Hello Christian, i'm sending what you needed:
1) My lvm setup is simple: a VG named kvm and a LV named kvm-spave-node01 2) in attachment my vm 3) as follow: root@hurricane:/etc/apparmor.d/abstractions# /usr/lib/libvirt/virt-aa-helper -u libvirt-8111547e-360f-4753-a8f1-9fb3f3d8214f -r --dryrun < /tmp/test.xml virt-aa-helper: /etc/apparmor.d/libvirt/libvirt-8111547e-360f-4753-a8f1-9fb3f3d8214f.files virt-aa-helper: "/var/log/libvirt/**/w10mt4.log" w, "/var/lib/libvirt/qemu/domain-w10mt4/monitor.sock" rw, "/var/lib/libvirt/qemu/domain--1-w10mt4/*" rw, "/var/run/libvirt/**/w10mt4.pid" rwk, "/run/libvirt/**/w10mt4.pid" rwk, "/var/run/libvirt/**/*.tunnelmigrate.dest.w10mt4" rw, "/run/libvirt/**/*.tunnelmigrate.dest.w10mt4" rw, "/dev/mapper/kvm--space-node01" rwk, "/dev/vhost-net" rw, 4) dmesg output in attachment (dmesg.txt) My workaround is done by adding the following line /dev/md* rwk in /etc/apparmor.d/abstractions/libvirt-qemu That line was missing in fresh installation of libvirt-daemon-system (4.0.0-1ubuntu5). If you need please let me know how to downgrade to (4.0.0-1ubuntu4), because i cannot find that version on the launchpad (it seems to be deleted from distro) and i have not in my cache. Also i notice now, virt-aa-helper adding the same permission but on the wrong device /dev/mapper/kvm--space-node01 which is a symbolic link to the real device mapper device /dev/dm-4 Have a nice day ! ** Attachment added: "VM xml" https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1756394/+attachment/5083751/+files/test.xml -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1756394 Title: Upgrading libvirt from 4.0.0-1ubuntu4 to 4.0.0-1ubuntu5 introduced a permission denied on device error To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1756394/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
