On 8/18/19 1:23 AM, Patrick O'Callaghan wrote:
The above only happens when SElinux is Enabled. When Disabled,
everything works. The same happens on both my VMs (Fedora and Windows).
Looking at
https://wiki.libvirt.org/page/Networking I tried:
# virsh net-list --all
Name State Autostart Persistent
----------------------------------------------
default inactive yes yes
# virsh net-start default
error: Failed to start network default
error: internal error: Child process (VIR_BRIDGE_NAME=virbr0 /usr/sbin/dnsmasq
--conf-file=/var/lib/libvirt/dnsmasq/default.conf --leasefile-ro
--dhcp-script=/usr/libexec/libvirt_leaseshelper) unexpected exit status 11:
dnsmasq: lease-init script returned exit code 1
I run my own dnsmasq (and QEMU/KVM runs its own dnsmasq separately) but
this has not been an issue recently.
# cat /var/lib/libvirt/dnsmasq/default.conf
##WARNING: THIS IS AN AUTO-GENERATED FILE. CHANGES TO IT ARE LIKELY TO
BE
##OVERWRITTEN AND LOST. Changes to this configuration should be made
using:
## virsh net-edit default
## or other application using the libvirt API.
##
## dnsmasq conf file created by libvirt
strict-order
pid-file=/var/run/libvirt/network/default.pid
except-interface=lo
bind-dynamic
interface=virbr0
dhcp-range=192.168.122.2,192.168.122.254,255.255.255.0
dhcp-no-override
dhcp-authoritative
dhcp-lease-max=253
dhcp-hostsfile=/var/lib/libvirt/dnsmasq/default.hostsfile
addn-hosts=/var/lib/libvirt/dnsmasq/default.addnhosts
Ideas on what's causing this would be welcome.
You're not getting any AVC's, correct?
In that case you should do...
semodule -DB to remove dontaudits from policy and then test again with selinux enabled
and see if AVC's are created.
semodule -B after testing will turn dontaudits back on.
--
If simple questions can be answered with a simple google query then why are there so many
of them?