Xenial Verification (with 3.13 kernel from Trusty since a <= 3.17 kernel is needed). This verifies that Ubuntu Cloud Archive repositories will be alright with this new packages (from Xenial / Yakkety).
## CURRENT inaddy@(xkvm01):~$ apt-cache policy qemu-kvm qemu-kvm: Installed: 1:2.5+dfsg-5ubuntu10.6 Candidate: 1:2.5+dfsg-5ubuntu10.6 xkvm01 (sender): Jan 11 01:07:54 xkvm01 kernel: type=1400 audit(1484104074.014:13): apparmor="DENIED" operation="mknod" profile="libvirt-7cdcb6c0-f85e-4639 -912b-c785bd5992d9" name="/tmp/memfd-Jh5UhR" pid=2535 comm="qemu- system-x86" requested_mask="c" denied_mask="c" fsuid=112 ouid=112 $ sudo virsh migrate --live guest qemu+ssh://xkvm02/system error: internal error: unable to execute QEMU command 'migrate': Migration disabled: failed to allocate shared memory xkvm02 (receiver): Jan 11 01:08:23 xkvm02 kernel: type=1400 audit(1484104103.888:53): apparmor="DENIED" operation="mknod" profile="libvirt-7cdcb6c0-f85e-4639 -912b-c785bd5992d9" name="/tmp/memfd-fc9rij" pid=2000 comm="qemu- system-x86" requested_mask="c" denied_mask="c" fsuid=112 ouid=112 OBS: The check was being done in the wrong place AND situation, like I showed in this bug. ## PROPOSED inaddy@(xkvm01):~$ apt-cache policy qemu-kvm qemu-kvm: Installed: 1:2.5+dfsg-5ubuntu10.7 Candidate: 1:2.5+dfsg-5ubuntu10.7 xkvm01 (sender): <nothing related to /tmp/memfd> xkvm02 (receiver): inaddy@(xkvm02):~$ virsh list Id Name State ---------------------------------------------------- 1 guest running <nothing related to /tmp/memfd> Its all good. verification-xenial-done -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1626972 Title: QEMU memfd_create fallback mechanism change for security drivers To manage notifications about this bug go to: https://bugs.launchpad.net/cloud-archive/+bug/1626972/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
