[Bug 533550] New: Virtualbox does not configure host side network interfaces for "host-only networking"

http://bugzilla.novell.com/show_bug.cgi?id=533550 Summary: Virtualbox does not configure host side network interfaces for "host-only networking" Classification: openSUSE Product: openSUSE 11.1 Version: Final Platform: i686 OS/Version: openSUSE 11.1 Status: NEW Severity: Normal Priority: P5 - None Component: Other AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: norbert.jurkeit@web.de QAContact: qa@suse.de Found By: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; de; rv:1.9.1.2) Gecko/20090730 SUSE/3.5.2-2.1 Firefox/3.5.2 A problem has been encountered with Virtualbox version 3.0.4 from the Build Service: The GUI main program is supposed to configure host side network interfaces (i.e. assign IP address to vboxnet0) according to settings entered in menu file/global settings/network. However this does not work when the program is run by non-root users. In order to fix this, file /usr/lib/virtualbox/VBoxNetAdpCtl needs access mode rwsr-x--- and group membership vboxusers. Reproducible: Always Steps to Reproduce: 1. 2. 3. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

http://bugzilla.novell.com/show_bug.cgi?id=533550 Michal Seben <mseben@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED CC| |mseben@novell.com AssignedTo|bnc-team-screening@forge.pr |mseben@novell.com |ovo.novell.com | -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

http://bugzilla.novell.com/show_bug.cgi?id=533550 User mseben@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=533550#c1 --- Comment #1 from Michal Seben <mseben@novell.com> 2009-09-09 02:56:39 MDT --- hm changing group of /usr/lib/virtualbox/VBoxNetAdpCtl to vboxusers didn't help, problem occurs when VBoxNetAdpCtl try to open device /dev/vboxnetctl, looks like we need setuid bit on VBoxNetAdpCtl, so we need info from security team -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

http://bugzilla.novell.com/show_bug.cgi?id=533550 User mseben@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=533550#c2 Michal Seben <mseben@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |security-team@suse.de --- Comment #2 from Michal Seben <mseben@novell.com> 2009-09-09 03:36:17 MDT --- Hi There is a problem when user want to manage vbox's network interface in vbox's GUI (file/preferences/Network). in this case binary /usr/lib/virtualbox/VBoxNetAdpCtl need access to /dev/vboxnetctl (bnc#429725 looks similar - virtualbox need acces to /dev/vboxdrv) possible solutions: 1# same as bnc#429725 set setuid bit for VBoxNetAdpCtl + vboxusers group: /dev/vboxdrv root:root 0600 VBoxNetAdpCtl root:vboxusers 4750 2# I could make a patch to disable functions in GUI which needs VBoxNetAdpCtl, which restrict using of VBoxNetAdpCtl only in command line and only under root account, but I think this is confusing for users I would be glad if we could chose 1# :) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

http://bugzilla.novell.com/show_bug.cgi?id=533550 Michal Seben <mseben@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Component|Other |Other AssignedTo|mseben@novell.com |bnc-team-screening@forge.pr | |ovo.novell.com Product|openSUSE 11.1 |openSUSE 11.2 Target Milestone|--- |Factory OS/Version|openSUSE 11.1 |SuSE Other -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

http://bugzilla.novell.com/show_bug.cgi?id=533550 Michal Seben <mseben@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.pr |mseben@novell.com |ovo.novell.com | -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

http://bugzilla.novell.com/show_bug.cgi?id=533550 User thomas@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=533550#c3 --- Comment #3 from Thomas Biege <thomas@novell.com> 2009-09-10 07:12:15 MDT --- JFYI: I'll have a quick look at the code and will give an answer in the next few hours. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

http://bugzilla.novell.com/show_bug.cgi?id=533550 User mseben@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=533550#c5 Michal Seben <mseben@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Component|Other |Documentation Info Provider| |thomas@novell.com AssignedTo|mseben@novell.com |ke@novell.com QAContact|qa@suse.de |ke@novell.com --- Comment #5 from Michal Seben <mseben@novell.com> 2009-09-25 03:20:46 MDT --- if I will rewrite removeAddresses using execv() + fix strncpy possible overflow will be setuid acceptable ? :) thanks -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=533550 https://bugzilla.novell.com/show_bug.cgi?id=533550#c Michal Vyskocil <mvyskocil@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Group|novellonly | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=533550 https://bugzilla.novell.com/show_bug.cgi?id=533550#c17 --- Comment #17 from Bernhard Wiedemann <bwiedemann@suse.com> 2011-10-31 22:02:24 CET --- This is an autogenerated message for OBS integration: This bug (533550) was mentioned in https://build.opensuse.org/request/show/89843 Tumbleweed / permissions -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

http://bugzilla.novell.com/show_bug.cgi?id=533550 http://bugzilla.novell.com/show_bug.cgi?id=533550#c18 --- Comment #18 from Bernhard Wiedemann <bwiedemann@suse.com> --- This is an autogenerated message for OBS integration: This bug (533550) was mentioned in https://build.opensuse.org/request/show/22021 Factory / permissions https://build.opensuse.org/request/show/22089 Factory / virtualbox-ose -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com