[Bug 1675303] Re: Incorrectly trying to create tempfile in root directory
Seth Arnold
1675303 at bugs.launchpad.net
Fri Mar 24 03:49:54 UTC 2017
Is dhcpd running in a chroot? Is the AppArmor profile using
'attach_disconnected'? (I'm guessing perhaps these aren't being created
in the real root; these two combined could give the appearance of
creating files in the root.)
Thanks
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to isc-dhcp in Ubuntu.
https://bugs.launchpad.net/bugs/1675303
Title:
Incorrectly trying to create tempfile in root directory
Status in isc-dhcp package in Ubuntu:
New
Bug description:
At startup the server tries to create a temp file in the root
directory. Thanks to apparmor this is denied, but the error is (I
think) silently ignored. In /var/log/syslog there is a message like
this:
Mar 23 08:39:17 rotte kernel: [7160216.658291] audit: type=1400
audit(1490254757.814:114): apparmor="DENIED" operation="mknod"
profile="/usr/sbin/dhcpd" name="/tmp-jwdb31E5jQ" pid=20431
comm="dhcpd" requested_mask="c" denied_mask="c" fsuid=119 ouid=119
Notice name="/tmp-jwdb31E5jQ".
I'm using the DHCP server in combination with LDAP and bind9 in a
FreeIPA setup. But other than that I believe there is nothing special
about it.
In the DHCP source code I couldn't find any code that creates a
tempfile like this, but in bind9 in lib/isc/unix/file.c there is code
that fits. Perhaps the DHCP server indirectly uses that code.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/isc-dhcp/+bug/1675303/+subscriptions
More information about the foundations-bugs
mailing list