subject:"\[Bug 1483071\] Re\: Error creating new VM with OVMF"

[Bug 1483071] Re: Error creating new VM with OVMF

2017-02-26 Thread Mathew Hodson

The package was removed due to its SRU bug(s) not being verified in a
timely fashion.

** Changed in: libvirt (Ubuntu Wily)
   Status: Fix Committed => Won't Fix

** Tags removed: removal-candidate verification-needed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-11-21 Thread Gannet

I'm sorry but I have no trusty VM machines anymore to check it.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-04-06 Thread Mathew Hodson

** Changed in: libvirt (Ubuntu Trusty)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-03-03 Thread Brian Murray

Hello Gannet, or anyone else affected,

Accepted libvirt into trusty-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/libvirt/1.2.2-0ubuntu13.1.18 in a
few hours, and then in the -proposed repository.

Please help us by testing this new package.  See
https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to
enable and use -proposed.  Your feedback will aid us getting this update
out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug,
mentioning the version of the package you tested, and change the tag
from verification-needed to verification-done. If it does not fix the
bug for you, please add a comment stating that, and change the tag to
verification-failed.  In either case, details of your testing will help
us make a better decision.

Further information regarding the verification process can be found at
https://wiki.ubuntu.com/QATeam/PerformingSRUVerification .  Thank you in
advance!

** Changed in: libvirt (Ubuntu Trusty)
   Status: Confirmed => Fix Committed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-02-25 Thread Gannet

Hello. Sorry, I can't check in Wily. I'm using Xenial already and
finally it works in it! Thanks.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-02-25 Thread Brian Murray

Hello Gannet, or anyone else affected,

Accepted libvirt into wily-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/libvirt/1.2.16-2ubuntu11.15.10.4 in
a few hours, and then in the -proposed repository.

Please help us by testing this new package.  See
https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to
enable and use -proposed.  Your feedback will aid us getting this update
out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug,
mentioning the version of the package you tested, and change the tag
from verification-needed to verification-done. If it does not fix the
bug for you, please add a comment stating that, and change the tag to
verification-failed.  In either case, details of your testing will help
us make a better decision.

Further information regarding the verification process can be found at
https://wiki.ubuntu.com/QATeam/PerformingSRUVerification .  Thank you in
advance!

** Changed in: libvirt (Ubuntu Wily)
   Status: Confirmed => Fix Committed

** Tags added: verification-needed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-02-10 Thread Serge Hallyn

Should be in the next version that gets SRUd, but that likely won't
happen until after the 16.04 feature freeze (in 8 days).

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-02-10 Thread Gannet

In what libvirt version it will be fixed ?

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-18 Thread Launchpad Bug Tracker

Status changed to 'Confirmed' because the bug affects multiple users.

** Changed in: libvirt (Ubuntu Wily)
   Status: New => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-18 Thread Launchpad Bug Tracker

Status changed to 'Confirmed' because the bug affects multiple users.

** Changed in: libvirt (Ubuntu Trusty)
   Status: New => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-12 Thread Serge Hallyn

** Also affects: libvirt (Ubuntu Trusty)
   Importance: Undecided
   Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-12 Thread Gannet

Since trusty is LTS, I think this wouldn't  be superfluous.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-11 Thread Serge Hallyn

** Description changed:

+ =
+ SRU Justification
+ Impact: cannot start VMs with UEFI
+ Test case:
+ Regression potential: virt-aa-helper is modified to add the nvram files to 
the allowed list, there should be no regressions.
+ =
+ 
  When I'm trying to create new VM through virt-manager with OVMF firmware
  instead of BIOS an error appears:
  
  Failed to complete an installation: «internal error: cannot load
  AppArmor profile «libvirt-0dc7297d-a474-47ed-88b0-026f1d6ae2a4»»
  
  Traceback (most recent call last):
    File "/usr/share/virt-manager/virtManager/asyncjob.py", line 89, in 
cb_wrapper
  callback(asyncjob, *args, **kwargs)
    File "/usr/share/virt-manager/virtManager/create.py", line 1873, in 
do_install
  guest.start_install(meter=meter)
    File "/usr/share/virt-manager/virtinst/guest.py", line 414, in start_install
  noboot)
    File "/usr/share/virt-manager/virtinst/guest.py", line 478, in _create_guest
  dom = self.conn.createLinux(start_xml or final_xml, 0)
    File "/usr/lib/python2.7/dist-packages/libvirt.py", line 3497, in 
createLinux
  if ret is None:raise libvirtError('virDomainCreateLinux() failed', 
conn=self)
  libvirtError: internal error: cannot load AppArmor profile 
«libvirt-0dc7297d-a474-47ed-88b0-026f1d6ae2a4»
  
  There is an appropriate lines at the end of /etc/libvirt/qemu.conf:
  
  nvram = [ 
"/usr/share/OVMF/OVMF_CODE-pure-efi.fd:/usr/share/OVMF/OVMF_VARS-pure-efi.fd",
    
"/usr/share/OVMF/OVMF_CODE-with-csm.fd:/usr/share/OVMF/OVMF_VARS-with-csm.fd" ]
  
  Surely those files are present in /usr/share/OVMF/.
  
  Kbuntu 15.10 Wily
  Linux 4.2RC6 x86_64
  virt-manager 1.2.1
  libvirt 1.2.16
  qemu 2.3

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-11 Thread Serge Hallyn

The patch to fix this should be 91fdcefa7f145c1c39acc8e9a44fbfbf11568e54
upstream.  It is in the xenial package.  So I'm marking this fix
released and SRUing for wily.

Do we need this SRU'd to trusty too?


** Also affects: libvirt (Ubuntu Wily)
   Importance: Undecided
   Status: New

** Changed in: libvirt (Ubuntu Wily)
   Importance: Undecided => High

** Changed in: libvirt (Ubuntu)
   Status: Confirmed => Fix Released

** Changed in: libvirt (Ubuntu)
   Importance: Medium => High

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-08 Thread Ryan Harper

Ran into this bug trying to test running under UEFI.

I was able to get the VM booting (but it dropped into the EFI shell, no
quite sure, but possible related to the use of the two files versus the
single-combined file).  Here's how I reproduced the issue:

On xenial amd64 host,

- sudo add-apt-repository multiverse
- sudo apt install uvtool uvtool-libvirt ovmf
- uvt-simplestreams-libvirt sync --source http://cloud-images.ubuntu.com/daily 
release=xenial arch=amd64
- uvt-kvm create --memory 1024 --cpu 4 --disk 10 x1 release=xenial arch=amd64
- virsh stop x1
- virsh edit x1
Add inside  section:

  ...
  /usr/share/OVMF/OVMF_CODE.fd
  /var/lib/libvirt/qemu/nvram/x1_VARS.fd
  ...

- virsh start x1
... failed to start x1

This bug suggests to update the aa profile, but as already mentioned, this
complained about loading the profile.  This comment here[1] helped me debug
and diagnose the issue.  It appears that /usr/share is hardcoded as a no-go
place for libvirt/qemu to read from and hence aa denies access to the files.

I debugged that with:

% virsh dumpxml x1 | sudo /usr/lib/libvirt/virt-aa-helper -c -u libvirt-`virsh 
domuuid x1` x1 
virt-aa-helper: error: /usr/share/OVMF/OVMF_CODE.fd
virt-aa-helper: error: skipped restricted file
virt-aa-helper: error: invalid VM definition

Even adding:

  /usr/share/OVMF/OVMF_CODE.fd r,

to the template didn't help either.  The comment from jdstrand made me think 
this was
hardcoded and couldn't be changed, so decided to relocate the OVMF files to a 
place where 
libvirt and qemu can read them.  

sudo cp /usr/share/OVMF/OVMF* /var/lib/uvtool/libvirt/images/

And updated the x1 xml with the correct path to the OVFM files, then re-
run the virt-aa-helper:

(funkmetal) libvirt % virsh dumpxml x1 | sudo /usr/lib/libvirt/virt-aa-helper 
-c -u libvirt-`virsh domuuid x1` x1 
(funkmetal) libvirt % cat libvirt-`virsh domuuid x1`.files
# DO NOT EDIT THIS FILE DIRECTLY. IT IS MANAGED BY LIBVIRT.
  "/var/log/libvirt/**/x1.log" w,
  "/var/lib/libvirt/qemu/domain-x1/monitor.sock" rw,
  "/var/run/libvirt/**/x1.pid" rwk,
  "/run/libvirt/**/x1.pid" rwk,
  "/var/run/libvirt/**/*.tunnelmigrate.dest.x1" rw,
  "/run/libvirt/**/*.tunnelmigrate.dest.x1" rw,
  "/var/lib/uvtool/libvirt/images/x1.qcow" rw,
  
"/var/lib/uvtool/libvirt/images/x-uvt-b64-Y29tLnVidW50dS5jbG91ZC5kYWlseTpzZXJ2ZXI6MTYuMDQ6YW1kNjQgMjAxNjAxMDU="
 r,
  # don't audit writes to readonly files
  deny 
"/var/lib/uvtool/libvirt/images/x-uvt-b64-Y29tLnVidW50dS5jbG91ZC5kYWlseTpzZXJ2ZXI6MTYuMDQ6YW1kNjQgMjAxNjAxMDU="
 w,
  "/var/lib/uvtool/libvirt/images/x1-ds.qcow" rw,
  "/var/lib/uvtool/libvirt/images/OVMF_CODE.fd" r,
  # don't audit writes to readonly files
  deny "/var/lib/uvtool/libvirt/images/OVMF_CODE.fd" w,
  "/var/lib/libvirt/qemu/nvram/x1_VARS.fd" rw,
  /dev/vhost-net rw,
(funkmetal) libvirt % cat libvirt-`virsh domuuid x1`
#
# This profile is for the domain whose UUID matches this file.
#

#include 

profile libvirt-10a7b819-a30e-4155-b61f-4402fc2daed2 {
  #include 
  #include 

}


1. https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/77/comments/34

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-07 Thread Tuomas Heino

Reproduced the issue(*) with Xenial / 1.2.21-2ubuntu4.

Following Zycorax's line of thinking(**), binary-patched virt-aa-helper to get 
rid of the error.
$ perl -pi -e s/ovmf/OVMF/ virt-aa-helper

*: selecting UEFI when creating vm with virt-manager fails to create vm and 
giving the apparmor profile load error instead.
**: as well as further background discussions on the topic like 
https://www.redhat.com/archives/virt-tools-list/2014-September/msg00141.html 
referring to unified OVMF.fd as a dead-end solution.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2016-01-03 Thread Darth Revan

Thnak you @zycorax-0. That solved the problem for me.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-11-16 Thread Serge Hallyn

@jpvr,

The patch for virt-aa-helper to handle the nvram files is upstream, and
should hit xenial with the next merge.  Then you shouldn't need the
template workaround.

** Changed in: libvirt (Ubuntu)
   Importance: Undecided => Medium

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-11-16 Thread Gannet

Adding this line

>  /var/lib/libvirt/qemu/nvram/*_VARS.fd rw,

into

/etc/apparmor.d/libvirt/TEMPLATE.qemu

didn't helped.

Interesting things: error messages says it can't load AppArmor profile
"libvirt-203121ff-6933-4707-a851-3de158af5968". But it is really absent
in

/etc/apparmor.d/libvirt

So why it is absent and what application should create it and when ?

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-11-16 Thread Jean-Pierre van Riel

A work-arround is to (ab)use the template file
/etc/apparmor.d/libvirt/TEMPLATE.qemu

---
profile LIBVIRT_TEMPLATE {
  #include 
  /var/lib/libvirt/qemu/nvram/*_VARS.fd rw,
}
---

I'm not too familiar with AppArmour, nor kvm/libvirt's security model,
but I assume the whole point of virt-aa-helper is to create custom per
VM apparmor profiles with domain specific file names, so *_VARS.fd is
technically insecure given all guest processes could in theory write to
the EFI/OVFM NVRAM image files and proper guest vs guest isolation
requires the fix in virt-aa-helper.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-11-16 Thread Jean-Pierre van Riel

I have encoutered a similar bug related to the libvirt per guest
AppArmor profile helper, libvirt-aa-helper


Virtual Machine Manager GUI reports
---
Error starting domain: internal error: process exited while connecting to 
monitor: 2015-11-16T09:39:50.572025Z qemu-system-x86_64: -drive 
file=/var/lib/libvirt/qemu/nvram
...
bvirtError: internal error: process exited while connecting to monitor: 
2015-11-16T09:39:50.572025Z qemu-system-x86_64: -drive 
file=/var/lib/libvirt/qemu/nvram/Win10Raw_VARS.fd,if=pflash,format=raw,unit=1: 
Could not open '/var/lib/libvirt/qemu/nvram/Win10Raw_VARS.fd': Permission denied
---

And here is the AppArmour error seen in dmesg
---
[ 5576.944602] audit: type=1400 audit(1447663737.977:80): apparmor="DENIED" 
operation="open" profile="libvirt-bf7063cc-3a6a-4359-88a4-c84bb625a421" 
name="/var/lib/libvirt/qemu/nvram/Win10Raw_VARS.fd" pid=2802 
comm="qemu-system-x86" requested_mask="wr" denied_mask="wr" fsuid=123 ouid=123
---

As per http://wiki.apparmor.net/index.php/Libvirt, virt-aa-helper is
used and as per https://www.redhat.com/archives/libvir-
list/2015-August/msg00534.html there's a bugfix. However, it still
doesn't include and cater for using NVRAM VAR OVMF files generated at
/var/lib/libvirt/qemu/nvram/_VARS.fd.

The fix for this seems to be in this commit:
http://libvirt.org/git/?p=libvirt.git;a=commit;h=91fdcefa7f145c1c39acc8e9a44fbfbf11568e54

The issue is that the libvirtd version in the ubuntu repo for 15.10 is
too old to include the patch (i.e. v1.2.16)?

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-10-16 Thread Gannet

Also I wanna note again that I did:

systemctl stop apparmor.service

But it didn't helped.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Re: [Bug 1483071] Re: Error creating new VM with OVMF

2015-10-15 Thread Serge Hallyn

Hi Seth,

Quoting Seth Arnold (1483...@bugs.launchpad.net):
> Thanks Gannet; all your error messages mentioned AppArmor, so I expected
> to see some DENIED lines from AppArmor preventing libvirt access to
> files or resources.

Actually I'm not sure.  The error comes in the loading of the apparmor
policy, so I'd assume this is a apparmor userspace problem, well bad
aa policy generated by libvirt I assume)

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-10-15 Thread Seth Arnold

Thanks Gannet; all your error messages mentioned AppArmor, so I expected
to see some DENIED lines from AppArmor preventing libvirt access to
files or resources.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-10-15 Thread Gannet

Note, that previous audit.log I've got after installing auditd and tried
to create an VM with OVMF and recieved an arror that noted in comment
#11. Then I looked into /var/log/audit/audit.log file and here it is
content in comment #15.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-10-15 Thread Gannet

Also, here is /var/log/audit/audit.log contents after I tried to create
VM with OVMF:

type=DAEMON_START msg=audit(1444934142.375:5639): auditd start, ver=2.4.2 
format=raw kernel=4.3.0-040300rc5-generic auid=4294967295 pid=12344 
subj=unconfined  res=success
type=USER_END msg=audit(1444934148.419:29): pid=11588 uid=0 auid=1000 ses=2 
msg='op=PAM:session_close acct="root" exe="/usr/bin/sudo" hostname=? addr=? 
terminal=/dev/pts/1 res=success'
type=CRED_DISP msg=audit(1444934148.419:30): pid=11588 uid=0 auid=1000 ses=2 
msg='op=PAM:setcred acct="root" exe="/usr/bin/sudo" hostname=? addr=? 
terminal=/dev/pts/1 res=success'
type=USER_CMD msg=audit(1444934243.028:31): pid=12445 uid=1000 auid=1000 ses=2 
msg='cwd="/var/log" cmd=6364206175646974 terminal=pts/1 res=failed'
type=USER_CMD msg=audit(1444934248.832:32): pid=12446 uid=1000 auid=1000 ses=2 
msg='cwd="/var/log" cmd="-bash" terminal=pts/1 res=success'
type=CRED_REFR msg=audit(1444934248.832:33): pid=12446 uid=0 auid=1000 ses=2 
msg='op=PAM:setcred acct="root" exe="/usr/bin/sudo" hostname=? addr=? 
terminal=/dev/pts/1 res=success'
type=USER_START msg=audit(1444934248.832:34): pid=12446 uid=0 auid=1000 ses=2 
msg='op=PAM:session_open acct="root" exe="/usr/bin/sudo" hostname=? addr=? 
terminal=/dev/pts/1 res=success'
type=VIRT_RESOURCE msg=audit(1444934343.674:35): pid=841 uid=0 auid=4294967295 
ses=4294967295 msg='virt=kvm resrc=disk reason=start vm="ubuntu13.10" 
uuid=e051ead3-f52b-4655-9e83-e7f783a6f912 old-disk="?" 
new-disk="/var/lib/libvirt/images/ubuntu13.10.qcow2" exe="/usr/sbin/libvirtd" 
hostname=? addr=? terminal=? res=success'
type=VIRT_RESOURCE msg=audit(1444934343.674:36): pid=841 uid=0 auid=4294967295 
ses=4294967295 msg='virt=kvm resrc=disk reason=start vm="ubuntu13.10" 
uuid=e051ead3-f52b-4655-9e83-e7f783a6f912 old-disk="?" 
new-disk="/var/lib/libvirt/images/ubuntu-15.04-server-amd64.iso" 
exe="/usr/sbin/libvirtd" hostname=? addr=? terminal=? res=success'
type=VIRT_RESOURCE msg=audit(1444934343.674:37): pid=841 uid=0 auid=4294967295 
ses=4294967295 msg='virt=kvm resrc=net reason=start vm="ubuntu13.10" 
uuid=e051ead3-f52b-4655-9e83-e7f783a6f912 old-net="?" 
new-net="52:54:00:ab:b9:85" exe="/usr/sbin/libvirtd" hostname=? addr=? 
terminal=? res=success'
type=VIRT_RESOURCE msg=audit(1444934343.674:38): pid=841 uid=0 auid=4294967295 
ses=4294967295 msg='virt=kvm resrc=dev reason=start vm="ubuntu13.10" 
uuid=e051ead3-f52b-4655-9e83-e7f783a6f912 bus=usb 
device=555342207265646972646576 exe="/usr/sbin/libvirtd" hostname=? addr=? 
terminal=? res=success'
type=VIRT_RESOURCE msg=audit(1444934343.674:39): pid=841 uid=0 auid=4294967295 
ses=4294967295 msg='virt=kvm resrc=dev reason=start vm="ubuntu13.10" 
uuid=e051ead3-f52b-4655-9e83-e7f783a6f912 bus=usb 
device=555342207265646972646576 exe="/usr/sbin/libvirtd" hostname=? addr=? 
terminal=? res=success'
type=VIRT_RESOURCE msg=audit(1444934343.674:40): pid=841 uid=0 auid=4294967295 
ses=4294967295 msg='virt=kvm resrc=mem reason=start vm="ubuntu13.10" 
uuid=e051ead3-f52b-4655-9e83-e7f783a6f912 old-mem=0 new-mem=2097152 
exe="/usr/sbin/libvirtd" hostname=? addr=? terminal=? res=success'
type=VIRT_RESOURCE msg=audit(1444934343.674:41): pid=841 uid=0 auid=4294967295 
ses=4294967295 msg='virt=kvm resrc=vcpu reason=start vm="ubuntu13.10" 
uuid=e051ead3-f52b-4655-9e83-e7f783a6f912 old-vcpu=0 new-vcpu=2 
exe="/usr/sbin/libvirtd" hostname=? addr=? terminal=? res=success'
type=VIRT_CONTROL msg=audit(1444934343.674:42): pid=841 uid=0 auid=4294967295 
ses=4294967295 msg='virt=kvm op=start reason=booted vm="ubuntu13.10" 
uuid=e051ead3-f52b-4655-9e83-e7f783a6f912 vm-pid=-1 exe="/usr/sbin/libvirtd" 
hostname=? addr=? terminal=? res=failed'

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-10-15 Thread Gannet

/usr/share/virt-manager/virtManager/asyncjob.py:

def cb_wrapper(callback, asyncjob, *args, **kwargs):
try:
callback(asyncjob, *args, **kwargs)

[Bug 1483071] Re: Error creating new VM with OVMF

2015-10-15 Thread Gannet

What do you mean under "DENIED lines"? Do you mean asking me to show
line 89 of asyncjob.py file etc?

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-10-14 Thread Seth Arnold

Gannet, can you include the new DENIED lines?

Thanks

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-10-14 Thread Gannet

I'm stil having this issue, even with apparmor stopped (through
systemctl stop apparmor):

Не вдалося завершити встановлення: «внутрішня помилка: не вдалося
завантажити профіль AppArmor «libvirt-656c15f3-4203-45df-bfcf-
261421c96962»»

Traceback (most recent call last):
  File "/usr/share/virt-manager/virtManager/asyncjob.py", line 89, in cb_wrapper
callback(asyncjob, *args, **kwargs)
  File "/usr/share/virt-manager/virtManager/create.py", line 1873, in do_install
guest.start_install(meter=meter)
  File "/usr/share/virt-manager/virtinst/guest.py", line 414, in start_install
noboot)
  File "/usr/share/virt-manager/virtinst/guest.py", line 478, in _create_guest
dom = self.conn.createLinux(start_xml or final_xml, 0)
  File "/usr/lib/python2.7/dist-packages/libvirt.py", line 3497, in createLinux
if ret is None:raise libvirtError('virDomainCreateLinux() failed', 
conn=self)
libvirtError: внутрішня помилка: не вдалося завантажити профіль AppArmor 
«libvirt-656c15f3-4203-45df-bfcf-261421c96962»

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-20 Thread Peter Kieser

https://www.redhat.com/archives/libvir-list/2015-August/msg00761.html

Might also be required for UEFI under libvirt with AppArmor enabled.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-18 Thread Gannet

Yes, each time I'm checking by creating a new VM. Recently checked again
and againe have got the same:

Не вдалося завершити встановлення: «внутрішня помилка: не вдалося
завантажити профіль AppArmor «libvirt-a05215eb-12ea-
498b-a168-45708c63e8bc»»

Traceback (most recent call last):
  File "/usr/share/virt-manager/virtManager/asyncjob.py", line 89, in cb_wrapper
callback(asyncjob, *args, **kwargs)
  File "/usr/share/virt-manager/virtManager/create.py", line 1873, in do_install
guest.start_install(meter=meter)
  File "/usr/share/virt-manager/virtinst/guest.py", line 414, in start_install
noboot)
  File "/usr/share/virt-manager/virtinst/guest.py", line 478, in _create_guest
dom = self.conn.createLinux(start_xml or final_xml, 0)
  File "/usr/lib/python2.7/dist-packages/libvirt.py", line 3497, in createLinux
if ret is None:raise libvirtError('virDomainCreateLinux() failed', 
conn=self)
libvirtError: внутрішня помилка: не вдалося завантажити профіль AppArmor 
«libvirt-a05215eb-12ea-498b-a168-45708c63e8bc»

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-18 Thread Serge Hallyn

Hi,

Is the failure exactly the same as before?  Does it persist if you try
with a newly defined VM?

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-15 Thread Gannet

** Changed in: libvirt (Ubuntu)
   Status: Fix Released => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-15 Thread Gannet

Oh, I ment:
'systemctl restart libvirt-bin.service'

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-15 Thread Gannet

I tried it yesterday:

'systemctl service libvirt-bin.service'

but not helped. Today my machine newly booted but the same massage still
appears:

Не вдалося завершити встановлення: «внутрішня помилка: не вдалося
завантажити профіль AppArmor «libvirt-75ecf2fe-fc4e-
448d-a278-61fabcaf1851»»

Traceback (most recent call last):
  File "/usr/share/virt-manager/virtManager/asyncjob.py", line 89, in cb_wrapper
callback(asyncjob, *args, **kwargs)
  File "/usr/share/virt-manager/virtManager/create.py", line 1873, in do_install
guest.start_install(meter=meter)
  File "/usr/share/virt-manager/virtinst/guest.py", line 414, in start_install
noboot)
  File "/usr/share/virt-manager/virtinst/guest.py", line 478, in _create_guest
dom = self.conn.createLinux(start_xml or final_xml, 0)
  File "/usr/lib/python2.7/dist-packages/libvirt.py", line 3497, in createLinux
if ret is None:raise libvirtError('virDomainCreateLinux() failed', 
conn=self)
libvirtError: внутрішня помилка: не вдалося завантажити профіль AppArmor 
«libvirt-75ecf2fe-fc4e-448d-a278-61fabcaf1851»

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-14 Thread Seth Arnold

Gannet, this feels like it might be influenced by restarting the
libvirt-bin service; try this:

sudo service libvirt-bin restart

Then try recreating the new virtual machine.

Thanks

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-14 Thread Gannet

I've already 1.2.16-2ubuntu8 but error still appears:

Не вдалося завершити встановлення: «внутрішня помилка: не вдалося
завантажити профіль AppArmor «libvirt-ba2976da-97bc-
4f63-a9f6-66a8f1b23f38»»

Traceback (most recent call last):
  File "/usr/share/virt-manager/virtManager/asyncjob.py", line 89, in cb_wrapper
callback(asyncjob, *args, **kwargs)
  File "/usr/share/virt-manager/virtManager/create.py", line 1873, in do_install
guest.start_install(meter=meter)
  File "/usr/share/virt-manager/virtinst/guest.py", line 414, in start_install
noboot)
  File "/usr/share/virt-manager/virtinst/guest.py", line 478, in _create_guest
dom = self.conn.createLinux(start_xml or final_xml, 0)
  File "/usr/lib/python2.7/dist-packages/libvirt.py", line 3497, in createLinux
if ret is None:raise libvirtError('virDomainCreateLinux() failed', 
conn=self)
libvirtError: внутрішня помилка: не вдалося завантажити профіль AppArmor 
«libvirt-ba2976da-97bc-4f63-a9f6-66a8f1b23f38»

What is wrong?

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-14 Thread Launchpad Bug Tracker

This bug was fixed in the package libvirt - 1.2.16-2ubuntu8

---
libvirt (1.2.16-2ubuntu8) wily; urgency=medium

  * Support OVMF images in virt-aa-helper.  (LP: #1483071)
  * Fix the libvirt-bin.preinst to not stop libvirt-bin on upgrade
from 1.2.16-2ubuntu7.

 -- Serge Hallyn   Fri, 14 Aug 2015 07:34:30
-0500

** Changed in: libvirt (Ubuntu)
   Status: New => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-11 Thread Gannet

So we need to wait for new libvirt bugfixed version?

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1483071] Re: Error creating new VM with OVMF

2015-08-11 Thread Jamie Strandboge

This is a problem with virt-aa-helper.c. Basically, in valid_path()
this:

/* override the above with these */
const char * const override[] = {
"/sys/devices/pci",  /* for hostdev pci devices */
"/etc/libvirt-sandbox/services/" /* for virt-sandbox service config */
};

should be changed to:
/* override the above with these */
const char * const override[] = {
"/sys/devices/pci",  /* for hostdev pci devices */
"/etc/libvirt-sandbox/services/", /* for virt-sandbox service config */
"/usr/share/ovmf/" /* for OVMF images */
};

See https://lists.ubuntu.com/archives/apparmor/2015-August/008466.html
for details.

** Also affects: libvirt (Ubuntu)
   Importance: Undecided
   Status: New

** No longer affects: apparmor (Ubuntu)

** No longer affects: virt-manager (Ubuntu)

** Tags added: apparmor

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1483071

Title:
  Error creating new VM with OVMF

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1483071/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

41 matches

Mail list logo