libvirtd looks for ebtables in the wrong location

It seems that I can't "target to series" this bug to Train.

Anyway the bug can be worked around by converting the system to a "usrmerged" setup, that is by installing the 'usrmerge' package.

Paride

FYI: this is correct for libvirt in the respective releases.

$ lxc exec f bash
root@f:~# which ebtables
/usr/sbin/ebtables
root@f:~# exit

$ lxc exec b bash
root@b:~# which ebtables
/sbin/ebtables

But since Train is Focals libvirt on Bionic the path needs to be adapted on the backport.

It comes down to this commit [1] which is correct for Focal and Debian, but not Bionic.
Fortunately it also provides you the ENV-Vars to override the paths as needed.

TBH I have done so on some other Bionic backport that I maintain and I'm pretty sure I IRC pinged someone of the openstack Team on this. This is true since:
$ git tag --contains 76e2cb71d4dd77d66424ad03795c1ade23b747ee
debian/5.0.0-2
debian/5.0.0-3
debian/5.0.0-4
debian/5.1.0-1
debian/5.2.0-1
debian/5.2.0-2
debian/5.6.0-1
debian/5.6.0-2

Therefore it applies to two UCA Trains and Stein as Rocky still was based on 5.0.0-1.

[1]: https://salsa.debian.org/libvirt-team/libvirt/commit/76e2cb71d4dd77d66424ad03795c1ade23b747ee

Thanks Paride and Christian. I've triaged as high as I'm not sure that work-around is ideal (package from universe and could have side-effects?).

Thanks Corey. AFAIK installing usrmerge is generally safe, but I would only suggest it in a "be sure to know what you're doing scenario", especially given that after doing the conversion there is no way back. It shouldn't be considered a real fix.

Just a couple of observations. I'm not seeing change [1] in libvirt for disco (stein) so I've dropped that release from affected releases. Also the change in [1] is different from the contents that are in the eoan/focal packages:

        IPTABLES_PATH=/sbin/iptables \
        IP6TABLES_PATH=/sbin/ip6tables \
        EBTABLES_PATH=/usr/sbin/ebtables \

This will be fixed with a patch to the backported package. The update will just focus on changing EBTABLES_PATH to /sbin/ebtables.

Hello Paride, or anyone else affected,

Accepted libvirt 5.4.0-0ubuntu5~cloud1 into train-proposed. The package will build now and be available in the Ubuntu Cloud Archive in a few hours, and then in the -proposed repository.

Please help us by testing this new package. To enable the -proposed repository:

  sudo add-apt-repository cloud-archive:train-proposed
  sudo apt-get update

Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, and change the tag from verification-train-needed to verification-train-done. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-train-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

This will be fixed in Ussuri in libvirt 5.4.0-0ubuntu5~cloud2. The ussuri cloud archive is still pending publication.

FYI - this is a dup of my former report in bug 1832297
Not marking as a dup since the processing of this one is rather far already.

The train-proposed fix is included with libvirt 5.4.0-0ubuntu5~cloud1.

@paride, have you been able to verify this fix on train-proposed by any chance?

Note that bionic-train-proposed regression testing was successful this past Friday:

======
Totals
======
Ran: 92 tests in 832.2654 sec.
 - Passed: 84
 - Skipped: 8
 - Expected Fail: 0
 - Unexpected Success: 0
 - Failed: 0
Sum of execute time for each test: 377.7409 sec.

Hi @corey.bryant, I've just verified this in -proposed: with the regular Train version (5.4.0-0ubuntu5~cloud0) the problem reproduces. When upgraded to Train-proposed version (5.4.0-0ubuntu5~cloud0, problem is fixed. Hence, marking as verified.

Cheers,

Guilherme

Thanks Guilherme!