[Bug 1198187] [NEW] AppArmor profile denies access to /var/lib/NetworkManager/dhclient6-*.conf

Felix Geyer debfx-pkg at fobos.de
Fri Jul 5 13:14:12 UTC 2013 

*** This bug is a duplicate of bug 1180516 ***
    https://bugs.launchpad.net/bugs/1180516

Public bug reported:

The AppArmor profile /sbin/dhclient doesn't allow access to
/var/lib/NetworkManager/dhclient6-<iface>.conf so it's not able to read
the config options of NetworkManager for DHCPv6.

Syslog entry:
Jul  5 14:09:03 triton kernel: [12795.689370] type=1400 audit(1373026143.248:262): apparmor="DENIED" operation="open" parent=1201 profile="/sbin/dhclient" name="/var/lib/NetworkManager/dhclient6-wlan0.conf" pid=13287 comm="dhclient" requested_mask="r" denied_mask="r" fsuid=0 ouid=0

Changing this line in debian/apparmor-profile.dhclient
  /var/lib/NetworkManager/dhclient-*.conf lrw,
to
  /var/lib/NetworkManager/dhclient{,6}-*.conf lrw,
fixes the problem.

** Affects: isc-dhcp (Ubuntu)
     Importance: Undecided
         Status: New

** This bug has been marked a duplicate of bug 1180516
   apparmor denial for /var/lib/NetworkManager/dhclient6-eth0.conf

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to isc-dhcp in Ubuntu.
https://bugs.launchpad.net/bugs/1198187

Title:
  AppArmor profile denies access to
  /var/lib/NetworkManager/dhclient6-*.conf

Status in “isc-dhcp” package in Ubuntu:
  New

Bug description:
  The AppArmor profile /sbin/dhclient doesn't allow access to
  /var/lib/NetworkManager/dhclient6-<iface>.conf so it's not able to
  read the config options of NetworkManager for DHCPv6.

  Syslog entry:
  Jul  5 14:09:03 triton kernel: [12795.689370] type=1400 audit(1373026143.248:262): apparmor="DENIED" operation="open" parent=1201 profile="/sbin/dhclient" name="/var/lib/NetworkManager/dhclient6-wlan0.conf" pid=13287 comm="dhclient" requested_mask="r" denied_mask="r" fsuid=0 ouid=0

  Changing this line in debian/apparmor-profile.dhclient
    /var/lib/NetworkManager/dhclient-*.conf lrw,
  to
    /var/lib/NetworkManager/dhclient{,6}-*.conf lrw,
  fixes the problem.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/isc-dhcp/+bug/1198187/+subscriptions

More information about the foundations-bugs mailing list