Description of problem: Installation of VirtualBox 5.1 / installing kernel module with /sbin/vboxconfig after completing all the steps from https://forums.virtualbox.org/viewtopic.php?f=7&t=77363&start=15#p361135 SELinux is preventing vboxdrv.sh from 'open' accesses on the file /etc/udev/rules.d/60-vboxdrv.rules. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that vboxdrv.sh should be allowed open access on the 60-vboxdrv.rules file by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'vboxdrv.sh' --raw | audit2allow -M my-vboxdrvsh # semodule -X 300 -i my-vboxdrvsh.pp Additional Information: Source Context system_u:system_r:init_t:s0 Target Context unconfined_u:object_r:udev_rules_t:s0 Target Objects /etc/udev/rules.d/60-vboxdrv.rules [ file ] Source vboxdrv.sh Source Path vboxdrv.sh Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-191.5.fc24.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 4.6.4-301.fc24.x86_64 #1 SMP Tue Jul 12 11:50:00 UTC 2016 x86_64 x86_64 Alert Count 2 First Seen 2016-07-25 22:39:00 EEST Last Seen 2016-07-25 22:39:00 EEST Local ID 157e467e-ea41-4886-aa21-259d844641bf Raw Audit Messages type=AVC msg=audit(1469475540.950:289): avc: denied { open } for pid=13417 comm="vboxdrv.sh" path="/etc/udev/rules.d/60-vboxdrv.rules" dev="dm-1" ino=414773 scontext=system_u:system_r:init_t:s0 tcontext=unconfined_u:object_r:udev_rules_t:s0 tclass=file permissive=0 Hash: vboxdrv.sh,init_t,udev_rules_t,file,open Version-Release number of selected component: selinux-policy-3.13.1-191.5.fc24.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.6.4-301.fc24.x86_64 type: libreport
*** Bug 1360153 has been marked as a duplicate of this bug. ***
Description of problem: I downloaded virtualbox from Oracle's website and installed via gnome software center. After opening it, I set up an arch vm and tried to run it. SELinux threw an error preventing virtual box from reading or writing a config file. SELinux gave a workaround that I followed: # ausearch -c 'vboxdrv.sh' --raw | audit2allow -M my-vboxdrvsh # semodule -X 300 -i my-vboxdrvsh.pp However it fails everytime I try it (as root) and I cannot get virtualbox to reconfigure the file. Version-Release number of selected component: selinux-policy-3.13.1-191.8.fc24.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.6.4-301.fc24.x86_64 type: libreport
Description of problem: Attempted to install VirtualBox 5.1 from the Oracle yum repositories. The driver/module setup seems to trigger this SELinux problem. Version-Release number of selected component: selinux-policy-3.13.1-191.8.fc24.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.6.5-300.fc24.x86_64 type: libreport
(In reply to Alex Rhodes from comment #2) > Description of problem: > I downloaded virtualbox from Oracle's website and installed via gnome > software center. > After opening it, I set up an arch vm and tried to run it. SELinux threw an > error preventing virtual box from reading or > writing a config file. > SELinux gave a workaround that I followed: > # ausearch -c 'vboxdrv.sh' --raw | audit2allow -M my-vboxdrvsh > # semodule -X 300 -i my-vboxdrvsh.pp > However it fails everytime I try it (as root) and I cannot get virtualbox to > reconfigure the file. > > Version-Release number of selected component: > selinux-policy-3.13.1-191.8.fc24.noarch > > Additional info: > reporter: libreport-2.7.2 > hashmarkername: setroubleshoot > kernel: 4.6.4-301.fc24.x86_64 > type: libreport Try `dnf remove -y VirtualBox-5.1` then set SELinux to permissive with `setenforce 0`. Now reinstall with `dnf install -y path/to/rpm` and it'll create the file.
Description of problem: I can't run one S.O. in VirtualBox when I run a S.O. SELinux stop it Version-Release number of selected component: selinux-policy-3.13.1-191.8.fc24.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.5.5-300.fc24.x86_64 type: libreport
Description of problem: the rpm package should set up the required policy for vboxdrv.sh Version-Release number of selected component: selinux-policy-3.13.1-191.13.fc24.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.6.7-300.fc24.x86_64 type: libreport
Description of problem: /sbin/vbconfigure Version-Release number of selected component: selinux-policy-3.13.1-191.13.fc24.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.6.7-300.fc24.x86_64 type: libreport
*** This bug has been marked as a duplicate of bug 1358950 ***