Missing entries in libvirt-qemu AppArmor profile
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libvirt (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Description: Ubuntu 11.10
Release : 11.10
When setting up VncTLS according to the official Libvirt documentation, only one certificate for libvirt/libvirt-vnc is used. The document indicates to use the following directories :
/etc/pki/CA
/etc/pki/libvirt
/etc/pki/
in order to manage the certificates used by libvirt-vnc.
This is the document that talks about it : http://
These directories should be added to the libvirt AppArmor profile provided by Ubuntu.
Reproducible: 100%
Workaround:
Manually modify the /etc/apparmor.
Business concern:
This would affect anybody trying to use the official documentation to enable qemu-vnc
Request:
Modify the libvirt-qemu profile
ProblemType: Bug
DistroRelease: Ubuntu 11.10
Package: libvirt-
Uname: Linux 3.0.0-13-server x86_64
Architecture: N/A
Related branches
description: | updated |
Thanks for your report. Does adding the following to /etc/apparmor. d/abstractions/ libvirt- qemu fix the issue for you: pki/libvirt/ * r pki/libvirt/ private/ r, pki/libvirt/ private/ * r,
/etc/pki/CA/ r,
/etc/pki/CA/* r,
/etc/pki/libvirt/ r,
/etc/
/etc/
/etc/