Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 543400

Summary: app-emulation/qemu-2.2.1: qemu-bridge-helper should be setuid root
Product: Gentoo Linux Reporter: Alexander E. Patrakov <patrakov>
Component: Current packagesAssignee: Gentoo Linux bug wranglers <bug-wranglers>
Status: RESOLVED INVALID    
Severity: normal    
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://bugzilla.redhat.com/show_bug.cgi?id=1017660
Whiteboard:
Package list:
Runtime testing required: ---

Description Alexander E. Patrakov 2015-03-15 10:47:01 UTC 
/usr/libexec/qemu-bridge-helper is intended (as documented in http://wiki.qemu.org/Features-Done/HelperNetworking ) to be installed setuid. It allows non-privileged qemu instances to connect to an existing bridge. It is currently missing its setuid bit:

$ ls -la /usr/libexec/qemu-bridge-helper
-rwx--x--x 1 root root 14120 Mar 15 14:50 /usr/libexec/qemu-bridge-helper


Reproducible: Always
Comment 1 Alexander E. Patrakov 2015-03-15 10:48:48 UTC 
Invalid: the intended functionality is provided via filesystem capabilities. Sorry for the noise!

$ getcap /usr/libexec/qemu-bridge-helper
/usr/libexec/qemu-bridge-helper = cap_net_admin+ep