Bug#1066139: podman: Cannot create a network with dns_enabled
On Wed, Mar 13, 2024 at 12:14:28PM +0200, Faidon Liambotis wrote: > 1) Perhaps you installed podman with apt install --no-install-recommends? Not the case. > 2) Alternatively, perhaps you first set up podman without Netavark (e.g. >before 4.0), and later upgraded to a newer version? This is likely the case. This system was installed in 2020 and podman has been installed for a while but I was not able to find the logs before last year... >I don't think an automatic transition from the old stack to the new >stack exists. A "podman system reset" should fix it; I'm not sure if >there is a less intrusive way to do that. Perhaps we'll know more >about upgrade paths with the 5.0 release, which is imminent. podman system reset fixed it. Thank you for your help, Antoine
Bug#1066139: podman: Cannot create a network with dns_enabled
Control: tags -1 + moreinfo On Wed, Mar 13, 2024 at 12:17:12AM +0100, Antoine Sirinelli wrote: > When I create a new custom network, the dns is not enabled: > > $ podman network create test > test > $ podman network inspect test > > [...] > > The outcome should have "dns_enabled" to true. Per podman-network(1): > Podman supports two network backends Netavark and CNI. Netavark is the > default network backend and was added in Podman version 4.0. CNI is > deprecated and will be removed in the next major Podman version 5.0, > in preference of Netavark. For DNS, you need to have installed: - golang-github-containernetworking-plugin-dnsname (CNI, deprecated) - aardvark-dns (Netavark) podman Depends on golang-github-containers-common which Recommends netavark, which Recommends aardvark-dns, so a clean install brings in Netavark by default (per upstream). I've verified that clean installs, with the exact commands you executed, with either Netavark (default install), or without Netavark but with golang-github-containernetworking-plugin-dnsname, and could not reproduce the issue. So I would guess that you don't have either of those packages installed. The question is why. 1) Perhaps you installed podman with apt install --no-install-recommends? In this case, I don't think this is a bug. Recommends is the appropriate package relationship here, and failure to install all the recommended dependencies can result in reduced, non-essential functionality. 2) Alternatively, perhaps you first set up podman without Netavark (e.g. before 4.0), and later upgraded to a newer version? (In this case, I wonder how the setup ended up without the "dnsname" plugin. But moot at this point regardless) I don't think an automatic transition from the old stack to the new stack exists. A "podman system reset" should fix it; I'm not sure if there is a less intrusive way to do that. Perhaps we'll know more about upgrade paths with the 5.0 release, which is imminent. 3) Some other reason that I can't imagine right now :) Would love to hear from you and some insight on how your setup ended up in the way it did. Perhaps we could figure out ways to avoid any further surprises. Best, Faidon
Bug#1066139: podman: Cannot create a network with dns_enabled
Package: podman
Version: 4.9.3+ds1-1
Severity: normal
Dear Maintainer,
When I create a new custom network, the dns is not enabled:
$ podman network create test
test
$ podman network inspect test
[
{
"name": "test",
"id":
"9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08",
"driver": "bridge",
"network_interface": "cni-podman1",
"created": "2024-03-13T00:11:16.769046605+01:00",
"subnets": [
{
"subnet": "10.89.0.0/24",
"gateway": "10.89.0.1"
}
],
"ipv6_enabled": false,
"internal": false,
"dns_enabled": false,
"ipam_options": {
"driver": "host-local"
}
}
]
The outcome should have "dns_enabled" to true.
Thank you,
Antoine
-- System Information:
Debian Release: trixie/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: arm64, i386
Kernel: Linux 6.6.15-amd64 (SMP w/12 CPU threads; PREEMPT)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages podman depends on:
ii conmon 2.1.10+ds1-1
ii golang-github-containers-common 0.57.4+ds1-2
ii libc62.37-15
ii libdevmapper1.02.1 2:1.02.196-1
ii libgpgme11 1.18.0-4+b2
ii libseccomp2 2.5.5-1
ii libsqlite3-0 3.45.1-1
ii libsubid41:4.13+dfsg1-4
ii runc 1.1.12+ds1-1
Versions of packages podman recommends:
ii buildah1.33.5+ds1-4
ii catatonit 0.1.7-1+b1
ii dbus-user-session 1.14.10-4
ii passt 0.0~git20240220.1e6f92b-1
ii slirp4netns1.2.1-1
ii tini 0.19.0-1
ii uidmap 1:4.13+dfsg1-4
Versions of packages podman suggests:
ii containers-storage 1.51.0+ds1-2
ii docker-compose 1.29.2-6
ii iptables1.8.10-3
-- Configuration Files:
/etc/cni/net.d/87-podman-bridge.conflist [Errno 13] Permission non accordée:
'/etc/cni/net.d/87-podman-bridge.conflist'
/etc/cni/net.d/87-podman-ptp.conflist [Errno 13] Permission non accordée:
'/etc/cni/net.d/87-podman-ptp.conflist'
-- no debconf information
