[Rdo-list] Why is a bug fixed in RHOS/RHEL but not in Rawhide? - dev - Rdo List Archives

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

[Rdo-list] Why is a bug fixed in RHOS/RHEL but not in Rawhide?

[Rdo-list] dnsmasq: failed to set...

[Rdo-list] Upgrade from Icehouse...

Richard W.M. Jones

Wednesday, 17 December 2014 Wed, 17 Dec '14

1:39 p.m.

https://bugzilla.redhat.com/show_bug.cgi?id=1132129 It looks as if this was fixed in RHOS 5 and upstream (16a766d81) back in August. I've just cloned this bug for Rawhide where it is still not fixed: https://bugzilla.redhat.com/show_bug.cgi?id=1175460 Surely bugs should be fixed first upstream, then in Rawhide, and then in RHOS? Rich. -- Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones Read my programming and virtualization blog: http://rwmj.wordpress.com Fedora Windows cross-compiler. Compile Windows programs, test, and build Windows installers. Over 100 libraries supported. http://fedoraproject.org/wiki/MinGW

Reply

Show replies by date

Kashyap Chamarthy

Wednesday, 17 December Wed, 17 Dec

2:41 p.m.

On Wed, Dec 17, 2014 at 07:39:34PM +0000, Richard W.M. Jones wrote:

https://bugzilla.redhat.com/show_bug.cgi?id=1132129 It looks as if this was fixed in RHOS 5 and upstream (16a766d81) back in August. I've just cloned this bug for Rawhide where it is still not fixed: https://bugzilla.redhat.com/show_bug.cgi?id=1175460 Surely bugs should be fixed first upstream, then in Rawhide, and then in RHOS?

If I'd have to guess, it must have been just an innocuous mistake. (Added Ivan, who fixed the Packstack bug to the thread.) -- /kashyap

Reply

Richard W.M. Jones

Thursday, 18 December Thu, 18 Dec

3:16 a.m.

On Wed, Dec 17, 2014 at 07:39:34PM +0000, Richard W.M. Jones wrote:

https://bugzilla.redhat.com/show_bug.cgi?id=1132129 It looks as if this was fixed in RHOS 5 and upstream (16a766d81) back in August. I've just cloned this bug for Rawhide where it is still not fixed: https://bugzilla.redhat.com/show_bug.cgi?id=1175460 Surely bugs should be fixed first upstream, then in Rawhide, and then in RHOS?

It turns out the commit fixing the bug was reverted upstream. The bug still happens in a freshly created Rawhide VM that just runs 'packstack --allinone'. Any idea who/what it is that adds net.bridge.bridge-nf-call-* rules into /etc/sysctl.conf? I would guess it's something to do with libvirt. Rich. -- Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones Read my programming and virtualization blog: http://rwmj.wordpress.com virt-p2v converts physical machines to virtual machines. Boot with a live CD or over the network (PXE) and turn machines into KVM guests. http://libguestfs.org/virt-v2v

Reply

Kashyap Chamarthy

5:19 a.m.

On Thu, Dec 18, 2014 at 09:16:17AM +0000, Richard W.M. Jones wrote:

On Wed, Dec 17, 2014 at 07:39:34PM +0000, Richard W.M. Jones wrote: > > https://bugzilla.redhat.com/show_bug.cgi?id=1132129 > > It looks as if this was fixed in RHOS 5 and upstream (16a766d81) back > in August. > > I've just cloned this bug for Rawhide where it is still not fixed: > > https://bugzilla.redhat.com/show_bug.cgi?id=1175460 > > Surely bugs should be fixed first upstream, then in Rawhide, and > then in RHOS? It turns out the commit fixing the bug was reverted upstream. The bug still happens in a freshly created Rawhide VM that just runs 'packstack --allinone'. Any idea who/what it is that adds net.bridge.bridge-nf-call-* rules into /etc/sysctl.conf?

Looking up Bugzilla, seems like it's needed to get Neutron networking security groups working correctly, this is the bug https://bugzilla.redhat.com/show_bug.cgi?id=981144 -- need to set net.bridge.bridge-nf-call-iptables=1 for --allinone installation which says For the single node deployment with "packstack --allinone", following kernel parms should be set so that the security group works correctly. net.bridge.bridge-nf-call-ip6tables = 1 net.bridge.bridge-nf-call-iptables = 1 net.bridge.bridge-nf-call-arptables = 1 -- /kashyap

Reply

Richard W.M. Jones

5:32 a.m.

On Thu, Dec 18, 2014 at 12:19:10PM +0100, Kashyap Chamarthy wrote:

On Thu, Dec 18, 2014 at 09:16:17AM +0000, Richard W.M. Jones wrote: > On Wed, Dec 17, 2014 at 07:39:34PM +0000, Richard W.M. Jones wrote: > > > > https://bugzilla.redhat.com/show_bug.cgi?id=1132129 > > > > It looks as if this was fixed in RHOS 5 and upstream (16a766d81) back > > in August. > > > > I've just cloned this bug for Rawhide where it is still not fixed: > > > > https://bugzilla.redhat.com/show_bug.cgi?id=1175460 > > > > Surely bugs should be fixed first upstream, then in Rawhide, and > > then in RHOS? > > It turns out the commit fixing the bug was reverted upstream. > > The bug still happens in a freshly created Rawhide VM that just runs > 'packstack --allinone'. Any idea who/what it is that adds > net.bridge.bridge-nf-call-* rules into /etc/sysctl.conf? Looking up Bugzilla, seems like it's needed to get Neutron networking security groups working correctly, this is the bug https://bugzilla.redhat.com/show_bug.cgi?id=981144 -- need to set net.bridge.bridge-nf-call-iptables=1 for --allinone installation which says For the single node deployment with "packstack --allinone", following kernel parms should be set so that the security group works correctly. net.bridge.bridge-nf-call-ip6tables = 1 net.bridge.bridge-nf-call-iptables = 1 net.bridge.bridge-nf-call-arptables = 1

I believe the underlying problem is that 'br_netfilter' (a kernel module) is not getting loaded. This module is what creates /proc/sys/net/bridge/bridge-nf-* files. If I load the module manually before running packstack then I can get around this problem. There are a few possibilities here: - Because I'm starting from @Core (ie. a minimal package set), it could be that some other program that would normally be installed and which would load this module is not installed. ie. A missing dependency. - Something in Rawhide previously loaded/required this module, but now doesn't. - Something specific to aarch64 (this one seems unlikely). On a similar topic, here is a another bug which causes me some concern about the state of RDO in Rawhide: https://bugzilla.redhat.com/show_bug.cgi?id=1175472 Rich. -- Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones Read my programming and virtualization blog: http://rwmj.wordpress.com Fedora Windows cross-compiler. Compile Windows programs, test, and build Windows installers. Over 100 libraries supported. http://fedoraproject.org/wiki/MinGW

Reply

Kashyap Chamarthy

6:28 a.m.

On Thu, Dec 18, 2014 at 11:32:21AM +0000, Richard W.M. Jones wrote:

On Thu, Dec 18, 2014 at 12:19:10PM +0100, Kashyap Chamarthy wrote:

[. . .]

> > The bug still happens in a freshly created Rawhide VM that just runs > > 'packstack --allinone'. Any idea who/what it is that adds > > net.bridge.bridge-nf-call-* rules into /etc/sysctl.conf? > > Looking up Bugzilla, seems like it's needed to get Neutron networking > security groups working correctly, this is the bug > > https://bugzilla.redhat.com/show_bug.cgi?id=981144 -- need to set > net.bridge.bridge-nf-call-iptables=1 for --allinone installation > > which says > > For the single node deployment with "packstack --allinone", > following kernel parms should be set so that the security group > works correctly. > > net.bridge.bridge-nf-call-ip6tables = 1 > net.bridge.bridge-nf-call-iptables = 1 > net.bridge.bridge-nf-call-arptables = 1 I believe the underlying problem is that 'br_netfilter' (a kernel module) is not getting loaded. This module is what creates /proc/sys/net/bridge/bridge-nf-* files. If I load the module manually before running packstack then I can get around this problem. There are a few possibilities here: - Because I'm starting from @Core (ie. a minimal package set), it could be that some other program that would normally be installed and which would load this module is not installed. ie. A missing dependency. - Something in Rawhide previously loaded/required this module, but now doesn't. - Something specific to aarch64 (this one seems unlikely). On a similar topic, here is a another bug which causes me some concern about the state of RDO in Rawhide: https://bugzilla.redhat.com/show_bug.cgi?id=1175472

(Just to update others reading the thread). This is being discussed on IRC, Flavio (Glance developer) says it's possibly a 'failed upgrade'. -- /kashyap

Reply

Richard W.M. Jones

6:30 a.m.

On Thu, Dec 18, 2014 at 01:28:30PM +0100, Kashyap Chamarthy wrote:

This is being discussed on IRC, Flavio (Glance developer) says it's possibly a 'failed upgrade'.

It's a fresh install in a brand new VM, so it's nothing to do with upgrading. Rich. -- Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones Read my programming and virtualization blog: http://rwmj.wordpress.com virt-builder quickly builds VMs from scratch http://libguestfs.org/virt-builder.1.html

Reply

3622

days inactive

3623

days old

dev@lists.rdoproject.org

Manage subscription

6 comments

2 participants

tags (0)

participants (2)

Kashyap Chamarthy
Richard W.M. Jones