2.7 - Hostname resolution in network-get omits loopback IPs #11638
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
!!build!! |
manadart
changed the title
manadart
changed the title
achilleasa
approved these changes
Jun 2, 2020
There was a problem hiding this comment.
The last commit LGTM.
Can you also update the bit about filtering in the PR description and add something along the lines of "if only loopback IPs are found, we log an error advising the operator on how to tweak the system settings to ensure proper IP discoverability"?
non-loopback address if possible.
as loopback address(es).
manadart
force-pushed
the
2.7-local-machine-addrs
branch
from
50fbcf8
to
7ef1496
Compare
|
|
1 similar comment
|
|
Merged
jujubot
added a commit
that referenced
this pull request
Jun 10, 2020
#11688 Merge 2.7 into 2.8 to bring forward: - #11657 from manadart/2.7-update-gorilla-websocket - #11638 from manadart/2.7-local-machine-addrs - #11639 from SimonRichardson/unpin-machine-applications-on-destroy - #11650 from manadart/2.7-pruner-test-kill - #11660 from achilleasa/2.7-ensure-cert-leafs-are-at-least-384-bytes-long - #11664 from ycliuhw/fix/OCI-fetch-2.7 Some of these are effectively no-ops. The material changes are: - The logging instead of throwing or errors in #11639. - #11638.
Merged
jujubot
added a commit
that referenced
this pull request
Jun 11, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description of change
When a manual machine is provisioned using a FQDN, that name is what is returned by the instance-poller for provider addresses. This means that this name is often also returned as the preferred private and public machine addresses.
In turn, when
network-getruns for a unit on such a machine, the FQDN is resolved before returning an address result. When it resolves addresses, it returns the first it finds.We have observed cases where the machine hosts file has an entry like this:
This means that the IP returned by
network-getis not usable by relations to the unit.This patch ensures that where possible, we filter
127.*.*.*addresses before returning host-name resolved addresses. If filtering removes all addresses, we log a warning message to give the operator some information for possible resolution.QA steps
To do this, I have a LXD profile that includes my Juju SSH key in authorised keys for the "ubuntu" user.
manual-ctrlandmanual-m1.juju bootstrap manual/ssh:ubuntu@<manual-ctrl IP> net-get-test --debug --no-gui.lxc exec manual-m1 bashand add an entry to the hosts file like this:127.0.1.1 manual-m1.lxd manual-m1.<manual-m1 IP> manual-m1.juju add-machine ssh:ubuntu@manual-m1.juju deploy percona-cluster mysql --to 0and await quiescence.juju run --unit mysql/0 "network-get --format yaml db".juju debug-log --include mysql/0should include a warning entry like this:Documentation changes
None.
Bug reference
https://bugs.launchpad.net/juju/+bug/1831580