[Bug 1559317] Re: [xenial] No write access to VirtFS (9p) in qemu VM run by libvirt

Mon, 18 Sep 2017 06:00:33 -0700 

I wasn't awake this morning it seems (or did to omuch at once), so I beg
your pardon and resummarize.

Also I had the chance to try the fs forwarding on a zestyl level
libvirt/qemu and it worked fine.

- The /srv/video rule obviously is just the case reported for a share that 
exports this source.
  That is the actual bug here that a rule for that has to be generated.

On Zesty that seems to work, for a xml entry like the following:
    <filesystem type='mount' accessmode='passthrough'>                          
 
      <source dir='/home/paelzer/work/libvirt/libvirt-upstream-git-root'/>      
 
      <target dir='libvirt-git'/>                                               
 
      <address type='pci' domain='0x0000' bus='0x00' slot='0x07' 
function='0x0'/>
    </filesystem>
I got generated apparmor rules:
    "/home/paelzer/work/libvirt/libvirt-upstream-git-root/**" rwl,              
   
    "/home/paelzer/work/libvirt/libvirt-upstream-git-root/" r,

And it works with rw all the way (sharing a git tree shared between host
and guest).

1. So since this bug is about the rule creation it seems that exists,
needs to be identified and backported for Xenial.

2. about the report by sgofferj this morning I wonder as I have no 
fowner/fsetid denials.
   Maybe this is specific to exports based on zfs.
   @sgofferj - would you mind opening a new bug for this and attach your guest 
XML as well as a 
   description of your ZFS setup there? I want to understand and track down 
your case, but keep 
   it out of this bug here (which is about the source path not added to the 
rules)

** Also affects: libvirt (Ubuntu Xenial)
   Importance: Undecided
       Status: New

** Changed in: libvirt (Ubuntu Xenial)
       Status: New => Confirmed

** Changed in: libvirt (Ubuntu)
       Status: Confirmed => Fix Released

** Changed in: libvirt (Ubuntu Xenial)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1559317

Title:
  [xenial] No write access to VirtFS (9p) in qemu VM run by libvirt

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1559317/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to