Strange SELinux issue preventing going to sleep
Miroslav Grepl
mgrepl at redhat.com
Mon Sep 21 07:53:01 UTC 2015
On 09/19/2015 11:54 AM, Suvayu Ali wrote:
> On Fri, Sep 18, 2015 at 05:23:49PM -0600, Kevin Fenzi wrote:
>>
>> There's a systemd update that needs a newer selinux-policy.
>> Both of them went out around the same time, so normally that would be
>> fine. However, the systemd update needs the selinux-policy update to be
>> installed when it updates, or it gets confused and you see symptoms
>> like the above. ;(
>>
>> It seems to be the ordering is somewhat random, and some people have
>> rpm install the selinux-policy update first and some have it apply
>> after.
>>
>> You can work around it by doing a:
>>
>> systemctl daemon-reexec
>>
>> or just reboot as it will have the correct policy on reboot.
>
> Interesting problem! Thanks for the solution, sleep works again.
>
> Cheers,
>
Hi folks,
there are bugs for this issue
https://bugzilla.redhat.com/show_bug.cgi?id=1224211
https://bugzilla.redhat.com/show_bug.cgi?id=1263570
where I explained where the problem is.
Some of policy changes (to reflect SELinux kernel classes) have been
back ported from rawhide but they require a systemd reload (because
systemd is SELinux aware) to make systemd+SELinux working correctly.
These policy updates should go with systemd updates which did not happen.
We apologize and thank you for a quick workaround.
--
Miroslav Grepl
Senior Software Engineer, SELinux Solutions
Red Hat, Inc.
More information about the users
mailing list