Bug 444330

Summary: SELinux is preventing libvirtd (virtd_t) "sys_ptrace" to <Unknown> (virtd_t).
Product: [Fedora] Fedora Reporter: Geert Jansen <gjansen>
Component: selinux-policy-targetedAssignee: Daniel Walsh <dwalsh>
Status: CLOSED RAWHIDE QA Contact: Ben Levenson <benl>
Severity: high Docs Contact:
Priority: high    
Version: rawhideCC: bugzilla, veillard
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-05-07 15:42:32 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
avc-denial-1
none
avc-denial-2
none
avc-denial-3
none
virt-manager-error none

Description Geert Jansen 2008-04-27 09:15:48 UTC 
Description of problem:

Starting up virt-manager on Fedora 9 as a normal user results in an AVC denial
and breaks virt-manager.

Running virt-manager as root works.

Version-Release number of selected component (if applicable):

selinux-policy-targeted-3.3.1-35.fc9.noarch
libvirt-0.4.2-1.fc9.x86_64
virt-manager-0.5.4-3.fc9.x86_64

How reproducible:

Always

Steps to Reproduce:

1. Install F9 preview release, including virt-manager and kvm.
2. Run Applications -> System Tools -> Virtual Machine Manager
3. The system asks for the root password.
4. Error message: Unable to open a connection to the libvirt management daemon.
See attachment.
  
Actual results:

virt-manager cannot open a connection to libvirtd

Expected results:

virt-manager can connect and manage local virtual machines

Additional info:
Comment 1 Geert Jansen 2008-04-27 09:18:46 UTC 
Created attachment 303905 [details]
avc-denial-1
Comment 2 Geert Jansen 2008-04-27 09:19:02 UTC 
Created attachment 303906 [details]
avc-denial-2
Comment 3 Geert Jansen 2008-04-27 09:19:21 UTC 
Created attachment 303907 [details]
avc-denial-3
Comment 4 Geert Jansen 2008-04-27 09:19:40 UTC 
Created attachment 303908 [details]
virt-manager-error
Comment 5 Daniel Walsh 2008-05-07 15:42:32 UTC 
-Fixed in selinux-policy-3.3.1-45.fc9