netplan 0.106: lxd container: no dhcp4 on match macaddress
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Netplan |
Won't Fix
|
Low
|
Unassigned | ||
Bug Description
[Affected platform/series]
netplan.io 0.106 on Lunar and Mantic
LXD containers and custom network version 2 config matching by macaddress
[Details]
When providing match: [macaddress=<MAC>] on LXD container with Netplan 0.106, no IPv4 address is setup.
This is because netplan.io 0.106 now emits PemanentMACAddress [Match] clause in /run/systemd/
[Impact]
Network version 2 configs on LXD containers which provide custom cloud-init.
This could be a problem if multiple veth interfaces exist because a `match: name:` condition doesn't seem to support matching specific veth deviced by full name `eth0@if202`.
Note: matching by macaddress does not affect LXD VMs as they are using physical devices.
[Steps to reproduce]
1. Launch lunar or mantic LXD container with a custom MAC address and attempt to setup network based on the prescribed MAC. See failure to get IPv4 address.
2. Revert PermanentMACAddress -> MACAddress in /run/systemd/
cat > network.yaml <<EOF
version: 2
ethernets:
eth0:
dhcp4: true
match:
macaddress: 00:16:3e:c8:00:db
EOF
lxc launch ubuntu-daily:lunar -c volatile.
# Note no ipv4 address
lxc ls netplan106
+------
| NAME | STATE | IPV4 | IPV6 | TYPE | SNAPSHOTS |
+------
| netplan106ByMAC | RUNNING | | fd42:e810:
+------
lxc exec netplan106ByMAC cat /run/systemd/
[Match]
PermanentMACAdd
[Network]
DHCP=ipv4
LinkLocalAddres
[DHCP]
RouteMetric=100
UseMTU=true
When changing the match clause in systemd/network from PermamentMACAddres to MACAddress dhcpv4 is properly allocated:
lxc exec netplan106ByMAC -- sed -i s/Permanent// /run/systemd/
lxc exec netplan106ByMAC -- networkctl reload
lxc ls netplan106
+------
| NAME | STATE | IPV4 | IPV6 | TYPE | SNAPSHOTS |
+------
| netplan106ByMAC | RUNNING | 10.125.221.233 (eth0) | fd42:e810:
+------
| description: | updated |
| tags: | added: foundations-todo |
| Danilo Egea Gondolfo (danilogondolfo) wrote | #1 |
| Changed in netplan: | |
| status: | New → Triaged |
| Changed in netplan: | |
| importance: | Undecided → Low |
| Chad Smith (chad.smith) wrote | #2 |
| Changed in netplan: | |
| status: | Triaged → Won't Fix |
Hi Chad,
We were aware that this change in behavior could cause this kind of problem. Although, "match" is supposed to be used with physical devices. Matching by permanent MAC address is also the default behavior on Network Manager. So, Netplan was not being consistent when considering both backends.
In this scenario in particular, as far as I can tell, using "match" is not really necessary.
This is a LXC container with 2 interfaces:
root@up-turkey:~# ip l
1: lo: <LOOPBACK,
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
15: eth0@if16: <BROADCAST,
link/ether 00:16:3e:c8:00:db brd ff:ff:ff:ff:ff:ff link-netnsid 0
17: eth1@if18: <BROADCAST,
link/ether 00:16:3e:7b:6c:b4 brd ff:ff:ff:ff:ff:ff link-netnsid 0
and this is the netplan config inside the container:
network:
version: 2
ethernets:
eth1:
dhcp4: true
dhcp6: false
eth0:
addresses:
- "172.16.0.1/24"
dhcp4: false
dhcp6: false
both interfaces will be configured accordingly:
+------
| up-turkey | RUNNING | 172.16.0.1 (eth0) | fd42:ee65:
| | | 10.33.59.105 (eth1) | fd42:bc43:
+------
Do you think that matching my MAC address is really necessary inside containers? If there is a use case that can be only satisfied by that, we'll need to introduce a "match.