0 Replies Latest reply on Aug 2, 2020 10:33 AM by wrf1

    ubuntu linux kernel lockdown mode prevents vmplayer clients from starting

    wrf1 Lurker

      This follows on  VMware Knowledge Base "Cannot open /dev/vmmon: No such file or directory" error when powering on a VM (2146460).

       

      Linux has a new security feature called kernel lockdown that prevents processed from directly accessing /dev/mem etc.  This applies even to root processes except via signed modules.  

       

      So I signed vmmon and vmnet following the cited article.   However I still get the error when trying to open a vm:

       

      Aug  2 12:49:44 p73 kernel: [412584.941998] Lockdown: vmplayer: /dev/mem,kmem,port is restricted; see man kernel_lockdown.7

       

      I suppose I could completely disable lockdown, but I don't want to, especially given the recently announced linux kernel security holes.

       

      Is there a way to give vmplayer more power but still keep some security?

       

      I'm running p73 5.4.0-42-generic.

       

      I'm sympathetic to the comments in some other recent postings that the linux kernel is changing so fast that it's hard for vmware to keep up.  I'm also aware of Linus's longstanding hostility to proprietary commercial SW interfacing to the kernel.

       

      However all that leaves me unable to use vmplayer, which I wanted to use to run MS windows under linux to use a real MS office and not some buggy partial knockoff.

       

      Thanks.