Hi Martin,
I just released a fix for this via bug 1680384.
/etc/apparmor.d/abstractions/libvirt-qemu should now have a line like:
/proc/*/cmdline r,
Xenial isn't affected as the qemu code there did not yet try to report who
killed it (that is what it reads it for).
Fixed in Artful for about 3 weeks now, release into Yakkety and Zesty just
recently.
Due to the timing of your report I'm somewhat scared if the release of
the fix for you had kind of the inverse effect?
Could you please check bug 1680384 which is what I released the fixes with?
And let me know if you are good with the new versions now?
In the worst case this is an update-regression, but for now I hope that
was just accidental timing on your report and you are actually
benefiting from me having this fixed already.
cu
Christian
** Changed in: libvirt (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1693115
Title:
apparmor denial: qemu cannot read /proc/*/cmdline
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1693115/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
