Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
fix nvme by disabling qemu security driver
NVMe drives are attached via extra qemu commands, this causes launching of guests to fail as qemu cannot access the drives. On Fedora, setting the right ownership of the drives seems to make this work with SELinux. However this is not enough on Debian and Ubuntu where Apparmor still blocks reading of /var/lib/libvirt/images. As this is designed for dev work, this change disables the security driver for qemu to avoid this problem. It's better than disabling SELinux. This change adds a new variable `virt_infra_security_driver` which lets you set the driver you want to use. It is set to "none" by default in order to disable it. Depending on your host, set this in your kvmhost vars to either "selinux" or "apparmor" if you want to keep it enabled for your system. If someone knows of a proper fix for Debian/Ubuntu (Apparmor?) then please let me know. For a good explanation, see here: coreos/bugs#2083 (comment)
- Loading branch information