Systemd removes OpenVPN IP addresses

Bug #1830955 reported by Leroy Tennison
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
systemd (Ubuntu)
Undecided
Unassigned

Bug Description

This is probably related to, but not a duplicate of, bug 1815101. Running

root@third:/home/leroy# lsb_release -rd
Description: Ubuntu 18.04.2 LTS
Release: 18.04

Systemd version:

root@third:/home/leroy# apt-cache policy systemd
systemd:
  Installed: 237-3ubuntu10.21
  Candidate: 237-3ubuntu10.21
  Version table:
 *** 237-3ubuntu10.21 500
        500 http://us.archive.ubuntu.com/ubuntu bionic-updates/main amd64 Packages
        100 /var/lib/dpkg/status
     237-3ubuntu10.19 500
        500 http://security.ubuntu.com/ubuntu bionic-security/main amd64 Packages
     237-3ubuntu10 500
        500 http://us.archive.ubuntu.com/ubuntu bionic/main amd64 Packages

I expected the OpenVPN IP addresses to remain, instead they were removed, the physical NIC address remained, process:

Start OpenVPN with systemctl start openvpn@<config-name> (in this situation, two instances). Result:

root@third:/etc/openvpn# ip addr sh tun0
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none
    inet 10.57.3.1 peer 10.57.3.2/32 scope global tun0
       valid_lft forever preferred_lft forever
    inet6 fe80::f0ea:151b:cb91:5d1b/64 scope link stable-privacy
       valid_lft forever preferred_lft forever
root@third:/etc/openvpn# ip addr sh tun1
8: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none
    inet 10.222.108.234 peer 10.222.108.233/32 scope global tun1
       valid_lft forever preferred_lft forever
    inet6 fe80::3103:7936:cf19:6237/64 scope link stable-privacy
       valid_lft forever preferred_lft forever

Test a configuration (which, incidentally, isn't valid for this system) with 'netplan try ..' and allow it to revert (which should have restored the previous configuration), see below:

root@third:/etc/openvpn# cd ~leroy/Downloads
root@third:/home/leroy/Downloads# ll *.yaml
-rw-rw-r-- 1 leroy leroy 555 May 29 10:46 startup.yaml
root@third:/home/leroy/Downloads# netplan --debug try --config-file ~leroy/Downloads/startup.yaml --timeout 15
DEBUG:eno1 not found in {}
DEBUG:Merged config:
network:
  bonds: {}
  bridges: {}
  ethernets:
    eno1:
      addresses:
      - 10.15.0.37/24
      dhcp4: false
      gateway4: 10.15.0.1
      nameservers:
        addresses:
        - 10.15.0.8
        - 10.3.77.11
        - 10.45.77.11
        - 8.8.8.8
  vlans: {}
  wifis: {}

DEBUG:New interfaces: {'eno1'}
** (generate:8216): DEBUG: 11:19:39.770: Processing input file /etc/netplan/01-network-manager-all.yaml..
** (generate:8216): DEBUG: 11:19:39.771: starting new processing pass
** (generate:8216): DEBUG: 11:19:39.771: Processing input file /etc/netplan/startup.1559146779.768221.yaml..
** (generate:8216): DEBUG: 11:19:39.771: starting new processing pass
** (generate:8216): DEBUG: 11:19:39.771: eno1: setting default backend to 2
** (generate:8216): DEBUG: 11:19:39.771: Generating output files..
** (generate:8216): DEBUG: 11:19:39.771: networkd: definition eno1 is not for us (backend 2)
DEBUG:no netplan generated networkd configuration exists
DEBUG:netplan generated NM configuration exists, restarting NM
DEBUG:eno1 not found in {}
DEBUG:Merged config:
network:
  bonds: {}
  bridges: {}
  ethernets:
    eno1:
      addresses:
      - 10.15.0.37/24
      dhcp4: false
      gateway4: 10.15.0.1
      nameservers:
        addresses:
        - 10.15.0.8
        - 10.3.77.11
        - 10.45.77.11
        - 8.8.8.8
  vlans: {}
  wifis: {}

DEBUG:Skipping non-physical interface: lo
DEBUG:Skipping non-physical interface: enp2s0
DEBUG:Skipping non-physical interface: virbr0
DEBUG:Skipping non-physical interface: virbr0-nic
DEBUG:Skipping non-physical interface: tun0
DEBUG:Skipping non-physical interface: tun1
DEBUG:{}
DEBUG:netplan triggering .link rules for lo
DEBUG:netplan triggering .link rules for enp2s0
DEBUG:netplan triggering .link rules for virbr0
DEBUG:netplan triggering .link rules for virbr0-nic
DEBUG:netplan triggering .link rules for tun0
DEBUG:netplan triggering .link rules for tun1
Do you want to keep these settings?

Press ENTER before the timeout to accept the new configuration

Changes will revert in 1 seconds
Reverting.
DEBUG:no netplan generated networkd configuration exists
DEBUG:netplan generated NM configuration exists, restarting NM
DEBUG:Merged config:
network:
  bonds: {}
  bridges: {}
  ethernets: {}
  vlans: {}
  wifis: {}

DEBUG:Skipping non-physical interface: lo
DEBUG:Skipping non-physical interface: enp2s0
DEBUG:Skipping non-physical interface: virbr0
DEBUG:Skipping non-physical interface: virbr0-nic
DEBUG:Skipping non-physical interface: tun0
DEBUG:Skipping non-physical interface: tun1
DEBUG:{}
DEBUG:netplan triggering .link rules for lo
DEBUG:netplan triggering .link rules for enp2s0
DEBUG:netplan triggering .link rules for virbr0
DEBUG:netplan triggering .link rules for virbr0-nic
DEBUG:netplan triggering .link rules for tun0
DEBUG:netplan triggering .link rules for tun1
DEBUG:eno1 will not be removed: not a virtual interface

OpenVPN IP addresses (but not the tun interfaces) are removed, see below:

root@third:/home/leroy/Downloads# ip addr sh tun0
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none
root@third:/home/leroy/Downloads# ip addr sh tun1
8: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none

For reference, startup.yaml contents are:

root@third:/home/leroy/Downloads# cat startup.yaml
# This file is generated from information provided by
# the datasource. Changes to it will not persist across an instance.
# To disable cloud-init's network configuration capabilities, write a file
# /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg with the following:
# network: {config: disabled}
network:
    ethernets:
        eno1:
            dhcp4: false
            addresses: [10.15.0.37/24]
            gateway4: 10.15.0.1
            nameservers:
                    addresses: [10.15.0.8, 10.3.77.11, 10.45.77.11, 8.8.8.8]
    version: 2

And the physical NIC information:

root@third:/home/leroy# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: enp2s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 1000
    link/ether 00:50:da:22:2a:a2 brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.5/24 brd 192.168.0.255 scope global dynamic noprefixroute enp2s0
       valid_lft 2865sec preferred_lft 2865sec
    inet6 2605:6001:e6c2:4a00:954c:86e5:62cb:9a98/64 scope global temporary dynamic
       valid_lft 600938sec preferred_lft 82337sec
    inet6 2605:6001:e6c2:4a00:faec:e524:9965:c9ef/64 scope global dynamic mngtmpaddr noprefixroute
       valid_lft 604780sec preferred_lft 604780sec
    inet6 fe80::ae0e:553e:6c8d:5aa1/64 scope link noprefixroute
       valid_lft forever preferred_lft forever
3: virbr0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000
    link/ether 52:54:00:6f:a8:2d brd ff:ff:ff:ff:ff:ff
4: virbr0-nic: <BROADCAST,MULTICAST> mtu 1500 qdisc fq_codel master virbr0 state DOWN group default qlen 1000
    link/ether 52:54:00:6f:a8:2d brd ff:ff:ff:ff:ff:ff
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none
8: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none

(libvirt/qemu is running but not in use).

Paul White (paulw2u)
affects: ubuntu → systemd (Ubuntu)
Dan Streetman (ddstreet)
tags: added: ddstreet
Dan Streetman (ddstreet)
tags: removed: ddstreet
Revision history for this message
Dan Streetman (ddstreet) wrote :

please boot with kernel boot parameter 'systemd.log_level=debug' and reproduce this, then provide the journal logs (before rebooting) with:

$ journalctl -k -b > /tmp/lp1830955.log

Changed in systemd (Ubuntu):
status: New → Incomplete
Revision history for this message
Leroy Tennison (ltennison) wrote : Re: [Bug 1830955] Re: Systemd removes OpenVPN IP addresses
Download full text (8.9 KiB)

Dan,
Unfortunately i can no longer reproduce this behavior.  Guess the bug needs to be closed, sorry for the hassle.

-----Original Message-----
From: Dan Streetman <email address hidden>
To: <email address hidden>
Sent: Fri, Dec 11, 2020 8:49 am
Subject: [Bug 1830955] Re: Systemd removes OpenVPN IP addresses

please boot with kernel boot parameter 'systemd.log_level=debug' and
reproduce this, then provide the journal logs (before rebooting) with:

$ journalctl -k -b > /tmp/lp1830955.log

** Changed in: systemd (Ubuntu)
      Status: New => Incomplete

--
You received this bug notification because you are subscribed to the bug
report.
https://bugs.launchpad.net/bugs/1830955

Title:
  Systemd removes OpenVPN IP addresses

Status in systemd package in Ubuntu:
  Incomplete

Bug description:
  This is probably related to,  but not a duplicate of, bug 1815101.
  Running

  root@third:/home/leroy# lsb_release -rd
  Description:    Ubuntu 18.04.2 LTS
  Release:        18.04

  Systemd version:

  root@third:/home/leroy# apt-cache policy systemd
  systemd:
    Installed: 237-3ubuntu10.21
    Candidate: 237-3ubuntu10.21
    Version table:
  *** 237-3ubuntu10.21 500
          500 http://us.archive.ubuntu.com/ubuntu bionic-updates/main amd64 Packages
          100 /var/lib/dpkg/status
      237-3ubuntu10.19 500
          500 http://security.ubuntu.com/ubuntu bionic-security/main amd64 Packages
      237-3ubuntu10 500
          500 http://us.archive.ubuntu.com/ubuntu bionic/main amd64 Packages

  I expected the OpenVPN IP addresses to remain, instead they were
  removed, the physical NIC address remained, process:

  Start OpenVPN with systemctl start openvpn@<config-name> (in this
  situation, two instances).  Result:

  root@third:/etc/openvpn# ip addr sh tun0
  7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
      link/none
      inet 10.57.3.1 peer 10.57.3.2/32 scope global tun0
        valid_lft forever preferred_lft forever
      inet6 fe80::f0ea:151b:cb91:5d1b/64 scope link stable-privacy
        valid_lft forever preferred_lft forever
  root@third:/etc/openvpn# ip addr sh tun1
  8: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
      link/none
      inet 10.222.108.234 peer 10.222.108.233/32 scope global tun1
        valid_lft forever preferred_lft forever
      inet6 fe80::3103:7936:cf19:6237/64 scope link stable-privacy
        valid_lft forever preferred_lft forever

  Test a configuration (which, incidentally, isn't valid for this
  system) with 'netplan try ..' and allow it to revert (which should
  have restored the previous configuration), see below:

  root@third:/etc/openvpn# cd ~leroy/Downloads
  root@third:/home/leroy/Downloads# ll *.yaml
  -rw-rw-r-- 1 leroy leroy 555 May 29 10:46 startup.yaml
  root@third:/home/leroy/Downloads# netplan --debug try --config-file ~leroy/Downloads/startup.yaml --timeout 15
  DEBUG:eno1 not found in {}
  DEBUG:Merged config:
  network:
    bonds: {}
    bridges: {}
    ethernets:
      eno1:
        addresses:
        - 10.15.0.37/24
        dhcp4: false
        g...

Read more...

Dan Streetman (ddstreet)
Changed in systemd (Ubuntu):
status: Incomplete → Invalid
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers