<div dir="ltr"><div><div>HI Laine,<br><br></div>Looks like we are able to run qemu-bridge-helper and it internally tries to create tap interface.<br></div>While creating this tap interface we are getting Operation not permitted error:<br> <b><br></b><div><b> failed to create tun device: Operation not permitted<br><br></b></div><div>How we can create tun interface without root user is the issue. Please let us know how to proceed on this.<br><br><br></div></div><div class="gmail_extra"> <br><br><div class="gmail_quote">On Wed, Jun 25, 2014 at 6:21 PM, Laine Stump <span dir="ltr"><<a href="mailto:laine@laine.org" target="_blank">laine@laine.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> <div bgcolor="#FFFFFF" text="#000000"><div class=""> <div>On 06/25/2014 03:28 PM, abhishek jain wrote:<br> </div> <blockquote type="cite"> <div dir="ltr"> <div> <div> <div>Hi Laine <br> <br> </div> I'm able to run the qemu-bridge-helper but with root authority.<br> </div> I need to run it with non-root user.How can i do that?<br> </div> </div> </blockquote> <br></div> The entire point of qemu-bridge-helper is that it can be run by non-privileged users, but once run it has root privileges. This is done by the binary having the "suid bit" set. If your distro didn't install it this way, that is a bug (an ls -l of the binary should show "rwsr-xr-x" permissions) . You can fix it with the chmod command (e.g. "chmod 4755 /usr/libexec/qemu-bridge-helper"). If that is what was broken, and you used the distro-built package, you should report it as a bug to the distro's bug tracking system.<br> <br> Beyond that, you need to read about the qemu-bridge-helper ACL file in the link I originally gave (along with other info you can find with a google search).<br> <br> <br> <blockquote type="cite"><div><div class="h5"> <div dir="ltr"> <div><br> </div> Thanks <br> </div> <div class="gmail_extra"> <br> <br> <div class="gmail_quote">On Wed, Jun 25, 2014 at 5:43 PM, Laine Stump <span dir="ltr"><<a href="mailto:laine@laine.org" target="_blank">laine@laine.org</a>></span> wrote:<br> <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> <div> <div>On 06/25/2014 10:22 AM, abhishek jain wrote:<br> > Hi<br> ><br> > I'm able to run the below command using root permission....<br> ><br> > sudo kvm -netdev bridge,br=qbr0ccdca50-fa,id=hostnet -M ppce500<br> > Warning: netdev hostnet has no peer<br> > Could not initialize SDL(No available video device) - exiting<br> ><br> ><br> > However when I'm running the same command without root authority,I'm<br> > getting following logs...<br> ><br> > kvm -netdev bridge,br=qbr0ccdca50-fa,id=hostnet -M ppce500<br> > failed to create tun device: Operation not permitted<br> > failed to launch bridge helper<br> > kvm: -netdev bridge,br=qbr0ccdca50-fa,id=hostnet: Device 'bridge'<br> > could not be initialized<br> ><br> ><br> > I need to run the above command without root authority.Please help<br> > regarding this.<br> <br> </div> </div> Search for qemu-bridge-helper and you should find information about the<br> ACL file that needs to be setup for this to work properly. For example,<br> this has a short description, but doesn't sound like it's intended to be<br> the final authority:<br> <br> <a href="http://wiki.qemu.org/Features/HelperNetworking" target="_blank">http://wiki.qemu.org/Features/HelperNetworking</a><br> </blockquote> </div> <br> </div> <br> <fieldset></fieldset> <br> </div></div><pre>_______________________________________________ libvirt-users mailing list <a href="mailto:libvirt-users@redhat.com" target="_blank">libvirt-users@redhat.com</a> <a href="https://www.redhat.com/mailman/listinfo/libvirt-users" target="_blank">https://www.redhat.com/mailman/listinfo/libvirt-users</a></pre> </blockquote> <br> </div> </blockquote></div><br></div>