Hi Jean-Baptiste,
this looks like a known issue to me.
We have the following rules (the former since artful, the latter since bionic)
# allow connect with openGraphicsFD to work
unix (send, receive) type=stream addr=none peer=(label=/usr/sbin/libvirtd),
# Since libvirt 4.0 we also need the reverse direction (LP: #1741617)
unix (send, receive) type=stream addr=none
peer=(label=libvirt-[0-9a-f]*-[0-9a-f]*-[0-9a-f]*-[0-9a-f]*-[0-9a-f]
# unconfined also required if guests run without security module
unix (send, receive) type=stream addr=none peer=(label=unconfined),
Your Deny looks like:
profile="/usr/sbin/libvirtd" family="unix" stream send receive addr=none
peer="libvirt-a5c0d9b3-5d7e-48b0-b26a-583527d85112"
Ok, I see the issue.
We tested and added manually to /etc/apparmor.d/usr.sbin.libvirtd but then
matched the changes with the former ones.
While doing so they went by accident into the wrong file (libvirt-qemu).
Thanks for the bug, will be handled in a follow on upload.
** Changed in: libvirt (Ubuntu)
Status: New => Triaged
** Changed in: libvirt (Ubuntu)
Importance: Undecided => Medium
** Changed in: libvirt (Ubuntu)
Assignee: (unassigned) => ChristianEhrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1747442
Title:
virt-manager fails to show virtual console: internal error: unable to
execute QEMU command 'getfd': No file descriptor supplied via
SCM_RIGHTS
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1747442/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
