Package: kvm Version: 14-1 Severity: normal A recent patch[1] to the kernel that was included in 2.6.18 and more recent kernels changes the necessary privileges for creating a tun devices from having write access to the device to having the CAP_NET_ADMIN capability. This causes the ioctl() at qemu/vl.c:3270 to fail due to insufficient privileges (any chance there could be a perror() here so users know why it failed?) when run as non-root users.
There have been suggestions[2] to use tunctl (in the uml-utilities package) to create the interface before running qemu/kvm, and other suggestions[3] to use setfcaps to set the capabilities on the qemu/kvm binary to include CAP_NET_ADMIN (not sure what the Debian plans are on that front). Of course, there is also always the solution of just biting the bullet and running kvm/qemu as root... Anyway, what this bug is really just to suggest that this failure be documented somewhere (man page or README.Debian preferably) to save users some debugging to find out all of this information. But, if you find a fix, that would be even better. ;) Cheers, Kevin 1. http://www.mail-archive.com/netdev@vger.kernel.org/msg14319.html 2. http://www.mail-archive.com/arch@archlinux.org/msg08382.html 3. http://www.friedhoff.org/fscaps.html#Qemu -- Package-specific info: selected information from lshal(1): system.product = '2613ESU ThinkPad T60p' (string) system.vendor = 'LENOVO' (string) smbios.chassis.type = 'Notebook' (string) smbios.chassis.manufacturer = 'LENOVO' (string) smbios.system.uuid = 'E9FD2C01-485E-11CB-B762-A1A0A74975E0' (string) smbios.system.serial = 'L3A4175' (string) smbios.system.version = 'ThinkPad T60p' (string) smbios.system.product = '2613ESU' (string) smbios.system.manufacturer = 'LENOVO' (string) smbios.bios.release_date = '11/10/2006' (string) smbios.bios.version = '79ETC3WW (2.03 )' (string) smbios.bios.vendor = 'LENOVO' (string) /proc/cpuinfo: processor : 0 vendor_id : GenuineIntel cpu family : 6 model : 14 model name : Genuine Intel(R) CPU T2500 @ 2.00GHz stepping : 8 cpu MHz : 2000.000 cache size : 2048 KB physical id : 0 siblings : 2 core id : 0 cpu cores : 2 fdiv_bug : no hlt_bug : no f00f_bug : no coma_bug : no fpu : yes fpu_exception : yes cpuid level : 10 wp : yes flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx constant_tsc pni monitor vmx est tm2 xtpr bogomips : 3993.50 processor : 1 vendor_id : GenuineIntel cpu family : 6 model : 14 model name : Genuine Intel(R) CPU T2500 @ 2.00GHz stepping : 8 cpu MHz : 2000.000 cache size : 2048 KB physical id : 0 siblings : 2 core id : 1 cpu cores : 2 fdiv_bug : no hlt_bug : no f00f_bug : no coma_bug : no fpu : yes fpu_exception : yes cpuid level : 10 wp : yes flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx constant_tsc pni monitor vmx est tm2 xtpr bogomips : 3990.04 -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/dash Kernel: Linux 2.6.18.20070225a Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages kvm depends on: ii adduser 3.102 Add and remove users and groups ii bridge-u 1.2-1 Utilities for configuring the Linu ii iproute 20061002-3 Professional tools to control the ii libasoun 1.0.13-1 ALSA library ii libc6 2.3.6.ds1-11 GNU C Library: Shared libraries ii libsdl1. 1.2.11-7 Simple DirectMedia Layer ii libuuid1 1.39+1.40-WIP-2006.11.14+dfsg-1 universally unique id library ii zlib1g 1:1.2.3-13 compression library - runtime Versions of packages kvm recommends: ii kvm-source 14-1 Source for the KVM driver ii linux-imag 2.6.18.20070225a-10.00.Custom Linux kernel binary image for vers ii qemu 0.8.2-4 fast processor emulator pn vde2 <none> (no description available) -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
