Ubuntu
isc-dhcp package

Bug #1870729
Comment #10

Comment 10 for bug 1870729

Revision history for this message

Andrew Welham (andreww-ubuntu) wrote on 2020-04-10:

#10

FIXED

on the backup DHCP server I kept seeing

Apr 10 11:10:08 dhcp-backup kernel: [ 86.045487] audit: type=1400 audit(1586513408.708:44): apparmor="DENIED" operation="open" profile="/usr/sbin/dhcpd" name="/proc/1404/task/1417/comm" pid=1404 comm="dhcpd" requested_mask="w" denied_mask="w" fsuid=0 ouid=0
Apr 10 11:10:08 dhcp-backup kernel: [ 86.047925] audit: type=1400 audit(1586513408.708:45): apparmor="DENIED" operation="open" profile="/usr/sbin/dhcpd" name="/proc/1404/task/1418/comm" pid=1404 comm="dhcpd" requested_mask="w" denied_mask="w" fsuid=0 ouid=0
Apr 10 11:10:08 dhcp-backup kernel: [ 86.048075] audit: type=1400 audit(1586513408.708:46): apparmor="DENIED" operation="open" profile="/usr/sbin/dhcpd" name="/proc/1404/task/1419/comm" pid=1404 comm="dhcpd" requested_mask="w" denied_mask="w" fsuid=0 ouid=0

Changing
/etc/apparmor.d/usr.sbin.dhcpd

# owner @{PROC}/[0-9]*/task/[0-9]*/comm r,
owner @{PROC}/[0-9]*/task/[0-9]*/comm rw,

then reloading the policy into the kernel with: sudo apparmor_parser -r /etc/apparmor.d/usr.sbin.dhcpd

resolved the issue

Ubuntuisc-dhcp package

Comment 10 for bug 1870729

Ubuntu
isc-dhcp package