Add /dev/net/tun for tincd - mrrl-containers - MRRL version of container scripts

commit 4de5ab2abd134fc298b3f990757c11144e391527
parent 3b0d0d748309e2c5a2057f5374cb43e8a00647aa
Author: Jan Pobrislo <ccx@te2000.cz>
Date:   Tue, 15 Apr 2025 02:45:06 +0000

Add /dev/net/tun for tincd

Diffstat:
M zsh-functions/confz_site_containers_init  | 9 ++++++++-

1 file changed, 8 insertions(+), 1 deletion(-)
diff --git a/zsh-functions/confz_site_containers_init b/zsh-functions/confz_site_containers_init
@@ -303,11 +303,18 @@ confz_site_container_services_check() {
 		'if { chown 0:${GID} ./dev/rfkill }'
 		'mount -t sysfs sysfs sys'
 	)
+	local -a el_net_tun=(
+		"#!$(which execlineb) -P"
+		'importas -i GID GID'
+		'if { mknod -m 660 ./dev/net/tun c 10 200 }'
+		'if { chown 0:${GID} ./dev/net/tun }'
+	)
+
 	SUCa wpa_supplicant linux_caps='^CAP_NET_ADMIN,^CAP_NET_RAW' \
 		prepare_chroot=${(F)el_rfkill_and_sys}
 	SUCa dhcpcd linux_caps='^CAP_NET_ADMIN,^CAP_NET_RAW,^CAP_NET_BIND_SERVICE'
 	SUCa unbound linux_caps='^CAP_NET_BIND_SERVICE'
-	SUCa tinc linux_caps='^CAP_NET_ADMIN'
+	SUCa tinc linux_caps='^CAP_NET_ADMIN' prepare_chroot=${(F)el_net_tun}
 	SUCa networking linux_caps='^CAP_NET_ADMIN,^CAP_NET_RAW' \
 		prepare_chroot=${(F)el_rfkill_and_sys}
 }

	mrrl-containers MRRL version of container scripts
	git clone https://ccx.te2000.cz/git/mrrl-containers
	Log \| Files \| Refs