[Bug 1736965] Re: "netplan apply" does not set file mode, umask 077 causes systemd-networkd to be unable to start

Launchpad Bug Tracker 1736965 at bugs.launchpad.net
Tue Nov 6 18:13:46 UTC 2018 

This bug was fixed in the package netplan.io - 0.40.1~18.04.2

---------------
netplan.io (0.40.1~18.04.2) bionic; urgency=medium

  * Fix typo breaking rename on 'netplan apply'. (LP: #1770082)

netplan.io (0.40.1~18.04.1) bionic; urgency=medium

  * Backport netplan 0.40.1 to 18.04. (LP: #1793309)

netplan.io (0.40.1) cosmic; urgency=medium

  * tests/generate.py: use random.sample() instead of random.choices() to
    better support older pythons.
  * Deal gracefully with empty files on 'netplan apply' (LP: #1795343)

netplan.io (0.40) cosmic; urgency=medium

  * New upstream release:
    - networkd: route source is PreferredSource= not From=
    - Improve NetworkManager error reporting on unrenderable routes.
    - Don't render ipv4 dns-search unless we have an ipv4 address.
      (LP: #1786726)
    - Set permissive umask on networkd .network, .link and .netdev files
      (LP: #1736965, LP: #1768560)
    - Fix support for link-scope routes. (LP: #1747455)
    - Update man pages for deletion of replug code.
    - Spell Gratuitous ARP correctly and make it work. (LP: #1756701)
    - Many typo fixes for documentation. (LP: #1783940)
    - Various build system fixes.
    - Fix integration tests:
      - iproute2 output changes for link-scope routes
      - fix stability of networkd igmp-resend test
      - fix manual_addresses test now that networkd lists ~. domain
    - Deduplicate code for parsing interface options
    - Add support for optional-addresses.

netplan.io (0.39) cosmic; urgency=medium

  * New upstream release:
    - Allow link-local addresses to be configured. (LP: #1771704)
    - Forces bridges with no addresses to be brought online. (LP: #1736975)

netplan.io (0.38) cosmic; urgency=medium

  * New upstream release:
    - Write udev .rules files to /run/udev/rules.d to enforce interface
      renaming. (LP: #1770082)
    - Don't traceback for 'netplan ip leases' when iface is not managed or
      doesn't DHCP (LP: #1768823)
    - Fix duplicate "/" path separator in error messages (LP: #1771440)
    - Fix incorrect terminal reset in 'netplan try' on Ctrl-C. (LP: #1768798)
    - Updated doc entries: mtu, fix fwmark->mark, cleanup optional.
      (LP: #1768783)
    - Added documentation validation at build.
    - Added configuration example for multi-ip interfaces.
  * tests/integration.py: fix test_eth_and_bridge autopkg test harder.
  * debian/control:
    - Add iproute2 to Depends.
    - Add python3-netifaces to Depends, Build-Depends.

 -- Mathieu Trudel-Lapierre <cyphermox at ubuntu.com>  Mon, 22 Oct 2018
15:02:30 -0400

** Changed in: netplan.io (Ubuntu Bionic)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to nplan in Ubuntu.
Matching subscriptions: foundations-bugs
https://bugs.launchpad.net/bugs/1736965

Title:
  "netplan apply" does not set file mode, umask 077 causes systemd-
  networkd to be unable to start

Status in netplan.io package in Ubuntu:
  Fix Released
Status in nplan package in Ubuntu:
  Confirmed
Status in netplan.io source package in Bionic:
  Fix Released

Bug description:
  [Impact]
  Ubuntu users configuring a custom umask on their system

  [Test case]
  1) set UMASK in /etc/login.defs to 077
  2) Configure netplan to use the networkd renderer, run 'sudo netplan apply'.
  3) Verify that systemd-network applies the correct network configuration.

  [Regression potential]
  This enforces setting the umask for the netplan-gnerated configurations to a value that allows networkd to read the files for the configuration. If people rely on the umask, and have otherwise configured systemd-networkd to be able to get the configuration, this would defeat their umask change. The failure more for this is something that isn't supported.

  ---

  If you set your UMASK in /etc/login.defs to 077 then after running "netplan apply" systemd-networkd won't be able to read its configuration files and start:
  systemd-networkd[2826]: Could not load configuration files: Permission denied

  Annoyingly to report such a thing as bug you need a proper network
  connection with working DNS before you submit in ubuntu-bug or it will
  just quit and lose the report. A workaround seems to be to run
  "ubuntu-bug nplan" then in another terminal run "umask 022" then
  "netplan apply" before submitting.

  ProblemType: Bug
  DistroRelease: Ubuntu 17.10
  Package: nplan 0.30
  ProcVersionSignature: Ubuntu 4.13.0-17.20-generic 4.13.8
  Uname: Linux 4.13.0-17-generic x86_64
  ApportVersion: 2.20.7-0ubuntu3.5
  Architecture: amd64
  Date: Thu Dec  7 10:20:37 2017
  ProcEnviron:
   LANGUAGE=en_CA:en
   TERM=screen
   PATH=(custom, no user)
   LANG=en_CA.UTF-8
   SHELL=/bin/bash
  SourcePackage: nplan
  UpgradeStatus: No upgrade log present (probably fresh install)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/netplan.io/+bug/1736965/+subscriptions

More information about the foundations-bugs mailing list