Description of problem: Unable to run cron jobs. Version-Release number of selected component (if applicable): selinux-policy-3.13.1-283.24.fc27.noarch cronie-1.5.1-8.fc27.x86_64 crontabs-1.11-15.20150630git.fc27.noarch cronie-anacron-1.5.1-8.fc27.x86_64 How reproducible: 5 out of 5 so far. Steps to Reproduce: 1. Add "* * * * * root touch /tmp/cron-test" to /etc/crontab Actual results: Cron job not run. $ systemctl status crond crond[1458]: ((null)) Unauthorized SELinux context=system_u:system_r:system_cronjob_t:s0-s0:c0.c1023 file_context=system_u:object_r:etc_t:s0 (/etc/crontab) Expected results: Cron jobs should run. Additional info:
Robin, Hi, Avc msgs is not complete. Could you reproduce it and attach output of: # ausearch -m AVC -m USER_AVC -ts recent Thanks, Lukas.
So... Running ausearch doesn't produce any information just after cron should have run the job. I am on the other hand very sure it's selinux causing this issue since running `setenforce 0` makes the problem go away. Any other way I can provide useful information?
Robin, Could you change parameter "-ts today" and send me logs? # ausearch -m AVC -m USER_AVC -ts today THanks, Lukas.
Could we continue with solving this in rhbz#1625645 ? Closing this as duplicate *** This bug has been marked as a duplicate of bug 1625645 ***
Robin, did you try to restorecon -Fv /etc/crontab ? It seems it has a wrong context.
Thanks Tomas! That solved the issue!