@mnaser,

We need a simple testcase in the Description for SRU.  do you know the
minimal set of things needed to make this happen?  Are you running an
unmodified ceph, or ceph from a particular ppa which re-enables lttng?


** Description changed:

+ =============================
+ SRU Justification
+ Impact: log is flooded by apparmor access denials
+ Fix: silence the denials using an explicity 'deny' rule in apparmor policy
+ Test case: XXX
+ Regression potential: we already had an explicit deny rule for this, but the 
path at which shm is mounted has changed.
+ =============================
+ 
  This seems like a regression of the following bug
  
  https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1432644
  
  It seems that the path is now /run/shm/lttng-ust-wait-5 which results in
  a flood of the following
  
  Dec 26 04:47:44 compute-4-ca-ymq-2 kernel: [1751079.003742] audit:
  type=1400 audit(1451105264.249:80133): apparmor="DENIED"
  operation="open" profile="libvirt-5923eded-8cbd-4257-a4c6-a8f4c2cf06cb"
  name="/run/shm/lttng-ust-wait-5" pid=5018 comm="qemu-system-x86"
  requested_mask="r" denied_mask="r" fsuid=108 ouid=107
  
  The fix would be similar

** Also affects: libvirt (Ubuntu Wily)
   Importance: Undecided
       Status: New

** Changed in: libvirt (Ubuntu Wily)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libvirt in Ubuntu.
https://bugs.launchpad.net/bugs/1529319

Title:
  VM constantly tries to access /run/shm/lttng-ust-wait-5

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1529319/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

Reply via email to