Opened 14 years ago
Closed 8 years ago
#7999 closed defect (obsolete)
Vm doesn't start if /usr is a symbolic link: "Failed to load VMMR0.r0 (VERR_SUPLIB_WORLD_WRITABLE)"
Reported by: | Owned by: | ||
---|---|---|---|
Component: | other | Version: | VirtualBox 4.0.0 |
Keywords: | Cc: | ||
Guest type: | Windows | Host type: | Linux |
Description (last modified by )
I've got my /usr directory in /more/usr on an SSD with /usr symbolically linked to /more/usr.
Apparently the check for world-writability is not done on the file VMMR0.ro as reported and also not on the directory /more/usr that /usr points to, but on the symbolic link /usr itself and this link is always mode 777. If I switch to a normal /usr directory the VM comes up fine.
This appears to be a very recent regression as I had no problems with 4.0 Beta.
Attachments (1)
Change History (7)
by , 14 years ago
comment:1 by , 14 years ago
comment:2 by , 14 years ago
priority: | blocker → major |
---|
comment:3 by , 14 years ago
This was actually intentional behavior but except that the error message should be different. We are considering implementing support for this scenario, though.
comment:4 by , 14 years ago
When you say 'intentional behavior' I suppose you are referring to the restriction that /usr must not be world-writable. That's OK with me. I still think the implementation is buggy because when /usr is a symbolic link that points to /foo/usr you must check the permissions for /foo/usr whereas the code now checks the permissions for the symbolic link and those are always 777.
Consider that in the above case the command 'chmod 755 /usr' will actually change the permissions for /foo/usr. You cannot change the permissions for the link itself.
comment:6 by , 8 years ago
Description: | modified (diff) |
---|---|
Resolution: | → obsolete |
Status: | new → closed |
Please reopen if still relevant with a recent VirtualBox release.
I found a relatively simple workaround: use mount --bind instead of a symbolic link. So the priority is certainly not 'blocker' anymore, but apparently I can't change that.