Apparmor profile denies access to /dev/dm-* for guests using LVM partitions storage
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libvirt (Ubuntu) |
Fix Released
|
Low
|
Unassigned |
Bug Description
My KVM guests are using LVM partitions as storage devices and this shows in the log every time a VM is booted :
Jan 4 14:04:12 simon-laptop kernel: [17725.344930] type=1400 audit(132570385
This denial does not prevent the guest from function properly but it generates some noise in the logs (and logcheck notifications).
$ lsb_release -rd
Description: Ubuntu 11.10
Release: 11.10
$ apt-cache policy libvirt-bin
libvirt-bin:
Installed: 0.9.2-4ubuntu15.1
Candidate: 0.9.2-4ubuntu15.1
Version table:
*** 0.9.2-4ubuntu15.1 0
500 http://
100 /var/lib/
0.
500 http://
ProblemType: Bug
DistroRelease: Ubuntu 11.10
Package: libvirt-bin 0.9.2-4ubuntu15.1
ProcVersionSign
Uname: Linux 3.0.0-15-generic x86_64
ApportVersion: 1.23-0ubuntu4
Architecture: amd64
Date: Wed Jan 4 15:04:03 2012
InstallationMedia: Ubuntu 11.10 "Oneiric Ocelot" - Release amd64 (20111011)
ProcEnviron:
LANGUAGE=en_CA:en
PATH=(custom, no user)
LANG=en_CA.UTF-8
SHELL=/bin/bash
SourcePackage: libvirt
UpgradeStatus: No upgrade log present (probably fresh install)
Here is the guest definition using LVM partitions.