Bug 1740664

Summary: permissions on /dev/net/tun
Product: [Fedora] Fedora Reporter: Daniel Walsh <dwalsh>
Component: systemdAssignee: systemd-maint
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: rawhideCC: carl, extras-orphan, gscrivan, jonathan, lnykryn, msekleta, pasik, santiago, ssahani, s, systemd-maint, watanabe.yu, zbyszek
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: systemd-243-2.gitfab6f01.fc31 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2019-09-24 15:55:28 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Daniel Walsh 2019-08-13 12:45:33 UTC 
We are seeing permissions on /dev/net/tun be 600.

In Fedora 30 it is 666.

This is breaking rootless podman.

https://github.com/containers/libpod/issues/3790
Comment 1 Ed Santiago 2019-08-13 13:06:50 UTC 
Possibly systemd-udev-243~rc1-2.fc31 (problem not present in 241-2.gita09c170.fc31).

Dan, I've changed component to systemd because udev is orphaned. Hope that's OK.
Comment 2 Zbigniew Jędrzejewski-Szmek 2019-08-18 11:01:33 UTC 
Yep, I see the same with a freshly installed F32 Server installation.
$ udevadm info /dev/net/tun
Unknown device "/dev/net/tun": No such device
$ udevadm info /sys/devices/virtual/misc/tun
Unknown device "/sys/devices/virtual/misc/tun": No such device
$ ls -l /dev/net/tun
crw-------. 1 root root 10, 200 Aug 18 12:57 /dev/net/tun
Comment 3 Zbigniew Jędrzejewski-Szmek 2019-08-18 11:29:35 UTC 
As a work-around, please load the module with 'modprobe tun'. This will fix the permissions.
Comment 4 Yu Watanabe 2019-09-08 16:33:02 UTC 
The following PR should fix this issue.
https://github.com/systemd/systemd/pull/13500
Comment 5 Fedora Update System 2019-09-22 08:05:07 UTC 
FEDORA-2019-3d6348341f has been submitted as an update to Fedora 31. https://bodhi.fedoraproject.org/updates/FEDORA-2019-3d6348341f
Comment 6 Fedora Update System 2019-09-24 01:23:22 UTC 
systemd-243-2.gitfab6f01.fc31 has been pushed to the Fedora 31 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2019-3d6348341f
Comment 7 Fedora Update System 2019-09-24 15:55:28 UTC 
systemd-243-2.gitfab6f01.fc31 has been pushed to the Fedora 31 stable repository. If problems still persist, please make note of it in this bug report.