Ubuntu
libvirt package

Bug #1633207
Comment #10

Comment 10 for bug 1633207

Revision history for this message

Christian Ehrhardt  (paelzer) wrote on 2016-10-27:

#10

Three way check on fresh installs:
dpkg -S $((find /etc/apparmor.d/ -name '*libvirt*' && find /etc/apparmor.d/ -name '*TEMPLATE*' )| xargs) | sort
X Y X-Y upgrade
libvirt-bin: /etc/apparmor.d/abstractions/libvirt-lxc libvirt-daemon-system: /etc/apparmor.d/abstractions/libvirt-lxc libvirt-daemon-system: /etc/apparmor.d/abstractions/libvirt-lxc
libvirt-bin: /etc/apparmor.d/abstractions/libvirt-qemu libvirt-daemon-system: /etc/apparmor.d/abstractions/libvirt-qemu libvirt-daemon-system: /etc/apparmor.d/abstractions/libvirt-qemu
libvirt-bin: /etc/apparmor.d/libvirt libvirt-daemon-system: /etc/apparmor.d/libvirt libvirt-daemon-system: /etc/apparmor.d/libvirt
libvirt-bin: /etc/apparmor.d/libvirt/TEMPLATE.lxc libvirt-daemon-system: /etc/apparmor.d/libvirt/TEMPLATE.lxc libvirt-daemon-system: /etc/apparmor.d/libvirt/TEMPLATE.lxc
libvirt-bin: /etc/apparmor.d/libvirt/TEMPLATE.qemu libvirt-daemon-system: /etc/apparmor.d/libvirt/TEMPLATE.qemu libvirt-daemon-system: /etc/apparmor.d/libvirt/TEMPLATE.qemu
libvirt-daemon-system: /etc/apparmor.d/local/usr.lib.libvirt.virt-aa-helper libvirt-daemon-system: /etc/apparmor.d/local/usr.lib.libvirt.virt-aa-helper
libvirt-bin: /etc/apparmor.d/local/usr.sbin.libvirtd libvirt-daemon-system: /etc/apparmor.d/local/usr.sbin.libvirtd libvirt-daemon-system: /etc/apparmor.d/local/usr.sbin.libvirtd
libvirt-bin: /etc/apparmor.d/usr.lib.libvirt.virt-aa-helper libvirt-daemon-system: /etc/apparmor.d/usr.lib.libvirt.virt-aa-helper libvirt-daemon-system: /etc/apparmor.d/usr.lib.libvirt.virt-aa-helper
libvirt-bin: /etc/apparmor.d/usr.sbin.libvirtd libvirt-daemon-system: /etc/apparmor.d/usr.sbin.libvirtd libvirt-daemon-system: /etc/apparmor.d/usr.sbin.libvirtd

In this case Y and the X-Y upgrade was equal.
Also the formerly missing TEMPLATE files were here.
Note that I still have that cae on my phys box - no matter how often I reinstall.

Checking content between X and Y:
Equal:
5f6aa836ced6b474dabfce46a8bfb5e4 /etc/apparmor.d/libvirt/TEMPLATE.lxc
b0dfa704c6297fd9a4e68f0137c6be88 /etc/apparmor.d/libvirt/TEMPLATE.qemu
7166fa490aaf905b7f71cb5407ef0696 /etc/apparmor.d/local/usr.sbin.libvirtd
No functional diff (only comments/reordering):
/etc/apparmor.d/abstractions/libvirt-lxc
/etc/apparmor.d/abstractions/libvirt-qemu
/etc/apparmor.d/usr.lib.libvirt.virt-aa-helper
New but non-functional (empty to carry overwrites)
/etc/apparmor.d/local/usr.lib.libvirt.virt-aa-helper
Changed:
/etc/apparmor.d/usr.sbin.libvirtd added "/usr/sbin/virtlogd pix"

Here the easy in container test stops, as the apparmor security driver really can't work in there.
I need to go back to my BM system and understand/fix why it does run into "error: unsupported configuration: Unable to find security driver for model apparmor" now.
While only partially related I still wanted to document here to find it later if needed

Three way check on fresh installs:
dpkg -S $((find /etc/apparmor.d/ -name '*libvirt*' && find /etc/apparmor.d/ -name '*TEMPLATE*' )| xargs) | sort
X                                                           Y                                                                           X-Y upgrade
libvirt-bin: /etc/apparmor.d/abstractions/libvirt-lxc       libvirt-daemon-system: /etc/apparmor.d/abstractions/libvirt-lxc             libvirt-daemon-system: /etc/apparmor.d/abstractions/libvirt-lxc
libvirt-bin: /etc/apparmor.d/abstractions/libvirt-qemu      libvirt-daemon-system: /etc/apparmor.d/abstractions/libvirt-qemu            libvirt-daemon-system: /etc/apparmor.d/abstractions/libvirt-qemu
libvirt-bin: /etc/apparmor.d/libvirt                        libvirt-daemon-system: /etc/apparmor.d/libvirt                              libvirt-daemon-system: /etc/apparmor.d/libvirt
libvirt-bin: /etc/apparmor.d/libvirt/TEMPLATE.lxc           libvirt-daemon-system: /etc/apparmor.d/libvirt/TEMPLATE.lxc                 libvirt-daemon-system: /etc/apparmor.d/libvirt/TEMPLATE.lxc
libvirt-bin: /etc/apparmor.d/libvirt/TEMPLATE.qemu          libvirt-daemon-system: /etc/apparmor.d/libvirt/TEMPLATE.qemu                libvirt-daemon-system: /etc/apparmor.d/libvirt/TEMPLATE.qemu
                                                            libvirt-daemon-system: /etc/apparmor.d/local/usr.lib.libvirt.virt-aa-helper libvirt-daemon-system: /etc/apparmor.d/local/usr.lib.libvirt.virt-aa-helper
libvirt-bin: /etc/apparmor.d/local/usr.sbin.libvirtd        libvirt-daemon-system: /etc/apparmor.d/local/usr.sbin.libvirtd              libvirt-daemon-system: /etc/apparmor.d/local/usr.sbin.libvirtd
libvirt-bin: /etc/apparmor.d/usr.lib.libvirt.virt-aa-helper libvirt-daemon-system: /etc/apparmor.d/usr.lib.libvirt.virt-aa-helper       libvirt-daemon-system: /etc/apparmor.d/usr.lib.libvirt.virt-aa-helper
libvirt-bin: /etc/apparmor.d/usr.sbin.libvirtd              libvirt-daemon-system: /etc/apparmor.d/usr.sbin.libvirtd                    libvirt-daemon-system: /etc/apparmor.d/usr.sbin.libvirtd

In this case Y and the X-Y upgrade was equal.
Also the formerly missing TEMPLATE files were here.
Note that I still have that cae on my phys box - no matter how often I reinstall.

Checking content between X and Y:
Equal:
5f6aa836ced6b474dabfce46a8bfb5e4  /etc/apparmor.d/libvirt/TEMPLATE.lxc
b0dfa704c6297fd9a4e68f0137c6be88  /etc/apparmor.d/libvirt/TEMPLATE.qemu
7166fa490aaf905b7f71cb5407ef0696  /etc/apparmor.d/local/usr.sbin.libvirtd
No functional diff (only comments/reordering):
/etc/apparmor.d/abstractions/libvirt-lxc
/etc/apparmor.d/abstractions/libvirt-qemu
/etc/apparmor.d/usr.lib.libvirt.virt-aa-helper
New but non-functional (empty to carry overwrites)
/etc/apparmor.d/local/usr.lib.libvirt.virt-aa-helper
Changed:
/etc/apparmor.d/usr.sbin.libvirtd added "/usr/sbin/virtlogd pix"

Ubuntulibvirt package

Comment 10 for bug 1633207

Ubuntu
libvirt package