While upgrading cronie portage failed because it had no access to keep-files that are unlabeled by default (unlabeled_t). This workaround fixed it for me: # semanage fcontext -Cl SELinux fcontext type Context /var/spool/cron/\.keep_acct-user_cron-0 regular file system_u:object_r:cron_spool_t /var/spool/cron/crontabs/\.keep_sys-process_cronie-0 regular file system_u:object_r:cron_spool_t /var/spool/cron/lastrun/\.keep_sys-process_cronbase-0 regular file system_u:object_r:cron_spool_t
