This behavior changed in libvirt 0.8.3 and the pending lucid-security libvirt update and is part of the fix for CVE-2010-2237, CVE-2010-2238 and CVE-2010-2239. From /etc/libvirt/qemu.conf: # If allow_disk_format_probing is enabled, libvirt will probe disk # images to attempt to identify their format, when not otherwise # specified in the XML. This is disabled by default. # # WARNING: Enabling probing is a security hole in almost all # deployments. It is strongly recommended that users update their # guest XML <disk> elements to include <driver type='XXXX'/> # elements instead of enabling this option. # allow_disk_format_probing = 1
So people can either: 1. adjust /etc/apparmor.d/libvirt/libvirt-<uuid> to have the extra files 2. adjust /etc/libvirt/qemu.conf for the above The former is preferred for security reasons, but has to be done for each virtual machine. ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2010-2237 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2010-2238 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2010-2239 ** Changed in: libvirt (Ubuntu) Status: Confirmed => Won't Fix -- libvirt no longer probes chained backing stores https://bugs.launchpad.net/bugs/656173 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
