Bug 249397 - SELinux interaction with VMware
SELinux interaction with VMware
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
Depends On:
  Show dependency treegraph
Reported: 2007-07-24 09:01 EDT by Tony Camuso
Modified: 2007-10-29 16:06 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2007-10-29 16:06:31 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Tony Camuso 2007-07-24 09:01:22 EDT
Description of problem:

Cannot mount hgfs disks or USB jump drives on Linux guest running on XP host in
VMware player. 

The following alerts were issued and the drives were not mounted. 

SELinux is preventing /sbin/ifconfig (ifconfig_t) "read" to
/var/run/vmware-active-nics (initrc_var_run_t).

SELinux denied access requested by /sbin/ifconfig. It is not expected that this
access is required by /sbin/ifconfig and this access may signal an intrusion
attempt. It is also possible that the specific version or configuration of the
application is causing it to require additional access.

Sometimes labeling problems can cause SELinux denials. You could try to restore
the default system file context for /var/run/vmware-active-nics, restorecon -v
/var/run/vmware-active-nics If this does not work, there is currently no
automatic way to allow this access. Instead, you can generate a local policy
module to allow this access - see FAQ Or you can disable SELinux protection
altogether. Disabling SELinux protection is not recommended. Please file a bug
report against this package.

Version-Release number of selected component (if applicable):

How reproducible:
Every boot

Steps to Reproduce:
1. Boot fedora guest with kernel on XP host. 
Actual results:

The above alerts. 

Expected results:

No alerts. 

Additional info:
Comment 1 Tony Camuso 2007-10-29 16:06:31 EDT
VMWARE has informed me that they do not support Fedora guests. 

Note You need to log in before you can comment on or make changes to this bug.