[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-22 Thread Launchpad Bug Tracker
This bug was fixed in the package ntp - 1:4.2.8p4+dfsg-3ubuntu5.8 --- ntp (1:4.2.8p4+dfsg-3ubuntu5.8) xenial; urgency=medium * d/apparmor-profile: fix denial checking for running ntpdate (LP: #1749389) -- Christian Ehrhardt Wed, 14 Feb 2018

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-22 Thread Launchpad Bug Tracker
This bug was fixed in the package ntp - 1:4.2.8p10+dfsg-5ubuntu3.2 --- ntp (1:4.2.8p10+dfsg-5ubuntu3.2) artful; urgency=medium * d/apparmor-profile: avoid denies on argument checks (LP: #1741227) * d/apparmor-profile: fix denial checking for running ntpdate (LP: #1749389) --

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-14 Thread ChristianEhrhardt
Verification of proposed: xenial/artful as is on restart: [2020349.483870] audit: type=1400 audit(1518622585.386:4875): apparmor="DENIED" operation="file_inherit" namespace="root//lxd-xenial-test_" profile="/usr/sbin/ntpd" name="/run/lock/ntpdate" pid=16784 comm="ntpd" requested_mask="w"

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-14 Thread Chris J Arges
Hello ChristianEhrhardt, or anyone else affected, Accepted ntp into xenial-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/ntp/1:4.2.8p4+dfsg- 3ubuntu5.8 in a few hours, and then in the -proposed repository. Please help us by testing this new

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-14 Thread ChristianEhrhardt
Bionic - ok SRU Template - ok Debdiff for X/T checked - ok Tested X/A upload from ppa - ok. I Identified another issue in the log as bug 1670408 which needs a fix in apparmor - not ntp. That means this is ok to be uploaded (not gated by that finding). ** Description changed: [Impact] - *

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-14 Thread ChristianEhrhardt
fix in SRU queue (Atrful/Xenial) for review by the SRU Team -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1749389 Title: ntpdate lock apparmor deny To manage notifications about this bug go to:

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-14 Thread ChristianEhrhardt
Missed the right format in changelog :-/, but this is fixed in Bionic by https://launchpad.net/ubuntu/+source/ntp/1:4.2.8p10+dfsg-5ubuntu7 ** Changed in: ntp (Ubuntu) Status: Triaged => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-14 Thread ChristianEhrhardt
auto profile replace on upgrade - ok restart without apparmor issues - ok -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1749389 Title: ntpdate lock apparmor deny To manage notifications about this

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-14 Thread ChristianEhrhardt
Fix is trivial, but you never know - tetsing the bionic change in https://launchpad.net/~ci-train-ppa-service/+archive/ubuntu/3144 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1749389 Title:

[Bug 1749389] Re: ntpdate lock apparmor deny

2018-02-14 Thread ChristianEhrhardt
Note: When we open up a SRU for ntp apparmor we should include the minot (bot on its own not SRu worthy) fix of bug 1741227 ** Description changed: - On start/restart nto has an error in apparmor due to the locking it - tries to avoid issues running concurrently with ntpdate. + [Impact] + + *