Comment 1 for bug 1644507
Revision history for this message
| Tyler Hicks (tyhicks) wrote Re: virt-aa-helper denied access to qcow2 backing file running nova in a snap | #1 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)
libvirt already has the ability to inject AppArmor rules into the profile that it generates for a domain when you set/modify the path to a disk image. You can test this manually by running `virsh edit DOMAIN`, adjusting one of the paths in the xml, and then looking at the corresponding change in /etc/apparmor.
I'm confused about why this isn't working for you. Maybe you're going through libvirt to set/update the paths to your images?
Can you post a sample XML file and the AppArmor denials that you're seeing when using the XML file?