This bug was fixed in the package libvirt - 1.2.2-0ubuntu13.1.4
---
libvirt (1.2.2-0ubuntu13.1.4) trusty-proposed; urgency=medium
* debian/apparmor/usr.sbin.libvirtd - add cap-sys-resource to fully
fix (LP: #1276719)
libvirt (1.2.2-0ubuntu13.1.3) trusty-proposed; urgency=medium
Just verified that
http://launchpad.net/ubuntu/+source/libvirt/1.2.2-0ubuntu13.1.4 fixes the
original issue, i.e. running
nova interface-attach works again after updating libvirt.
** Tags removed: verification-needed
** Tags added: verification-done
--
You received this bug notification becau
Hello James, or anyone else affected,
Accepted libvirt into trusty-proposed. The package will build now and be
available at
http://launchpad.net/ubuntu/+source/libvirt/1.2.2-0ubuntu13.1.3 in a few
hours, and then in the -proposed repository.
Please help us by testing this new package. See
https:
** Description changed:
=
SRU Justification:
Impact: nova attach-interface fails
Test Case: nova attach-interface
Regression potential: this only allows virt-aa-helper to detect whether
vhost-net needs to be accessible to qemu. It should not regress
** Description changed:
- Performing a nova interface-attach on a running instance fails; looks
- like apparmor is block access to /dev/vhost-net:
+ =
+ SRU Justification:
+ Impact: nova attach-interface fails
+ Test Case: nova attach-interface
+ Regression pote
It's marked as 'affecting trusty' meaning we intend to SRU it there.
Unfortunately there is another pending SRU which will need to clear
before we can push this.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.ne
Any chance of getting this fix into trusty?
Fixing this up by hand via /etc/apparmor.d/libvirt/TEMPLATE is possible
for pre-existing domain profiles, but involves shutting down the domain
etc. Is there any better way?
virsh shutdown foobar
sudo /usr/lib/libvirt/virt-aa-helper --delete --uuid
This bug was fixed in the package libvirt - 1.2.5-0ubuntu3
---
libvirt (1.2.5-0ubuntu3) utopic; urgency=medium
* d/p/virt-aa-helper-vhost.patch: allow access to /dev/vhost-net if domain
needs it (LP: #1322568)
-- Serge HallynTue, 17 Jun 2014 22:01:49 -0500
** Changed in: l
** Changed in: libvirt (Ubuntu Utopic)
Assignee: (unassigned) => Serge Hallyn (serge-hallyn)
** Changed in: libvirt (Ubuntu Utopic)
Status: Triaged => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bug
(I suppose something analogous to this is the right check:
actualType == VIR_DOMAIN_NET_TYPE_NETWORK ||
actualType == VIR_DOMAIN_NET_TYPE_BRIDGE ||
actualType == VIR_DOMAIN_NET_TYPE_ETHERNET ||
actualType == VIR_DOMAIN_NET_TYPE_DIRECT
)
--
You received this bug notificati
Does anyone know offhand which conditions mean we'll need /dev/vhost-net
access (that we can check for in virt-aa-helper)?
(If not I'll have to track it down)
** Changed in: libvirt (Ubuntu Utopic)
Importance: Undecided => High
** Changed in: libvirt (Ubuntu Trusty)
Importance: Undecided =
** Changed in: libvirt (Ubuntu Utopic)
Assignee: Liam Young (gnuoy) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1322568
Title:
nova interface-attach fails
To manage notificat
** Also affects: libvirt (Ubuntu Trusty)
Importance: Undecided
Status: New
** Also affects: libvirt (Ubuntu Utopic)
Importance: Undecided
Assignee: Liam Young (gnuoy)
Status: Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which i
Adding /dev/vhost-net to the libvirt-qemu abstraction means that all VMs
have access to this file, but I don't think that is what we want to do.
Better would be to adjust virt-aa-helper to add this to only VMs that
need it, like we do for most all other accesses.
--
You received this bug notifica
** Changed in: libvirt (Ubuntu)
Assignee: (unassigned) => Liam Young (gnuoy)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1322568
Title:
nova interface-attach fails
To manage notifications ab
Patching /etc/apparmor.d/abstractions/libvirt-qemu with
=== modified file 'libvirt-qemu'
--- libvirt-qemu2014-05-23 14:09:17 +
+++ libvirt-qemu2014-05-23 14:10:27 +
@@ -25,6 +25,7 @@
/dev/kvm rw,
/dev/ptmx rw,
/dev/kqemu rw,
+ /dev/vhost-net rw,
@{PROC}/*/stat
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: libvirt (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1322568
Title:
no
17 matches
Mail list logo
