Oh, I misread, it's only a sub-policy that has cap-fowner. pt_chown is not exactly trusted to begin with, so I'm not sure i want to allow all vms to run it with cap-fowner.
Not sure what the best way forward is. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1342083 Title: "Failed to create chardev" due to apparmor DENIED execute of "/usr/lib/pt_chown" To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1342083/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
