Bug 1000678
Summary: | SELinux is preventing /usr/bin/qemu-kvm from 'create' accesses on the rawip_socket . | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | hx |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 19 | CC: | dominick.grift, dwalsh, lvrabec, mgrepl |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Unspecified | ||
Whiteboard: | abrt_hash:2c7d112cd01cc33e3a1a66d93cb2be8d045cce31ac0b38ea98e1ecb9b552b4a0 | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-08-26 19:51:15 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
hx
2013-08-24 08:38:01 UTC
Read the alert. ***** Plugin catchall_boolean (89.3 confidence) suggests ******************* If you want to allow confined virtual guests to interact with rawip sockets Then you must tell SELinux about this by enabling the 'virt_use_rawip' boolean. You can read 'virt_selinux' man page for more details. Do setsebool -P virt_use_rawip 1 |