Virt-manager with Silverblue 29


I’m trying to use virt-manager with qemu-kvm, and right now, when I try to lunch a VM, SELinux block me with

Failed to connect socket to '/var/run/libvirt/virtlogd-sock': Connection refused

I know it’s SELinux because I get a bunch of denied in /var/log/audit/audit.log

type=AVC msg=audit(1543258736.913:297): avc:  denied  { search } for  pid=1981 comm="virtlogd" name="libvirt" dev="dm-0" ino=807590889 scontext=system_u:system_r:virtlogd_t:s0-s0:c0.c1023 tcontext=system_u:object_r:virt_etc_rw_t:s0 tclass=dir permissive=0

Is there something I need to do in order to make it work?

The same .qcow2 image launched just fine without SELinux with NixOS.

Well, after I installed everything I needed to use audit2allow and semanage, I just made it so it worked. Now, it seems that the VMs configured to use DHCP under bridged network setup with systemd-networkd can’t seem to get an IP address.

When I use a static IP they work just fine (or so it seems…)

Well, I hate it when I figure it out all by myself… The firewall is blocking the guest out of the bridge. Now, I need to dust up my firewalld mojo :stuck_out_tongue:

Could you resolve it? It would be great, if you could keep us up-to-date.