Fedora Account System
Red Hat Associate
Red Hat Customer
Description of problem: Just updated to Fedora 40, now system will no longer hibernate. SELinux is preventing systemd-sleep from 'read' accesses on the blk_file dm-2. ***** Plugin catchall (100. confidence) suggests ************************** Wenn Sie denken, dass es systemd-sleep standardmäßig erlaubt sein sollte, read Zugriff auf dm-2 blk_file zu erhalten. Then sie sollten dies als Fehler melden. Um diesen Zugriff zu erlauben, können Sie ein lokales Richtlinien-Modul erstellen. Do zugriff jetzt erlauben, indem Sie die nachfolgenden Befehle ausführen: # ausearch -c 'systemd-sleep' --raw | audit2allow -M my-systemdsleep # semodule -X 300 -i my-systemdsleep.pp Additional Information: Source Context system_u:system_r:systemd_sleep_t:s0 Target Context system_u:object_r:fixed_disk_device_t:s0 Target Objects dm-2 [ blk_file ] Source systemd-sleep Source Path systemd-sleep Port <Unbekannt> Host (removed) Source RPM Packages Target RPM Packages SELinux Policy RPM selinux-policy-targeted-40.16-1.fc40.noarch Local Policy RPM selinux-policy-targeted-40.16-1.fc40.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 6.8.7-300.fc40.x86_64 #1 SMP PREEMPT_DYNAMIC Wed Apr 17 19:21:08 UTC 2024 x86_64 Alert Count 2 First Seen 2024-04-27 13:25:02 CEST Last Seen 2024-04-27 13:31:14 CEST Local ID 2a784f0b-0dcc-4007-bcfa-de4de398c84b Raw Audit Messages type=AVC msg=audit(1714217474.147:532): avc: denied { read } for pid=31094 comm="systemd-sleep" name="dm-2" dev="devtmpfs" ino=458 scontext=system_u:system_r:systemd_sleep_t:s0 tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file permissive=0 Hash: systemd-sleep,systemd_sleep_t,fixed_disk_device_t,blk_file,read Version-Release number of selected component: selinux-policy-targeted-40.16-1.fc40.noarch Additional info: reporter: libreport-2.17.15 reason: SELinux is preventing systemd-sleep from 'read' accesses on the blk_file dm-2. kernel: 6.8.7-300.fc40.x86_64 type: libreport comment: Just updated to Fedora 40, now system will no longer hibernate. package: selinux-policy-targeted-40.16-1.fc40.noarch hashmarkername: setroubleshoot component: selinux-policy component: selinux-policy
Created attachment 2029599 [details] File: os_info
Created attachment 2029600 [details] File: description
*** This bug has been marked as a duplicate of bug 2273959 ***