apparmor ntpd profile problem [64238.000768] audit: type=1400 audit(1513904231.500:45): apparmor="DENIED" operation="sendmsg" info="Failed name lookup - disconnected path" error=-13 profile="/usr/sbin/ntpd" name="run/systemd/journal/dev-log" pid=30945 comm="ntpd" requested_mask="w" denied_mask="w" fsuid=0 ouid=0

Bug #1739943 reported by Robert Dinse on 2017-12-24
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
ntp (Ubuntu)
Undecided
Unassigned

Bug Description

It would seem apparmor is denying ntpd access to log:
[64238.000768] audit: type=1400 audit(1513904231.500:45): apparmor="DENIED" operation="sendmsg" info="Failed name lookup - disconnected path" error=-13 profile="/usr/sbin/ntpd" name="run/systemd/journal/dev-log" pid=30945 comm="ntpd" requested_mask="w" denied_mask="w" fsuid=0 ouid=0

ProblemType: Bug
DistroRelease: Ubuntu 17.10
Package: apparmor 2.11.0-2ubuntu17
ProcVersionSignature: Ubuntu 4.13.0-22.25-lowlatency 4.13.13
Uname: Linux 4.13.0-22-lowlatency x86_64
ApportVersion: 2.20.7-0ubuntu3.6
Architecture: amd64
CurrentDesktop: MATE
Date: Sun Dec 24 01:02:15 2017
InstallationDate: Installed on 2017-08-14 (132 days ago)
InstallationMedia: Ubuntu-MATE 17.04 "Zesty Zapus" - Release amd64 (20170412)
KernLog:

ProcKernelCmdline: BOOT_IMAGE=/vmlinuz-4.13.0-22-lowlatency root=UUID=a3646d61-5a64-4011-9bd5-bb806d3e3e8c ro quiet splash vt.handoff=7
SourcePackage: apparmor
Syslog:

UpgradeStatus: Upgraded to artful on 2017-10-19 (65 days ago)

Robert Dinse (nanook) wrote :
Jamie Strandboge (jdstrand) wrote :

The profile needs attach_disconnected.

affects: apparmor (Ubuntu) → ntp (Ubuntu)

Fixed in >=Bionic by 1727202, since it is not a fatal error and a config file change can silence it I do not plan on an SRU.

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers