dnsmasq-base causes network device virbr0 to shut down

Hi,

What's the contents of the /etc/dnsmasq.d directory?
Is there a symlink to /etc/dnsmasq.d-available/libvirt-daemon ?

Thanks for taking the time to make this bug report to make Ubuntu better!

I tried reproducing your failure and unfortunately am not able to in a VM/container setup. I think this may need some extra configuration to reproduce the failure.

Starting with something basic, would you mind sharing these 2 files? Please remove/censor any information you do not want to share such as MAC address.

/etc/libvirt/qemu/networks/default.xml
/etc/dnsmasq.d-available/libvirt-daemon

And any other configuration files that you think may be useful.

I must've opened this bug up in the morning before Marc commented and just got back around to posting the question. Apologies for asking for the same information!

This may be caused by the same issue as bug 2055776. I am preparing updated packages with the problematic commit reverted for testing.

(Note: New bug #2055776 opened a couple hours ago that looks related to this issue)

For the following answers to your queries, I used both the new and previous versions of dnsmasq-base with identical results:

What's the contents of the /etc/dnsmasq.d directory?
There is a symbolic link in this dir: libvirt-daemon -> /etc/dnsmasq.d-available/libvirt-daemon

sudo cat /etc/dnsmasq.d-available/libvirt-daemon

bind-interfaces
except-interface=virbr0

sudo cat /etc/libvirt/qemu/networks/default.xml

<!--
WARNING: THIS IS AN AUTO-GENERATED FILE. CHANGES TO IT ARE LIKELY TO BE
OVERWRITTEN AND LOST. Changes to this xml configuration should be made using:
  virsh net-edit default
or other application using the libvirt API.
-->
<network>
  <name>default</name>
  <uuid>2503f137-xxxx-xxxx-a9a0-3f709e7da000</uuid>
  <forward mode='nat'/>
  <bridge name='virbr0' stp='on' delay='0'/>
  <mac address='52:54:xx:xx:c7:d9'/>
  <ip address='192.168.122.1' netmask='255.255.255.0'>
    <dhcp>
      <range start='192.168.122.2' end='192.168.122.254'/>
    </dhcp>
  </ip>
</network>

What's the output of "sudo netstat --tcp --udp --listening --programs --numeric"? Thanks!

Attached txt file for output of netstat command ... first with dnsmasq-base v 2.90-0ubuntu0.22.04.1 and then with previous version 2.86-1.1

If I look at the output from the ifconfig command, the virbr0 device is listed when v2.86-1.1 is used. The virbr0 device is not listed when rebooting with the newer version (2.90-0ubuntu0.22.04.1) of dnsmasq-base

So, it looks like you are running bind on this machine, and bind is listening on port 53 UDP:

udp 0 0 192.168.122.1:53 0.0.0.0:* 1521/named

The old dnsmasq would ignore the error when it couldn't bind to a port, but the new dnsmasq will fail if the port is already used, which makes sense.

Perhaps you need to configure bind to not listen on the 192.168.122.1 interface...

Your suggestion to limit bind will work for me.

I wasn't sure how to tell bind to not listen on an interface.
Bind defaults to: listen-on { any; };

I modified /etc/bind/named.conf.options by adding the following line:
listen-on port 53 { 127.0.0.1; 192.168.2/24; };

This should restrict bind to localhost and my main network, and should prevent it from attaching to the virbr0 interface.

After installing the current version of dnsmasq (2.90-0ubuntu0.22.04.1) and rebooting, it looks like everything is working properly now.

Thanks for all the help with this issue!

That is great news, I'm glad we've identified the root cause of the problem and you have successfully resolved it.

I will mark this bug as invalid since, while the dnsmasq update did change behaviour, the behaviour change revealed a configuration issue rather than being an actual regression.

Thanks!