http://bugzilla.opensuse.org/show_bug.cgi?id=1087753
http://bugzilla.opensuse.org/show_bug.cgi?id=1087753#c3
--- Comment #3 from Tristan Miller
The Dovecot AppArmor profile indeed assumes that Dovecot uses syslog for logging.
I suppose this is a recent (and unannounced?) change.
Can you please paste the relevant lines from /var/log/audit/audit.log or, if in doubt, attach the whole file?
type=AVC msg=audit(1522747195.548:1944): apparmor="ALLOWED" operation="mknod" profile="/usr/sbin/dovecot" name="/var/log/dovecot.log" pid=7033 comm="dovecot" requested_mask="c" denied_mask="c" fsuid=0 ouid=0 type=AVC msg=audit(1522747195.548:1945): apparmor="ALLOWED" operation="open" profile="/usr/sbin/dovecot" name="/var/log/dovecot.log" pid=7033 comm="dovecot" requested_mask="ac" denied_mask="ac" fsuid=0 ouid=465 type=AVC msg=audit(1522747195.552:1946): apparmor="ALLOWED" operation="file_perm" profile="/usr/sbin/dovecot" name="/var/log/dovecot.log" pid=7033 comm="dovecot" requested_mask="w" denied_mask="w" fsuid=0 ouid=465 type=AVC msg=audit(1522747195.556:1947): apparmor="DENIED" operation="capable" profile="/usr/lib/dovecot/log" pid=7036 comm="log" capability=1 capname="dac_override"
Also, did you specify /var/log/dovecot.log in your dovecot config, or is this part of the default config now?
It's specified in /etc/dovecot/dovecot.conf. I don't know if it's part of the default config. Very likely I was the one that put it there back when I first installed Dovecot a year or two ago. I can live with using syslog for logging, so for me the solution is to simply uncomment the log_path setting from dovecot.conf. -- You are receiving this mail because: You are on the CC list for the bug.