Bug 516799

Summary: selinux prevents qemu-kvm (svirt_t) "setrlimit" svirt_t. No virtual machines will start.
Product: [Fedora] Fedora Reporter: Jón Fairbairn <jon.fairbairn>
Component: selinux-policyAssignee: Daniel Walsh <dwalsh>
Status: CLOSED DUPLICATE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: urgent Docs Contact:
Priority: low    
Version: 11CC: dwalsh, jkubin, mgrepl
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-08-11 22:49:12 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
alert saved by sealert none

Description Jón Fairbairn 2009-08-11 14:55:36 UTC 
Created attachment 357031 [details]
alert saved by sealert 

Description of problem:
If I attempt to start any virtual machines I get the attached selinux denial.

Version-Release number of selected component (if applicable):
selinux-policy-3.6.12-69.fc11.noarch
selinux-policy-targeted-3.6.12-69.fc11.noarch
kernel-2.6.29.6-217.2.3.fc11.x86_64
libvirt-0.6.2-13.fc11.x86_64

How reproducible:
Every time I try since rebooting into the present kernel.

Steps to Reproduce:
1. virsh start whatever
2.
3.
  
Actual results:
Denial attached, also denial concerning terminal

Expected results:
Virtual machine should start


Additional info:
Owing to bug #514208 I have run kernel-2.6.29.5-191.fc11.x86_64 up until yesterday.  Bug can be reproduced by defining a new virtual machine, so it's not restricted to the ones I made earlier.
Comment 1 Daniel Walsh 2009-08-11 22:49:12 UTC 
This seems to be a glibc problem.

*** This bug has been marked as a duplicate of bug 515521 ***