[Bug 1078498] New: virt-manager does not work on leap 42.3

older
[Bug 1079541] Wrong rpm-requires...

bugzilla_noreply＠novell.com

31 Jan 2018 31 Jan '18

12:23

http://bugzilla.suse.com/show_bug.cgi?id=1078498 Bug ID: 1078498 Summary: virt-manager does not work on leap 42.3 Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.3 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Virtualization:Tools Assignee: virt-bugs@suse.de Reporter: meissner@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- virt-manager does not seem to start on 42.3 It only outputs: (virt-manager:12190): Gtk-WARNING **: Theme parsing error: gtk.css:68:35: The style property GtkButton:child-displacement-x is deprecated and shouldn't be used anymore. It will be removed in a future version (virt-manager:12190): Gtk-WARNING **: Theme parsing error: gtk.css:69:35: The style property GtkButton:child-displacement-y is deprecated and shouldn't be used anymore. It will be removed in a future version (virt-manager:12190): Gtk-WARNING **: Theme parsing error: gtk.css:73:46: The style property GtkScrolledWindow:scrollbars-within-bevel is deprecated and shouldn't be used anymore. It will be removed in a future version -- You are receiving this mail because: You are on the CC list for the bug.

Attachments:

attachment.htm (text/html — 2.8 KB)

Show replies by date

bugzilla_noreply＠novell.com

31 Jan 31 Jan

13:00

New subject: [Bug 1078498] virt-manager does not work on leap 42.3

http://bugzilla.suse.com/show_bug.cgi?id=1078498 http://bugzilla.suse.com/show_bug.cgi?id=1078498#c1 --- Comment #1 from Marcus Meissner --- ok, it start as root. and then complains about missing mount namespace support in the kernel... ? -- You are receiving this mail because: You are on the CC list for the bug.

bugzilla_noreply＠novell.com

13:31

New subject: [Bug 1078498] virt-manager does not work on leap 42.3

http://bugzilla.suse.com/show_bug.cgi?id=1078498 http://bugzilla.suse.com/show_bug.cgi?id=1078498#c3 --- Comment #3 from Marcus Meissner --- I nmeeded to stop apparmor to get the functionality back. -- You are receiving this mail because: You are on the CC list for the bug.

bugzilla_noreply＠novell.com

20:23

New subject: [Bug 1078498] virt-manager does not work on leap 42.3

http://bugzilla.suse.com/show_bug.cgi?id=1078498 http://bugzilla.suse.com/show_bug.cgi?id=1078498#c4 James Fehlig changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jfehlig@suse.com, | |meissner@suse.com Flags| |needinfo?(meissner@suse.com | |) --- Comment #4 from James Fehlig --- (In reply to Marcus Meissner from comment #3)

...

I nmeeded to stop apparmor to get the functionality back.

What are the denials in /var/log/audit/audit.log? -- You are receiving this mail because: You are on the CC list for the bug.

bugzilla_noreply＠novell.com

1 Feb 1 Feb

05:36

New subject: [Bug 1078498] virt-manager does not work on leap 42.3

http://bugzilla.suse.com/show_bug.cgi?id=1078498 http://bugzilla.suse.com/show_bug.cgi?id=1078498#c5 Marcus Meissner changed: What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(meissner@suse.com | |) | --- Comment #5 from Marcus Meissner --- Created attachment 758348 --> http://bugzilla.suse.com/attachment.cgi?id=758348&action=edit virtd-audit.log virtd-audit.log it shows some denys at least -- You are receiving this mail because: You are on the CC list for the bug.

bugzilla_noreply＠novell.com

18:24

New subject: [Bug 1078498] virt-manager does not work on leap 42.3

http://bugzilla.suse.com/show_bug.cgi?id=1078498 http://bugzilla.suse.com/show_bug.cgi?id=1078498#c6 --- Comment #6 from James Fehlig ---

...

type=AVC msg=audit(1517402656.418:16535): apparmor="DENIED" operation="open" info="Failed name lookup - disconnected path" error=-13 profile="/usr/sbin/libvirtd" name="" pid=9072 comm="libvirtd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0

This implies the libvirtd apparmor profile needs the 'attach_disconnected' flag, but the 42.3 package should already have that. For more info see https://bugzilla.opensuse.org/show_bug.cgi?id=1045158#c4 I recall someone else hitting a similar issue, which they resolved by nuking the apparmor cache dir contents and restarting apparmor. Perhaps you also need such drastic measure :-). -- You are receiving this mail because: You are on the CC list for the bug.

bugzilla_noreply＠novell.com

6 Feb 6 Feb

18:15

New subject: [Bug 1078498] virt-manager does not work on leap 42.3

http://bugzilla.suse.com/show_bug.cgi?id=1078498 http://bugzilla.suse.com/show_bug.cgi?id=1078498#c7 James Fehlig changed: What |Removed |Added ---------------------------------------------------------------------------- Flags| |needinfo?(meissner@suse.com | |) --- Comment #7 from James Fehlig --- (In reply to James Fehlig from comment #6)

...

...
type=AVC msg=audit(1517402656.418:16535): apparmor="DENIED" operation="open" info="Failed name lookup - disconnected path" error=-13 profile="/usr/sbin/libvirtd" name="" pid=9072 comm="libvirtd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0

This implies the libvirtd apparmor profile needs the 'attach_disconnected' flag, but the 42.3 package should already have that. For more info see https://bugzilla.opensuse.org/show_bug.cgi?id=1045158#c4

I recall someone else hitting a similar issue, which they resolved by nuking the apparmor cache dir contents and restarting apparmor. Perhaps you also need such drastic measure :-).

Marcus, is this the case? Is the cached libvirtd profile not being updated properly? I suppose you could re-parse the profile and skip the cache with apparmor_parser --skip-cache -r /etc/apparmor.d/usr.sbin.libvirtd Do you see the denial after re-parsing the profile? -- You are receiving this mail because: You are on the CC list for the bug.

bugzilla_noreply＠novell.com

7 Feb 7 Feb

16:26

New subject: [Bug 1078498] virt-manager does not work on leap 42.3

http://bugzilla.suse.com/show_bug.cgi?id=1078498 http://bugzilla.suse.com/show_bug.cgi?id=1078498#c8 Marcus Meissner changed: What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(meissner@suse.com | |) | --- Comment #8 from Marcus Meissner --- ah, now I see the issue. the 42.2 -> 42.3 it created /etc/apparmor.d/usr.sbin.libvirtd.rpmnew as I had local modifications in /etc/apparmor.d/usr.sbin.libvirtd apparently. SO its a user fault I think -- You are receiving this mail because: You are on the CC list for the bug.

bugzilla_noreply＠novell.com

18:00

New subject: [Bug 1078498] virt-manager does not work on leap 42.3

http://bugzilla.suse.com/show_bug.cgi?id=1078498 http://bugzilla.suse.com/show_bug.cgi?id=1078498#c9 James Fehlig changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |INVALID --- Comment #9 from James Fehlig --- The various libvirt apparmor profile that live in /etc/apparmor.d/ are marked %config(noreplace). Closing the bug. Please reopen if you still have problems after replacing/merging your local changes. -- You are receiving this mail because: You are on the CC list for the bug.

2277

Age (days ago)

2284

Last active (days ago)

List overview

Download

8 comments

1 participants

participants (1)

bugzilla_noreply＠novell.com

[Bug 1078498] New: virt-manager does not work on leap 42.3

tags

participants (1)