unmatched entries for isc-dhcp-server
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
logwatch (Ubuntu) |
Fix Released
|
Medium
|
Bryce Harrington | ||
Xenial |
Fix Released
|
Medium
|
Bryce Harrington | ||
Bionic |
Fix Released
|
Medium
|
Bryce Harrington | ||
Focal |
Fix Released
|
Medium
|
Bryce Harrington | ||
Groovy |
Fix Released
|
Medium
|
Bryce Harrington |
Bug Description
[Impact]
dhcp "lease under threshold" messages aren't handled by logwatch, and thus end up in the "Unmatched Entries" section, one per event. These innocuous notices clutters up the logwatch reports unnecessarily.
[Test Case]
$ export CODENAME="focal"
$ lxc launch ubuntu:${CODENAME} test-logwatch
$ lxc exec test-logwatch -- bash
# apt-get update
# apt-get dist-upgrade -y
# apt-get install -y logwatch
# wget https:/
# cat unmatched-
# logwatch --detail High --service all --range all --output stdout
Without the fix, there will be unmatched entries from reuse_lease regarding lease age thresholds; with the fix there will be no such messages.
(Note: For testing it's not really necessary to trigger the original condition that produces the log entry, since for Logwatch the purpose is more about making sure the entry is detected and processed appropriately.)
[Regression Potential]
Since logwatch filters logs for errors pertinent to administrators,
standard things to watch out for are undesired changes in this filtering
behavior, such as flagging or failing to flag issues differently than
before, other than the specific messages being filtered with this
change.
[Original Report]
Under the "dhcpd" heading, the following isc-dhcp-server lines appear as unknown:
Unknown Entries:
Config file: /etc/dhcp/
Database file: /var/lib/
PID file: /run/dhcp-
Server starting service.: 1 Time(s)
reuse_lease: lease age 16261 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 16268 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 16391 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 16394 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 1728 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 17474 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 17475 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 26177 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 26179 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 28852 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 28854 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 3064 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 3229 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 35305 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 35325 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 35326 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 49459 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 52188 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
reuse_lease: lease age 811 (secs) under 25% threshold, reply with unaltered, existing lease: 1 Time(s)
-------
Description: Ubuntu 16.04 LTS
Release: 16.04
logwatch:
Installed: 7.4.2-1ubuntu1
Candidate: 7.4.2-1ubuntu1
Version table:
*** 7.4.2-1ubuntu1 500
500 http://
500 http://
100 /var/lib/
isc-dhcp-server:
Installed: 4.3.3-5ubuntu12
Candidate: 4.3.3-5ubuntu12
Version table:
*** 4.3.3-5ubuntu12 500
500 http://
100 /var/lib/
Related branches
- Lucas Kanashiro (community): Approve
- Canonical Server packageset reviewers: Pending requested
- Canonical Server: Pending requested
-
Diff: 709 lines (+533/-2)5 files modifieddebian/changelog (+422/-0)
debian/control (+4/-2)
debian/patches/0014-zz-sys-Suppress-warnings-if-Sys-CPU-or-Sys-MemInfo-a.patch (+52/-0)
debian/patches/0015-pam_unix-Ignore-issues-about-etc-securetty-being-mis.patch (+51/-0)
debian/patches/series (+4/-0)
- Bryce Harrington (community): Approve
- Christian Ehrhardt (community): Needs Fixing
- Canonical Server: Pending requested
-
Diff: 1086 lines (+868/-2)13 files modifieddebian/changelog (+371/-0)
debian/control (+4/-2)
debian/patches/0011-postfix-Ignore-Resolved-loghost-to-127.0.0.1.patch (+42/-0)
debian/patches/0012-postfix-Handle-backwards-compatible-mode.patch (+74/-0)
debian/patches/0013-secure-Ignore-warnings-about-gnome-keyring-daemon-it.patch (+32/-0)
debian/patches/0014-zz-sys-Suppress-warnings-if-Sys-CPU-or-Sys-MemInfo-a.patch (+52/-0)
debian/patches/0015-pam_unix-Ignore-issues-about-etc-securetty-being-mis.patch (+51/-0)
debian/patches/0017-audit-Apparmor-DENIED-entries-don-t-always-include-p.patch (+28/-0)
debian/patches/0018-audit-Treat-Denial-Errors-same-as-Denied.patch (+28/-0)
debian/patches/0019-exim-Handle-self-signed-certs-warnings.patch (+73/-0)
debian/patches/0020-dhcpd-Ignore-lease-age-under-threshold-messages.patch (+32/-0)
debian/patches/0021-audit-use-the-term-ALLOWED-instead-of-Grants.patch (+69/-0)
debian/patches/series (+12/-0)
- Christian Ehrhardt (community): Approve
- Canonical Server: Pending requested
- Sergio Durigan Junior: Pending requested
- Canonical Server packageset reviewers: Pending requested
-
Diff: 419 lines (+355/-0)10 files modifieddebian/changelog (+33/-0)
debian/patches/0010-00-debspecific-disable-su-reporting-in-secure.diff.patch (+34/-0)
debian/patches/0011-postfix-Ignore-Resolved-loghost-to-127.0.0.1.patch (+42/-0)
debian/patches/0012-postfix-Handle-backwards-compatible-mode.patch (+74/-0)
debian/patches/0014-zz-sys-Suppress-warnings-if-Sys-CPU-or-Sys-MemInfo-a.patch (+52/-0)
debian/patches/0017-audit-Apparmor-DENIED-entries-don-t-always-include-p.patch (+28/-0)
debian/patches/0018-audit-Treat-Denial-Errors-same-as-Denied.patch (+28/-0)
debian/patches/0020-dhcpd-Ignore-lease-age-under-threshold-messages.patch (+32/-0)
debian/patches/series (+9/-0)
debian/patches/ssh-ignore-disconnected.patch (+23/-0)
- Christian Ehrhardt (community): Approve
- Canonical Server: Pending requested
- Sergio Durigan Junior: Pending requested
- Canonical Server packageset reviewers: Pending requested
-
Diff: 419 lines (+354/-0)10 files modifieddebian/changelog (+33/-0)
debian/patches/0010-00-debspecific-disable-su-reporting-in-secure.diff.patch (+34/-0)
debian/patches/0011-postfix-Ignore-Resolved-loghost-to-127.0.0.1.patch (+42/-0)
debian/patches/0012-postfix-Handle-backwards-compatible-mode.patch (+74/-0)
debian/patches/0014-zz-sys-Suppress-warnings-if-Sys-CPU-or-Sys-MemInfo-a.patch (+52/-0)
debian/patches/0017-audit-Apparmor-DENIED-entries-don-t-always-include-p.patch (+28/-0)
debian/patches/0018-audit-Treat-Denial-Errors-same-as-Denied.patch (+28/-0)
debian/patches/0020-dhcpd-Ignore-lease-age-under-threshold-messages.patch (+32/-0)
debian/patches/series (+8/-0)
debian/patches/ssh-ignore-disconnected.patch (+23/-0)
- Christian Ehrhardt (community): Approve
- Canonical Server: Pending requested
- Sergio Durigan Junior: Pending requested
- Canonical Server packageset reviewers: Pending requested
-
Diff: 651 lines (+569/-0)13 files modifieddebian/changelog (+43/-0)
debian/patches/0010-00-debspecific-disable-su-reporting-in-secure.diff.patch (+34/-0)
debian/patches/0011-postfix-Ignore-Resolved-loghost-to-127.0.0.1.patch (+42/-0)
debian/patches/0012-postfix-Handle-backwards-compatible-mode.patch (+74/-0)
debian/patches/0013-secure-Ignore-warnings-about-gnome-keyring-daemon-it.patch (+32/-0)
debian/patches/0014-zz-sys-Suppress-warnings-if-Sys-CPU-or-Sys-MemInfo-a.patch (+52/-0)
debian/patches/0015-pam_unix-Ignore-issues-about-etc-securetty-being-mis.patch (+51/-0)
debian/patches/0017-audit-Apparmor-DENIED-entries-don-t-always-include-p.patch (+28/-0)
debian/patches/0018-audit-Treat-Denial-Errors-same-as-Denied.patch (+28/-0)
debian/patches/0019-exim-Handle-self-signed-certs-warnings.patch (+73/-0)
debian/patches/0020-dhcpd-Ignore-lease-age-under-threshold-messages.patch (+32/-0)
debian/patches/0021-audit-use-the-term-ALLOWED-instead-of-Grants.patch (+69/-0)
debian/patches/series (+11/-0)
- Seth Arnold (community): Approve
- Canonical Server: Pending requested
- Canonical Server Core Reviewers: Pending requested
- Canonical Server packageset reviewers: Pending requested
-
Diff: 649 lines (+561/-1)13 files modifieddebian/changelog (+39/-0)
debian/control (+1/-1)
debian/patches/0011-postfix-Ignore-Resolved-loghost-to-127.0.0.1.patch (+42/-0)
debian/patches/0012-postfix-Handle-backwards-compatible-mode.patch (+74/-0)
debian/patches/0013-secure-Ignore-warnings-about-gnome-keyring-daemon-it.patch (+32/-0)
debian/patches/0014-zz-sys-Suppress-warnings-if-Sys-CPU-or-Sys-MemInfo-a.patch (+52/-0)
debian/patches/0015-pam_unix-Ignore-issues-about-etc-securetty-being-mis.patch (+51/-0)
debian/patches/0016-audit-Flag-apparmor-confinement-drops.patch (+62/-0)
debian/patches/0017-audit-Apparmor-DENIED-entries-don-t-always-include-p.patch (+36/-0)
debian/patches/0018-audit-Handle-apparmor-errors-on-DENIED-messages.patch (+56/-0)
debian/patches/0019-exim-Handle-self-signed-certs-warnings.patch (+73/-0)
debian/patches/0020-dhcpd-Ignore-lease-age-under-threshold-messages.patch (+32/-0)
debian/patches/series (+11/-0)
description: | updated |
description: | updated |
description: | updated |
Changed in logwatch (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in logwatch (Ubuntu Bionic): | |
status: | New → In Progress |
Changed in logwatch (Ubuntu Focal): | |
status: | New → In Progress |
Changed in logwatch (Ubuntu Xenial): | |
importance: | Undecided → Medium |
Changed in logwatch (Ubuntu Bionic): | |
importance: | Undecided → Medium |
Changed in logwatch (Ubuntu Xenial): | |
assignee: | nobody → Bryce Harrington (bryce) |
Changed in logwatch (Ubuntu Focal): | |
importance: | Undecided → Medium |
Changed in logwatch (Ubuntu Groovy): | |
assignee: | nobody → Bryce Harrington (bryce) |
Changed in logwatch (Ubuntu Focal): | |
assignee: | nobody → Bryce Harrington (bryce) |
tags: |
added: verification-done verification-done-bionic verification-done-focal verification-done-xenial removed: verification-needed verification-needed-bionic verification-needed-focal verification-needed-xenial |
Changed in logwatch (Ubuntu Bionic): | |
assignee: | nobody → Bryce Harrington (bryce) |
Thank you already for taking the time to report this bug and helping to make Ubuntu better.
It is really great that you identified and split up all these issues, but given that up to now neither Debian nor Ubuntu add tremendous functional delta to the upstream logwatch content I think the right way to address is to file them upstream (https:/ /sourceforge. net/p/logwatch/ bugs/).
Despite on sourceforge they seem to be still active there - Debian as well as Ubuntu can eventually pick it up on the next merge then.
If you are so kind and file them upstream it would be great if you drop us a note here or even link the upstream bug via "also affects project" above in Launchpad.