[Bug 1226398] selinux - swtpm - virt-manager can no longer start vm
![](https://seccdn.libravatar.org/avatar/a895f78a81a109471893519443e4d933.jpg?s=120&d=mm&r=g)
https://bugzilla.suse.com/show_bug.cgi?id=1226398 https://bugzilla.suse.com/show_bug.cgi?id=1226398#c6 Cathy Hu <cathy.hu@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|cathy.hu@suse.com |meissner@suse.com --- Comment #6 from Cathy Hu <cathy.hu@suse.com> --- okay nevermind we dont need the additional info, i think i found the cause: swtpm ships a swtpm-selinux module, which relies on the libvirt interfaces from the main policy. the libvirt interfaces have been rewritten in the last months in the main policy. it seems swtpm upstream is drafting a new release with a rewritten swtpm-selinux module: https://github.com/stefanberger/swtpm/pull/858/files this will include the fix: https://github.com/stefanberger/swtpm/blob/master/src/selinux/swtpm_libvirt.... @Marcus, could you have an eye on the new swtpm release and version bump then? I think that should fix the issue @Benjamin: if it is urgent, you can allow these rules with audit2allow -M on your local system as upstream thinks they are fine to allow. otherwise you can wait for the new swtpm-selinux release -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com