@knz, can you verify this still exists on your system and if so:
* Provide the version of ntp and apparmor you are using
* Command or what you do to get the error to show up
I was unable to reproduce on both xenial and yakkety. The versions I had available to me are below and the only DENIED messages from /var/log/kern.log are below in each instance when I ran 'sudo ntpd'
yakkety
---
powersj@ubuntu:/var/log$ dpkg -l | grep ntp
ii ntp 1:4.2.8p8+dfsg-1ubuntu1 amd64 Network Time Protocol daemon and utility programs
powersj@ubuntu:/var/log$ dpkg -l | grep apparmor
ii apparmor 2.10.95-4ubuntu4 amd64 user-space parser utility for AppArmor
@knz, can you verify this still exists on your system and if so:
* Provide the version of ntp and apparmor you are using
* Command or what you do to get the error to show up
I was unable to reproduce on both xenial and yakkety. The versions I had available to me are below and the only DENIED messages from /var/log/kern.log are below in each instance when I ran 'sudo ntpd'
yakkety ubuntu: /var/log$ dpkg -l | grep ntp dfsg-1ubuntu1 amd64 Network Time Protocol daemon and utility programs ubuntu: /var/log$ dpkg -l | grep apparmor
---
powersj@
ii ntp 1:4.2.8p8+
powersj@
ii apparmor 2.10.95-4ubuntu4 amd64 user-space parser utility for AppArmor
Sep 7 17:44:17 ubuntu kernel: [ 138.147239] audit: type=1400 audit(147328465 7.365:17) : apparmor="DENIED" operation="open" profile= "/usr/sbin/ ntpd" name="/ usr/local/ sbin/" pid=2179 comm="ntpd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 7.365:18) : apparmor="DENIED" operation="open" profile= "/usr/sbin/ ntpd" name="/ usr/local/ bin/" pid=2179 comm="ntpd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
Sep 7 17:44:17 ubuntu kernel: [ 138.147316] audit: type=1400 audit(147328465
xenial dfsg-3ubuntu5. 1 amd64 Network Time Protocol daemon and utility programs
---
ubuntu@xenial:~$ dpkg -l | grep ntp
ii ntp 1:4.2.8p4+
ubuntu@xenial:~$ dpkg -l | grep apparmor
ii apparmor 2.10.95-0ubuntu2.2 amd64 user-space parser utility for AppA
Sep 7 22:04:18 ubuntu kernel: [ 60.182587] audit: type=1400 audit(147328585 8.665:15) : apparmor="DENIED" operation="open" profile= "/usr/sbin/ ntpd" name="/ usr/local/ sbin/" pid=3265 comm="ntpd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 8.665:16) : apparmor="DENIED" operation="open" profile= "/usr/sbin/ ntpd" name="/ usr/local/ bin/" pid=3265 comm="ntpd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
Sep 7 22:04:18 ubuntu kernel: [ 60.182675] audit: type=1400 audit(147328585