[Bug 664520] New: virtualbox need access to usb devices
https://bugzilla.novell.com/show_bug.cgi?id=664520 https://bugzilla.novell.com/show_bug.cgi?id=664520#c0 Summary: virtualbox need access to usb devices Classification: openSUSE Product: openSUSE 11.4 Version: Factory Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: mseben@gmail.com QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.6) Gecko/20100626 SUSE/3.6.6-1.2 Firefox/3.6.6 Hi, virtualbox 4.0.0 introduced usb support inside guests for oss version, this also means that vbox now needs rw access to usb devices, from the code http://www.virtualbox.org/browser/trunk/src/VBox/Main/src-server/linux/USBGe... I see that vbox search in "/dev/vboxusb" and "/dev/bus/usb" directories for usb nodes, I don't want to touch /dev/bus/usb directly which has r/w permissions only for root so I created following udev rule which create usb nodes in /dev/vboxusb/ with rw permissions for "vboxusers" group (vboxusers is needed to run virtualbox): SUBSYSTEM=="usb_device", ATTR{devnum}=="?*", ATTR{busnum}=="?*",NAME="vboxusb/$attr{busnum}/$attr{devnum}", GROUP="vboxusers" SUBSYSTEM=="usb", ENV{DEVTYPE}=="usb_device", ATTR{devnum}=="?*", ATTR{busnum}=="?*",NAME="vboxusb/$attr{busnum}/$attr{devnum}", GROUP="vboxusers" I am not sure if this is ok, from security point of view also I am no sure how strict are openSUSE rules in this case ... thanks Reproducible: Always -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c1
--- Comment #1 from Ludwig Nussel
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c2
Michal Seben
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c3
Marcus Meissner
then virtualbox can still open all devices ... there needs to be some kind of hm and what's the problem in this case when virtualbox can open all devices ? if you want to access usb device in virtualized vbox guest system, firstly you have to define in host (using VBoxManage binary or vbox GUI window) which device you want to share - to do this you have to be in vboxusers group (isn't
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c4
--- Comment #4 from Michal Seben
access control by the host system.
only the devices the user has access too e.g. like we do for userland access to MTP players, Cameras and the like already.
what devices is this usually targetting? mostly userland devices : usb disks,sound cards,cameras, players - this is really great feature if your usb device isn't supported in linux and you need virtualized windows
from your responses I feel that we don't want to assign to virtualbox full usb access (am I right?) thank you guys for quick response bye -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c5
Sven Burmeister
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c6
Jan Ritzerfeld
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c7
--- Comment #7 from Jan Ritzerfeld
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c8
Stefan Brüns
Continued from Comment 6: 3. non-working USB ports anyhow, the Windows guest tells me "The Device Cannot Start (Code 10)"
Same here. According to the VB wiki, it should be enough to install teh VB extension pack to get access to EHCI (USB 2.0) devices. When I install VB from http://download.virtualbox.org/virtualbox/4.0.8/, USB works. One obvious difference: The USB settings from vb.org shows a checkbox to enable EHCI, whereas the one from opensuse.org does not. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c9
Marton Balint
https://bugzilla.novell.com/show_bug.cgi?id=664520
https://bugzilla.novell.com/show_bug.cgi?id=664520#c10
Hans-Peter Jansen
http://bugzilla.novell.com/show_bug.cgi?id=664520
Victor Pereira
http://bugzilla.novell.com/show_bug.cgi?id=664520
Marton Balint
participants (1)
-
bugzilla_noreply@novell.com