Comment 5 for bug 1573192

Hi Ermac,
yeah as usual if one has a special case not covered by the automatism of libvirt/apparmor as outlined on https://ubuntu.com/server/docs/virtualization-libvirt section "Apparmor isolation" adding rules like that will help.
But that is limited to either global rules (valid for all guests, which means less than preferable isolation) or a lot of manual - and thereby error prone - work.

Thanks for making me re-visit this long open case (hi Simon btw).
Looking at it with todays POV I think it might be resolved if I'd ever get to implement bug 1677398.
That would put it after the realization of storage which should cover this as well I'd hope.
I'll add a hint there to recheck this bug in that regard once we have experimental code.