ACVM icon indicating copy to clipboard operation
ACVM copied to clipboard
verified publisher icon KhaosT

ACVM displays malware issue on launch (M1 MBA 2020)

Open ghost opened this issue 4 years ago • 5 comments

When I double click on the ACVM app, an error pops up that displays the following: "ACVM vill damage your computer. You should move it to the Bin". It also displays "You do not have permission to open the application ACVM. Contact your computer or network administrator for assistance." In this case, my computer is running macOS Monterey Beta 3, so the issue may be related to that. I downloaded ACVM v1.0-3, as it is the latest version that had an ACVM.zip file instead of the source code. I am trying to run either ParrotOS or Kali Linux with ACVM and any help would be greatly appreciated. Attached are screenshots of the errors. Screen Shot 2021-08-06 at 11 38 46 Screen Shot 2021-08-06 at 11 38 53

ghost avatar Aug 06 '21 02:08 ghost

Can also confirm this issue happens with Big Sur 11.4, also on an M1 MBA, so it isn't just a Monterey issue.

Even building 1.0-4 from source, it still won't let you start the VM (even though it lets you open the app).

smolck avatar Aug 11 '21 04:08 smolck

got same here bigsure m1

benyhhhill avatar Aug 13 '21 13:08 benyhhhill

Apple revoked the signing certificate so the pre-built binary is no longer valid. If you need this, you can try to build and run with Xcode.

KhaosT avatar Aug 13 '21 15:08 KhaosT

I was able to get the downloadable binary available from this repo (the Dec. 2020 file) working, didn't have to build it myself. You may only need to do steps 1, 6, and 7, not sure. I was throwing every, "Yes ok I get it please just let it work," thing I could find at it. Steps 6/7 are likely all that's needed for people who build it from source and still have issues.

  1. Open "Applications" in Finder, right click ACVM, click "get info" and select, "Override Malware Protection." Say ok to the scary prompts.
  2. Open a terminal and go into your applications directory - (cd /Applications/) - then run the below stuff:
  3. codesign --force --deep --sign - ACVM.app #signs the application itself
  4. cd ./ACVM.app/ && for i in $(find .) ; do xattr -r -d com.apple.quarantine $i ; done #move into the app and un-quarantine anything Apple quarantined
  5. cd ./Contents/Resources/ && codesign --force --deep --sign - qemu-img #move deeper into the application and sign the image creation binary
  6. https://www.reddit.com/r/VFIO/comments/kdhgni/qemu_hvf_support_for_mac_os_x_bug_sur_hv_error/ -- this discusses why you still can't launch a VM even after you ok'd all the binaries, and provides the below solution. Many thanks to the OP.

Create a plain text file on your desktop and paste this in. Make sure it's plain text.

    <?xml version="1.0" encoding="utf-8"?>

    <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

    <plist version="1.0"> <dict> <key>com.apple.security.hypervisor</key> <true/> </dict> </plist>
  1. Back in your terminal, still in ./Resources/, do this to apply the entitlement you created to the qemu binary: codesign -s - --entitlements ~/Desktop/app.entitlements --force qemu-system-aarch64

yawns avatar Aug 23 '21 09:08 yawns

I was able to get the downloadable binary available from this repo (the Dec. 2020 file) working, didn't have to build it myself. You may only need to do steps 1, 6, and 7, not sure. I was throwing every, "Yes ok I get it please just let it work," thing I could find at it. Steps 6/7 are likely all that's needed for people who build it from source and still have issues.

  1. Open "Applications" in Finder, right click ACVM, click "get info" and select, "Override Malware Protection." Say ok to the scary prompts.
  2. Open a terminal and go into your applications directory - (cd /Applications/) - then run the below stuff:
  3. codesign --force --deep --sign - ACVM.app #signs the application itself
  4. cd ./ACVM.app/ && for i in $(find .) ; do xattr -r -d com.apple.quarantine $i ; done #move into the app and un-quarantine anything Apple quarantined
  5. cd ./Contents/Resources/ && codesign --force --deep --sign - qemu-img #move deeper into the application and sign the image creation binary
  6. https://www.reddit.com/r/VFIO/comments/kdhgni/qemu_hvf_support_for_mac_os_x_bug_sur_hv_error/ -- this discusses why you still can't launch a VM even after you ok'd all the binaries, and provides the below solution. Many thanks to the OP.

Create a plain text file on your desktop and paste this in. Make sure it's plain text.

    <?xml version="1.0" encoding="utf-8"?>

    <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

    <plist version="1.0"> <dict> <key>com.apple.security.hypervisor</key> <true/> </dict> </plist>
  1. Back in your terminal, still in ./Resources/, do this to apply the entitlement you created to the qemu binary: codesign -s - --entitlements ~/Desktop/app.entitlements --force qemu-system-aarch64

I can confirm that this method really solves the issue! But it only works for me when I put the ACVM.app outside of Applications.

TienEnChang avatar Sep 27 '21 18:09 TienEnChang