[Bug 1895967] [NEW] 3.0.0~beta1-0ubuntu1 in Groovy breaks Libvirt/Qemu/KVM

Thu, 17 Sep 2020 05:21:39 -0700 

Public bug reported:

Hi,
I stumbled over this due to automatic tests checking proposed.
I found that Focal no more could migrate to Groovy with:

$ virsh migrate --unsafe --live fguest qemu+ssh://10.162.30.163/system
error: unsupported configuration: Security driver model 'apparmor' is not 
available

I looked after it and found that while all former releases detected
apparmor correctly:

$ virsh capabilities | grep -C 3 secmodel
    <cache>
      <bank id='0' level='3' type='both' size='15' unit='MiB' cpus='0-11'/>
    </cache>
    <secmodel>
      <model>apparmor</model>
      <doi>0</doi>
    </secmodel>
    <secmodel>
      <model>dac</model>
      <doi>0</doi>
      <baselabel type='kvm'>+64055:+108</baselabel>
      <baselabel type='qemu'>+64055:+108</baselabel>
    </secmodel>

Now on groovy that didn't work anymore:

    <secmodel>
      <model>none</model>
      <doi>0</doi>
    </secmodel>
    <secmodel>
      <model>dac</model>
      <doi>0</doi>
      <baselabel type='kvm'>+64055:+108</baselabel>
      <baselabel type='qemu'>+64055:+108</baselabel>
    </secmodel>

Since 3.0 is only in proposed:
# apt-cache policy apparmor
apparmor:
  Installed: 2.13.3-7ubuntu6
  Candidate: 3.0.0~beta1-0ubuntu1
  Version table:
     3.0.0~beta1-0ubuntu1 500
        500 http://archive.ubuntu.com/ubuntu groovy-proposed/main amd64 Packages
 *** 2.13.3-7ubuntu6 500
        500 http://archive.ubuntu.com/ubuntu groovy/main amd64 Packages
        100 /var/lib/dpkg/status
I installed the former version.


$ apt install apparmor=2.13.3-7ubuntu6
$ rm /var/cache/libvirt/qemu/capabilities/*
$ systemctl restart libvirtd

And it works again.

Interestingly going back to 3.0 then works and keeps working.
Therefore maybe it is a red-herring and I'll consider it incomplete & low prio 
for now until I know more (allowing others that might see the same to find this 
bug and chime in).

** Affects: apparmor (Ubuntu)
     Importance: Low
         Status: Incomplete

** Changed in: apparmor (Ubuntu)
       Status: New => Incomplete

** Changed in: apparmor (Ubuntu)
   Importance: Undecided => Low

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1895967

Title:
  3.0.0~beta1-0ubuntu1 in Groovy breaks Libvirt/Qemu/KVM

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1895967/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to