VMware error with kernel-2.6.5-1.326 ... selinux

Andy Green fedora at warmcat.com
Fri Apr 16 13:02:47 UTC 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday 16 April 2004 09:46, Efthym wrote:

Hi Efthym -

> Make sure you are running runme.pl from the any-any update and not
> vmware-config.pl. runme.pl replaces the sources for the vmmon and vmnet
> modules, and then calls vmware-config.pl

[root at fastcat vmware-any-any-update59]# ll
total 1204
- -r--r--r--  1 root root    322 Apr 16 11:54 cpuinfo
- -rwxr-xr-x  1  884  201  21866 Mar 31  2002 runme.pl
- -rwxr-xr-x  1  884  201  28141 Apr 20  2003 services2.sh
- -rwxr-xr-x  1  884  201  29175 Apr 20  2003 services.sh
- -rwxr-xr-x  1 root root  21271 Apr 10 19:19 update
- -rw-r--r--  1  884  201  18769 Apr 10 19:19 update.c
- -rw-r--r--  1  884  201 778240 Apr 15 20:18 vmmon.tar
- -rw-r--r--  1  884  201 276480 Apr 15 20:18 vmnet.tar
[root at fastcat vmware-any-any-update59]# ./runme.pl
Updating /usr/bin/vmware ... Unknown version
Sorry, there is no binary patch available for your version of vmware.
VMware modules in "/usr/lib/vmware/modules/source" has been updated.

Before running VMware for the first time after update, you need to configure 
it
for your running kernel by invoking the following command:
"/usr/bin/vmware-config.pl". Do you want this script to invoke the command for
you now? [yes]

Making sure VMware Workstation's services are stopped.

Stopping VMware services:
   Virtual machine monitor                                 [  OK  ]
   Bridged networking on /dev/vmnet0                       [  OK  ]
   Virtual ethernet                                        [  OK  ]

Trying to find a suitable vmmon module for your running kernel.

None of VMware Workstation's pre-built vmmon modules is suitable for your
running kernel.  Do you want this program to try to build the vmmon module for
your system (you need to have a C compiler installed on your system)? [yes]

Using compiler "/usr/bin/gcc". Use environment variable CC to override.

What is the location of the directory of C header files that match your 
running
kernel? [/lib/modules/2.6.5-1.322/build/include]

Extracting the sources of the vmmon module.

Building the vmmon module.

Building for VMware Workstation 4.5.x or VMware GSX Server 3.0.0.
Using 2.6.x kernel build system.
make: Entering directory `/tmp/vmware-config3/vmmon-only'
make -C /lib/modules/2.6.5-1.322/build/include/.. SUBDIRS=$PWD SRCROOT=$PWD/. 
modules
make[1]: Entering directory `/lib/modules/2.6.5-1.322/build'
  CC [M]  /tmp/vmware-config3/vmmon-only/linux/driver.o
  CC [M]  /tmp/vmware-config3/vmmon-only/linux/hostif.o
In file included from /tmp/vmware-config3/vmmon-only/linux/hostif.c:3332:
/tmp/vmware-config3/vmmon-only/linux/hostif_compat.h: In function 
`HostIF_MarkPageDirty':
/tmp/vmware-config3/vmmon-only/linux/hostif_compat.h:193: error: too few 
arguments to function `HostIFGetUserPage'
make[2]: *** [/tmp/vmware-config3/vmmon-only/linux/hostif.o] Error 1
make[1]: *** [/tmp/vmware-config3/vmmon-only] Error 2
make[1]: Leaving directory `/lib/modules/2.6.5-1.322/build'
make: *** [vmmon.ko] Error 2
make: Leaving directory `/tmp/vmware-config3/vmmon-only'
Unable to build the vmmon module.

For more information on how to troubleshoot module-related problems, please
visit our Web site at "http://www.vmware.com/download/modules/modules.html" 
and
"http://www.vmware.com/support/reference/linux/prebuilt_modules_linux.html".

Execution aborted.

[root at fastcat vmware-any-any-update59]# vmware -v
VMware Workstation 4.5.1 build-7568

> Did you check /var/log/messages for any errors ?

GAH!!!  Well spotted.  This is the first time I really got bit by selinux, 
then.

Apr 16 12:56:34 fastcat kernel: audit(1082120194.494:0): avc:  denied  
{ search } for  pid=31038 exe=/usr/bin/perl dev=hdc2 ino=2 
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=dir
Apr 16 12:56:34 fastcat kernel: audit(1082120194.494:0): avc:  denied  
{ read } for  pid=31038 exe=/usr/bin/perl name=libperl.so dev=hdc2 
ino=3926355 scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t 
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.494:0): avc:  denied  
{ getattr } for  pid=31038 exe=/usr/bin/perl 
path=/usr/lib/perl5/5.8.3/i386-linux-thread-multi/CORE/libperl.so dev=hdc2 
ino=3926355 scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t 
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.494:0): avc:  denied  
{ execute } for  pid=31038 
path=/usr/lib/perl5/5.8.3/i386-linux-thread-multi/CORE/libperl.so dev=hdc2 
ino=3926355 scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t 
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.496:0): avc:  denied  
{ ioctl } for  pid=31038 exe=/usr/bin/perl 
path=/usr/lib/perl5/5.8.3/strict.pm dev=hdc2 ino=2698384 
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.601:0): avc:  denied  
{ getattr } for  pid=31038 exe=/usr/bin/perl path=/etc/vmware/locations 
dev=hdc2 ino=4449408 scontext=root:system_r:vmware_t 
tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.601:0): avc:  denied  
{ read } for  pid=31038 exe=/usr/bin/perl name=locations dev=hdc2 ino=4449408 
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.601:0): avc:  denied  
{ ioctl } for  pid=31038 exe=/usr/bin/perl path=/etc/vmware/locations 
dev=hdc2 ino=4449408 scontext=root:system_r:vmware_t 
tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.606:0): avc:  denied  
{ append } for  pid=31038 exe=/usr/bin/perl name=locations dev=hdc2 
ino=4449408 scontext=root:system_r:vmware_t tcontext=root:object_r:file_t 
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.634:0): avc:  denied  
{ execute_no_trans } for  pid=31040 exe=/usr/bin/perl path=/bin/bash dev=hdc2 
ino=441894 scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t 
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.719:0): avc:  denied  
{ search } for  pid=31040 exe=/sbin/ifconfig name=net dev= ino=4198 
scontext=root:system_r:vmware_t tcontext=system_u:object_r:sysctl_net_t 
tclass=dir
Apr 16 12:56:34 fastcat kernel: audit(1082120194.725:0): avc:  denied  
{ execute } for  pid=31041 exe=/bin/bash name=vmware dev=hdc2 ino=4235207 
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.725:0): avc:  denied  
{ execute_no_trans } for  pid=31041 exe=/bin/bash 
path=/etc/rc.d/init.d/vmware dev=hdc2 ino=4235207 
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:42 fastcat kernel: audit(1082120202.489:0): avc:  denied  
{ getattr } for  pid=31364 exe=/usr/bin/gcc path=/usr dev=hdc2 ino=4022593 
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=dir
Apr 16 12:56:42 fastcat kernel: audit(1082120202.548:0): avc:  denied  
{ read } for  pid=31038 exe=/usr/bin/perl name=asm dev=hdc2 ino=3959774 
scontext=root:system_r:vmware_t tcontext=system_u:object_r:modules_object_t 
tclass=lnk_file
Apr 16 12:56:44 fastcat kernel: audit(1082120204.370:0): avc:  denied  
{ write } for  pid=31038 exe=/usr/bin/perl name=tmp dev=hdc2 ino=1896833 
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=dir
Apr 16 12:56:44 fastcat kernel: audit(1082120204.371:0): avc:  denied  
{ add_name } for  pid=31038 exe=/usr/bin/perl name=vmware-config3 
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=dir
Apr 16 12:56:44 fastcat kernel: audit(1082120204.452:0): avc:  denied  
{ create } for  pid=31415 exe=/bin/tar name=geninclude.c 
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:44 fastcat kernel: audit(1082120204.452:0): avc:  denied  
{ write } for  pid=31415 exe=/bin/tar 
path=/tmp/vmware-config3/vmmon-only/autoconf/geninclude.c dev=hdc2 
ino=1962327 scontext=root:system_r:vmware_t tcontext=root:object_r:file_t 
tclass=file
Apr 16 12:56:44 fastcat kernel: audit(1082120204.452:0): avc:  denied  
{ setattr } for  pid=31415 exe=/bin/tar name=geninclude.c dev=hdc2 
ino=1962327 scontext=root:system_r:vmware_t tcontext=root:object_r:file_t 
tclass=file
Apr 16 12:56:51 fastcat kernel: audit(1082120211.594:0): avc:  denied  
{ unlink } for  pid=31510 exe=/bin/rm name=.driver.o.d dev=hdc2 ino=1962411 
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:51 fastcat kernel: audit(1082120211.696:0): avc:  denied  
{ rename } for  pid=31511 exe=/bin/mv name=.driver.o.tmp dev=hdc2 ino=1962412 
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:57:23 fastcat kernel: audit(1082120243.498:0): avc:  denied  
{ unix_read unix_write } for  pid=27170 exe=/usr/X11R6/bin/Xorg key=0 
scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t 
tclass=shm
Apr 16 12:57:23 fastcat kernel: audit(1082120243.498:0): avc:  denied  { read 
write } for  pid=27170 exe=/usr/X11R6/bin/Xorg key=0 
scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t 
tclass=shm
Apr 16 12:57:23 fastcat kernel: audit(1082120243.498:0): avc:  denied  { use } 
for  pid=27170 path=/SYSV00000000 (deleted) dev= ino=28803072 
scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t tclass=fd
Apr 16 12:57:23 fastcat kernel: audit(1082120243.498:0): avc:  denied  
{ getattr associate } for  pid=27170 exe=/usr/X11R6/bin/Xorg key=0 
scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t 
tclass=shm

> [root at Purgatory vmware-any-any-update59]# setenforce 0

I have pretty much no understanding of selinux yet, other than the general 
idea of what it is trying to do (which potentially sounds great).  Is 
setenfore <- 0 going to cause troubles when I want to turn it back on, in 
which case I should maybe wait for a better policy file?  Or vmware not being 
part of the distro, can we expect no policy support for it?

- -Andy

- -- 
Automatic actions for USB cameras, cardreaders, memory sticks, MP3 players
http://warmcat.com/usbautocam
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAf9l8jKeDCxMJCTIRAvKtAJ9UaHn9Q7dvSu8m0F6le77OfS5MzQCghdTx
dL9SLqkoh20B56Yeobh75VA=
=QW63
-----END PGP SIGNATURE-----





More information about the fedora-test-list mailing list