Comment 0 for bug 1467579

Revision history for this message
Pavel Kholkin (pkholkin) wrote : Libguestfs doesn't work on ubuntu without root rights

Environment: rc1 6.1, ubuntu, 1 compute, 1 controller, neutron, cinder, qemu.

Steps to reproduce:

1) Install extra packages on compute:

root@node-2:~# dpkg --list | grep guestfs
ii libguestfs-perl 1:1.24.5-1 amd64
ii libguestfs-tools 1:1.24.5-1 amd64
ii libguestfs0:amd64 1:1.24.5-1 amd64
ii python-guestfs 1:1.24.5-1 amd64

2) execute:

update-guestfs-appliance

3) start nova-compute as root user and boot vm

http://xsnippet.org/360774/raw/

4) start nova-compute as nova user and boot vm

http://xsnippet.org/360775/raw/

Expected result:

In cases 3 and 4: correct boot with mounted filesystem

Actual result:

In case 3: correct boot with mounted filesystem
In case 4: incorrect boot with unmounted filesystem with this error:

/usr/bin/supermin-helper: open: /boot/vmlinuz-3.13.0-55-generic: Permission denied
libguestfs: command: run: rm
libguestfs: command: run: \ -rf /var/tmp/guestfs.oe27yI
libguestfs: trace: launch = -1 (error)
2015-06-22 14:09:39.693 12311 DEBUG nova.virt.disk.api [-] Unable to mount image /var/lib/nova/instances/ddbf39b0-1fec-4750-aeef-bbd7bd32da2b/disk with error libguestfs installed but not usable (/usr/bin/supermin-helper exited with error status 1, see debug messages above). Cannot resize. is_image_partitionless /usr/lib/python2.7/dist-packages/nova/virt/disk/api.py:218

Related bug: "The kernel is no longer readable by non-root users"
 Ubuntu
               We don't have a full time Ubuntu maintainer, and the packages
               supplied by Canonical (which are outside our control) are
               sometimes broken.

               Canonical decided to change the permissions on the kernel so
               that it's not readable except by root.

http://manpages.ubuntu.com/manpages/trusty/man1/guestfs-faq.1.html