[libvirt] unable to set security context error ...

Onkar N Mahajan kernzap at gmail.com
Wed Nov 2 17:34:06 UTC 2011 

I am getting  'system_u:object_r:svirt_image_t:s0:c129,c783' on 
'/var/lib/libvirt/images/vm01.img': Permission denied'
when I try to install using virt-manager.

#semanage fcontext -l | grep images
/var/lib/libvirt/images(/.*)?                      all files          
system_u:object_r:svirt_image_t:s0
/var/lib/tftpboot/images(/.*)?                     all files          
system_u:object_r:cobbler_var_lib_t:s0
/var/lib/xen/images(/.*)?                          all files          
system_u:object_r:xen_image_t:s0
/var/www/cobbler/images(/.*)?                      all files          
system_u:object_r:cobbler_var_lib_t:s0

and

#ls -aZ
drwxr-xr-x. root root unconfined_u:object_r:virt_var_lib_t:s0 .
drwxr-xr-x. root root system_u:object_r:virt_var_lib_t:s0 ..
-rw-------. root root system_u:object_r:svirt_image_t:s0 vm01.img


Installation fails with following error message :

Unable to complete install: 'unable to set security context 
'system_u:object_r:svirt_image_t:s0:c129,c783' on 
'/var/lib/libvirt/images/vm01.img': Permission denied'

Traceback (most recent call last):
   File "/usr/local/share/virt-manager/virtManager/asyncjob.py", line 
44, in cb_wrapper
     callback(asyncjob, *args, **kwargs)
   File "/usr/local/share/virt-manager/virtManager/create.py", line 
1902, in do_install
     guest.start_install(False, meter=meter)
   File "/usr/lib/python2.7/site-packages/virtinst/Guest.py", line 1224, 
in start_install
     noboot)
   File "/usr/lib/python2.7/site-packages/virtinst/Guest.py", line 1292, 
in _create_guest
     dom = self.conn.createLinux(start_xml or final_xml, 0)
   File "/usr/lib64/python2.7/site-packages/libvirt.py", line 1277, in 
createLinux
     if ret is None:raise libvirtError('virDomainCreateLinux() failed', 
conn=self)
libvirtError: unable to set security context 
'system_u:object_r:svirt_image_t:s0:c129,c783' on 
'/var/lib/libvirt/images/vm01.img': Permission denied


also,

[/usr/libexec]#which qemu-kvm
/usr/bin/qemu-kvm
[/usr/libexec]#ls -aZ /usr/bin/qemu-kvm
-rwxr-xr-x. root root unconfined_u:object_r:qemu_exec_t:s0 /usr/bin/qemu-kvm
[/usr/libexec]#which libvirtd
/usr/local/sbin/libvirtd
[/usr/libexec]#ls -aZ /usr/local/sbin/libvirtd
-rwxr-xr-x. root root system_u:object_r:bin_t:s0       
/usr/local/sbin/libvirtd


Please help me as to where I am going wrong..

Regards,
Onkar

More information about the libvir-list mailing list