VMware error with kernel-2.6.5-1.326 ... selinux
Andy Green
fedora at warmcat.com
Fri Apr 16 13:02:47 UTC 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Friday 16 April 2004 09:46, Efthym wrote:
Hi Efthym -
> Make sure you are running runme.pl from the any-any update and not
> vmware-config.pl. runme.pl replaces the sources for the vmmon and vmnet
> modules, and then calls vmware-config.pl
[root at fastcat vmware-any-any-update59]# ll
total 1204
- -r--r--r-- 1 root root 322 Apr 16 11:54 cpuinfo
- -rwxr-xr-x 1 884 201 21866 Mar 31 2002 runme.pl
- -rwxr-xr-x 1 884 201 28141 Apr 20 2003 services2.sh
- -rwxr-xr-x 1 884 201 29175 Apr 20 2003 services.sh
- -rwxr-xr-x 1 root root 21271 Apr 10 19:19 update
- -rw-r--r-- 1 884 201 18769 Apr 10 19:19 update.c
- -rw-r--r-- 1 884 201 778240 Apr 15 20:18 vmmon.tar
- -rw-r--r-- 1 884 201 276480 Apr 15 20:18 vmnet.tar
[root at fastcat vmware-any-any-update59]# ./runme.pl
Updating /usr/bin/vmware ... Unknown version
Sorry, there is no binary patch available for your version of vmware.
VMware modules in "/usr/lib/vmware/modules/source" has been updated.
Before running VMware for the first time after update, you need to configure
it
for your running kernel by invoking the following command:
"/usr/bin/vmware-config.pl". Do you want this script to invoke the command for
you now? [yes]
Making sure VMware Workstation's services are stopped.
Stopping VMware services:
Virtual machine monitor [ OK ]
Bridged networking on /dev/vmnet0 [ OK ]
Virtual ethernet [ OK ]
Trying to find a suitable vmmon module for your running kernel.
None of VMware Workstation's pre-built vmmon modules is suitable for your
running kernel. Do you want this program to try to build the vmmon module for
your system (you need to have a C compiler installed on your system)? [yes]
Using compiler "/usr/bin/gcc". Use environment variable CC to override.
What is the location of the directory of C header files that match your
running
kernel? [/lib/modules/2.6.5-1.322/build/include]
Extracting the sources of the vmmon module.
Building the vmmon module.
Building for VMware Workstation 4.5.x or VMware GSX Server 3.0.0.
Using 2.6.x kernel build system.
make: Entering directory `/tmp/vmware-config3/vmmon-only'
make -C /lib/modules/2.6.5-1.322/build/include/.. SUBDIRS=$PWD SRCROOT=$PWD/.
modules
make[1]: Entering directory `/lib/modules/2.6.5-1.322/build'
CC [M] /tmp/vmware-config3/vmmon-only/linux/driver.o
CC [M] /tmp/vmware-config3/vmmon-only/linux/hostif.o
In file included from /tmp/vmware-config3/vmmon-only/linux/hostif.c:3332:
/tmp/vmware-config3/vmmon-only/linux/hostif_compat.h: In function
`HostIF_MarkPageDirty':
/tmp/vmware-config3/vmmon-only/linux/hostif_compat.h:193: error: too few
arguments to function `HostIFGetUserPage'
make[2]: *** [/tmp/vmware-config3/vmmon-only/linux/hostif.o] Error 1
make[1]: *** [/tmp/vmware-config3/vmmon-only] Error 2
make[1]: Leaving directory `/lib/modules/2.6.5-1.322/build'
make: *** [vmmon.ko] Error 2
make: Leaving directory `/tmp/vmware-config3/vmmon-only'
Unable to build the vmmon module.
For more information on how to troubleshoot module-related problems, please
visit our Web site at "http://www.vmware.com/download/modules/modules.html"
and
"http://www.vmware.com/support/reference/linux/prebuilt_modules_linux.html".
Execution aborted.
[root at fastcat vmware-any-any-update59]# vmware -v
VMware Workstation 4.5.1 build-7568
> Did you check /var/log/messages for any errors ?
GAH!!! Well spotted. This is the first time I really got bit by selinux,
then.
Apr 16 12:56:34 fastcat kernel: audit(1082120194.494:0): avc: denied
{ search } for pid=31038 exe=/usr/bin/perl dev=hdc2 ino=2
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=dir
Apr 16 12:56:34 fastcat kernel: audit(1082120194.494:0): avc: denied
{ read } for pid=31038 exe=/usr/bin/perl name=libperl.so dev=hdc2
ino=3926355 scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.494:0): avc: denied
{ getattr } for pid=31038 exe=/usr/bin/perl
path=/usr/lib/perl5/5.8.3/i386-linux-thread-multi/CORE/libperl.so dev=hdc2
ino=3926355 scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.494:0): avc: denied
{ execute } for pid=31038
path=/usr/lib/perl5/5.8.3/i386-linux-thread-multi/CORE/libperl.so dev=hdc2
ino=3926355 scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.496:0): avc: denied
{ ioctl } for pid=31038 exe=/usr/bin/perl
path=/usr/lib/perl5/5.8.3/strict.pm dev=hdc2 ino=2698384
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.601:0): avc: denied
{ getattr } for pid=31038 exe=/usr/bin/perl path=/etc/vmware/locations
dev=hdc2 ino=4449408 scontext=root:system_r:vmware_t
tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.601:0): avc: denied
{ read } for pid=31038 exe=/usr/bin/perl name=locations dev=hdc2 ino=4449408
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.601:0): avc: denied
{ ioctl } for pid=31038 exe=/usr/bin/perl path=/etc/vmware/locations
dev=hdc2 ino=4449408 scontext=root:system_r:vmware_t
tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.606:0): avc: denied
{ append } for pid=31038 exe=/usr/bin/perl name=locations dev=hdc2
ino=4449408 scontext=root:system_r:vmware_t tcontext=root:object_r:file_t
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.634:0): avc: denied
{ execute_no_trans } for pid=31040 exe=/usr/bin/perl path=/bin/bash dev=hdc2
ino=441894 scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t
tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.719:0): avc: denied
{ search } for pid=31040 exe=/sbin/ifconfig name=net dev= ino=4198
scontext=root:system_r:vmware_t tcontext=system_u:object_r:sysctl_net_t
tclass=dir
Apr 16 12:56:34 fastcat kernel: audit(1082120194.725:0): avc: denied
{ execute } for pid=31041 exe=/bin/bash name=vmware dev=hdc2 ino=4235207
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:34 fastcat kernel: audit(1082120194.725:0): avc: denied
{ execute_no_trans } for pid=31041 exe=/bin/bash
path=/etc/rc.d/init.d/vmware dev=hdc2 ino=4235207
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:42 fastcat kernel: audit(1082120202.489:0): avc: denied
{ getattr } for pid=31364 exe=/usr/bin/gcc path=/usr dev=hdc2 ino=4022593
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=dir
Apr 16 12:56:42 fastcat kernel: audit(1082120202.548:0): avc: denied
{ read } for pid=31038 exe=/usr/bin/perl name=asm dev=hdc2 ino=3959774
scontext=root:system_r:vmware_t tcontext=system_u:object_r:modules_object_t
tclass=lnk_file
Apr 16 12:56:44 fastcat kernel: audit(1082120204.370:0): avc: denied
{ write } for pid=31038 exe=/usr/bin/perl name=tmp dev=hdc2 ino=1896833
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=dir
Apr 16 12:56:44 fastcat kernel: audit(1082120204.371:0): avc: denied
{ add_name } for pid=31038 exe=/usr/bin/perl name=vmware-config3
scontext=root:system_r:vmware_t tcontext=system_u:object_r:file_t tclass=dir
Apr 16 12:56:44 fastcat kernel: audit(1082120204.452:0): avc: denied
{ create } for pid=31415 exe=/bin/tar name=geninclude.c
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:44 fastcat kernel: audit(1082120204.452:0): avc: denied
{ write } for pid=31415 exe=/bin/tar
path=/tmp/vmware-config3/vmmon-only/autoconf/geninclude.c dev=hdc2
ino=1962327 scontext=root:system_r:vmware_t tcontext=root:object_r:file_t
tclass=file
Apr 16 12:56:44 fastcat kernel: audit(1082120204.452:0): avc: denied
{ setattr } for pid=31415 exe=/bin/tar name=geninclude.c dev=hdc2
ino=1962327 scontext=root:system_r:vmware_t tcontext=root:object_r:file_t
tclass=file
Apr 16 12:56:51 fastcat kernel: audit(1082120211.594:0): avc: denied
{ unlink } for pid=31510 exe=/bin/rm name=.driver.o.d dev=hdc2 ino=1962411
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:56:51 fastcat kernel: audit(1082120211.696:0): avc: denied
{ rename } for pid=31511 exe=/bin/mv name=.driver.o.tmp dev=hdc2 ino=1962412
scontext=root:system_r:vmware_t tcontext=root:object_r:file_t tclass=file
Apr 16 12:57:23 fastcat kernel: audit(1082120243.498:0): avc: denied
{ unix_read unix_write } for pid=27170 exe=/usr/X11R6/bin/Xorg key=0
scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t
tclass=shm
Apr 16 12:57:23 fastcat kernel: audit(1082120243.498:0): avc: denied { read
write } for pid=27170 exe=/usr/X11R6/bin/Xorg key=0
scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t
tclass=shm
Apr 16 12:57:23 fastcat kernel: audit(1082120243.498:0): avc: denied { use }
for pid=27170 path=/SYSV00000000 (deleted) dev= ino=28803072
scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t tclass=fd
Apr 16 12:57:23 fastcat kernel: audit(1082120243.498:0): avc: denied
{ getattr associate } for pid=27170 exe=/usr/X11R6/bin/Xorg key=0
scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t
tclass=shm
> [root at Purgatory vmware-any-any-update59]# setenforce 0
I have pretty much no understanding of selinux yet, other than the general
idea of what it is trying to do (which potentially sounds great). Is
setenfore <- 0 going to cause troubles when I want to turn it back on, in
which case I should maybe wait for a better policy file? Or vmware not being
part of the distro, can we expect no policy support for it?
- -Andy
- --
Automatic actions for USB cameras, cardreaders, memory sticks, MP3 players
http://warmcat.com/usbautocam
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFAf9l8jKeDCxMJCTIRAvKtAJ9UaHn9Q7dvSu8m0F6le77OfS5MzQCghdTx
dL9SLqkoh20B56Yeobh75VA=
=QW63
-----END PGP SIGNATURE-----
More information about the fedora-test-list
mailing list