Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

B OpenNebula/one#6584: Fix location for datastores path in apparmor policy file and uncomment #2912

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

mkutouski
Copy link
Contributor

@mkutouski mkutouski commented May 10, 2024

Description

Fix location for datastores path in apparmor policy file and remove the leading # as it's treated by apparmor. as comment.

Branches to which this PR applies

  • master
  • one-6.8
  • one-6.8-maintenance
  • one-6.4
  • one-6.4-maintenance

  • Check this if this PR should not be squashed

Signed-off-by: Mikalai Kutouski <mkutouski@opennebula.io>
@mkutouski mkutouski linked an issue May 10, 2024 that may be closed by this pull request
3 tasks
@@ -1,7 +1,7 @@
Depending on the type of OpenNebula deployment, the AppArmor can block some operations initiated by the OpenNebula Front-end, which results in a failure of the particular operation. It's **not recommended to disable** the apparmor on production environments, as it degrades the security of your server, but to investigate and workaround each individual problem, a good starting point is `AppArmor HowToUse Guide <https://wiki.debian.org/AppArmor/HowToUse/>`__. The administrator might disable the AppArmor to temporarily workaround the problem or on non-production deployments the steps for disabling it can be found `here <https://wiki.debian.org/AppArmor/HowToUse#Disable_AppArmor>`__.

.. note:: Depending on your OpenNebula deployment type, the following lines might be required at ``/etc/apparmor.d/abstractions/libvirt-qemu`` profile:
.. note:: Depending on your OpenNebula deployment type, the following lines might be required at ``/etc/apparmor.d/local/abstractions/libvirt-qemu`` profile:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The patch seems to be wrong, in 2404:

$ cat /etc/os-release
PRETTY_NAME="Ubuntu 24.04 LTS"
NAME="Ubuntu"
VERSION_ID="24.04"
VERSION="24.04 LTS (Noble Numbat)"
VERSION_CODENAME=noble

The path in the documentation seems to be right (i.e. no local) ?

$ ls -la /etc/apparmor.d/abstractions/libvirt-qemu
-rw-r--r-- 1 root root 9776 Jul  1 18:12 /etc/apparmor.d/abstractions/libvirt-qemu

Copy link
Member

@rsmontero rsmontero left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please check path seems that current one is correct

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Fix apparmor rule for datastores path
2 participants