tun" pid=490601 comm="swanctl" requested_mask="wr" denied_mask="wr" fsuid=0 ouid=0

Simon Déziel Mon, 27 Apr 2020 16:16:00 -0700

I suspect you using kernel-libipsec which would explain why you are
running into this, right? Could you please try the following:


cat << EOF | sudo tee -a /etc/apparmor.d/local/usr.sbin.swanctl
  # libcharon-extra-plugins: kernel-libipsec
  /dev/net/tun              rw,
EOF
sudo apparmor_parser -rTW /etc/apparmor.d/usr.sbin.swanctl

Then restart strongswan?

If that fixes the problem, I'll submit a pull request. Setting as
incomplete until then.

** Changed in: strongswan (Ubuntu)
       Status: New => Incomplete

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1875504

Title:
  apparmor="DENIED" operation="file_inherit" profile="/usr/sbin/swanctl"
  name="/dev/net/tun" pid=490601 comm="swanctl" requested_mask="wr"
  denied_mask="wr" fsuid=0 ouid=0

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/strongswan/+bug/1875504/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1875504] Re: apparmor="DENIED" operation="file_inherit" profile="/usr/sbin/swanctl" name="/dev/net/tun" pid=490601 comm="swanctl" requested_mask="wr" denied_mask="wr" fsuid=0 ouid=0

Reply via email to