Systemd removes OpenVPN IP addresses

Bug #1830955 reported by Leroy Tennison
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
systemd (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

This is probably related to, but not a duplicate of, bug 1815101. Running

root@third:/home/leroy# lsb_release -rd
Description: Ubuntu 18.04.2 LTS
Release: 18.04

Systemd version:

root@third:/home/leroy# apt-cache policy systemd
systemd:
  Installed: 237-3ubuntu10.21
  Candidate: 237-3ubuntu10.21
  Version table:
 *** 237-3ubuntu10.21 500
        500 http://us.archive.ubuntu.com/ubuntu bionic-updates/main amd64 Packages
        100 /var/lib/dpkg/status
     237-3ubuntu10.19 500
        500 http://security.ubuntu.com/ubuntu bionic-security/main amd64 Packages
     237-3ubuntu10 500
        500 http://us.archive.ubuntu.com/ubuntu bionic/main amd64 Packages

I expected the OpenVPN IP addresses to remain, instead they were removed, the physical NIC address remained, process:

Start OpenVPN with systemctl start openvpn@<config-name> (in this situation, two instances). Result:

root@third:/etc/openvpn# ip addr sh tun0
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none
    inet 10.57.3.1 peer 10.57.3.2/32 scope global tun0
       valid_lft forever preferred_lft forever
    inet6 fe80::f0ea:151b:cb91:5d1b/64 scope link stable-privacy
       valid_lft forever preferred_lft forever
root@third:/etc/openvpn# ip addr sh tun1
8: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none
    inet 10.222.108.234 peer 10.222.108.233/32 scope global tun1
       valid_lft forever preferred_lft forever
    inet6 fe80::3103:7936:cf19:6237/64 scope link stable-privacy
       valid_lft forever preferred_lft forever

Test a configuration (which, incidentally, isn't valid for this system) with 'netplan try ..' and allow it to revert (which should have restored the previous configuration), see below:

root@third:/etc/openvpn# cd ~leroy/Downloads
root@third:/home/leroy/Downloads# ll *.yaml
-rw-rw-r-- 1 leroy leroy 555 May 29 10:46 startup.yaml
root@third:/home/leroy/Downloads# netplan --debug try --config-file ~leroy/Downloads/startup.yaml --timeout 15
DEBUG:eno1 not found in {}
DEBUG:Merged config:
network:
  bonds: {}
  bridges: {}
  ethernets:
    eno1:
      addresses:
      - 10.15.0.37/24
      dhcp4: false
      gateway4: 10.15.0.1
      nameservers:
        addresses:
        - 10.15.0.8
        - 10.3.77.11
        - 10.45.77.11
        - 8.8.8.8
  vlans: {}
  wifis: {}

DEBUG:New interfaces: {'eno1'}
** (generate:8216): DEBUG: 11:19:39.770: Processing input file /etc/netplan/01-network-manager-all.yaml..
** (generate:8216): DEBUG: 11:19:39.771: starting new processing pass
** (generate:8216): DEBUG: 11:19:39.771: Processing input file /etc/netplan/startup.1559146779.768221.yaml..
** (generate:8216): DEBUG: 11:19:39.771: starting new processing pass
** (generate:8216): DEBUG: 11:19:39.771: eno1: setting default backend to 2
** (generate:8216): DEBUG: 11:19:39.771: Generating output files..
** (generate:8216): DEBUG: 11:19:39.771: networkd: definition eno1 is not for us (backend 2)
DEBUG:no netplan generated networkd configuration exists
DEBUG:netplan generated NM configuration exists, restarting NM
DEBUG:eno1 not found in {}
DEBUG:Merged config:
network:
  bonds: {}
  bridges: {}
  ethernets:
    eno1:
      addresses:
      - 10.15.0.37/24
      dhcp4: false
      gateway4: 10.15.0.1
      nameservers:
        addresses:
        - 10.15.0.8
        - 10.3.77.11
        - 10.45.77.11
        - 8.8.8.8
  vlans: {}
  wifis: {}

DEBUG:Skipping non-physical interface: lo
DEBUG:Skipping non-physical interface: enp2s0
DEBUG:Skipping non-physical interface: virbr0
DEBUG:Skipping non-physical interface: virbr0-nic
DEBUG:Skipping non-physical interface: tun0
DEBUG:Skipping non-physical interface: tun1
DEBUG:{}
DEBUG:netplan triggering .link rules for lo
DEBUG:netplan triggering .link rules for enp2s0
DEBUG:netplan triggering .link rules for virbr0
DEBUG:netplan triggering .link rules for virbr0-nic
DEBUG:netplan triggering .link rules for tun0
DEBUG:netplan triggering .link rules for tun1
Do you want to keep these settings?

Press ENTER before the timeout to accept the new configuration

Changes will revert in 1 seconds
Reverting.
DEBUG:no netplan generated networkd configuration exists
DEBUG:netplan generated NM configuration exists, restarting NM
DEBUG:Merged config:
network:
  bonds: {}
  bridges: {}
  ethernets: {}
  vlans: {}
  wifis: {}

DEBUG:Skipping non-physical interface: lo
DEBUG:Skipping non-physical interface: enp2s0
DEBUG:Skipping non-physical interface: virbr0
DEBUG:Skipping non-physical interface: virbr0-nic
DEBUG:Skipping non-physical interface: tun0
DEBUG:Skipping non-physical interface: tun1
DEBUG:{}
DEBUG:netplan triggering .link rules for lo
DEBUG:netplan triggering .link rules for enp2s0
DEBUG:netplan triggering .link rules for virbr0
DEBUG:netplan triggering .link rules for virbr0-nic
DEBUG:netplan triggering .link rules for tun0
DEBUG:netplan triggering .link rules for tun1
DEBUG:eno1 will not be removed: not a virtual interface

OpenVPN IP addresses (but not the tun interfaces) are removed, see below:

root@third:/home/leroy/Downloads# ip addr sh tun0
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none
root@third:/home/leroy/Downloads# ip addr sh tun1
8: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none

For reference, startup.yaml contents are:

root@third:/home/leroy/Downloads# cat startup.yaml
# This file is generated from information provided by
# the datasource. Changes to it will not persist across an instance.
# To disable cloud-init's network configuration capabilities, write a file
# /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg with the following:
# network: {config: disabled}
network:
    ethernets:
        eno1:
            dhcp4: false
            addresses: [10.15.0.37/24]
            gateway4: 10.15.0.1
            nameservers:
                    addresses: [10.15.0.8, 10.3.77.11, 10.45.77.11, 8.8.8.8]
    version: 2

And the physical NIC information:

root@third:/home/leroy# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: enp2s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 1000
    link/ether 00:50:da:22:2a:a2 brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.5/24 brd 192.168.0.255 scope global dynamic noprefixroute enp2s0
       valid_lft 2865sec preferred_lft 2865sec
    inet6 2605:6001:e6c2:4a00:954c:86e5:62cb:9a98/64 scope global temporary dynamic
       valid_lft 600938sec preferred_lft 82337sec
    inet6 2605:6001:e6c2:4a00:faec:e524:9965:c9ef/64 scope global dynamic mngtmpaddr noprefixroute
       valid_lft 604780sec preferred_lft 604780sec
    inet6 fe80::ae0e:553e:6c8d:5aa1/64 scope link noprefixroute
       valid_lft forever preferred_lft forever
3: virbr0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000
    link/ether 52:54:00:6f:a8:2d brd ff:ff:ff:ff:ff:ff
4: virbr0-nic: <BROADCAST,MULTICAST> mtu 1500 qdisc fq_codel master virbr0 state DOWN group default qlen 1000
    link/ether 52:54:00:6f:a8:2d brd ff:ff:ff:ff:ff:ff
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none
8: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
    link/none

(libvirt/qemu is running but not in use).

Paul White (paulw2u)
affects: ubuntu → systemd (Ubuntu)
Dan Streetman (ddstreet)
tags: added: ddstreet
Dan Streetman (ddstreet)
tags: removed: ddstreet
Revision history for this message
Dan Streetman (ddstreet) wrote :

please boot with kernel boot parameter 'systemd.log_level=debug' and reproduce this, then provide the journal logs (before rebooting) with:

$ journalctl -k -b > /tmp/lp1830955.log

Changed in systemd (Ubuntu):
status: New → Incomplete
Revision history for this message
Leroy Tennison (ltennison) wrote : Re: [Bug 1830955] Re: Systemd removes OpenVPN IP addresses
Download full text (8.9 KiB)

Dan,
Unfortunately i can no longer reproduce this behavior.  Guess the bug needs to be closed, sorry for the hassle.

-----Original Message-----
From: Dan Streetman <email address hidden>
To: <email address hidden>
Sent: Fri, Dec 11, 2020 8:49 am
Subject: [Bug 1830955] Re: Systemd removes OpenVPN IP addresses

please boot with kernel boot parameter 'systemd.log_level=debug' and
reproduce this, then provide the journal logs (before rebooting) with:

$ journalctl -k -b > /tmp/lp1830955.log

** Changed in: systemd (Ubuntu)
      Status: New => Incomplete

--
You received this bug notification because you are subscribed to the bug
report.
https://bugs.launchpad.net/bugs/1830955

Title:
  Systemd removes OpenVPN IP addresses

Status in systemd package in Ubuntu:
  Incomplete

Bug description:
  This is probably related to,  but not a duplicate of, bug 1815101.
  Running

  root@third:/home/leroy# lsb_release -rd
  Description:    Ubuntu 18.04.2 LTS
  Release:        18.04

  Systemd version:

  root@third:/home/leroy# apt-cache policy systemd
  systemd:
    Installed: 237-3ubuntu10.21
    Candidate: 237-3ubuntu10.21
    Version table:
  *** 237-3ubuntu10.21 500
          500 http://us.archive.ubuntu.com/ubuntu bionic-updates/main amd64 Packages
          100 /var/lib/dpkg/status
      237-3ubuntu10.19 500
          500 http://security.ubuntu.com/ubuntu bionic-security/main amd64 Packages
      237-3ubuntu10 500
          500 http://us.archive.ubuntu.com/ubuntu bionic/main amd64 Packages

  I expected the OpenVPN IP addresses to remain, instead they were
  removed, the physical NIC address remained, process:

  Start OpenVPN with systemctl start openvpn@<config-name> (in this
  situation, two instances).  Result:

  root@third:/etc/openvpn# ip addr sh tun0
  7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
      link/none
      inet 10.57.3.1 peer 10.57.3.2/32 scope global tun0
        valid_lft forever preferred_lft forever
      inet6 fe80::f0ea:151b:cb91:5d1b/64 scope link stable-privacy
        valid_lft forever preferred_lft forever
  root@third:/etc/openvpn# ip addr sh tun1
  8: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
      link/none
      inet 10.222.108.234 peer 10.222.108.233/32 scope global tun1
        valid_lft forever preferred_lft forever
      inet6 fe80::3103:7936:cf19:6237/64 scope link stable-privacy
        valid_lft forever preferred_lft forever

  Test a configuration (which, incidentally, isn't valid for this
  system) with 'netplan try ..' and allow it to revert (which should
  have restored the previous configuration), see below:

  root@third:/etc/openvpn# cd ~leroy/Downloads
  root@third:/home/leroy/Downloads# ll *.yaml
  -rw-rw-r-- 1 leroy leroy 555 May 29 10:46 startup.yaml
  root@third:/home/leroy/Downloads# netplan --debug try --config-file ~leroy/Downloads/startup.yaml --timeout 15
  DEBUG:eno1 not found in {}
  DEBUG:Merged config:
  network:
    bonds: {}
    bridges: {}
    ethernets:
      eno1:
        addresses:
        - 10.15.0.37/24
        dhcp4: false
        g...

Read more...

Dan Streetman (ddstreet)
Changed in systemd (Ubuntu):
status: Incomplete → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.