[libvirt] [PATCH] apparmor: add attach_disconnected
Michal Privoznik
mprivozn at redhat.com
Mon Sep 18 12:05:30 UTC 2017
On 09/15/2017 05:17 PM, Guido Günther wrote:
> Otherwise we fail to reconnect to /dev/net/tun opened by libvirtd
> like
>
> [ 8144.507756] audit: type=1400 audit(1505488162.386:38069121): apparmor="DENIED" operation="file_perm" info="Failed name lookup - disconnected path" error=-13 profile="libvirt-5dfcc8a7-b79a-4fa9-a41f-f6271651934c" name="dev/net/tun" pid=9607 comm="qemu-system-x86" requested_mask="r" denied_mask="r" fsuid=117 ouid=0
>
> ---
> I do wonder why we didn't see this earlier though.
>
> examples/apparmor/TEMPLATE.lxc | 2 +-
> examples/apparmor/TEMPLATE.qemu | 2 +-
> 2 files changed, 2 insertions(+), 2 deletions(-)
+1/ACK/or whatever.
Michal
More information about the libvir-list
mailing list