[Bug 738905] New: dnsmasq TFTP server broken
https://bugzilla.novell.com/show_bug.cgi?id=738905 https://bugzilla.novell.com/show_bug.cgi?id=738905#c0 Summary: dnsmasq TFTP server broken Classification: openSUSE Product: openSUSE 11.4 Version: Final Platform: x86 OS/Version: openSUSE 11.4 Status: NEW Severity: Major Priority: P5 - None Component: Network AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: cab902@yahoo.com QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux i686; rv:9.0) Gecko/20100101 Firefox/9.0 If tftp server for dnsmasq is configured it won't serve the boot file. Log says: Dec 27 17:12:31 yonah dnsmasq-tftp[9260]: cannot access /srv/tftpboot/pxelinux.0 : Permission denied Files and directories have all the needed permissions (world readability, etc.) but it still won't access it. dnsmasq runs under it's own user: dnsmasq:x:102:65534:dnsmasq:/var/lib/empty:/bin/false but it won't read files under either dnsmasq or root user with world readability. tftp-secure option isn't enabled but even with it and files set to user dnsmasq and right permissions it gives the same error. Reproducible: Always Steps to Reproduce: 1. configure dnsmasq (dhcp, bootp and tftp options) 2. run PXE on another computer in network or 1. configure dnsmasq tftp option 2. run tftp client and get file Actual Results: Dec 27 17:12:31 yonah dnsmasq-tftp[9260]: cannot access /srv/tftpboot/pxelinux.0 : Permission denied Expected Results: File is served. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c
zj jia
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c1
Martin Vidner
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c2
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c3
--- Comment #3 from Bernhard Wiedemann
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c4
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c
Jeff Mahoney
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c5
Miklos Szeredi
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c
Miklos Szeredi
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c6
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c7
Miklos Szeredi
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c8
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c9
Miklos Szeredi
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c10
--- Comment #10 from Christian Boltz
Domagoj, can you please add the following two lines to /etc/apparmor.d/local/usr.sbin.dnsmasq:
/srv/tftpboot/ r, /srv/tftpboot/* r,
I'm not familiar with tftp, so let me ask a silly question: Does /srv/tftpboot/ contain subdirectories? Your rule allows to read only files directly in /srv/tftpboot/ If subdirectories exist, you want to use this: (.../** includes files in subdirectories) /srv/tftpboot/ r, /srv/tftpboot/** r, -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c11
--- Comment #11 from Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c12
Miklos Szeredi
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c13
--- Comment #13 from Christian Boltz
https://bugzilla.novell.com/show_bug.cgi?id=738905
https://bugzilla.novell.com/show_bug.cgi?id=738905#c14
--- Comment #14 from Bernhard Wiedemann
participants (1)
-
bugzilla_noreply@novell.com