Public bug reported: I believe this is the same as bug 1386465, but I'm opening a new one to collect apport info.
I upgraded from 14.04 to 16.04 and can no longer start libvirtd. The output of journalctl -xe shows: Nov 30 19:08:10 kat-Dell-System-XPS-L322X sudo[5547]: PAM unable to dlopen(pam_winbind.so): /lib/security/pam_winbind.so: cannot open shared ob Nov 30 19:08:10 kat-Dell-System-XPS-L322X sudo[5547]: PAM adding faulty module: pam_winbind.so Nov 30 19:08:10 kat-Dell-System-XPS-L322X sudo[5547]: tristan : TTY=pts/18 ; PWD=/home/tristan ; USER=root ; COMMAND=/usr/sbin/service libvirt Nov 30 19:08:10 kat-Dell-System-XPS-L322X sudo[5547]: pam_unix(sudo:session): session opened for user root by (uid=0) Nov 30 19:08:11 kat-Dell-System-XPS-L322X systemd[1]: Starting Virtualization daemon... -- Subject: Unit libvirt-bin.service has begun start-up -- Defined-By: systemd -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit libvirt-bin.service has begun starting up. Nov 30 19:08:11 kat-Dell-System-XPS-L322X audit[5582]: AVC apparmor="DENIED" operation="create" profile="/usr/sbin/libvirtd" pid=5582 comm="lib Nov 30 19:08:11 kat-Dell-System-XPS-L322X libvirtd[5582]: libvirt version: 1.3.1, package: 1ubuntu10.5 (Stefan Bader <stefan.ba...@canonical.co Nov 30 19:08:11 kat-Dell-System-XPS-L322X libvirtd[5582]: hostname: kat-Dell-System-XPS-L322X Nov 30 19:08:11 kat-Dell-System-XPS-L322X libvirtd[5582]: Unable to initialize audit layer: Permission denied Nov 30 19:08:11 kat-Dell-System-XPS-L322X audit[5582]: AVC apparmor="DENIED" operation="create" profile="/usr/sbin/libvirtd" pid=5582 comm="lib Nov 30 19:08:11 kat-Dell-System-XPS-L322X libvirtd[5582]: cannot connect to netlink socket with protocol 0: Permission denied Nov 30 19:08:11 kat-Dell-System-XPS-L322X kernel: audit: type=1400 audit(1480561691.111:64): apparmor="DENIED" operation="create" profile="/usr Nov 30 19:08:11 kat-Dell-System-XPS-L322X kernel: audit: type=1400 audit(1480561691.111:65): apparmor="DENIED" operation="create" profile="/usr Nov 30 19:08:11 kat-Dell-System-XPS-L322X systemd[1]: libvirt-bin.service: Main process exited, code=exited, status=6/NOTCONFIGURED Nov 30 19:08:11 kat-Dell-System-XPS-L322X systemd[1]: Failed to start Virtualization daemon. -- Subject: Unit libvirt-bin.service has failed -- Defined-By: systemd -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit libvirt-bin.service has failed. -- -- The result is failed. Nov 30 19:08:11 kat-Dell-System-XPS-L322X systemd[1]: libvirt-bin.service: Unit entered failed state. Nov 30 19:08:11 kat-Dell-System-XPS-L322X systemd[1]: libvirt-bin.service: Failed with result 'exit-code'. Nov 30 19:08:11 kat-Dell-System-XPS-L322X sudo[5547]: pam_unix(sudo:session): session closed for user root Nov 30 19:08:11 kat-Dell-System-XPS-L322X systemd[1]: libvirt-bin.service: Service hold-off time over, scheduling restart. Nov 30 19:08:11 kat-Dell-System-XPS-L322X systemd[1]: Stopped Virtualization daemon. -- Subject: Unit libvirt-bin.service has finished shutting down -- Defined-By: systemd -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit libvirt-bin.service has finished shutting down. The /etc/apparmor.d/usr.sbin.libvirtd file does contain a "network netlink," line. As requested at https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1386465/comments/22, the contents of the resulting libvirt.debug are simply: 2016-12-01 03:18:28.408+0000: 7048: info : libvirt version: 1.3.1, package: 1ubuntu10.5 (Stefan Bader <stefan.ba...@canonical.com> Thu, 06 Oct 2016 13:07:20 +0200) 2016-12-01 03:18:28.408+0000: 7048: info : hostname: kat-Dell-System-XPS-L322X 2016-12-01 03:18:28.408+0000: 7048: error : virAuditOpen:62 : Unable to initialize audit layer: Permission denied 2016-12-01 03:18:28.412+0000: 7048: error : virNetlinkEventServiceStart:676 : cannot connect to netlink socket with protocol 0: Permission denied And the journal contains: Nov 30 19:18:28 kat-Dell-System-XPS-L322X sudo[7044]: PAM unable to dlopen(pam_winbind.so): /lib/security/pam_winbind.so: cannot open shared object file: No such file or directory Nov 30 19:18:28 kat-Dell-System-XPS-L322X sudo[7044]: PAM adding faulty module: pam_winbind.so Nov 30 19:18:28 kat-Dell-System-XPS-L322X sudo[7044]: tristan : TTY=pts/18 ; PWD=/home/tristan ; USER=root ; COMMAND=/usr/sbin/libvirtd Nov 30 19:18:28 kat-Dell-System-XPS-L322X sudo[7044]: pam_unix(sudo:session): session opened for user root by (uid=0) Nov 30 19:18:28 kat-Dell-System-XPS-L322X audit[7048]: AVC apparmor="DENIED" operation="create" profile="/usr/sbin/libvirtd" pid=7048 comm="libvirtd" family="netlink" sock_type="raw" protocol=9 requested_mask="create" denied_mask="create" Nov 30 19:18:28 kat-Dell-System-XPS-L322X kernel: audit: type=1400 audit(1480562308.405:74): apparmor="DENIED" operation="create" profile="/usr/sbin/libvirtd" pid=7048 comm="libvirtd" family="netlink" sock_type="raw" protocol=9 requested_mask="create" denied_mask="create" Nov 30 19:18:28 kat-Dell-System-XPS-L322X audit[7048]: AVC apparmor="DENIED" operation="create" profile="/usr/sbin/libvirtd" pid=7048 comm="libvirtd" family="netlink" sock_type="raw" protocol=0 requested_mask="create" denied_mask="create" Nov 30 19:18:28 kat-Dell-System-XPS-L322X kernel: audit: type=1400 audit(1480562308.409:75): apparmor="DENIED" operation="create" profile="/usr/sbin/libvirtd" pid=7048 comm="libvirtd" family="netlink" sock_type="raw" protocol=0 requested_mask="create" denied_mask="create" Nov 30 19:18:28 kat-Dell-System-XPS-L322X sudo[7044]: pam_unix(sudo:session): session closed for user root ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: libvirt-bin 1.3.1-1ubuntu10.5 ProcVersionSignature: Ubuntu 4.4.0-49.70-generic 4.4.30 Uname: Linux 4.4.0-49-generic x86_64 ApportVersion: 2.20.1-0ubuntu2.1 Architecture: amd64 CurrentDesktop: Unity Date: Wed Nov 30 19:10:07 2016 DistributionChannelDescriptor: # This is a distribution channel descriptor # For more information see http://wiki.ubuntu.com/DistributionChannelDescriptor canonical-oem-somerville-precise-amd64-20120703-2 InstallationDate: Installed on 2012-12-07 (1454 days ago) InstallationMedia: Ubuntu 12.04 "Precise" - Build amd64 LIVE Binary 20120703-15:08 SourcePackage: libvirt UpgradeStatus: Upgraded to xenial on 2016-11-24 (6 days ago) modified.conffile..etc.libvirt.qemu.conf: [inaccessible: [Errno 13] Permission denied: '/etc/libvirt/qemu.conf'] ** Affects: libvirt (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apparmor apport-bug xenial -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1646328 Title: libvirtd fails to start with apparmor denial error for netlink socket creation To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1646328/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs