Description of problem: The ebtables command cannot be used without unexpected issues when you issue it without --concurrent option in parallel. firewalld should not ever issue an ebtables command without acquiring the ebtables lock or using --concurrent option. The the lock is required to play nicely with other ebtables users (for Ex.: openstack-nova). Version-Release number of selected component (if applicable): firewalld-0.3.13-1.fc21 Actual results: The ebtables commands usual output without locking: Unable to update the kernel. Two possible causes: 1. Multiple ebtables programs were executing simultaneously. The ebtables userspace tool doesn't by default support multiple ebtables programs running concurrently. The ebtables option --concurrent or a tool like flock can be used to support concurrent scripts that update the ebtables kernel tables. 2. The kernel doesn't support a certain ebtables extension, consider recompiling your kernel or insmod the extension.
Thomas, what about: ? https://github.com/t-woerner/firewalld/commit/e431283d70287c064defa02a2d3b01d1de0a5f38
firewalld-0.3.14.1-1.fc22 has been submitted as an update for Fedora 22. https://admin.fedoraproject.org/updates/firewalld-0.3.14.1-1.fc22
Package firewalld-0.3.14.1-1.fc22: * should fix your issue, * was pushed to the Fedora 22 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing firewalld-0.3.14.1-1.fc22' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2015-10008/firewalld-0.3.14.1-1.fc22 then log in and leave karma (feedback).
firewalld-0.3.14.1-1.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.