I can't make head or tail of this. aa-complain still enforces deny
rules, there is no (discoverable) way to log deny rules, and
grep -r deny /etc/apparmor.d | grep virt | grep -v /sys | grep -v /dev
doesn't show anything which would apply to /var/lib/libvirt/.
`aa-disable
Control: retitle -1 libvirt-daemon: Deleting external snapshot for non-running
system VM fails with AppArmor
when stracing libvirt, this is what happens:
6557 openat(AT_FDCWD, "/var/lib/libvirt/images/test2.qcow2", O_RDWR|O_CLOEXEC)
= -1 EACCES (Permission denied)
6557 sendmsg(13,
Package: libvirt-daemon
Version: 10.0.0-1
When creating a trivial VM and doing an external snapshot if the VM is *not*
running,
deleting the snapshot fails. As root:
qemu-img create -f qcow2 /var/lib/libvirt/images/test1.qcow2 10G
virt-install --memory 50 --pxe --virt-type qemu --os-variant
3 matches
Mail list logo
