internal error: cannot load AppArmor profile 'libvirt-

Question

I am receiving an error while starting up a newly created virtual machine in ubuntu 17.10 using Virtual machine Manager. It worked fine once but I shut it down and now can't get it to start, I get - Error starting domain: internal error: cannot load AppArmor profile 'libvirt-

Is your system fully updated? Have you run sudo apt-get update followed by sudo apt-get dist-upgrade? Did both complete without warnings or error messages? And please edit your question to include the full error. It seems incomplete. — DK Bose, May 07 '18 at 03:47
This could indicate a wrong apparmor profile being generated. You can check the UUID via virsh dominfo and then check for /etc/apparmor.d/libvirt/libvirt-<UUID>.files if that looks sane. — Christian Ehrhardt, May 07 '18 at 14:07

score 4 · Answer 1 · answered Dec 25 '22 at 18:18

4

Ubuntu 22.04 and I still have the issue. Good news : no need to uninstall apparmor. Only two quick steps are needed:

set security_driver = "none" in /etc/libvirt/qemu.conf

# vim /etc/libvirt/qemu.conf
security_driver = [ "selinux", "apparmor" ]
#security_driver = "selinux"
security_driver = "none"

restart libvirtd service

# systemctl restart libvirtd

answered Dec 25 '22 at 18:18

Daniel Andrzejewski

141

2

This "fixed" it for me. I wouldn't do this in production. – jeremyjjbrown Mar 22 '23 at 21:07

score 1 · Answer 2 · answered Sep 28 '18 at 19:13

1

I had to uninstall apparmor competely followed by a reinstall of apparmor to make it work.

answered Sep 28 '18 at 19:13

Charlie Candergart

11

score 1 · Answer 3 · edited May 25 '20 at 16:30

1

In my case the ISO image was on an mounted storage, so the solution was:

sudo nano /etc/apparmor.d/local/usr.lib.libvirt.virt-aa-helper

added the entries for iso:

/media/DATA/Downloads/Distros/** r,
/{media,mnt,opt,srv}/** r

That's it. The error is gone.

Reference: LibvirtApparmor - Ubuntu Wiki

edited May 25 '20 at 16:30

Kulfy

17,696

answered May 25 '20 at 12:51

Oliver Strixner

11

score 0 · Answer 4 · edited Dec 25 '18 at 07:20

0

I got the exact same error message on Ubuntu Server 18.04.1 x64 when moving kvm virtual machines from an older 14.04.5 Ubuntu Server install. Reinstalling apparmor didn't do it for me.

It turned out that I was missing the package libvirt-daemon-system. After installing this package, the virtual machines booted with no errors.

edited Dec 25 '18 at 07:20

Daniele Santi

3,164

answered Dec 25 '18 at 03:39

perry

11
3

score 0 · Answer 5 · answered Sep 29 '23 at 18:38

In my case (Ubuntu 22.04.2 LTS, virsh 8.0.0), I was simply out of disk space due to a couple large log files from some running containers in /var/lib/docker/overlay2. After cleaning this up, the VM running under Virtual Machine Manager (4.0.0) started with no errors.

headkaze · Answer 6 · 2024-01-18T18:56:12.763

Re-installing apparmor fixed it for me on Ubuntu 23.10

$ sudo apt remove --purge apparmor-utils apparmor-profiles apparmor-profiles-extra
$ sudo apt remove --purge apparmor
$ sudo rm -rf /var/cache/apparmor
$ sudo apt install apparmor apparmor-utils apparmor-profiles apparmor-profiles-extra
$ sudo apt remove --purge libvirt-daemon-system
$ sudo apt install libvirt-daemon-system
$ sudo systemctl restart libvirtd.service
$ sudo systemctl restart virtlogd.service
$ sudo systemctl restart virtlogd.socket

internal error: cannot load AppArmor profile 'libvirt-

6 Answers6

security_driver = [ "selinux", "apparmor" ]