"I was able to resolve the issue by applying the following changes:
```
jehos@gogunbuntu:~$ cat /etc/apparmor.d/local/openvpn
file r @{run}/NetworkManager/cert/@{rand6},
jehos@gogunbuntu:~$ sudo apparmor_parser -r /etc/apparmor.d/openvpn
```
Currently, a failure at any point in the 'Global -> Local' access chain
stops the entire process. It might be better to allow the connection as
long as a valid certificate is loaded, though I acknowledge the security
necessity for specific ownership and paths.
If AppArmor fails to keep up with changes in the permissions required by
OpenVPN, these types of regressions are likely to recur.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2143810
Title:
Cannot pre-load keyfile (/run/NetworkManager/cert/ )
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2143810/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
