[CentOS-virt] QEMU/KVM: SELinux denial on /dev/zero when starting a VM

Fri Jan 8 11:20:57 UTC 2010
Mathieu Baudier <mbaudier at argeo.org>

> SELinux is preventing qemu-kvm (qemu_t) "execute" to /dev/zero (zero_device_t).
> (full alert below)

I thought that maybe the latest selinux-policy update would fix this,
but after updating and 'sudo /sbin/restorecon -v /dev/zero' again, I
still have the same SELinux denial.

I browsed the CentOS bug tracker extensively (with search and browsing
the categories kvm, selinux-policy and selinux-policy-targeted) but
did not find a similar issue.

Should I book an issue in the bug tracker at this stage?
(I'm pretty surprised though that nobody encountered this, since it is
systematic, but my system is pretty much a vanilla CentOS 5.4 x86_64
with regard to SELinux and QEMU/KVM...)