@mnaser, We need a simple testcase in the Description for SRU. do you know the minimal set of things needed to make this happen? Are you running an unmodified ceph, or ceph from a particular ppa which re-enables lttng?
** Description changed: + ============================= + SRU Justification + Impact: log is flooded by apparmor access denials + Fix: silence the denials using an explicity 'deny' rule in apparmor policy + Test case: XXX + Regression potential: we already had an explicit deny rule for this, but the path at which shm is mounted has changed. + ============================= + This seems like a regression of the following bug https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1432644 It seems that the path is now /run/shm/lttng-ust-wait-5 which results in a flood of the following Dec 26 04:47:44 compute-4-ca-ymq-2 kernel: [1751079.003742] audit: type=1400 audit(1451105264.249:80133): apparmor="DENIED" operation="open" profile="libvirt-5923eded-8cbd-4257-a4c6-a8f4c2cf06cb" name="/run/shm/lttng-ust-wait-5" pid=5018 comm="qemu-system-x86" requested_mask="r" denied_mask="r" fsuid=108 ouid=107 The fix would be similar ** Also affects: libvirt (Ubuntu Wily) Importance: Undecided Status: New ** Changed in: libvirt (Ubuntu Wily) Importance: Undecided => High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1529319 Title: VM constantly tries to access /run/shm/lttng-ust-wait-5 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1529319/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
