frequent crashes when using do-resolve()

I've deployed a test package with all 3 git commits included. I will report here after few days of testing and hopefully a debdiff to propose ;)

+0003-BUG-CRITICAL-dns-Make-the-do-resolve-action-thread-safe.patch

This is available at 2020/07/23: 2.2.1

+0004-BUG-MEDIUM-dns-Release-answer-items-when-a-DNS-resolution-is-freed.patch

This is available at 2020/07/23: 2.2.1

+0005-BUG-MEDIUM-dns-Dont-yield-in-do-resolve-action-on-a-final.patch

This one is available at 2020/07/31 : 2.2.2

So we are good in Groovy.

Simon, you said you would be testing in production ... do you have any update on that, apart from the debdiff ?

For Focal, we have:

# issue #236

BUG/MAJOR: dns: Make the do-resolve action thread-safe

> This patch should fix the issue #236. It must be backported as far as 2.0.

# issue #222

BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation

> This patch is related to the issue #222. It must be backported as far as 2.0.

BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed

> This patch should solve the issue #222. It must be backported, at least, as far as 2.0, and probably, with caution, as far as 1.8 or 1.7.

I'm +1 in having those in Focal as well... let us know how your tests went and we can sponsor your SRU.

Thanks!

-rafaeldtinoco

Rafael, yes production testing went/is going well and we are more than 2 days in (it's mentioned/buried in the regression potential). Thanks for your sponsoring offer!

Perfect! Sorry for missing that feedback. Ill upload (sponsor) for you and it will get reviewed by the SRU team then, for acceptance. But I don't think there will be any issues.

Thanks for adding the d/control part :)

From autopkgtest:

---
proxy-localhost PASS
cli PASS
proxy-localhost PASS
---

$ git push pkg upload/2.0.13-2ubuntu0.1
Counting objects: 17, done.
Delta compression using up to 8 threads.
Compressing objects: 100% (17/17), done.
Writing objects: 100% (17/17), 6.47 KiB | 602.00 KiB/s, done.
Total 17 (delta 9), reused 0 (delta 0)
To ssh://git.launchpad.net/ubuntu/+source/haproxy
 * [new tag] upload/2.0.13-2ubuntu0.1 -> upload/2.0.13-2ubuntu0.1

$ debdiff *.dsc 2>&1 | diffstat -l | grep -v gpg
changelog
control
patches/lp1894879-BUG-CRITICAL-dns-Make-the-do-resolve-action-thread-safe.patch
patches/lp1894879-BUG-MEDIUM-dns-Dont-yield-in-do-resolve-action-on-a-final.patch
patches/lp1894879-BUG-MEDIUM-dns-Release-answer-items-when-a-DNS-resolution-is-freed.patch
patches/series

$ dput ubuntu haproxy_2.0.13-2ubuntu0.1_source.changes
Checking signature on .changes
Uploading to ubuntu (via ftp to upload.ubuntu.com):
  Uploading haproxy_2.0.13-2ubuntu0.1.dsc: done.
  Uploading haproxy_2.0.13-2ubuntu0.1.debian.tar.xz: done.
  Uploading haproxy_2.0.13-2ubuntu0.1_source.buildinfo: done.
  Uploading haproxy_2.0.13-2ubuntu0.1_source.changes: done.
Successfully uploaded packages.

@sdeziel,

Could you please verify the fix from -proposed archive once it gets there (after SRU team approves the upload) and change the tag from "verification-needed" to "verification-done" when appropriate ?

I took the liberty to change the patch names and position in series file to help a bit the package management.

Thanks for the contribution!

Sure thing, I'll keep an eye out for -proposed and will report back.

Quick update: it's been roughly a week and still no crash with the pre-proposed package so that's good! Still waiting on the update to show up in -proposed.

Hello Simon, or anyone else affected,

Accepted haproxy into focal-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/haproxy/2.0.13-2ubuntu0.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-focal to verification-done-focal. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-focal. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

The proposed version is running on 2 production machines and no crash (nor any other problem) was observed since then. Marking as verification-done.

# apt-get install haproxy
Reading package lists... Done
Building dependency tree
Reading state information... Done
Suggested packages:
  vim-haproxy haproxy-doc
The following packages will be upgraded:
  haproxy
1 upgraded, 0 newly installed, 0 to remove and 10 not upgraded.
Need to get 1,519 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 haproxy amd64 2.0.13-2ubuntu0.1 [1,519 kB]
Fetched 1,519 kB in 1s (2,614 kB/s)
(Reading database ... 14826 files and directories currently installed.)
Preparing to unpack .../haproxy_2.0.13-2ubuntu0.1_amd64.deb ...
Unpacking haproxy (2.0.13-2ubuntu0.1) over (2.0.13-2) ...
Setting up haproxy (2.0.13-2ubuntu0.1) ...
Processing triggers for rsyslog (8.2001.0-1ubuntu1.1) ...
Processing triggers for systemd (245.4-4ubuntu3.2) ...

This bug was fixed in the package haproxy - 2.0.13-2ubuntu0.1

---------------
haproxy (2.0.13-2ubuntu0.1) focal; urgency=medium

  * Backport dns related fixes from git to resolve crashes when
    using do-resolve action (LP: #1894879)
    - BUG/CRITICAL: dns: Make the do-resolve action thread safe
    - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
    - BUG/MEDIUM: dns: Don't yield in do resolve action on a final

 -- Simon Deziel <email address hidden> Tue, 08 Sep 2020 17:16:14 +0000

The verification of the Stable Release Update for haproxy has completed successfully and the package is now being released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regressions.

Hello,

Is it possible to run with the old net manager and focal ? Ive installed 16.04 now to get the eth0 and network manager.

There are no Server Control Panels who can setup and control ip adresses like get up a eth0 eth01 the .yaml system I hate so much and its the worst idea ever, it destroys everything!

> 11. sep. 2020 kl. 18:04 skrev Launchpad Bug Tracker <email address hidden>:
>
> ** Merge proposal linked:
> https://code.launchpad.net/~rafaeldtinoco/ubuntu/+source/haproxy/+git/haproxy/+merge/390625
>
> --
> You received this bug notification because you are subscribed to Focal.
> Matching subscriptions: <email address hidden>
> https://bugs.launchpad.net/bugs/1894879
>
> Title:
> frequent crashes when using do-resolve()
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/ubuntu/+source/haproxy/+bug/1894879/+subscriptions

Hi David,
your comment seems out of context here. If there is an issue I'd recommend filing a new bug for netplan and discussing things there, but if all you need is "Is it possible to run with the old net manager and focal" then look at [1].

[1]: https://netplan.io/faq/#how-to-go-back-to-ifupdown