*** This bug is a duplicate of bug 1745114 ***
https://bugs.launchpad.net/bugs/1745114
Yeah this had two phases with both having had their own issues, I'm
already working on this at a lower priority.
Phase I: ~2013-2016: the libvirt-<uuid> stayed around and could be used for
such overrides, but they cluttered the file system and overview was lost,
therefore a cron daemon was established to clean files of currently undefined
domains (which still could kill overrides that people wanted to stay).
Override: Was too unreliable to rely on it
Phase II: 2017-now the cleaning became part of libvirt itself due to [1]. This
will immediately remove the file and unload profiles, keeping the config dir
clean but even removed unreliable override capability we had.
Override: doesn't work at all
Phase II: future as planned in bug 1745114. I already identified the need for
per-guest overrides, but at the same time there is a reason upstream as well as
my predecessor cleaned up these files. I have intended to use the new "include
if available" feature of apparmor to allow providing non-cleaned overrides to
just those that you want.
That would mean on most installations there would be no extra config clutter at
all.
On others where it is needed they can be used for overrides.
I'm marking it a dup of the bug I work on anyway. Lets hope apparmor
gets the code we need in 19.04
[1]:
https://libvirt.org/git/?p=libvirt.git;a=commit;h=eba2225bc52624e748cb875e10962bc4c46a0516
** This bug has been marked a duplicate of bug 1745114
Please add guest uuid and guest-generic local include files
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1788034
Title:
no way to preserve per-domain apparmor profile modifications across
reboot
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1788034/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
