During testing, I found that attach-device and attach-disk occasionally triggered spurious APPARMOR_DENIED messages in the host kernel (possibly related to the guest kernel trying to poll it). Whenever I saw these messages, the guest was always able to access the disk (eg 'sudo fdisk -l /dev/...). It is possible that the host kernel isn't up to date on the logging the split second after apparmor_parser exits. This could possibly be fixed if libvirt slept for a second in after calling virt- aa-helper.
-- [regression] apparmor profile not updated on attach and detach of devices https://bugs.launchpad.net/bugs/435527 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
