[Pkg-libvirt-maintainers] Bug#1065404: virt-manager: Cannot load AooArmor profile
Erik de Castro Lopo
erikd at mega-nerd.com
Sun Mar 3 23:58:50 GMT 2024
Package: virt-manager
Version: 1:4.1.0-3
Severity: normal
Dear Maintainer,
I moved the `/var/lib/libvirt/images` directory to a new disk at `/libvirt/images`
and created a symlink from the former to the later.
The 3 VM disk images were working at the old location but at the new location
I get an error:
libvirt.libvirtError: internal error: cannot load AppArmor profile 'libvirt-....'
Running virt-manager as recommended:
> virt-manager --debug --no-fork
[Mon, 04 Mar 2024 10:21:10 virt-manager 324444] DEBUG (cli:204) Version 4.1.0 launched with command line: /usr/bin/virt-manager --debug --no-fork
[Mon, 04 Mar 2024 10:21:10 virt-manager 324444] DEBUG (virtmanager:167) virt-manager version: 4.1.0
[Mon, 04 Mar 2024 10:21:10 virt-manager 324444] DEBUG (virtmanager:168) virtManager import: /usr/share/virt-manager/virtManager
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (virtmanager:205) PyGObject version: 3.47.0
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (virtmanager:209) GTK version: 3.24.41
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (systray:84) Imported AppIndicator3=<IntrospectionModule 'AyatanaAppIndicator3' from '/usr/lib/x86_64-linux-gnu/girepository-1.0/AyatanaAppIndicator3-0.1.typelib'>
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (systray:86) AppIndicator3 is available, but didn't find any dbus watcher.
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (systray:476) Showing systray: False
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (inspection:206) python guestfs is not installed
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (engine:113) Loading stored URIs:
qemu:///system
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (engine:461) processing cli command uri= show_window=manager domain=
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (engine:464) No cli action requested, launching default window
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (manager:185) Showing manager
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (engine:316) window counter incremented to 1
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (engine:211) Initial gtkapplication activated
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (connection:482) conn=qemu:///system changed to state=Connecting
[Mon, 04 Mar 2024 10:21:11 virt-manager 324444] DEBUG (connection:903) Scheduling background open thread for qemu:///system
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:128) libvirt URI versions library=10.0.0 driver=10.0.0 hypervisor=8.2.1
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:109) Fetched capabilities for qemu:///system: <capabilities>
<host>
<uuid>03d502e0-045e-0541-c606-a40700080009</uuid>
<cpu>
<arch>x86_64</arch>
<model>Skylake-Client</model>
<vendor>Intel</vendor>
<microcode version='110'/>
<signature family='6' model='158' stepping='10'/>
<counter name='tsc' frequency='3191999000' scaling='no'/>
<topology sockets='1' dies='1' cores='6' threads='2'/>
<maxphysaddr mode='emulate' bits='39'/>
<feature name='ds'/>
<feature name='acpi'/>
<feature name='ss'/>
<feature name='ht'/>
<feature name='tm'/>
<feature name='pbe'/>
<feature name='dtes64'/>
<feature name='monitor'/>
<feature name='ds_cpl'/>
<feature name='vmx'/>
<feature name='smx'/>
<feature name='est'/>
<feature name='tm2'/>
<feature name='xtpr'/>
<feature name='pdcm'/>
<feature name='osxsave'/>
<feature name='tsc_adjust'/>
<feature name='sgx'/>
<feature name='clflushopt'/>
<feature name='intel-pt'/>
<feature name='sgxlc'/>
<feature name='xsaves'/>
<feature name='pdpe1gb'/>
<feature name='invtsc'/>
<pages unit='KiB' size='4'/>
<pages unit='KiB' size='2048'/>
<pages unit='KiB' size='1048576'/>
</cpu>
<power_management>
<suspend_mem/>
<suspend_disk/>
<suspend_hybrid/>
</power_management>
<iommu support='yes'/>
<migration_features>
<live/>
<uri_transports>
<uri_transport>tcp</uri_transport>
<uri_transport>rdma</uri_transport>
</uri_transports>
</migration_features>
<topology>
<cells num='1'>
<cell id='0'>
<memory unit='KiB'>49290208</memory>
<pages unit='KiB' size='4'>12322552</pages>
<pages unit='KiB' size='2048'>0</pages>
<pages unit='KiB' size='1048576'>0</pages>
<distances>
<sibling id='0' value='10'/>
</distances>
<cpus num='12'>
<cpu id='0' socket_id='0' die_id='0' core_id='0' siblings='0,6'/>
<cpu id='1' socket_id='0' die_id='0' core_id='1' siblings='1,7'/>
<cpu id='2' socket_id='0' die_id='0' core_id='2' siblings='2,8'/>
<cpu id='3' socket_id='0' die_id='0' core_id='3' siblings='3,9'/>
<cpu id='4' socket_id='0' die_id='0' core_id='4' siblings='4,10'/>
<cpu id='5' socket_id='0' die_id='0' core_id='5' siblings='5,11'/>
<cpu id='6' socket_id='0' die_id='0' core_id='0' siblings='0,6'/>
<cpu id='7' socket_id='0' die_id='0' core_id='1' siblings='1,7'/>
<cpu id='8' socket_id='0' die_id='0' core_id='2' siblings='2,8'/>
<cpu id='9' socket_id='0' die_id='0' core_id='3' siblings='3,9'/>
<cpu id='10' socket_id='0' die_id='0' core_id='4' siblings='4,10'/>
<cpu id='11' socket_id='0' die_id='0' core_id='5' siblings='5,11'/>
</cpus>
</cell>
</cells>
</topology>
<cache>
<bank id='0' level='3' type='both' size='12' unit='MiB' cpus='0-11'/>
</cache>
<secmodel>
<model>apparmor</model>
<doi>0</doi>
</secmodel>
<secmodel>
<model>dac</model>
<doi>0</doi>
<baselabel type='kvm'>+64055:+64055</baselabel>
<baselabel type='qemu'>+64055:+64055</baselabel>
</secmodel>
</host>
<guest>
<os_type>hvm</os_type>
<arch name='i686'>
<wordsize>32</wordsize>
<emulator>/usr/bin/qemu-system-i386</emulator>
<machine maxCpus='255'>pc-i440fx-8.2</machine>
<machine canonical='pc-i440fx-8.2' maxCpus='255'>pc</machine>
<machine maxCpus='288'>pc-q35-5.2</machine>
<machine maxCpus='255'>pc-i440fx-2.12</machine>
<machine maxCpus='255' deprecated='yes'>pc-i440fx-2.0</machine>
<machine maxCpus='255'>pc-i440fx-6.2</machine>
<machine maxCpus='288'>pc-q35-4.2</machine>
<machine maxCpus='255'>pc-i440fx-2.5</machine>
<machine maxCpus='255'>pc-i440fx-4.2</machine>
<machine maxCpus='255'>pc-i440fx-5.2</machine>
<machine maxCpus='255'>pc-q35-2.7</machine>
<machine maxCpus='288'>pc-q35-7.1</machine>
<machine maxCpus='255' deprecated='yes'>pc-i440fx-2.2</machine>
<machine maxCpus='1024'>pc-q35-8.1</machine>
<machine maxCpus='255'>pc-i440fx-8.1</machine>
<machine maxCpus='255'>pc-i440fx-2.7</machine>
<machine maxCpus='288'>pc-q35-6.1</machine>
<machine maxCpus='255'>pc-q35-2.4</machine>
<machine maxCpus='255'>pc-i440fx-7.1</machine>
<machine maxCpus='288'>pc-q35-2.10</machine>
<machine maxCpus='1'>x-remote</machine>
<machine maxCpus='288'>pc-q35-5.1</machine>
<machine maxCpus='288'>pc-q35-2.9</machine>
<machine maxCpus='255'>pc-i440fx-2.11</machine>
<machine maxCpus='288'>pc-q35-3.1</machine>
<machine maxCpus='255'>pc-i440fx-6.1</machine>
<machine maxCpus='288'>pc-q35-4.1</machine>
<machine maxCpus='255'>pc-i440fx-2.4</machine>
<machine maxCpus='255'>pc-i440fx-4.1</machine>
<machine maxCpus='255'>pc-i440fx-5.1</machine>
<machine maxCpus='255'>pc-i440fx-2.9</machine>
<machine maxCpus='1'>isapc</machine>
<machine maxCpus='255'>pc-q35-2.6</machine>
<machine maxCpus='255'>pc-i440fx-3.1</machine>
<machine maxCpus='288'>pc-q35-2.12</machine>
<machine maxCpus='288'>pc-q35-7.0</machine>
<machine maxCpus='255' deprecated='yes'>pc-i440fx-2.1</machine>
<machine maxCpus='288'>pc-q35-8.0</machine>
<machine maxCpus='255'>pc-i440fx-8.0</machine>
<machine maxCpus='288'>pc-q35-6.0</machine>
<machine maxCpus='255'>pc-i440fx-2.6</machine>
<machine maxCpus='288'>pc-q35-4.0.1</machine>
<machine maxCpus='255'>pc-i440fx-7.0</machine>
<machine maxCpus='288'>pc-q35-5.0</machine>
<machine maxCpus='288'>pc-q35-2.8</machine>
<machine maxCpus='255'>pc-i440fx-2.10</machine>
<machine maxCpus='288'>pc-q35-3.0</machine>
<machine maxCpus='288'>pc-q35-7.2</machine>
<machine maxCpus='288'>pc-q35-4.0</machine>
<machine maxCpus='255'>pc-i440fx-6.0</machine>
<machine maxCpus='288'>microvm</machine>
<machine maxCpus='255' deprecated='yes'>pc-i440fx-2.3</machine>
<machine maxCpus='255'>pc-i440fx-4.0</machine>
<machine maxCpus='1024'>pc-q35-8.2</machine>
<machine canonical='pc-q35-8.2' maxCpus='1024'>q35</machine>
<machine maxCpus='255'>pc-i440fx-5.0</machine>
<machine maxCpus='255'>pc-i440fx-2.8</machine>
<machine maxCpus='288'>pc-q35-6.2</machine>
<machine maxCpus='255'>pc-q35-2.5</machine>
<machine maxCpus='255'>pc-i440fx-3.0</machine>
<machine maxCpus='255'>pc-i440fx-7.2</machine>
<machine maxCpus='288'>pc-q35-2.11</machine>
<domain type='qemu'/>
<domain type='kvm'/>
</arch>
<features>
<pae/>
<nonpae/>
<acpi default='on' toggle='yes'/>
<apic default='on' toggle='no'/>
<cpuselection/>
<deviceboot/>
<disksnapshot default='on' toggle='no'/>
<externalSnapshot/>
</features>
</guest>
<guest>
<os_type>hvm</os_type>
<arch name='x86_64'>
<wordsize>64</wordsize>
<emulator>/usr/bin/qemu-system-x86_64</emulator>
<machine maxCpus='255'>pc-i440fx-8.2</machine>
<machine canonical='pc-i440fx-8.2' maxCpus='255'>pc</machine>
<machine maxCpus='288'>pc-q35-5.2</machine>
<machine maxCpus='255'>pc-i440fx-2.12</machine>
<machine maxCpus='255' deprecated='yes'>pc-i440fx-2.0</machine>
<machine maxCpus='255'>pc-i440fx-6.2</machine>
<machine maxCpus='288'>pc-q35-4.2</machine>
<machine maxCpus='255'>pc-i440fx-2.5</machine>
<machine maxCpus='255'>pc-i440fx-4.2</machine>
<machine maxCpus='255'>pc-i440fx-5.2</machine>
<machine maxCpus='255'>pc-q35-2.7</machine>
<machine maxCpus='288'>pc-q35-7.1</machine>
<machine maxCpus='255' deprecated='yes'>pc-i440fx-2.2</machine>
<machine maxCpus='1024'>pc-q35-8.1</machine>
<machine maxCpus='255'>pc-i440fx-8.1</machine>
<machine maxCpus='255'>pc-i440fx-2.7</machine>
<machine maxCpus='288'>pc-q35-6.1</machine>
<machine maxCpus='255'>pc-q35-2.4</machine>
<machine maxCpus='255'>pc-i440fx-7.1</machine>
<machine maxCpus='288'>pc-q35-2.10</machine>
<machine maxCpus='1'>x-remote</machine>
<machine maxCpus='288'>pc-q35-5.1</machine>
<machine maxCpus='288'>pc-q35-2.9</machine>
<machine maxCpus='255'>pc-i440fx-2.11</machine>
<machine maxCpus='288'>pc-q35-3.1</machine>
<machine maxCpus='255'>pc-i440fx-6.1</machine>
<machine maxCpus='288'>pc-q35-4.1</machine>
<machine maxCpus='255'>pc-i440fx-2.4</machine>
<machine maxCpus='255'>pc-i440fx-4.1</machine>
<machine maxCpus='255'>pc-i440fx-5.1</machine>
<machine maxCpus='255'>pc-i440fx-2.9</machine>
<machine maxCpus='1'>isapc</machine>
<machine maxCpus='255'>pc-q35-2.6</machine>
<machine maxCpus='255'>pc-i440fx-3.1</machine>
<machine maxCpus='288'>pc-q35-2.12</machine>
<machine maxCpus='288'>pc-q35-7.0</machine>
<machine maxCpus='255' deprecated='yes'>pc-i440fx-2.1</machine>
<machine maxCpus='288'>pc-q35-8.0</machine>
<machine maxCpus='255'>pc-i440fx-8.0</machine>
<machine maxCpus='288'>pc-q35-6.0</machine>
<machine maxCpus='255'>pc-i440fx-2.6</machine>
<machine maxCpus='288'>pc-q35-4.0.1</machine>
<machine maxCpus='255'>pc-i440fx-7.0</machine>
<machine maxCpus='288'>pc-q35-5.0</machine>
<machine maxCpus='288'>pc-q35-2.8</machine>
<machine maxCpus='255'>pc-i440fx-2.10</machine>
<machine maxCpus='288'>pc-q35-3.0</machine>
<machine maxCpus='288'>pc-q35-7.2</machine>
<machine maxCpus='288'>pc-q35-4.0</machine>
<machine maxCpus='255'>pc-i440fx-6.0</machine>
<machine maxCpus='288'>microvm</machine>
<machine maxCpus='255' deprecated='yes'>pc-i440fx-2.3</machine>
<machine maxCpus='1024'>pc-q35-8.2</machine>
<machine canonical='pc-q35-8.2' maxCpus='1024'>q35</machine>
<machine maxCpus='255'>pc-i440fx-4.0</machine>
<machine maxCpus='255'>pc-i440fx-5.0</machine>
<machine maxCpus='255'>pc-i440fx-2.8</machine>
<machine maxCpus='288'>pc-q35-6.2</machine>
<machine maxCpus='255'>pc-q35-2.5</machine>
<machine maxCpus='255'>pc-i440fx-3.0</machine>
<machine maxCpus='255'>pc-i440fx-7.2</machine>
<machine maxCpus='288'>pc-q35-2.11</machine>
<domain type='qemu'/>
<domain type='kvm'/>
</arch>
<features>
<acpi default='on' toggle='yes'/>
<apic default='on' toggle='no'/>
<cpuselection/>
<deviceboot/>
<disksnapshot default='on' toggle='no'/>
<externalSnapshot/>
</features>
</guest>
</capabilities>
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:739) Using domain events
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:778) Using network events
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:797) Using storage pool events
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:822) Using node device events
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) network=default status=Active added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:691) storage pool refresh event: pool=erikd
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) pool=erikd status=Active added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) domain=daedalus status=Shutoff added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:691) storage pool refresh event: pool=tmp
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) domain=vm-one status=Shutoff added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) domain=mainnet2 status=Shutoff added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) pool=tmp status=Active added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:691) storage pool refresh event: pool=erikd-1
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) pool=erikd-1 status=Active added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:691) storage pool refresh event: pool=default
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) pool=default status=Active added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:691) storage pool refresh event: pool=Downloads
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:1072) pool=Downloads status=Active added
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (storage:137) Found default pool name=default target=/var/lib/libvirt/images
[Mon, 04 Mar 2024 10:21:15 virt-manager 324444] DEBUG (connection:482) conn=qemu:///system changed to state=Active
[Mon, 04 Mar 2024 10:21:18 virt-manager 324444] DEBUG (serialcon:17) Using VTE API 2.91
[Mon, 04 Mar 2024 10:21:18 virt-manager 324444] DEBUG (xmleditor:12) Using GtkSource 4
[Mon, 04 Mar 2024 10:21:18 virt-manager 324444] DEBUG (domcapabilities:245) Fetched domain capabilities for (/usr/bin/qemu-system-x86_64,x86_64,pc-q35-6.2,kvm): <domainCapabilities>
<path>/usr/bin/qemu-system-x86_64</path>
<domain>kvm</domain>
<machine>pc-q35-6.2</machine>
<arch>x86_64</arch>
<vcpu max='288'/>
<iothreads supported='yes'/>
<os supported='yes'>
<enum name='firmware'>
<value>efi</value>
</enum>
<loader supported='yes'>
<value>/usr/share/OVMF/OVMF_CODE_4M.ms.fd</value>
<value>/usr/share/OVMF/OVMF_CODE_4M.secboot.fd</value>
<value>/usr/share/OVMF/OVMF_CODE_4M.fd</value>
<enum name='type'>
<value>rom</value>
<value>pflash</value>
</enum>
<enum name='readonly'>
<value>yes</value>
<value>no</value>
</enum>
<enum name='secure'>
<value>yes</value>
<value>no</value>
</enum>
</loader>
</os>
<cpu>
<mode name='host-passthrough' supported='yes'>
<enum name='hostPassthroughMigratable'>
<value>on</value>
<value>off</value>
</enum>
</mode>
<mode name='maximum' supported='yes'>
<enum name='maximumMigratable'>
<value>on</value>
<value>off</value>
</enum>
</mode>
<mode name='host-model' supported='yes'>
<model fallback='forbid'>Skylake-Client</model>
<vendor>Intel</vendor>
<maxphysaddr mode='passthrough' limit='39'/>
<feature policy='require' name='ss'/>
<feature policy='require' name='vmx'/>
<feature policy='require' name='pdcm'/>
<feature policy='require' name='hypervisor'/>
<feature policy='require' name='tsc_adjust'/>
<feature policy='require' name='clflushopt'/>
<feature policy='require' name='umip'/>
<feature policy='require' name='arch-capabilities'/>
<feature policy='require' name='xsaves'/>
<feature policy='require' name='pdpe1gb'/>
<feature policy='require' name='invtsc'/>
<feature policy='require' name='skip-l1dfl-vmentry'/>
<feature policy='require' name='pschange-mc-no'/>
<feature policy='require' name='vmx-ins-outs'/>
<feature policy='require' name='vmx-true-ctls'/>
<feature policy='require' name='vmx-store-lma'/>
<feature policy='require' name='vmx-activity-hlt'/>
<feature policy='require' name='vmx-activity-wait-sipi'/>
<feature policy='require' name='vmx-vmwrite-vmexit-fields'/>
<feature policy='require' name='vmx-apicv-xapic'/>
<feature policy='require' name='vmx-ept'/>
<feature policy='require' name='vmx-desc-exit'/>
<feature policy='require' name='vmx-rdtscp-exit'/>
<feature policy='require' name='vmx-apicv-x2apic'/>
<feature policy='require' name='vmx-vpid'/>
<feature policy='require' name='vmx-wbinvd-exit'/>
<feature policy='require' name='vmx-unrestricted-guest'/>
<feature policy='require' name='vmx-rdrand-exit'/>
<feature policy='require' name='vmx-invpcid-exit'/>
<feature policy='require' name='vmx-vmfunc'/>
<feature policy='require' name='vmx-shadow-vmcs'/>
<feature policy='require' name='vmx-rdseed-exit'/>
<feature policy='require' name='vmx-pml'/>
<feature policy='require' name='vmx-xsaves'/>
<feature policy='require' name='vmx-invvpid'/>
<feature policy='require' name='vmx-invvpid-single-addr'/>
<feature policy='require' name='vmx-invvpid-all-context'/>
<feature policy='require' name='vmx-ept-execonly'/>
<feature policy='require' name='vmx-page-walk-4'/>
<feature policy='require' name='vmx-ept-2mb'/>
<feature policy='require' name='vmx-ept-1gb'/>
<feature policy='require' name='vmx-invept'/>
<feature policy='require' name='vmx-eptad'/>
<feature policy='require' name='vmx-invept-single-context'/>
<feature policy='require' name='vmx-invept-all-context'/>
<feature policy='require' name='vmx-intr-exit'/>
<feature policy='require' name='vmx-nmi-exit'/>
<feature policy='require' name='vmx-vnmi'/>
<feature policy='require' name='vmx-preemption-timer'/>
<feature policy='require' name='vmx-vintr-pending'/>
<feature policy='require' name='vmx-tsc-offset'/>
<feature policy='require' name='vmx-hlt-exit'/>
<feature policy='require' name='vmx-invlpg-exit'/>
<feature policy='require' name='vmx-mwait-exit'/>
<feature policy='require' name='vmx-rdpmc-exit'/>
<feature policy='require' name='vmx-rdtsc-exit'/>
<feature policy='require' name='vmx-cr3-load-noexit'/>
<feature policy='require' name='vmx-cr3-store-noexit'/>
<feature policy='require' name='vmx-cr8-load-exit'/>
<feature policy='require' name='vmx-cr8-store-exit'/>
<feature policy='require' name='vmx-flexpriority'/>
<feature policy='require' name='vmx-vnmi-pending'/>
<feature policy='require' name='vmx-movdr-exit'/>
<feature policy='require' name='vmx-io-exit'/>
<feature policy='require' name='vmx-io-bitmap'/>
<feature policy='require' name='vmx-mtf'/>
<feature policy='require' name='vmx-msr-bitmap'/>
<feature policy='require' name='vmx-monitor-exit'/>
<feature policy='require' name='vmx-pause-exit'/>
<feature policy='require' name='vmx-secondary-ctls'/>
<feature policy='require' name='vmx-exit-nosave-debugctl'/>
<feature policy='require' name='vmx-exit-load-perf-global-ctrl'/>
<feature policy='require' name='vmx-exit-ack-intr'/>
<feature policy='require' name='vmx-exit-save-pat'/>
<feature policy='require' name='vmx-exit-load-pat'/>
<feature policy='require' name='vmx-exit-save-efer'/>
<feature policy='require' name='vmx-exit-load-efer'/>
<feature policy='require' name='vmx-exit-save-preemption-timer'/>
<feature policy='require' name='vmx-exit-clear-bndcfgs'/>
<feature policy='require' name='vmx-entry-noload-debugctl'/>
<feature policy='require' name='vmx-entry-ia32e-mode'/>
<feature policy='require' name='vmx-entry-load-perf-global-ctrl'/>
<feature policy='require' name='vmx-entry-load-pat'/>
<feature policy='require' name='vmx-entry-load-efer'/>
<feature policy='require' name='vmx-entry-load-bndcfgs'/>
<feature policy='require' name='vmx-eptp-switching'/>
</mode>
<mode name='custom' supported='yes'>
<model usable='yes' vendor='unknown'>qemu64</model>
<model usable='yes' vendor='unknown'>qemu32</model>
<model usable='no' vendor='AMD'>phenom</model>
<model usable='yes' vendor='unknown'>pentium3</model>
<model usable='yes' vendor='unknown'>pentium2</model>
<model usable='yes' vendor='unknown'>pentium</model>
<model usable='yes' vendor='Intel'>n270</model>
<model usable='yes' vendor='unknown'>kvm64</model>
<model usable='yes' vendor='unknown'>kvm32</model>
<model usable='yes' vendor='Intel'>coreduo</model>
<model usable='yes' vendor='Intel'>core2duo</model>
<model usable='no' vendor='AMD'>athlon</model>
<model usable='no' vendor='Intel'>Westmere-IBRS</model>
<model usable='yes' vendor='Intel'>Westmere</model>
<model usable='no' vendor='Intel'>Snowridge</model>
<model usable='no' vendor='Intel'>Skylake-Server-noTSX-IBRS</model>
<model usable='no' vendor='Intel'>Skylake-Server-IBRS</model>
<model usable='no' vendor='Intel'>Skylake-Server</model>
<model usable='no' vendor='Intel'>Skylake-Client-noTSX-IBRS</model>
<model usable='no' vendor='Intel'>Skylake-Client-IBRS</model>
<model usable='yes' vendor='Intel'>Skylake-Client</model>
<model usable='no' vendor='Intel'>SapphireRapids</model>
<model usable='no' vendor='Intel'>SandyBridge-IBRS</model>
<model usable='yes' vendor='Intel'>SandyBridge</model>
<model usable='yes' vendor='Intel'>Penryn</model>
<model usable='no' vendor='AMD'>Opteron_G5</model>
<model usable='no' vendor='AMD'>Opteron_G4</model>
<model usable='no' vendor='AMD'>Opteron_G3</model>
<model usable='yes' vendor='AMD'>Opteron_G2</model>
<model usable='yes' vendor='AMD'>Opteron_G1</model>
<model usable='no' vendor='Intel'>Nehalem-IBRS</model>
<model usable='yes' vendor='Intel'>Nehalem</model>
<model usable='no' vendor='Intel'>IvyBridge-IBRS</model>
<model usable='yes' vendor='Intel'>IvyBridge</model>
<model usable='no' vendor='Intel'>Icelake-Server-noTSX</model>
<model usable='no' vendor='Intel'>Icelake-Server</model>
<model usable='no' vendor='Intel'>Haswell-noTSX-IBRS</model>
<model usable='yes' vendor='Intel'>Haswell-noTSX</model>
<model usable='no' vendor='Intel'>Haswell-IBRS</model>
<model usable='yes' vendor='Intel'>Haswell</model>
<model usable='no' vendor='AMD'>EPYC-Rome</model>
<model usable='no' vendor='AMD'>EPYC-Milan</model>
<model usable='no' vendor='AMD'>EPYC-IBPB</model>
<model usable='no' vendor='AMD'>EPYC-Genoa</model>
<model usable='no' vendor='AMD'>EPYC</model>
<model usable='no' vendor='Hygon'>Dhyana</model>
<model usable='no' vendor='Intel'>Cooperlake</model>
<model usable='yes' vendor='Intel'>Conroe</model>
<model usable='no' vendor='Intel'>Cascadelake-Server-noTSX</model>
<model usable='no' vendor='Intel'>Cascadelake-Server</model>
<model usable='no' vendor='Intel'>Broadwell-noTSX-IBRS</model>
<model usable='yes' vendor='Intel'>Broadwell-noTSX</model>
<model usable='no' vendor='Intel'>Broadwell-IBRS</model>
<model usable='yes' vendor='Intel'>Broadwell</model>
<model usable='yes' vendor='unknown'>486</model>
</mode>
</cpu>
<memoryBacking supported='yes'>
<enum name='sourceType'>
<value>file</value>
<value>anonymous</value>
<value>memfd</value>
</enum>
</memoryBacking>
<devices>
<disk supported='yes'>
<enum name='diskDevice'>
<value>disk</value>
<value>cdrom</value>
<value>floppy</value>
<value>lun</value>
</enum>
<enum name='bus'>
<value>fdc</value>
<value>scsi</value>
<value>virtio</value>
<value>usb</value>
<value>sata</value>
</enum>
<enum name='model'>
<value>virtio</value>
<value>virtio-transitional</value>
<value>virtio-non-transitional</value>
</enum>
</disk>
<graphics supported='yes'>
<enum name='type'>
<value>sdl</value>
<value>vnc</value>
<value>spice</value>
<value>egl-headless</value>
<value>dbus</value>
</enum>
</graphics>
<video supported='yes'>
<enum name='modelType'>
<value>vga</value>
<value>cirrus</value>
<value>vmvga</value>
<value>qxl</value>
<value>virtio</value>
<value>none</value>
<value>bochs</value>
<value>ramfb</value>
</enum>
</video>
<hostdev supported='yes'>
<enum name='mode'>
<value>subsystem</value>
</enum>
<enum name='startupPolicy'>
<value>default</value>
<value>mandatory</value>
<value>requisite</value>
<value>optional</value>
</enum>
<enum name='subsysType'>
<value>usb</value>
<value>pci</value>
<value>scsi</value>
</enum>
<enum name='capsType'/>
<enum name='pciBackend'>
<value>default</value>
<value>vfio</value>
</enum>
</hostdev>
<rng supported='yes'>
<enum name='model'>
<value>virtio</value>
<value>virtio-transitional</value>
<value>virtio-non-transitional</value>
</enum>
<enum name='backendModel'>
<value>random</value>
<value>egd</value>
<value>builtin</value>
</enum>
</rng>
<filesystem supported='yes'>
<enum name='driverType'>
<value>path</value>
<value>handle</value>
<value>virtiofs</value>
</enum>
</filesystem>
<tpm supported='yes'>
<enum name='model'>
<value>tpm-tis</value>
<value>tpm-crb</value>
</enum>
<enum name='backendModel'>
<value>passthrough</value>
<value>emulator</value>
<value>external</value>
</enum>
<enum name='backendVersion'>
<value>1.2</value>
<value>2.0</value>
</enum>
</tpm>
<redirdev supported='yes'>
<enum name='bus'>
<value>usb</value>
</enum>
</redirdev>
<channel supported='yes'>
<enum name='type'>
<value>pty</value>
<value>unix</value>
<value>spicevmc</value>
</enum>
</channel>
<crypto supported='yes'>
<enum name='model'>
<value>virtio</value>
</enum>
<enum name='type'>
<value>qemu</value>
</enum>
<enum name='backendModel'>
<value>builtin</value>
</enum>
</crypto>
</devices>
<features>
<gic supported='no'/>
<vmcoreinfo supported='yes'/>
<genid supported='yes'/>
<backingStoreInput supported='yes'/>
<backup supported='yes'/>
<async-teardown supported='yes'/>
<sev supported='no'/>
<sgx supported='no'/>
<hyperv supported='yes'>
<enum name='features'>
<value>relaxed</value>
<value>vapic</value>
<value>spinlocks</value>
<value>vpindex</value>
<value>runtime</value>
<value>synic</value>
<value>stimer</value>
<value>reset</value>
<value>vendor_id</value>
<value>frequencies</value>
<value>reenlightenment</value>
<value>tlbflush</value>
<value>ipi</value>
<value>evmcs</value>
<value>avic</value>
</enum>
</hyperv>
</features>
</domainCapabilities>
[Mon, 04 Mar 2024 10:21:19 virt-manager 324444] DEBUG (vmwindow:185) Showing VM details: <vmmDomain name=vm-one id=0x7f53b806e540>
[Mon, 04 Mar 2024 10:21:19 virt-manager 324444] DEBUG (engine:316) window counter incremented to 2
[Mon, 04 Mar 2024 10:21:26 virt-manager 324444] DEBUG (vmmenu:210) Starting vm 'vm-one'
[Mon, 04 Mar 2024 10:21:26 virt-manager 324444] DEBUG (error:101) error dialog message:
summary=Error starting domain: internal error: cannot load AppArmor profile 'libvirt-c80a08cd-5f9a-3e43-f6a8-78a275573097'
details=Traceback (most recent call last):
File "/usr/share/virt-manager/virtManager/asyncjob.py", line 72, in cb_wrapper
callback(asyncjob, *args, **kwargs)
File "/usr/share/virt-manager/virtManager/asyncjob.py", line 108, in tmpcb
callback(*args, **kwargs)
File "/usr/share/virt-manager/virtManager/object/libvirtobject.py", line 57, in newfn
ret = fn(self, *args, **kwargs)
^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/share/virt-manager/virtManager/object/domain.py", line 1402, in startup
self._backend.create()
File "/usr/lib/python3/dist-packages/libvirt.py", line 1379, in create
raise libvirtError('virDomainCreate() failed')
libvirt.libvirtError: internal error: cannot load AppArmor profile 'libvirt-c80a08cd-5f9a-3e43-f6a8-78a275573097'
I googled for possible solutions and checked:
* Apt upgraded everything.
* /etc/apparmor.d/libvirt/libvirt-c80a08cd-5f9a-3e43-f6a8-78a275573097.files looks sane.
* Checked `/etc/apparmor.d/local/usr.lib.libvirt.virt-aa-helper` which contains:
```
/libvirt/images/* r
```
* Stopped and restarted `libvirtd.service`, `virtlogd.service` and `virtlogd.socket`.
* Removed and purged and reinstalled `apparmor`, `apparmor-utils`, `apparmor-profiles`,
`apparmor-profiles-extra` `libvirt-daemon-system`
None of the above fixed or even changed the problem. I am also not able to create
a new VM due to the same issue.
Apart from the changed disk location, I cannot see anything different. However I copied
one of the disk images back to the old location and it worked perfectly.
-- System Information:
Debian Release: trixie/sid
APT prefers testing
APT policy: (900, 'testing'), (800, 'unstable'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.6.15-amd64 (SMP w/12 CPU threads; PREEMPT)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_AU.UTF-8), LANGUAGE=en_AU:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages virt-manager depends on:
ii dconf-gsettings-backend [gsettings-backend] 0.40.0-4+b1
ii gir1.2-gtk-3.0 3.24.41-1
ii gir1.2-gtk-vnc-2.0 1.3.1-1+b1
ii gir1.2-gtksource-4 4.8.4-5+b1
ii gir1.2-libosinfo-1.0 1.11.0-2
ii gir1.2-libvirt-glib-1.0 5.0.0-2
ii gir1.2-vte-2.91 0.75.91-2
ii python3 3.11.6-1
ii python3-gi 3.47.0-3
ii python3-gi-cairo 3.47.0-3
ii python3-libvirt 10.0.0-1
ii virtinst 1:4.1.0-3
Versions of packages virt-manager recommends:
ii gir1.2-ayatanaappindicator3-0.1 0.5.93-1
ii gir1.2-spiceclientglib-2.0 0.42-2+b1
ii gir1.2-spiceclientgtk-3.0 0.42-2+b1
ii libvirt-daemon-system 10.0.0-2
Versions of packages virt-manager suggests:
ii gir1.2-secret-1 0.21.2-1
ii gnome-keyring 42.1-1+b2
pn python3-guestfs <none>
pn ssh-askpass <none>
ii virt-viewer 11.0-3
Versions of packages virt-manager is related to:
ii libvirt-clients 10.0.0-2
ii libvirt-daemon 10.0.0-2
ii libvirt0 10.0.0-2
ii osinfo-db 0.20231215-1
-- debconf-show failed
More information about the Pkg-libvirt-maintainers
mailing list