Hi, three days ago, when I run “dnf update” (a long list one), I noticed the follow four errors:
Running scriptlet: selinux-policy-38.1.11-2.el9_2.noarch 132/600
Problems processing filecon rules
Failed post db handling
Post process failed
/usr/sbin/semodule: Failed!
Running scriptlet: selinux-policy-targeted-38.1.11-2.el9_2.noarch 133/600
Problems processing filecon rules
Failed post db handling
Post process failed
/usr/sbin/semodule: Failed!
Running scriptlet: bind-32:9.16.23-11.el9.x86_64 244/600
libsepol.context_from_record: type mptcpd_etc_t is not defined
libsepol.context_from_record: could not create context structure
libsepol.context_from_string: could not create context structure
libsepol.sepol_context_to_sid: could not convert system_u:object_r:mptcpd_etc_t:s0 to sid
invalid context system_u:object_r:mptcpd_etc_t:s0
libsemanage.semanage_validate_and_compile_fcontexts: setfiles returned error code 255.
OSError: Error
Running scriptlet: cockpit-ws-286.1-1.el9.x86_64 254/600
Problems processing filecon rules
Failed post db handling
Post process failed
/usr/sbin/semodule: Failed!
This server is a mail server (among others), and soon after I noticed that emails were not more arriving.
Analysing the problem, I discover that the problem originated in amavisd.
Now, when I restart amavisd, the status show the following errors:
amavis[747233]: (!)Net::Server: Can’t connect to TCP port 10026 on 127.0.0.1 [Permission denied]\n at line 64 in…
systemd[1]: amavisd.service: Can’t open PID file /run/amavisd/amavisd.pid (yet?) after start: Operation not permitted
I searched for a solution but found nothing, and as a result, I decided to wait one/two days for n eventually new “dnf update” with the solution. In the meanwhile, I switch selinux from enforcing to permissive mode, allowing amavisd to run smoothly.
Today, when I run “dnf update”, I see selinux-policy-targeted-38.1.11-2.el9_2.2.noarch in the list, but after ran it, I see the same errors again:
Running scriptlet: selinux-policy-38.1.11-2.el9_2.2.noarch 6/52
Problems processing filecon rules
Failed post db handling
Post process failed
/usr/sbin/semodule: Failed!
Running scriptlet: selinux-policy-targeted-38.1.11-2.el9_2.2.noarch 7/52
Problems processing filecon rules
Failed post db handling
Post process failed
/usr/sbin/semodule: Failed!
Can someone help me with this?
And what about the selinux context reported problem (see above) when updating bind from the first “dnf update”? Seems the same selinux update problem.