Comment # 7 on bug 1125841 from 
(In reply to Martin Kalivoda from comment #4)
> It should be noted, that this is quite worrying me for another reason:
> comments in /etc/libvirt/qemu.conf say that
> # SUSE Note:
> # Currently, Apparmor is the default security framework in SUSE
> # distros.  If Apparmor is enabled on the host, libvirtd is
> # generously confined but users must opt-in to confine qemu
> # instances.  Change this to a non-zero value to enable default
> # Apparmor confinement of qemu instances.
> However, changing the value of security_default_confined to 1 will NOT
> trigger the error and it will leave everything unconfined. Only reason why I
> got hit by this is because I am cautious about default and changed the
> security_driver explicitly.

Since the libvirt apparmor driver is not loaded, the default security model is
'none'. Setting security_default_confined has no effect when the active model
is a no-op.

You are receiving this mail because: