c75,c789 tclass=process2 permissive=0 
----
type=SELINUX_ERR msg=audit(02/27/26 15:09:37.739:2041) : op=security_bounded_transition seresult=denied oldcontext=system_u:system_r:install_t:s0:c75,c789 newcontext=system_u:system_r:mount_t:s0:c75,c789
```

Is it known or tracked?

Reproducible: Always

Comment 1 Cristian Le 2026-03-02 14:05:24 UTC

Created attachment 2131676 [details]
avc.txt

Note You need to log in before you can comment on or make changes to this bug.