mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-12-25 01:34:11 +03:00
Allow VM to read sysfs PCI config, revision files
This fixes a blank screen when viewing a VM with virtio graphics and gl-accelerated Spice display on Ubuntu 22.04 / libvirt 8.0.0 / qemu 6.2. Without these AppArmor permissions, the libvirt error log contains repetitions of: qemu_spice_gl_scanout_texture: failed to get fd for texture This appears to be similar to this GNOME Boxes issue: https://gitlab.gnome.org/GNOME/gnome-boxes/-/issues/586 Fixes: https://launchpad.net/bugs/1972075 Signed-off-by: Max Goodhart <c@chromakode.com> Reviewed-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
This commit is contained in:
parent
1bd24e79be
commit
42cb548045
@ -1316,7 +1316,7 @@ get_files(vahControl * ctl)
|
||||
virBufferAddLit(&buf, " \"/dev/nvidiactl\" rw,\n");
|
||||
virBufferAddLit(&buf, " # Probe DRI device attributes\n");
|
||||
virBufferAddLit(&buf, " \"/dev/dri/\" r,\n");
|
||||
virBufferAddLit(&buf, " \"/sys/devices/**/{uevent,vendor,device,subsystem_vendor,subsystem_device}\" r,\n");
|
||||
virBufferAddLit(&buf, " \"/sys/devices/**/{uevent,vendor,device,subsystem_vendor,subsystem_device,config,revision}\" r,\n");
|
||||
virBufferAddLit(&buf, " # dri libs will trigger that, but t is not requited and DAC would deny it anyway\n");
|
||||
virBufferAddLit(&buf, " deny \"/var/lib/libvirt/.cache/\" w,\n");
|
||||
}
|
||||
|
Loading…
Reference in New Issue
Block a user