Interesting. The needed path is actually provided by /etc/apparmor.d/abstractions/libvirt-qemu, but virt-aa-helper sees the loader and proceeds to try to add the path. Because the path a restricted one (under /usr/share), it is automatically rejected.
A workaround is to copy the bios to another path, i.e. /opt/bios.bin, and specify that path. Marking this low priority because of the workaround, however this really ought to be fixed upstream. I'm not sure what a proper fix would be. Perhaps vah_add_path() should simply first check whether the policy specified this far already allows the path. ** Changed in: libvirt (Ubuntu) Importance: High => Medium -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1466911 Title: Custom rom location is not allowed by aa-helper To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1466911/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
