[Touch-packages] [Bug 1675303] [NEW] Incorrectly trying to create tempfile in root directory

keestux Thu, 23 Mar 2017 01:31:02 -0700

Public bug reported:

At startup the server tries to create a temp file in the root directory.
Thanks to apparmor this is denied, but the error is (I think) silently
ignored. In /var/log/syslog there is a message like this:


Mar 23 08:39:17 rotte kernel: [7160216.658291] audit: type=1400
audit(1490254757.814:114): apparmor="DENIED" operation="mknod"
profile="/usr/sbin/dhcpd" name="/tmp-jwdb31E5jQ" pid=20431 comm="dhcpd"
requested_mask="c" denied_mask="c" fsuid=119 ouid=119

Notice name="/tmp-jwdb31E5jQ".

I'm using the DHCP server in combination with LDAP and bind9 in a
FreeIPA setup. But other than that I believe there is nothing special
about it.

In the DHCP source code I couldn't find any code that creates a tempfile
like this, but in bind9 in lib/isc/unix/file.c there is code that fits.
Perhaps the DHCP server indirectly uses that code.

** Affects: isc-dhcp (Ubuntu)
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to isc-dhcp in Ubuntu.
https://bugs.launchpad.net/bugs/1675303

Title:
  Incorrectly trying to create tempfile in root directory

Status in isc-dhcp package in Ubuntu:
  New

Bug description:
  At startup the server tries to create a temp file in the root
  directory. Thanks to apparmor this is denied, but the error is (I
  think) silently ignored. In /var/log/syslog there is a message like
  this:

  Mar 23 08:39:17 rotte kernel: [7160216.658291] audit: type=1400
  audit(1490254757.814:114): apparmor="DENIED" operation="mknod"
  profile="/usr/sbin/dhcpd" name="/tmp-jwdb31E5jQ" pid=20431
  comm="dhcpd" requested_mask="c" denied_mask="c" fsuid=119 ouid=119

  Notice name="/tmp-jwdb31E5jQ".

  I'm using the DHCP server in combination with LDAP and bind9 in a
  FreeIPA setup. But other than that I believe there is nothing special
  about it.

  In the DHCP source code I couldn't find any code that creates a
  tempfile like this, but in bind9 in lib/isc/unix/file.c there is code
  that fits. Perhaps the DHCP server indirectly uses that code.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/isc-dhcp/+bug/1675303/+subscriptions

-- 
Mailing list: https://launchpad.net/~touch-packages
Post to     : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help   : https://help.launchpad.net/ListHelp

[Touch-packages] [Bug 1675303] [NEW] Incorrectly trying to create tempfile in root directory

Reply via email to