[Bug 432581] [NEW] [karmic] libvirt/apparmor breaks non-default serial, console, kernel and initrd
Jamie Strandboge
jamie at ubuntu.com
Fri Sep 18 17:19:11 BST 2009
Public bug reported:
This is related to bug #431090. Currently, the apparmor security driver updates the disks, pid, monitor file and log. It does not honor the following:
<os>
...
<kernel>/var/lib/eucalyptus/instances/admin/i-516E092C/kernel</kernel>
<initrd>/var/lib/eucalyptus/instances/admin/i-516E092C/ramdisk</initrd>
...
</os>
...
<serial type='file'>
<source path='/var/lib/eucalyptus/instances/admin/i-516E092C/console.log'/>
<target port='0'/>
</serial>
<console type='file'>
<source path='/var/lib/eucalyptus/instances/admin/i-516E092C/console.log'/>
<target port='0'/>
</console>
...
This is a regression over Jaunty. The fix is to make virt-aa-helper use
the XML. This approach is recommended by upstream as well before they
will accept the apparmor security driver. Once I get the patch approved
upstream, I can rebase the Karmic patch and this bug can be closed.
** Affects: libvirt (Ubuntu)
Importance: High
Assignee: Jamie Strandboge (jdstrand)
Status: In Progress
** Tags: regression-potential
** Changed in: libvirt (Ubuntu)
Importance: Undecided => High
** Changed in: libvirt (Ubuntu)
Status: New => In Progress
** Changed in: libvirt (Ubuntu)
Milestone: None => ubuntu-9.10-beta
** Changed in: libvirt (Ubuntu)
Assignee: (unassigned) => Jamie Strandboge (jdstrand)
--
[karmic] libvirt/apparmor breaks non-default serial, console, kernel and initrd
https://bugs.launchpad.net/bugs/432581
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libvirt in ubuntu.
More information about the Ubuntu-server-bugs
mailing list