Thanks for this report and making Ubuntu better. The thing we're trying to do (IMO) is protect the host from the guest OS, not from libvirt itself. So unconditionally allowing qemu access to all usb devices is wrong. Ideally, when libvirt hotplugs a device, it would add an apparmor rule to allow qemu access to that device.
Jamie, is that feasible? -- AppArmor blocks hotplugging of USB devices https://bugs.launchpad.net/bugs/578332 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs