Paride Legovini wronte on 19/10/2023:
> Luigi Baldoni wrote on 15/10/2023:
> > Same deal here, but on bookworm using systemd and the installation is some
> > 10 days old.
>
> Hello Luigi, that is likely a different issue. Can you please file a ne
> bug report, describing the problem you are facing in more detail, possibly
> providing steps to reproduce from a clean Bookworm system?
Unfortunately (or not) I couldn't reproduce it anymore, even on a live debian
VM.
For future reference, the error was:
audit[7919]: AVC apparmor="DENIED" operation="mknod" profile="kea-dhcp4"
name="/run/kea/logger_lockfile" pid=7919 comm="kea-dhcp4" requested_mask="c"
denied_mask="c" fsuid=107 ouid=107
which was fixed by this patch:
diff -udpr etc/apparmor.d.orig/usr.sbin.kea-dhcp4
etc/apparmor.d/usr.sbin.kea-dhcp4
--- etc/apparmor.d.orig/usr.sbin.kea-dhcp4 2023-10-20 13:17:59.724793546
+0200
+++ etc/apparmor.d/usr.sbin.kea-dhcp4 2023-10-20 13:18:54.981066011 +0200
@@ -27,7 +27,7 @@ profile kea-dhcp4 /usr/sbin/kea-dhcp4 {
/usr/sbin/kea-lfc Px,
owner /run/kea/kea-dhcp4.kea-dhcp4.pid w,
- owner /run/lock/kea/logger_lockfile rwk,
+ owner /run/{lock,}/kea/logger_lockfile rwk,
# Control sockets
# Before LP: #1863100, these were in /tmp. For compatibility, let's keep both
diff -udpr etc/apparmor.d.orig/usr.sbin.kea-lfc etc/apparmor.d/usr.sbin.kea-lfc
--- etc/apparmor.d.orig/usr.sbin.kea-lfc 2023-10-20 13:17:59.724793546
+0200
+++ etc/apparmor.d/usr.sbin.kea-lfc 2023-10-20 13:19:04.205111517 +0200
@@ -11,7 +11,7 @@ profile kea-lfc /usr/sbin/kea-lfc {
/usr/sbin/kea-lfc mr,
owner /run/kea/logger_lockfile rwk,
- owner /run/lock/kea/logger_lockfile rw,
+ owner /run/{lock,}/kea/logger_lockfile rwk,
# Control sockets
# Before LP: #1863100, these were in /tmp. For compatibility, let's keep both
