Your message dated Thu, 19 Nov 2020 19:47:08 +0000
with message-id <[email protected]>
and subject line Bug#963488: fixed in systemd 241-7~deb10u5
has caused the Debian Bug report #963488,
regarding [buster] systemd-network assigns a random network address to bridge
interfaces
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
963488: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=963488
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: systemd
Version: 241-7~deb10u4
Severity: normal
File: /lib/systemd/systemd-networkd
Tags: upstream fixed-upstream
Forwarded: https://github.com/systemd/systemd/issues/12558
User: [email protected]
Usertags: buster-backport
Control: fixed -1 242-1
Hi systemd maintainers,
I'd like you to include a one-line fix for a niche problem in the next
stable update of systemd.
When systemd-networkd is used to create a bridge interface,
systemd-networkd assigns a random mac address to the interface and
overrides the kernel choice. The kernel would choose the minimal mac of
the participating interfaces and that's usually what one wants. A random
mac address is not stable and it can cause collisions.
The issue only happens when creating the bridge using systemd-networkd.
When creating a bridge using "ip link add bridge0 type bridge", the
kernel policy is applied.
The issue can be worked around by explicitly configuring the MACAddress
in a .network configuration file when it is known in advance. This
method is not applicable to cloud and embedded deployments where the
same rootfs is reused for multiple nodes.
The upstream solution, quite simply, is to never generate a mac address
for bridge interfaces unless explicitly requested. This is implemented
in
https://github.com/systemd/systemd/commit/deb2cfa4c6885d448eb1f17e5ef1b139106b7e86.
The commit applies easily to the version in buster and solves the
problem. Current master releases have further refactored the code, so it
looks different there.
This issue very much affects a non-default configuration and thus
affects few users. This also limits the scope of possible regressions.
Backporting it locally mostly is a feasible option except for the fact
that systemd is updated quite often in stable and we already are at the
fourth update. The request thus is to include the fix with the next
update to avoid the need for further backports by endusers.
In case this bug is still present after bullseye is released, it should
be closed immediately with no further action.
Thank you for considering
Helmut
--- End Message ---
--- Begin Message ---
Source: systemd
Source-Version: 241-7~deb10u5
Done: Michael Biebl <[email protected]>
We believe that the bug you reported is fixed in the latest version of
systemd, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Michael Biebl <[email protected]> (supplier of updated systemd package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 24 Oct 2020 20:44:48 +0200
Source: systemd
Architecture: source
Version: 241-7~deb10u5
Distribution: buster
Urgency: medium
Maintainer: Debian systemd Maintainers
<[email protected]>
Changed-By: Michael Biebl <[email protected]>
Closes: 963488 964926
Changes:
systemd (241-7~deb10u5) buster; urgency=medium
.
* basic/cap-list: parse/print numerical capabilities (Closes: #964926)
* missing: add new Linux capabilities.
Linux kernel v5.8 adds two new capabilities. Make sure we can recognize
them even when built with an older kernel.
* networkd: do not generate MAC for bridge device (Closes: #963488)
Checksums-Sha1:
01723232189c5ebd45e221cd9b04b039266a4453 4946 systemd_241-7~deb10u5.dsc
dde44e71fd0b363234fe07a39b92273b89139ee4 179676
systemd_241-7~deb10u5.debian.tar.xz
abf5a9d58d9f20a213c56025437329d9c47c56af 9432
systemd_241-7~deb10u5_source.buildinfo
Checksums-Sha256:
b061c7dff79c40ca45f3a8d4a8632cc3c012e7a2212cf8e9ae189a6b2a4b4e35 4946
systemd_241-7~deb10u5.dsc
c0121499947286d99de53844cafafae6bca6f54e734572496ae7ba24b9db7cee 179676
systemd_241-7~deb10u5.debian.tar.xz
fcfada7d95e09c7f28490c210c5abe09250eced434dfd09749dc552af1df619f 9432
systemd_241-7~deb10u5_source.buildinfo
Files:
5f88da7c14750cd60ef7f3ed0f4d0eb4 4946 admin optional systemd_241-7~deb10u5.dsc
38bd5ce0fb1eedc9bc0d0ee41908483d 179676 admin optional
systemd_241-7~deb10u5.debian.tar.xz
3331eb9f035427cb10bb766b2a457dbf 9432 admin optional
systemd_241-7~deb10u5_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCAAdFiEECbOsLssWnJBDRcxUauHfDWCPItwFAl+e930ACgkQauHfDWCP
ItxP3RAAgpLWaXQbMtiblxEmgJjgb/8KXJ4KPEAAso5iRSJ3HIUhDTh70PZEcguu
pDmuzkDYofyML6m/r2wOtrh1JspSNxgpp+FTUT37BpOv6jUwhKtzTrINAj402azT
GZpWRu5uihxEbs8sOCQCxqGU2v1YPV7myQ4kYAD2sfps+IMh4c8QEKjySOw6mUud
68KshNb5DzJiNKamlpRpbn+wmYDTJJJxK85EzBzwZh7uv1HaNBUElbqXjmB9yLn2
ubyNf/qPtCpabheCz7fW+U3ENjNHLczF4N8KWk0UIqei8S0cXUmELAkyeeAKUcND
l9EVoyB/OZpTQ4+WS1RW2v0Yu3MAXyUBVvWEYUbBV/da6gbXlf7CiofQGnLIGI4L
RxXF1cWbvb9lBfNnz1yzi1WFgKr+pHU71YezK4MVP7PFs7hIOySXtxmas9EN6636
0BjDsMoF9fx6fu63fvVOwcCpnifh7Lsm0lnWe5fP8TAFjk8ZW7nkYYxTUZy0pzRy
EP9dXSEkpB6rr75WsZg7qDGC1CODyfV8XS3IyWY9+tkpjG1ETmq1qeHFYEcGT4fk
tfOtRvQmE3OoqdVUrP1bLBnSh8Ul/ZluZ9VNDFGlnB6eQ4wB81qdJexitOx7HVSk
b476juR5cZZFg+Q6G3JjywS10Xd/zh7GGYCcFCpIYl1o81vOdWI=
=/5Es
-----END PGP SIGNATURE-----
--- End Message ---
