[rsbac] vmware ioports

Andreas Baetz lac01 at web.de
Mon Sep 22 08:30:04 MEST 2003


I'm running kernel 2.4.22, rsbac-1.2.2, modules RC, AUTH, CAP,
JAIL, RES and trying to start a virtual machine under vmware. 
vmware itself starts ok, but when I try to resume a virtual
machine, this error gets recorded:

kernel: rsbac_adf_request(): request MODIFY_PERMISSIONS_DATA, 
pid 23138, ppid 22786, prog_name vmware, uid 501, 
target_type SCD, tid ioports, attr , value 0, result NOT_GRANTED by AUTH

I have created an RC role vmware, where type comp SCD, ioports,
/usr/bin/vmware and /usr/lib/vmware/bin/vmware are RC force role vmware.
In the above case, pid 23138 is a new process, it is a new one each time
I try to resume. ppid 22786 stays the same, this is /usr/lib/vmware/bin/vmware.
Something is missing here, but what ?

How can I tell rsbac to log the whole path in syslog to see which program actually 
is affected ? I've turned on the kernel parameter to log the full path, 
but still only the program name without path gets logged.

Andreas Baetz

More information about the rsbac mailing list