VirtualBox

Changes between Version 63 and Version 64 of Mac OS X build instructions


Ignore:
Timestamp:
Aug 31, 2011 2:31:16 PM (13 years ago)
Author:
Christian Pötzsch
Comment:

Hardening builds

Legend:

Unmodified
Added
Removed
Modified

  • Mac OS X build instructions

    v63 v64  
    33== Prerequisites on Mac OS X ==
    44
    5  * Mac OS X 10.4.x (Tiger), 10.5.x (Leopard) or 10.6.x (Snow Leopard) running on Intel hardware (PowerPC hardware is '''not''' supported). Please note that Tiger support was dropped with the 3.1 release.
     5 * Mac OS X 10.4.x (Tiger), 10.5.x (Leopard), 10.6.x (Snow Leopard) or 10.7 (Lion) running on Intel hardware (PowerPC hardware is '''not''' supported). Please note that Tiger support was dropped with the 3.1 release.
    66
    77 * Xcode matching your Mac OS X version (http://developer.apple.com/tools/download/):
     
    7878 2. Enter {{{out/darwin.x86/release/dist/VirtualBox.app/Contents/MacOS/}}}.
    7979 3. Run {{{./VirtualBox}}}
     80
     81== Building and using hardening builds ==
     82
     83For any distribution builds hardening should be enabled for security reasons. Hardening needs some additional configuration and post-build steps. The default install directory of !VirtualBox is `/Applications/VirtualBox.app/`. If you like to change that, say into `/Applications/OpenSource/VirtualBox.app/`, you need to add the following to the `LocalConfig.kmk`:
     84{{{
     85VBOX_PATH_APP_PRIVATE      = "/Applications/OpenSource/VirtualBox.app/Contents/MacOS"
     86VBOX_PATH_APP_PRIVATE_ARCH = "/Applications/OpenSource/VirtualBox.app/Contents/MacOS"
     87VBOX_PATH_SHARED_LIBS      = "/Applications/OpenSource/VirtualBox.app/Contents/MacOS"
     88VBOX_PATH_APP_DOCS         = "/Applications/OpenSource/VirtualBox.app/Contents/MacOS"
     89}}}
     90Next rebuild !VirtualBox and install it into `/Applications/OpenSource/`. Now make sure that the setuid stubs have the correct permissions:
     91{{{
     92sudo chown -R root:admin /Applications/OpenSource/VirtualBox.app/
     93sudo chmod u+s /Applications/OpenSource/VirtualBox.app/Contents/MacOS/VirtualBox
     94sudo chmod u+s /Applications/OpenSource/VirtualBox.app/Contents/MacOS/VirtualBoxVM
     95sudo chmod u+s /Applications/OpenSource/VirtualBox.app/Contents/MacOS/VBoxHeadless
     96sudo chmod u+s /Applications/OpenSource/VirtualBox.app/Contents/MacOS/VBoxNetAdpCtl
     97sudo chmod u+s /Applications/OpenSource/VirtualBox.app/Contents/MacOS/VBoxNetDHCP
     98}}}
     99Another requirement of hardening is that every path component of the parent directory of `VirtualBox.app/` is owned by `root` and not `world` writable. Make sure this is the case.

© 2023 Oracle
ContactPrivacy policyTerms of Use