[vfio-users] cannot assign usb host device (mouse and keyboard)

thibaut noah thibaut.noah at gmail.com
Wed Nov 11 09:45:44 UTC 2015 

Hello, i got this error trying to assign usb host device using virt-manager
on fedora 23.
Command line given by the error does nothing...
I can assign devices launching the vm with qemu-kvm command line but since
i used virt to create the vm i don't have a script, tried to modify an
existing one but i got boot failed error).
I'm finally at the final step, the vm is working but i'm stuck on this for
almost a week.
any help please?


SELinux is preventing qemu-system-x86 from open access on the file
/run/udev/data/+usb:2-2:1.0.

*****  Plugin catchall (100. confidence) suggests
**************************

If you believe that qemu-system-x86 should be allowed open access on the
+usb:2-2:1.0 file by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:
# grep qemu-system-x86 /var/log/audit/audit.log | audit2allow -M mypol
# semodule -i mypol.pp

Additional Information:
Source Context                system_u:system_r:svirt_t:s0:c586,c745
Target Context                system_u:object_r:udev_var_run_t:s0
Target Objects                /run/udev/data/+usb:2-2:1.0 [ file ]
Source                        qemu-system-x86
Source Path                   qemu-system-x86
Port                          <Unknown>
Host                          localhost.localdomain
Source RPM Packages
Target RPM Packages
Policy RPM                    selinux-policy-3.13.1-152.fc23.noarch
Selinux Enabled               True
Policy Type                   targeted
Enforcing Mode                Enforcing
Host Name                     localhost.localdomain
Platform                      Linux localhost.localdomain
4.2.5-300.fc23.x86_64
                              #1 SMP Tue Oct 27 04:29:56 UTC 2015 x86_64
x86_64
Alert Count                   25
First Seen                    2015-11-11 10:40:33 CET
Last Seen                     2015-11-11 10:40:33 CET
Local ID                      3e5c4669-b37d-4cc3-a378-5478f7a8e451

Raw Audit Messages
type=AVC msg=audit(1447234833.722:610): avc:  denied  { open } for
pid=2757 comm="qemu-system-x86" path="/run/udev/data/+usb:2-2:1.0"
dev="tmpfs" ino=14872 scontext=system_u:system_r:svirt_t:s0:c586,c745
tcontext=system_u:object_r:udev_var_run_t:s0 tclass=file permissive=0


Hash: qemu-system-x86,svirt_t,udev_var_run_t,file,open
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/vfio-users/attachments/20151111/5f817c3d/attachment.htm>

More information about the vfio-users mailing list