[Bug 1434999] [NEW] Creating a new VM in virt-manager fails because of apparmor permissions

Launchpad Bug Tracker 1434999 at bugs.launchpad.net
Tue Mar 24 14:17:49 UTC 2015 

You have been subscribed to a public bug:

When creating a new VM, it fails because of insufficient permissions.
Adding permissions for /dev/shm/lttng-ust-wait-5 and
/var/lib/libvirt/qemu/channel/target to /etc/apparmor.d/abstractions
/libvirt-qemu seems to solve it, although there are still DENIED
messages in the logs:

[  +0,208881] audit: type=1400 audit(1427028845.637:313): apparmor="DENIED" operation="open" profile="/usr/lib/libvirt/virt-aa-helper" name="/dev/shm/lttng-ust-wait-5" pid=9562 comm="virt-aa-helper" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
[  +0,000045] audit: type=1400 audit(1427028845.637:314): apparmor="DENIED" operation="open" profile="/usr/lib/libvirt/virt-aa-helper" name="/dev/shm/lttng-ust-wait-5" pid=9562 comm="virt-aa-helper" requested_mask="r" denied_mask="r" fsuid=0 ouid=0

I know literally nothing about apparmor, but I hope someone who does can
look into this and fix it properly before release of 15.04. Please
contact me if any more information is needed, I will be happy to help as
much as I can.

ProblemType: Bug
DistroRelease: Ubuntu 15.04
Package: virt-manager 1:1.0.1-4ubuntu3
ProcVersionSignature: Ubuntu 3.19.0-9.9-generic 3.19.1
Uname: Linux 3.19.0-9-generic x86_64
ApportVersion: 2.16.2-0ubuntu4
Architecture: amd64
CurrentDesktop: XFCE
Date: Sun Mar 22 14:00:40 2015
EcryptfsInUse: Yes
InstallationDate: Installed on 2015-03-08 (13 days ago)
InstallationMedia: Xubuntu 14.10 "Utopic Unicorn" - Release amd64 (20141022.1)
PackageArchitecture: all
SourcePackage: virt-manager
UpgradeStatus: Upgraded to vivid on 2015-03-21 (0 days ago)

** Affects: libvirt (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: amd64 apport-bug third-party-packages vivid
-- 
Creating a new VM in virt-manager fails because of apparmor permissions
https://bugs.launchpad.net/bugs/1434999
You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libvirt in Ubuntu.

More information about the Ubuntu-server-bugs mailing list