-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I have mentioned this before (probably a few times), and i am not sure if this issue is actually what i think it is but i will once again mention this issue i observed many times. Excuse me if i am wrong here. https://bugzilla.redhat.com/show_bug.cgi?id=1331668 https://github.com/fedora-selinux/selinux-policy/commit/971e97a2b8cbcc14 3fc82badfaaf7900b4760399 When you change (user space?) access vectors then user space object managers get confused and stop working. This is now becoming an issue since core components are object managers (systemd/dbus) So basically there is no way for distributions to add/remove access vectors without breaking the running system. The only solution is immediately switch to permissive mode and to reboot the system after such an update. And you might not even be able to cleanly shutdown due to these confused components - -- Key fingerprint = 5F4D 3CDB D3F8 3652 FBD8 02D5 3B6C 5F1D 2C7B 6B02 https://sks-keyservers.net/pks/lookup?op=get&search=0x3B6C5F1D2C7B6B02 Dominick Grift -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQGcBAEBCAAGBQJXI5QBAAoJECV0jlU3+UdpK6gMAI5Z411M+tp+x9H9N1tSFNdU MRbVLJG1McRNSHzZfYSf1YcxEX3q4Qnewzn+470WtCskdDiRiQlUnGgdxC53UdYr 0mxci47agkbcUkm5533xGIfhdv2oNDD/0G6dVKSX09ioy2OF1Gc4piQ0FdcXLbBK CxvbF1YYRFsinN1avjIbshDrsHsBfOaQxKULLOgnHHDml2jwna2twWw5SGvUtiq2 YeOo+k74MVn9+JCOUPbbrmmPortdgWFuxaAwKNurcahlwms74HHLL+2knRJ5u6R1 jLLGuGlX0zEM/8aA7CKM8xEk8JP/ZmYxcsIeXC+L1u04oK4/fWZ63YhleQcYcj+L GNAg7pLcNltkbGioLWZZdJCcM7M9mO/O9gNe0PowKK9znQPVzx4yxEHTG1ks+jEy 1+l0V/ggXSuqFcD6TaxG07VKH27MuAJxtECvdZ5Rdtl5C9qrz93PRr+Hr1GKO3v7 Ip6k1PQi96aq8wQQUv8O+tGm85T7uBcZltdzLL1ysg== =GfNX -----END PGP SIGNATURE----- _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
