Public bug reported: after upgrading from 14.04 to 16.04 today libvirt failed to start due to apparmor denies:
/var/log/libvirt/libvirtd.log 2016-07-22 18:31:59.547+0000: 31739: info : libvirt version: 1.3.1, package: 1ubuntu10.1 (dann frazier <[email protected]> Fri, 03 Jun 2016 14:41:21 -0600) 2016-07-22 18:31:59.547+0000: 31739: info : hostname: sagan5.hq.eso.org 2016-07-22 18:31:59.547+0000: 31739: error : virAuditOpen:62 : Unable to initialize audit layer: Permission denied 2016-07-22 18:31:59.550+0000: 31739: error : virNetlinkEventServiceStart:676 : cannot connect to netlink socket with protocol 0: Permission denied dmesg: [31938.666690] audit: type=1400 audit(1469212319.543:108): apparmor="DENIED" operation="create" profile="/usr/sbin/libvirtd" pid=31739 comm="libvirtd" family="netlink" sock_type="raw" protocol=9 requested_mask="create" denied_mask="create" [31938.669074] audit: type=1400 audit(1469212319.543:109): apparmor="DENIED" operation="create" profile="/usr/sbin/libvirtd" pid=31739 comm="libvirtd" family="netlink" sock_type="raw" protocol=0 requested_mask="create" denied_mask="create" aa_logprof added capability net_bind_service and now it starts again. ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: libvirt-bin 1.3.1-1ubuntu10.1 ProcVersionSignature: Ubuntu 4.4.0-31.50-generic 4.4.13 Uname: Linux 4.4.0-31-generic x86_64 ApportVersion: 2.20.1-0ubuntu2.1 Architecture: amd64 CurrentDesktop: Unity Date: Fri Jul 22 20:34:29 2016 InstallationDate: Installed on 2015-12-19 (216 days ago) InstallationMedia: Ubuntu 15.10 "Wily Werewolf" - Release amd64 (20151021) SourcePackage: libvirt UpgradeStatus: Upgraded to xenial on 2016-03-31 (113 days ago) modified.conffile..etc.libvirt.qemu.conf: [inaccessible: [Errno 13] Permission denied: '/etc/libvirt/qemu.conf'] modified.conffile..etc.libvirt.qemu.networks.default.xml: [inaccessible: [Errno 13] Permission denied: '/etc/libvirt/qemu/networks/default.xml'] ** Affects: libvirt (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-bug xenial -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1605727 Title: libvirt-bin start prevented by apparmor To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1605727/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
