Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 1486405 Details for
Bug 1632231
libvirt SELinux policy doesn't allow access to sockets in the home directory
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
log2
log2 (text/plain), 8.19 KB, created by
Richard W.M. Jones
on 2018-09-24 13:25:40 UTC
(
hide
)
Description:
log2
Filename:
MIME Type:
Creator:
Richard W.M. Jones
Created:
2018-09-24 13:25:40 UTC
Size:
8.19 KB
patch
obsolete
>libguestfs: trace: set_pgroup true >libguestfs: trace: set_pgroup = 0 >libguestfs: trace: add_drive "" "format:raw" "protocol:nbd" "server:unix:/home/rjones/test.sock" >libguestfs: trace: add_drive = 0 >libguestfs: trace: launch >libguestfs: trace: max_disks >libguestfs: trace: max_disks = 255 >libguestfs: trace: get_tmpdir >libguestfs: trace: get_tmpdir = "/tmp" >libguestfs: trace: version >libguestfs: trace: version = <struct guestfs_version = major: 1, minor: 38, release: 2, extra: rhel=7,release=12.21.lp.el7,libvirt, > >libguestfs: trace: get_backend >libguestfs: trace: get_backend = "libvirt" >libguestfs: launch: program=guestfish >libguestfs: launch: version=1.38.2rhel=7,release=12.21.lp.el7,libvirt >libguestfs: launch: backend registered: unix >libguestfs: launch: backend registered: uml >libguestfs: launch: backend registered: libvirt >libguestfs: launch: backend registered: direct >libguestfs: launch: backend=libvirt >libguestfs: launch: tmpdir=/tmp/libguestfs05cqWE >libguestfs: launch: umask=0002 >libguestfs: launch: euid=1000 >libguestfs: libvirt version = 4005000 (4.5.0) >libguestfs: guest random name = guestfs-58fxjomdmc20luzm >libguestfs: connect to libvirt >libguestfs: opening libvirt handle: URI = qemu:///session, auth = default+wrapper, flags = 0 >libguestfs: successfully opened libvirt handle: conn = 0x55a0f239daf0 >libguestfs: qemu version (reported by libvirt) = 2012000 (2.12.0) >libguestfs: get libvirt capabilities >libguestfs: parsing capabilities XML >libguestfs: trace: get_backend_setting "force_tcg" >libguestfs: trace: get_backend_setting = NULL (error) >libguestfs: trace: get_backend_setting "internal_libvirt_label" >libguestfs: trace: get_backend_setting = NULL (error) >libguestfs: trace: get_backend_setting "internal_libvirt_imagelabel" >libguestfs: trace: get_backend_setting = NULL (error) >libguestfs: trace: get_backend_setting "internal_libvirt_norelabel_disks" >libguestfs: trace: get_backend_setting = NULL (error) >libguestfs: build appliance >libguestfs: trace: get_cachedir >libguestfs: trace: get_cachedir = "/var/tmp" >libguestfs: begin building supermin appliance >libguestfs: run supermin >libguestfs: command: run: /usr/bin/supermin5 >libguestfs: command: run: \ --build >libguestfs: command: run: \ --verbose >libguestfs: command: run: \ --if-newer >libguestfs: command: run: \ --lock /var/tmp/.guestfs-1000/lock >libguestfs: command: run: \ --copy-kernel >libguestfs: command: run: \ -f ext2 >libguestfs: command: run: \ --host-cpu x86_64 >libguestfs: command: run: \ /usr/lib64/guestfs/supermin.d >libguestfs: command: run: \ -o /var/tmp/.guestfs-1000/appliance.d >supermin: version: 5.1.19 >supermin: rpm: detected RPM version 4.13 >supermin: package handler: fedora/rpm >supermin: acquiring lock on /var/tmp/.guestfs-1000/lock >supermin: if-newer: output does not need rebuilding >libguestfs: finished building supermin appliance >libguestfs: trace: disk_create "/tmp/libguestfs05cqWE/overlay1.qcow2" "qcow2" -1 "backingfile:/var/tmp/.guestfs-1000/appliance.d/root" "backingformat:raw" >libguestfs: command: run: qemu-img >libguestfs: command: run: \ create >libguestfs: command: run: \ -f qcow2 >libguestfs: command: run: \ -o backing_file=/var/tmp/.guestfs-1000/appliance.d/root,backing_fmt=raw >libguestfs: command: run: \ /tmp/libguestfs05cqWE/overlay1.qcow2 >Formatting '/tmp/libguestfs05cqWE/overlay1.qcow2', fmt=qcow2 size=4294967296 backing_file=/var/tmp/.guestfs-1000/appliance.d/root backing_fmt=raw cluster_size=65536 lazy_refcounts=off refcount_bits=16 >libguestfs: trace: disk_create = 0 >libguestfs: trace: get_sockdir >libguestfs: trace: get_sockdir = "/run/user/1000" >libguestfs: create libvirt XML >libguestfs: trace: get_cachedir >libguestfs: trace: get_cachedir = "/var/tmp" >libguestfs: libvirt XML:\n<?xml version="1.0"?>\n<domain type="kvm" xmlns:qemu="http://libvirt.org/schemas/domain/qemu/1.0">\n <name>guestfs-58fxjomdmc20luzm</name>\n <memory unit="MiB">500</memory>\n <currentMemory unit="MiB">500</currentMemory>\n <cpu mode="host-passthrough">\n <model fallback="allow"/>\n </cpu>\n <vcpu>1</vcpu>\n <clock offset="utc">\n <timer name="rtc" tickpolicy="catchup"/>\n <timer name="pit" tickpolicy="delay"/>\n <timer name="hpet" present="no"/>\n </clock>\n <os>\n <type>hvm</type>\n <kernel>/var/tmp/.guestfs-1000/appliance.d/kernel</kernel>\n <initrd>/var/tmp/.guestfs-1000/appliance.d/initrd</initrd>\n <cmdline>panic=1 console=ttyS0 edd=off udevtimeout=6000 udev.event-timeout=6000 no_timer_check printk.time=1 cgroup_disable=memory usbcore.nousb cryptomgr.notests tsc=reliable 8250.nr_uarts=1 root=/dev/sdb selinux=0 guestfs_verbose=1 TERM=xterm-256color</cmdline>\n <bios useserial="yes"/>\n </os>\n <on_reboot>destroy</on_reboot>\n <devices>\n <rng model="virtio">\n <backend model="random">/dev/urandom</backend>\n </rng>\n <controller type="scsi" index="0" model="virtio-scsi"/>\n <disk device="disk" type="network">\n <source protocol="nbd">\n <host transport="unix" socket="/home/rjones/test.sock"/>\n </source>\n <target dev="sda" bus="scsi"/>\n <driver name="qemu" type="raw" cache="writeback"/>\n <address type="drive" controller="0" bus="0" target="0" unit="0"/>\n </disk>\n <disk type="file" device="disk">\n <source file="/tmp/libguestfs05cqWE/overlay1.qcow2"/>\n <target dev="sdb" bus="scsi"/>\n <driver name="qemu" type="qcow2" cache="unsafe"/>\n <address type="drive" controller="0" bus="0" target="1" unit="0"/>\n </disk>\n <serial type="unix">\n <source mode="connect" path="/run/user/1000/libguestfslybZ84/console.sock"/>\n <target port="0"/>\n </serial>\n <channel type="unix">\n <source mode="connect" path="/run/user/1000/libguestfslybZ84/guestfsd.sock"/>\n <target type="virtio" name="org.libguestfs.channel.0"/>\n </channel>\n <controller type="usb" model="none"/>\n <memballoon model="none"/>\n </devices>\n <qemu:commandline>\n <qemu:env name="TMPDIR" value="/var/tmp"/>\n </qemu:commandline>\n</domain>\n >libguestfs: trace: get_cachedir >libguestfs: trace: get_cachedir = "/var/tmp" >libguestfs: command: run: ls >libguestfs: command: run: \ -a >libguestfs: command: run: \ -l >libguestfs: command: run: \ -R >libguestfs: command: run: \ -Z /var/tmp/.guestfs-1000 >libguestfs: /var/tmp/.guestfs-1000: >libguestfs: drwxr-xr-x. rjones rjones unconfined_u:object_r:user_tmp_t:s0 . >libguestfs: drwxrwxrwt. root root system_u:object_r:tmp_t:s0 .. >libguestfs: drwxr-xr-x. rjones rjones unconfined_u:object_r:user_tmp_t:s0 appliance.d >libguestfs: -rw-r--r--. rjones rjones unconfined_u:object_r:user_tmp_t:s0 lock >libguestfs: >libguestfs: /var/tmp/.guestfs-1000/appliance.d: >libguestfs: drwxr-xr-x. rjones rjones unconfined_u:object_r:user_tmp_t:s0 . >libguestfs: drwxr-xr-x. rjones rjones unconfined_u:object_r:user_tmp_t:s0 .. >libguestfs: -rw-r--r--. rjones rjones system_u:object_r:virt_content_t:s0 initrd >libguestfs: -rwxr-xr-x. rjones rjones system_u:object_r:virt_content_t:s0 kernel >libguestfs: -rw-r--r--. rjones rjones system_u:object_r:virt_content_t:s0 root >libguestfs: command: run: ls >libguestfs: command: run: \ -a >libguestfs: command: run: \ -l >libguestfs: command: run: \ -Z /run/user/1000/libguestfslybZ84 >libguestfs: drwx------. rjones rjones unconfined_u:object_r:user_tmp_t:s0 . >libguestfs: drwx------. rjones rjones system_u:object_r:user_tmp_t:s0 .. >libguestfs: srwxrwxr-x. rjones rjones unconfined_u:object_r:user_tmp_t:s0 console.sock >libguestfs: srwxrwxr-x. rjones rjones unconfined_u:object_r:user_tmp_t:s0 guestfsd.sock >libguestfs: launch libvirt guest >libguestfs: error: could not create appliance through libvirt. > >Try running qemu directly without libvirt using this environment variable: >export LIBGUESTFS_BACKEND=direct > >Original error from libvirt: internal error: process exited while connecting to monitor: 2018-09-24T13:24:39.951608Z qemu-kvm: -drive file=nbd:unix:/home/rjones/test.sock,format=raw,if=none,id=drive-scsi0-0-0-0,cache=writeback: Failed to connect socket /home/rjones/test.sock: Permission denied [code=1 int1=-1] >libguestfs: trace: launch = -1 (error) >libguestfs: trace: close >libguestfs: closing guestfs handle 0x55a0f239afc0 (state 0) >libguestfs: command: run: rm >libguestfs: command: run: \ -rf /tmp/libguestfs05cqWE >libguestfs: command: run: rm >libguestfs: command: run: \ -rf /run/user/1000/libguestfslybZ84
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1486405">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 1632231
:
1486404
| 1486405 |
1486707
|
1486708
|
1486741