virt-manager fails to show virtual console: internal error: unable to execute QEMU command 'getfd': No file descriptor supplied via SCM_RIGHTS
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libvirt (Ubuntu) |
Fix Released
|
Medium
|
Christian Ehrhardt |
Bug Description
Ubuntu Desktop Bionic up to date
Viewing the console of a running VM fails with:
internal error: unable to execute QEMU command 'getfd': No file descriptor supplied via SCM_RIGHTS (similar to bug 1668681)
This apparmor denial is displayed in syslog
1645: error : qemuMonitorJSON
févr. 05 15:43:29 herm kernel: audit: type=1400 audit(151784180
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: libvirt0 4.0.0-1ubuntu1
ProcVersionSign
Uname: Linux 4.13.0-32-generic x86_64
ApportVersion: 2.20.8-0ubuntu8
Architecture: amd64
CurrentDesktop: ubuntu:GNOME
Date: Mon Feb 5 15:36:37 2018
InstallationDate: Installed on 2013-09-03 (1615 days ago)
InstallationMedia: Ubuntu 13.10 "Saucy Salamander" - Alpha amd64 (20130902)
ProcEnviron:
TERM=screen-
PATH=(custom, no user)
XDG_RUNTIME_
LANG=fr_FR.UTF-8
SHELL=/bin/bash
SourcePackage: libvirt
UpgradeStatus: Upgraded to bionic on 2018-01-26 (9 days ago)
description: | updated |
description: | updated |
tags: | added: libvirt-18.04 |
Hi Jean-Baptiste,
this looks like a known issue to me.
We have the following rules (the former since artful, the latter since bionic)
# allow connect with openGraphicsFD to work /usr/sbin/ libvirtd) , libvirt- [0-9a-f] *-[0-9a- f]*-[0- 9a-f]*- [0-9a-f] *-[0-9a- f] unconfined) ,
unix (send, receive) type=stream addr=none peer=(label=
# Since libvirt 4.0 we also need the reverse direction (LP: #1741617)
unix (send, receive) type=stream addr=none peer=(label=
# unconfined also required if guests run without security module
unix (send, receive) type=stream addr=none peer=(label=
Your Deny looks like: "/usr/sbin/ libvirtd" family="unix" stream send receive addr=none peer="libvirt- a5c0d9b3- 5d7e-48b0- b26a-583527d851 12"
profile=
Ok, I see the issue. d/usr.sbin. libvirtd but then matched the changes with the former ones.
We tested and added manually to /etc/apparmor.
While doing so they went by accident into the wrong file (libvirt-qemu).
Thanks for the bug, will be handled in a follow on upload.