From nobody Tue Sep 28 04:52:45 2021 X-Original-To: virtualization@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 67E9817EC073 for ; Tue, 28 Sep 2021 04:52:45 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4HJRvd21pdz3rKJ for ; Tue, 28 Sep 2021 04:52:45 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 266371E692 for ; Tue, 28 Sep 2021 04:52:45 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 18S4qjNJ024955 for ; Tue, 28 Sep 2021 04:52:45 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 18S4qjl9024954 for virtualization@FreeBSD.org; Tue, 28 Sep 2021 04:52:45 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: virtualization@FreeBSD.org Subject: [Bug 249981] bhyve(8) man page -p option for virtual cpu pinning could be more helpful Date: Tue, 28 Sep 2021 04:52:45 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Documentation X-Bugzilla-Component: Manual Pages X-Bugzilla-Version: Latest X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: felix.the.red@gmail.com X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: doc@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: version cc component product assigned_to short_desc bug_status Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion List-Archive: https://lists.freebsd.org/archives/freebsd-virtualization List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-virtualization@freebsd.org X-BeenThere: freebsd-virtualization@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D249981 Felix Johnson changed: What |Removed |Added ---------------------------------------------------------------------------- Version|CURRENT |Latest CC| |doc@FreeBSD.org, | |felix.the.red@gmail.com Component|bhyve |Manual Pages Product|Base System |Documentation Assignee|virtualization@FreeBSD.org |doc@FreeBSD.org Summary|bhyve man page cpu pinning |bhyve(8) man page -p option |description could be more |for virtual cpu pinning |helpful |could be more helpful Status|New |Open --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Tue Sep 28 19:55:16 2021 X-Original-To: virtualization@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 3763C17D12FA for ; Tue, 28 Sep 2021 19:55:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4HJqx00xk7z4m5s for ; Tue, 28 Sep 2021 19:55:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 00910298D for ; Tue, 28 Sep 2021 19:55:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 18SJtFtN039376 for ; Tue, 28 Sep 2021 19:55:15 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 18SJtFRJ039375 for virtualization@FreeBSD.org; Tue, 28 Sep 2021 19:55:15 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: virtualization@FreeBSD.org Subject: [Bug 258755] vmxnet3: low throughput Date: Tue, 28 Sep 2021 19:55:16 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 13.0-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: linimon@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: virtualization@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: assigned_to Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion List-Archive: https://lists.freebsd.org/archives/freebsd-virtualization List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-virtualization@freebsd.org X-BeenThere: freebsd-virtualization@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D258755 Mark Linimon changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|bugs@FreeBSD.org |virtualization@FreeBSD.org --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 29 18:00:43 2021 X-Original-To: freebsd-virtualization@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id AAD3917D6ABA for ; Wed, 29 Sep 2021 18:00:57 +0000 (UTC) (envelope-from lobo@bsd.com.br) Received: from mail-io1-xd2b.google.com (mail-io1-xd2b.google.com [IPv6:2607:f8b0:4864:20::d2b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4HKPLc1f1wz4cNQ for ; Wed, 29 Sep 2021 18:00:56 +0000 (UTC) (envelope-from lobo@bsd.com.br) Received: by mail-io1-xd2b.google.com with SMTP id q205so4218416iod.8 for ; Wed, 29 Sep 2021 11:00:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bsd.com.br; s=capeta; h=mime-version:from:date:message-id:subject:to; bh=R6WvxNQXZ+BlN5ely8y/dcTn966YlTXu89YhE++KbPI=; b=AXySAUIkigfr2P5w7B/Y+dnszsv34HgVZFhXSitPfFjKJDwvEiJR1ReynrJWzoKEII vOEdshOQBd46mcIUsBlsPWso8+yZfWCVHEPKZMU/BcyNUkYVCBV/fYnnxaWB+MzEZcom Lw0KZqZ3ZRIMBX7PPgAv7vTQbJXi7KTVuegpM= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=R6WvxNQXZ+BlN5ely8y/dcTn966YlTXu89YhE++KbPI=; b=rQq2Z93DvZffwV5re+cTZsmIeMFsLofSwnGf18tuSRlAvSfzE4UF9zjGimhJgEgYaw sP5oTqWZGQTJzfcuQfYuJXGKy0fa6eqpcC+oMM4ZEPcElzgQZQkhFD17RjaoDuKKRsIk x1KWrAgU/ZrplEkJHdgD9QCWvhy0CNR/t3fjIRta/O37DSw0GDsef3Nrk4alaa5zfm+7 TbOFqb8Nd8xwwyP0DXBNE4eusepgk5Z5ItFKpP77pk/MDk1MITOonGt7z9Jf4CIWbKa8 yzRykOCYj9OrRm1w/vaqVfTBZRsZFx+GQm99FYDPkgv3a4PUAGHexjRL7Z/uaKkhFxxg yCVw== X-Gm-Message-State: AOAM531S5jvcuB36yUnqoXjvZAtqnZNUxBAmNkZeSY7FqEDdhnLGaE99 3rxM9alVeqjTBKS00v3JEm2gKhXJ8oCTAmNe1is0Et5xO/ujIQ== X-Google-Smtp-Source: ABdhPJx+tJY4i6nGn4MU84xps3nc5nX+qifb4RDuPZfubB/AVBNM8JdthSlLpekfJhbwClb7nv5HSwZGTMrT1inouVs= X-Received: by 2002:a5e:c00e:: with SMTP id u14mr790235iol.13.1632938455427; Wed, 29 Sep 2021 11:00:55 -0700 (PDT) List-Id: Discussion List-Archive: https://lists.freebsd.org/archives/freebsd-virtualization List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-virtualization@freebsd.org X-BeenThere: freebsd-virtualization@freebsd.org MIME-Version: 1.0 From: Mario Lobo Date: Wed, 29 Sep 2021 15:00:43 -0300 Message-ID: Subject: Running VirtualBox as non-root user To: "freebsd-questions@freebsd.org" , freebsd-virtualization@freebsd.org Content-Type: multipart/alternative; boundary="00000000000093880f05cd261cb0" X-Rspamd-Queue-Id: 4HKPLc1f1wz4cNQ X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=bsd.com.br header.s=capeta header.b=AXySAUIk; dmarc=none; spf=pass (mx1.freebsd.org: domain of lobo@bsd.com.br designates 2607:f8b0:4864:20::d2b as permitted sender) smtp.mailfrom=lobo@bsd.com.br X-Spamd-Result: default: False [-3.49 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[bsd.com.br:s=capeta]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-virtualization@freebsd.org]; DMARC_NA(0.00)[bsd.com.br]; TO_MATCH_ENVRCPT_SOME(0.00)[]; DKIM_TRACE(0.00)[bsd.com.br:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d2b:from]; NEURAL_HAM_SHORT(-0.99)[-0.988]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-ThisMailContainsUnwantedMimeParts: N --00000000000093880f05cd261cb0 Content-Type: text/plain; charset="UTF-8" Hi; Here is what I've done so far: - Created user vbox and put it in vboxuser group - Went as far as chown -R vbox:vboxuser /usr/local/lib/virtualbox - Executables are with the SUiD bit set -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxSDL -r-s--x--- 1 vbox vboxusers 16064 Sep 21 22:18 VBoxNetAdpCtl -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxNetDHCP -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxNetNAT -r-s--s--- 1 vbox vboxusers 32352 Sep 22 17:55 VirtualBoxVM - Imported a test VM - Ran the VM as root to make sure it's working - started VirtualBox as user vbox, and it starts fine VirtualBox GUI starts fine as user vbox but when I try to start the test VM from it, I get: Effective UID is not root (euid=1001 egid=920 uid=1001 gid=1001) (rc=-10) where: SUPR3HardenedMain what: 2 VERR_PERMISSION_DENIED (-10) - Permission denied. Starting it from VirtualBoxVM --startvm test issues the same error: VirtualBoxVM: Error -10 in SUPR3HardenedMain! VirtualBoxVM: Effective UID is not root (euid=1001 egid=920 uid=1001 gid=1001) where: SUPR3HardenedMain what: 2 VERR_PERMISSION_DENIED (-10) - Permission denied. Any pointer for anything else I should be doing or is missing? Thanks, -- Mario Lobo http://www.mallavoodoo.com.br FreeBSD since version 2.2.8 [not Pro-Audio.... YET!!] --00000000000093880f05cd261cb0-- From nobody Wed Sep 29 18:17:18 2021 X-Original-To: freebsd-virtualization@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 13F8517D8C2F for ; Wed, 29 Sep 2021 18:17:35 +0000 (UTC) (envelope-from decke@freebsd.org) Received: from smtp.freebsd.org (smtp.freebsd.org [96.47.72.83]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4HKPjp70rDz4ffw for ; Wed, 29 Sep 2021 18:17:34 +0000 (UTC) (envelope-from decke@freebsd.org) Received: from mail-il1-f174.google.com (mail-il1-f174.google.com [209.85.166.174]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) (Authenticated sender: decke) by smtp.freebsd.org (Postfix) with ESMTPSA id C8D432BF9B for ; Wed, 29 Sep 2021 18:17:34 +0000 (UTC) (envelope-from decke@freebsd.org) Received: by mail-il1-f174.google.com with SMTP id q6so3887775ilm.3 for ; Wed, 29 Sep 2021 11:17:34 -0700 (PDT) X-Gm-Message-State: AOAM530O2WvfG3gvqfBQdePBauFQ4fHQLkEgx+lHViGtqeX8quWTy9j3 P4O67hG900am0wruqNncocphCs3ZaHtuQ+l0jmC6qQ== X-Google-Smtp-Source: ABdhPJy6duPIkFZbSzO4agEzsZMqouy0eijQ7fG/+mmnF0RBz7szNO4+iRUTpmODuZ5P0asnz4XvmbJZKxUHWGY9Uu4= X-Received: by 2002:a92:d5c4:: with SMTP id d4mr853316ilq.184.1632939453998; Wed, 29 Sep 2021 11:17:33 -0700 (PDT) List-Id: Discussion List-Archive: https://lists.freebsd.org/archives/freebsd-virtualization List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-virtualization@freebsd.org X-BeenThere: freebsd-virtualization@freebsd.org MIME-Version: 1.0 References: In-Reply-To: From: =?UTF-8?Q?Bernhard_Fr=C3=B6hlich?= Date: Wed, 29 Sep 2021 20:17:18 +0200 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: Running VirtualBox as non-root user To: Mario Lobo Cc: "freebsd-questions@freebsd.org" , freebsd-virtualization@freebsd.org Content-Type: text/plain; charset="UTF-8" X-ThisMailContainsUnwantedMimeParts: N On Wed, Sep 29, 2021 at 8:01 PM Mario Lobo wrote: > > Hi; > > Here is what I've done so far: > > - Created user vbox and put it in vboxuser group > - Went as far as chown -R vbox:vboxuser /usr/local/lib/virtualbox > - Executables are with the SUiD bit set > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxSDL > -r-s--x--- 1 vbox vboxusers 16064 Sep 21 22:18 VBoxNetAdpCtl > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxNetDHCP > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxNetNAT > -r-s--s--- 1 vbox vboxusers 32352 Sep 22 17:55 VirtualBoxVM > > - Imported a test VM > - Ran the VM as root to make sure it's working > - started VirtualBox as user vbox, and it starts fine > > VirtualBox GUI starts fine as user vbox but when I try to start the test VM > from it, I get: > > Effective UID is not root (euid=1001 egid=920 uid=1001 gid=1001) (rc=-10) > where: SUPR3HardenedMain what: 2 VERR_PERMISSION_DENIED (-10) - Permission > denied. > > Starting it from VirtualBoxVM --startvm test issues the same error: > > VirtualBoxVM: Error -10 in SUPR3HardenedMain! > VirtualBoxVM: Effective UID is not root (euid=1001 egid=920 uid=1001 > gid=1001) > where: SUPR3HardenedMain > what: 2 > VERR_PERMISSION_DENIED (-10) - Permission denied. > > Any pointer for anything else I should be doing or is missing? Puh it's been a long time for me but from what I read there are two things that sound problematic to me. 1) vbox uses something that they call "hardening" which does some checks in addition to the suid/sgid bits. Changing permissions and/or user/group is asking for trouble! I'd recommend to reinstall the vbox package in that case. The instructions in the handbook should be enough. pw groupmod vboxusers -m yourusername 2) Starting a VM as root is definitely not a good idea either. The problem is that vbox it will create some temporary files/directories as root somewhere under /tmp or was it /var? When the VM is stopped the directories are left and you won't be able to write to them as user afterwards. If the VM is not running it should be okay to just delete them but please have a look at the content first to make sure. -- Bernhard Froehlich http://www.bluelife.at/ From nobody Wed Sep 29 18:17:44 2021 X-Original-To: freebsd-virtualization@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 22BBC17D8FC4 for ; Wed, 29 Sep 2021 18:17:47 +0000 (UTC) (envelope-from gjb@freebsd.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2610:1c1:1:6074::16:84]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "freefall.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4HKPk24Kw4z4fk2; Wed, 29 Sep 2021 18:17:46 +0000 (UTC) (envelope-from gjb@freebsd.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1632939466; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=4DdcVN6WvRM9i1zbdx/lNGfWIyayGRN5Jb6vPfzequ4=; b=DCzC0/OYNq0Wu7vnR2imO8AGKJLyoH15+1o7C5i3PAL/8XdF2I12ga1HnmYKuDWXXey+Mo yPRKNqvqVOqwacknkqz/DwRUP8OYu/XmzdVFZMxi+Nl3lxiNq89m/4G8Q010AW3xsLATHm mEBkh3jqn9TVS+OJGNxz685ftFTyvAvZO4JHNzAzxITEhYInRu7piXHtR4U3gkuxHmDR+s 5J1oQBvmYEtG1jI0JGEuKeAB5yOZBkMlizMj3YAi793Z/1x95KnYcAC8D7+wfFlDB+HQ4a k8ggfBR1ybpPWiPQ1Dd8biLA7Wdp+/0DYHsnCdjFoA+48VsVwXMa0Xw3KXFUJg== Received: from FreeBSD.org (freefall.freebsd.org [IPv6:2610:1c1:1:6074::16:84]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by freefall.freebsd.org (Postfix) with ESMTPS id 3AC46127FC; Wed, 29 Sep 2021 18:17:46 +0000 (UTC) (envelope-from gjb@freebsd.org) Date: Wed, 29 Sep 2021 18:17:44 +0000 From: Glen Barber To: Mario Lobo Cc: freebsd-virtualization@freebsd.org Subject: Re: Running VirtualBox as non-root user Message-ID: <20210929181744.GA69504@FreeBSD.org> References: List-Id: Discussion List-Archive: https://lists.freebsd.org/archives/freebsd-virtualization List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-virtualization@freebsd.org X-BeenThere: freebsd-virtualization@freebsd.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="SLDf9lqlvOQaIe6s" Content-Disposition: inline In-Reply-To: ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1632939466; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=4DdcVN6WvRM9i1zbdx/lNGfWIyayGRN5Jb6vPfzequ4=; b=S2CDfjGBFep0cbq5cjSl5TlUmSLQ0iFtzyx4guxBMooerzU7Oy7MLSKHeyUj4SX4Zggy/J NXQJqcGmU0oyQiOCKjNRzg7cDBj2+YF8HDJY3k9LiRu6/tk1DrH+tzDxsscZieO7QNEFze hVNNuR7jAtDYmeLNlCQcvF8IZcgogYsklHjLsus2xA+N1XW8p7CY+25k+eVGh8H5lWG4Ot BAzr4PEU1RLLfkV/zfwU6pEXNyqIhWpzXKBCATyVfU1Y3rpzisa/p6BeiGuPovv90e2Iea WSQ41k6vcussjfkdstCy70I21QMGLaXcqfeGVlrPGfPFZmfwjNKH6nf3pugpZA== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1632939466; a=rsa-sha256; cv=none; b=gXQqXGo21JC6Vj+rtzIbAsKTldUsg20geJ7TIZUjdBAQxpfsq0R+l/iTAmUKh3Y77YUXv5 Be4xfoknU3iS9Ez6eBKMYSTDgUDpuIRR6XtS4F1A3lliZUCu0OmEJ5iapvoUdkiM0kMeeA XT0OkwEQZyBoP7v1Yl84Gk3GmMUYvNijlDHuel54SLfQ1vwfvwjsrKXp5KdLiNCE9kcLcC X6SPWJ/ST3aHSG3U+4FHol28cFikar4PBePNrSiG2yW12KzDrj/ZYNw7LXBNnrPyi9+75D YxC/Xu8l+6Rc5kz33r40WxXWfEhNf2/vvm7ukeOxF+U4pwWJQI4pjjhGkmCRug== ARC-Authentication-Results: i=1; mx1.freebsd.org; none X-ThisMailContainsUnwantedMimeParts: N --SLDf9lqlvOQaIe6s Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Sep 29, 2021 at 03:00:43PM -0300, Mario Lobo wrote: > Hi; >=20 > Here is what I've done so far: >=20 > - Created user vbox and put it in vboxuser group > - Went as far as chown -R vbox:vboxuser /usr/local/lib/virtualbox > - Executables are with the SUiD bit set > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxSDL > -r-s--x--- 1 vbox vboxusers 16064 Sep 21 22:18 VBoxNetAdpCtl > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxNetDHCP > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxNetNAT > -r-s--s--- 1 vbox vboxusers 32352 Sep 22 17:55 VirtualBoxVM >=20 > - Imported a test VM > - Ran the VM as root to make sure it's working > - started VirtualBox as user vbox, and it starts fine >=20 > VirtualBox GUI starts fine as user vbox but when I try to start the test = VM > from it, I get: >=20 > Effective UID is not root (euid=3D1001 egid=3D920 uid=3D1001 gid=3D1001) = (rc=3D-10) > where: SUPR3HardenedMain what: 2 VERR_PERMISSION_DENIED (-10) - Permission > denied. >=20 > Starting it from VirtualBoxVM --startvm test issues the same error: >=20 > VirtualBoxVM: Error -10 in SUPR3HardenedMain! > VirtualBoxVM: Effective UID is not root (euid=3D1001 egid=3D920 uid=3D1001 > gid=3D1001) > where: SUPR3HardenedMain > what: 2 > VERR_PERMISSION_DENIED (-10) - Permission denied. >=20 > Any pointer for anything else I should be doing or is missing? >=20 Add your user to the vboxusers group in /etc/group. Glen --SLDf9lqlvOQaIe6s Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEjRJAPC5sqwhs9k2jAxRYpUeP4pMFAmFUrcgACgkQAxRYpUeP 4pPtfw/8CPHx4q2lFiImauVrqE/ShumLjW0hT4ZB03uUmWgsOaNeBhyA6HzRTOz9 bmXjacqKDDFkPhRQegp5Eo4R3GpIqGVblWXLPUMEeYSIQ5hMprc2I2d6AYKi0ZYb NIooAHqQ58bcCVrn+BR3dA7NJk6KLIdzCPGH9+Fb/7TfvC84fE93L/11tSL5If5H nr1qbEhigG3DIPz7bt3faTf++7zkuoWCOhwKXXvVyaFD1D+FTKqhrrgeqBr7ODLh XQCJlejW+QnYwgfkB4bMsp9ua4TUgkzkjAEYhGtMHhiKfqy0duZHnGoxMW/rXweE FERt6EKSNjDFTSgJDkK9kgJ9GbPCAuVwkC3tXycu8dtQxGqSqemXtGkrWkBRS3nn fNBkJF89PzjN3PVAp0OiGTlFR/SiyVp69lkS572XlYKKfu3JnvH3ipRx3L53WRJq t7I5SaaWfVAuRBJh+JhK9AB7BDettN8W2poV2SoMseU7uNobzYpfTfHzVRDDVG98 pTfpPf5YNTDYIOzXGefTW0x903v6EaE9kYib6iquGqeb5Hxum4W44Z8aSTh/THrr CuqkRdwSv0w6pe8xxUlowM49Uu982Iszm3K3bK4AIWB0HT9j4X8D/x9p8daC0PtF u2wkJCFPBxg19zvTN58YYjDn+tKT/rgPlsk/09fV1JjhP2i/3LA= =C9YU -----END PGP SIGNATURE----- --SLDf9lqlvOQaIe6s-- From nobody Wed Sep 29 18:30:56 2021 X-Original-To: freebsd-virtualization@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id EABB117D9F6C for ; Wed, 29 Sep 2021 18:31:15 +0000 (UTC) (envelope-from lobo@bsd.com.br) Received: from mail-il1-x131.google.com (mail-il1-x131.google.com [IPv6:2607:f8b0:4864:20::131]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4HKQ1Z6kRzz4gmh for ; Wed, 29 Sep 2021 18:31:14 +0000 (UTC) (envelope-from lobo@bsd.com.br) Received: by mail-il1-x131.google.com with SMTP id r9so3917960ile.5 for ; Wed, 29 Sep 2021 11:31:14 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bsd.com.br; s=capeta; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=C8aeWWaRo7QuUl9nqN0UOPcuT0cehUMtsSFDgVaTvMg=; b=AnNEy68lOBluZ4dKjRRBGWq+/K0EpvaVAYSNxrI6rcxVcaxwhJ841VizyDtKeNyjaj cZm+1zNFhUk1ZtNV7Sgknc8lfn4uGmuyxwB2RUT90I/dy+6nRlW0I8gZsihNv0O/zTLc KQ9gZoSGONbMJRKlEye5glNxUq79D0Oeencto= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=C8aeWWaRo7QuUl9nqN0UOPcuT0cehUMtsSFDgVaTvMg=; b=3PHsN+RR8NrtnHqPHGn2MA+Crlfml1+7ZYFc7yC0GbJ4T2uHBtj3wdsSa3/VwrR7K2 0iPzhYRdOB6gDU9v08JCiGT3zFDCT4nr8ojfrq1/9p6fufFYFRPMXpyE/syiKEON295q 5B7evErDxfE7pldju2FpiDDWYv4Ho4gzNZYSqVPcMr/uKkbbjTSsCg4XhMSZVJexzFQU oLd1PmwcMA0th7nqrL3/xhz2Us0scBgXL0vOGLqh4rhtccycyha8mv6pZzlUl/Ar2Eba y8xunS5gQhAeXE8gG0/ng/WlAeP8QyyhQ0K9z+HXEKoSDaCQ9Gd1Vadk2reHL+ezbnph KJ8Q== X-Gm-Message-State: AOAM531Ha9IRQkAF4X7vMTDLPTDTwcD/w9hJkwGeJiwA2otdi9nBkLgW 9s4QKUiuqgsnfMlzkZMD364UomORvhWVlLYlBbfXDTfkXKvr4Q== X-Google-Smtp-Source: ABdhPJwHLFxo/jsyqAwcLjH7GFGvtCzQtNQbREON9giS3zntliCbXaVv8eBoViZms1hquSZk3u/mn+USEJYL8LDWYZc= X-Received: by 2002:a92:c264:: with SMTP id h4mr908759ild.16.1632940268253; Wed, 29 Sep 2021 11:31:08 -0700 (PDT) List-Id: Discussion List-Archive: https://lists.freebsd.org/archives/freebsd-virtualization List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-virtualization@freebsd.org X-BeenThere: freebsd-virtualization@freebsd.org MIME-Version: 1.0 References: <20210929181744.GA69504@FreeBSD.org> In-Reply-To: <20210929181744.GA69504@FreeBSD.org> From: Mario Lobo Date: Wed, 29 Sep 2021 15:30:56 -0300 Message-ID: Subject: Re: Running VirtualBox as non-root user To: freebsd-virtualization@freebsd.org Content-Type: multipart/alternative; boundary="000000000000a1073205cd268863" X-Rspamd-Queue-Id: 4HKQ1Z6kRzz4gmh X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=bsd.com.br header.s=capeta header.b=AnNEy68l; dmarc=none; spf=pass (mx1.freebsd.org: domain of lobo@bsd.com.br designates 2607:f8b0:4864:20::131 as permitted sender) smtp.mailfrom=lobo@bsd.com.br X-Spamd-Result: default: False [-3.40 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[bsd.com.br:s=capeta]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-virtualization@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-1.000]; DMARC_NA(0.00)[bsd.com.br]; DKIM_TRACE(0.00)[bsd.com.br:+]; NEURAL_HAM_SHORT(-0.90)[-0.900]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::131:from]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-ThisMailContainsUnwantedMimeParts: N --000000000000a1073205cd268863 Content-Type: text/plain; charset="UTF-8" On Wed, Sep 29, 2021 at 3:17 PM Glen Barber wrote: > On Wed, Sep 29, 2021 at 03:00:43PM -0300, Mario Lobo wrote: > > Hi; > > > > Here is what I've done so far: > > > > - Created user vbox and put it in vboxuser group > > - Went as far as chown -R vbox:vboxuser /usr/local/lib/virtualbox > > - Executables are with the SUiD bit set > > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxSDL > > -r-s--x--- 1 vbox vboxusers 16064 Sep 21 22:18 VBoxNetAdpCtl > > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxNetDHCP > > -r-s--x--- 1 vbox vboxusers 32064 Sep 21 22:18 VBoxNetNAT > > -r-s--s--- 1 vbox vboxusers 32352 Sep 22 17:55 VirtualBoxVM > > > > - Imported a test VM > > - Ran the VM as root to make sure it's working > > - started VirtualBox as user vbox, and it starts fine > > > > VirtualBox GUI starts fine as user vbox but when I try to start the test > VM > > from it, I get: > > > > Effective UID is not root (euid=1001 egid=920 uid=1001 gid=1001) (rc=-10) > > where: SUPR3HardenedMain what: 2 VERR_PERMISSION_DENIED (-10) - > Permission > > denied. > > > > Starting it from VirtualBoxVM --startvm test issues the same error: > > > > VirtualBoxVM: Error -10 in SUPR3HardenedMain! > > VirtualBoxVM: Effective UID is not root (euid=1001 egid=920 uid=1001 > > gid=1001) > > where: SUPR3HardenedMain > > what: 2 > > VERR_PERMISSION_DENIED (-10) - Permission denied. > > > > Any pointer for anything else I should be doing or is missing? > > > > Add your user to the vboxusers group in /etc/group. > > Glen > > Found the problem! > Went as far as chown -R vbox:vboxuser /usr/local/lib/virtualbox I did that because I was blindly following a blog to get phpvirtualbox working. What should actually be done is: chown -R root:vboxusers /usr/local/lib/virtualbox After doing that, it worked as expected. Sorry for the noise! -- Mario Lobo http://www.mallavoodoo.com.br FreeBSD since version 2.2.8 [not Pro-Audio.... YET!!] --000000000000a1073205cd268863-- From nobody Sat Oct 2 20:18:53 2021 X-Original-To: virtualization@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id E2BAB17DAC39 for ; Sat, 2 Oct 2021 20:18:53 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4HMJGP607Pz4vnR for ; Sat, 2 Oct 2021 20:18:53 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id AAD37192D6 for ; Sat, 2 Oct 2021 20:18:53 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 192KIr8E047529 for ; Sat, 2 Oct 2021 20:18:53 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 192KIrLw047528 for virtualization@FreeBSD.org; Sat, 2 Oct 2021 20:18:53 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: virtualization@FreeBSD.org Subject: [Bug 252445] panics on ESXi triggered by update making devd(8) to load vmci(4) module Date: Sat, 02 Oct 2021 20:18:53 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 12.2-STABLE X-Bugzilla-Keywords: panic, regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: martin@pola.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: virtualization@FreeBSD.org X-Bugzilla-Flags: maintainer-feedback+ mfc-stable13? mfc-stable12? X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion List-Archive: https://lists.freebsd.org/archives/freebsd-virtualization List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-virtualization@freebsd.org X-BeenThere: freebsd-virtualization@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D252445 Martin Pola changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |martin@pola.org --- Comment #19 from Martin Pola --- I'm having the same issue when upgrading from FreeBSD 12.2 to 13.0 on VMware ESXi 6.0.0.My workaround was: # mv /boot/kernel/vmci.ko /boot/kernel/vmci.koNOTUSED Upgrading from FreeBSD 12.2 to 13.0 on VMware ESXi 6.5.0 has not been a problem. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sun Oct 3 21:00:22 2021 X-Original-To: virtualization@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 3FB2B17C4CBB for ; Sun, 3 Oct 2021 21:00:23 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4HMx7p442Dz4WGW for ; Sun, 3 Oct 2021 21:00:22 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 443D04DB0 for ; Sun, 3 Oct 2021 21:00:22 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 193L0MPX040905 for ; Sun, 3 Oct 2021 21:00:22 GMT (envelope-from bugzilla-noreply@FreeBSD.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 193L0MV7040904 for virtualization@FreeBSD.org; Sun, 3 Oct 2021 21:00:22 GMT (envelope-from bugzilla-noreply@FreeBSD.org) Message-Id: <202110032100.193L0MV7040904@kenobi.freebsd.org> X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@FreeBSD.org using -f From: bugzilla-noreply@FreeBSD.org To: virtualization@FreeBSD.org Subject: Problem reports for virtualization@FreeBSD.org that need special attention Date: Sun, 3 Oct 2021 21:00:22 +0000 List-Id: Discussion List-Archive: https://lists.freebsd.org/archives/freebsd-virtualization List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-virtualization@freebsd.org X-BeenThere: freebsd-virtualization@freebsd.org MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="16332948222.fF5c248.40234" Content-Transfer-Encoding: 7bit X-ThisMailContainsUnwantedMimeParts: N --16332948222.fF5c248.40234 Date: Sun, 3 Oct 2021 21:00:22 +0000 MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" To view an individual PR, use: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=(Bug Id). The following is a listing of current problems submitted by FreeBSD users, which need special attention. These represent problem reports covering all versions including experimental development code and obsolete releases. Status | Bug Id | Description ------------+-----------+--------------------------------------------------- In Progress | 247208 | mpt(4): VMWare virtualized LSI controller panics New | 240945 | [hyper-v] [netvsc] hn network driver incorrectly Open | 244838 | "bectl activate -t" does not honor the -t flag in 3 problems total for which you should take action. --16332948222.fF5c248.40234--