Package: haveged Version: 1.9.1-6 Severity: important Tags: patch Hi,
haveged silently fails to start on one of my machines, seemingly due to apparmor. From /var/log/syslog after unsucessfully trying to start haveged: Oct 22 15:40:26 someone haveged: haveged starting up Oct 22 15:40:26 someone kernel: [24678702.682596] audit: type=1400 audit(1540215626.982:65757): apparmor="DENIED" operation="mknod" profile="/usr/sbin/haveged" name="/run/haveged.pid" pid=7421 comm="haveged" requested_mask="c" denied_mask="c" fsuid=0 ouid=0 What helped was adding the line /run/haveged.pid w, to /etc/apparmor.d/local/usr.sbin.haveged, so you should probably add that line to /etc/apparmor.d/usr.sbin.haveged. -- System Information: Debian Release: buster/sid APT prefers testing-debug APT policy: (500, 'testing-debug'), (500, 'testing'), (300, 'unstable'), (299, 'unstable-debug'), (210, 'experimental'), (209, 'experimental-debug'), (110, 'buildd-unstable'), (105, 'buildd-experimental') Architecture: amd64 (x86_64) Kernel: Linux 4.14.0-3-amd64 (SMP w/1 CPU core) Locale: LANG=en_DK.UTF-8, LC_CTYPE=en_DK.UTF-8 (charmap=UTF-8), LANGUAGE=en_DK.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) LSM: AppArmor: enabled Versions of packages haveged depends on: ii init-system-helpers 1.54 ii libc6 2.27-6 ii libhavege1 1.9.1-6 ii lsb-base 9.20170808 haveged recommends no packages. Versions of packages haveged suggests: ii apparmor 2.13-8 -- no debconf information
