On 2020-07-29 23:25, stan via users wrote: > On Wed, 29 Jul 2020 20:54:38 +0800 > Ed Greshko <ed.greshko@xxxxxxxxxxx> wrote: > >> So, dwatch is not part of Fedora. > Not now. Right. It was retired around F24 and you've rebuilt it locally to make a F31 package. >> Well, you should easily be able to tell if the hourly cron job runs... >> >> journalctl -b 0 | grep hourly >> >> should return a bunch of stuff like... >> >> Jul 29 20:01:01 meimei.greshko.com CROND[29642]: (root) CMD >> (run-parts /etc/cron.hourly) Jul 29 20:01:01 meimei.greshko.com >> run-parts[29645]: (/etc/cron.hourly) starting 0anacron Jul 29 >> 20:01:01 meimei.greshko.com run-parts[29651]: (/etc/cron.hourly) >> finished 0anacron > Returns nothing. > >>>> Then, just as a troubleshoot, have you tried running the system >>>> with setenforce 0? >>> I haven't, and that is a good suggestion. I'll reboot with >>> setenforce=0 on the kernel boot line. > I updated the bugzilla with the new information, but putting > enforcing=0 on the kernel boot line results in a working system again. > The messages change to allowing crond to run even though it has a NULL > security context because it is in security mode. I tried older kernels > from when it worked before, they also fail now, so not a kernel > problem. Somehow, the user that runs crond lost its selinux security > context. > > e.g. > > crond[5954]: (*system*) NULL security context for user, but SELinux in permissive mode, continuing () > > and > > crond[1169]: ((null)) No security context but SELinux in permissive mode, continuing (/etc/cron.d/dwatch) In the above, is PID 5954 the crond process? If you run ps with the -Z option do you get something like [egreshko@f31k ~]$ ps p 821 -Z LABEL PID TTY STAT TIME COMMAND system_u:system_r:crond_t:s0-s0:c0.c1023 821 ? Ss 0:00 /usr/sbin/crond -n Do you happen to have another F31 system which doesn't have dwatch installed? All of my F31 systems are running cron jobs just fine and they are all fully updated. Jul 30 02:01:01 f31k.greshko.com CROND[2417]: (root) CMD (run-parts /etc/cron.hourly) Jul 30 02:01:01 f31k.greshko.com run-parts[2420]: (/etc/cron.hourly) starting 0anacron Jul 30 02:01:01 f31k.greshko.com run-parts[2428]: (/etc/cron.hourly) finished 0anacron Do you think having dwatch installed may be significant? And, did you mention that in the bugzilla? It sounds to me like an important detail. -- The key to getting good answers is to ask good questions. _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
