Only require privileged access for uBridge when connecting a cloud to an Ethernet/TAP interface. Fixes #1461.

gns3server/compute/base_node.py

@@ -554,8 +554,8 @@ class BaseNode:
         if self.ubridge_path is None:
             raise NodeError("uBridge is not available, path doesn't exist, or you just installed GNS3 and need to restart your user session to refresh user permissions.")
 
-        if not self._manager.has_privileged_access(self.ubridge_path):
+        #if not self._manager.has_privileged_access(self.ubridge_path):
-            raise NodeError("uBridge requires root access or the capability to interact with network adapters")
+        #    raise NodeError("uBridge requires root access or the capability to interact with network adapters")
 
         server_config = self._manager.config.get_section_config("Server")
         server_host = server_config.get("host")

gns3server/compute/builtin/nodes/cloud.py

@@ -299,11 +299,13 @@ class Cloud(BaseNode):
         await self._ubridge_apply_filters(bridge_name, nio.filters)
         if port_info["type"] in ("ethernet", "tap"):
 
+            if not self.manager.has_privileged_access(self.ubridge_path):
+                raise NodeError("uBridge requires root access or the capability to interact with Ethernet and TAP adapters")
+
             if sys.platform.startswith("win"):
                 await self._add_ubridge_ethernet_connection(bridge_name, port_info["interface"])
 
             else:
-
                 if port_info["type"] == "ethernet":
                     network_interfaces = [interface["name"] for interface in self._interfaces()]
                     if not port_info["interface"] in network_interfaces:

tests/compute/builtin/nodes/test_cloud.py

@@ -160,9 +160,11 @@ def test_linux_ethernet_raw_add_nio(linux_platform, project, async_run, nio):
     cloud = Cloud("cloud1", str(uuid.uuid4()), project, MagicMock(), ports=ports)
     cloud.status = "started"
 
-    with asyncio_patch("gns3server.compute.builtin.nodes.cloud.Cloud._ubridge_send") as ubridge_mock:
+    with patch("shutil.which", return_value="/bin/ubridge"):
-        with patch("gns3server.compute.builtin.nodes.cloud.Cloud._interfaces", return_value=[{"name": "eth0"}]):
+        with patch("gns3server.compute.base_manager.BaseManager.has_privileged_access", return_value=True):
-            async_run(cloud.add_nio(nio, 0))
+            with asyncio_patch("gns3server.compute.builtin.nodes.cloud.Cloud._ubridge_send") as ubridge_mock:
+                with patch("gns3server.compute.builtin.nodes.cloud.Cloud._interfaces", return_value=[{"name": "eth0"}]):
+                    async_run(cloud.add_nio(nio, 0))
 
     ubridge_mock.assert_has_calls([
         call("bridge create {}-0".format(cloud._id)),
@@ -188,10 +190,12 @@ def test_linux_ethernet_raw_add_nio_bridge(linux_platform, project, async_run, n
     cloud = Cloud("cloud1", str(uuid.uuid4()), project, MagicMock(), ports=ports)
     cloud.status = "started"
 
-    with asyncio_patch("gns3server.compute.builtin.nodes.cloud.Cloud._ubridge_send") as ubridge_mock:
+    with patch("shutil.which", return_value="/bin/ubridge"):
-        with patch("gns3server.compute.builtin.nodes.cloud.Cloud._interfaces", return_value=[{"name": "bridge0"}]):
+        with patch("gns3server.compute.base_manager.BaseManager.has_privileged_access", return_value=True):
-            with patch("gns3server.utils.interfaces.is_interface_bridge", return_value=True):
+            with asyncio_patch("gns3server.compute.builtin.nodes.cloud.Cloud._ubridge_send") as ubridge_mock:
-                async_run(cloud.add_nio(nio, 0))
+                with patch("gns3server.compute.builtin.nodes.cloud.Cloud._interfaces", return_value=[{"name": "bridge0"}]):
+                    with patch("gns3server.utils.interfaces.is_interface_bridge", return_value=True):
+                        async_run(cloud.add_nio(nio, 0))
 
     tap = "gns3tap0-0"
     ubridge_mock.assert_has_calls([