Red Hat Bugzilla – Bug 245728
running kvm via a normal user
Last modified: 2007-11-30 17:12:08 EST
Description of problem: I want to use virt-manager to utilize full virtualization provided by kvm as a normal user. But I found that it is not possible. Either I need to run virt-manager as root user or I need to add the normal user to sudoers list. Isn't it possible to provide virtualization access to normal users too via having some kind of udev rules. Version-Release number of selected component (if applicable): kvm-24-1 kernel-2.6.21-1.3228.fc7
The problem is that this allows the user to lock large amounts of memory on the system which could be a DoS.
An alternative is to at least create a group kvm and then allow anyone in the group to run kvm. All that needs to be done is add a kvm group and the following line somewhere in a file in /etc/udev/rules.d/ KERNEL=="kvm",MODE="0660",GROUP="kvm" Then the system admin can add users to kvm or not depending on whether they are worried about the DoS possibilities.
See bug 346151 for a similar request.