Thanks for the reply Eric. We verified that VM creation works fine when dynamic ownership setting is enabled. So this seems like some missing configuration or permissions issue when dynamic ownership is disabled. More comments in line below..
On Feb 24, 2012, at 5:57 PM, Eric Blake wrote:
Since we are seeing permission denied error on boot image '/var/lib/libvirt/boot/virtinst-vmlinuz.l4mEAd' I am wondering what should be appropriate permissions for it. The VM's disk image gets created with 'rw' permissions for 'kvm' group. The libvirt runs the qemu-kvm process as 'qemu' user which belongs to the 'kvm' group. If the 'qemu' user doesn't have write permissions on the disk image then we have seen permission denied error on the disk image itself. But we hadn't seen 'qemu: could not load kernel' type errors before.
Any pointers on what permission settings are needed when dynamic ownership is disabled will be really helpful. Do users executing virt-tools (virt-install or virt-manager) commands need 'rw' permission on boot images '/var/lib/libvirt/boot/*' when dynamic ownership is disabled?
We couldn't find much details on dynamic ownership setting other than few comment lines in qemu.conf file. They were helpful to start with; it would be good to have them in wiki as well. I appreciate all the help.