STC860:Tuleta-L:KVM:iap01:Ubuntu 16.10 KVM logs apparmor="DENIED"
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libvirt (Ubuntu) |
Fix Released
|
Medium
|
Christian Ehrhardt | ||
Yakkety |
Won't Fix
|
Undecided
|
Unassigned |
Bug Description
== Comment: #0 - Application Cdeadmin <email address hidden> - 2016-08-12 14:40:43 ==
== Comment: #1 - Application Cdeadmin <email address hidden> - 2016-08-12 14:40:44 ==
==== State: Open by: panico on 12 August 2016 13:31:50 ====
Contact Information:
=======
Defect Originator: Michael Panico
Defect Originator <email address hidden>
System Info:
============
Machine Type:..
Card Type:..
Current Boot Side:.......T
Next Boot Side:..........T
PT_Swap:
Current Side Driver:
Ubuntu 16.10 KVM host:
root@iaos1:~# uname -a
Linux iaos1 4.4.0-30-generic #49-Ubuntu SMP Fri Jul 1 10:00:36 UTC 2016 ppc64le ppc64le ppc64le GNU/Linux
root@iaos1:~# lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu Yakkety Yak (development branch)
Release: 16.10
Codename: yakkety
Code levels for related pkgs:
virt-manager 1:1.3.2-3
libvirt-bin 1.3.4-1
apparmor 2.10.95-0
qemu-kvm 1:2.6+dfsg-3
Problem Description:
=======
The Ubuntu 16.10 KVM host logs this messages repeatedly:
[Fri Aug 12 10:07:52 2016] audit: type=1400 audit(147101447
== Comment: #9 - SANDHYA VENUGOPALA <email address hidden> - 2016-08-22 04:42:14 ==
Problem Description:
=======
The Ubuntu 16.10 KVM host logs this messages repeatedly:
Aug 14 04:17:06 iaos1 kernel: [410279.287630] audit: type=1400 audit(147116622
Aug 14 04:17:06 iaos1 kernel: [410279.532212] audit: type=1400 audit(147116622
Aug 14 04:17:19 iaos1 kernel: [410292.483319] audit: type=1400 audit(147116623
from ur.sbin.libvirtd -
# force the use of virt-aa-helper
audit deny /sbin/apparmor_
audit deny /etc/apparmor.
audit deny /sys/kernel/
audit deny /sys/kernel/
audit deny /sys/kernel/
/sys/
/usr/
/etc/
/etc/
Its seems like libvirt's apparmor policy needs to be updated in Ubuntu 16.10
tags: | added: architecture-ppc64le bugnameltc-144906 severity-high targetmilestone-inin1610 |
Changed in ubuntu: | |
assignee: | nobody → Taco Screen team (taco-screen-team) |
affects: | ubuntu → libvirt (Ubuntu) |
Changed in libvirt (Ubuntu): | |
importance: | Undecided → Medium |
Changed in libvirt (Ubuntu): | |
assignee: | Taco Screen team (taco-screen-team) → ChristianEhrhardt (paelzer) |
Changed in libvirt (Ubuntu): | |
status: | Triaged → In Progress |
------- Comment From <email address hidden> 2016-09-12 12:05 EDT-------
== Comment: #1 - Application Cdeadmin <email address hidden> - 2016-08-12 14:40:44 ====== State: Assigned by: cde00 on 12 September 2016 11:04:44 ====