Hi Guido, It's only needed when a user actually clicks on the running VM in virt-manager. It's not defined differently in the domain xml. I'm thinking that means virt-aa-helper can't help us in this case, but am open to being proven wrong. Thanks! Bryan On Wed, Mar 1, 2017 at 1:04 AM, Guido Günther <agx@xxxxxxxxxxx> wrote: > On Tue, Feb 28, 2017 at 01:48:31PM -0500, Bryan Quigley wrote: >> Also see Ubuntu bug >> https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1668681 >> First reported https://askubuntu.com/questions/833964/virt-manager-cant-connect-to-graphical-console/888220#888220 >> >> --- >> examples/apparmor/libvirt-qemu | 3 +++ >> 1 file changed, 3 insertions(+) >> >> diff --git a/examples/apparmor/libvirt-qemu b/examples/apparmor/libvirt-qemu >> index a9020aa..19d99e5 100644 >> --- a/examples/apparmor/libvirt-qemu >> +++ b/examples/apparmor/libvirt-qemu >> @@ -151,3 +151,6 @@ >> /etc/udev/udev.conf r, >> /sys/bus/ r, >> /sys/class/ r, >> + >> + # allow connect with openGraphicsFD to work >> + unix (send, receive) type=stream peer=(label=/usr/sbin/libvirtd), > > Shouldn't this only be added via virt-aa-helper when a corresponding > console is in use? > Cheers, > -- Guido -- libvir-list mailing list libvir-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvir-list
