- Package:
- keepalived
- Source:
- keepalived
- Description:
- Failover and monitoring daemon for LVS clusters
- Submitter:
- Arturo Borrero Gonzalez
- Date:
- 2022-04-05 08:21:03 UTC
- Severity:
- important
- Tags:
Dear maintainer,
thanks for your work with this package, really appreciated.
Today I tried upgrading a Debian 10 Buster system to Debian 11 Bullseye.
Keepalived refused to work with a previously working setup, error message:
=== 8< ===
aborrero@cloudgw2001-dev:~ $ sudo /usr/sbin/keepalived -lD --dont-fork
Thu Mar 24 15:59:24 2022: Starting Keepalived v2.1.5 (07/13,2020)
Thu Mar 24 15:59:24 2022: WARNING - keepalived was build for newer Linux 5.10.70, running on Linux 5.10.0-12-amd64 #1 SMP Debian 5.10.103-1 (2022-03-07)
Thu Mar 24 15:59:24 2022: Command line: '/usr/sbin/keepalived' '-lD' '--dont-fork'
Thu Mar 24 15:59:24 2022: Opening file '/etc/keepalived/keepalived.conf'.
Thu Mar 24 15:59:24 2022: NOTICE: setting config option max_auto_priority should result in better keepalived performance
Thu Mar 24 15:59:24 2022: Starting VRRP child process, pid=17238
Thu Mar 24 15:59:24 2022: Registering Kernel netlink reflector
Thu Mar 24 15:59:24 2022: Registering Kernel netlink command channel
Thu Mar 24 15:59:24 2022: Opening file '/etc/keepalived/keepalived.conf'.
Thu Mar 24 15:59:24 2022: (/etc/keepalived/keepalived.conf: Line 25) Warning - cannot track route 185.15.57.0/29 with no interface specified, not tracking
Thu Mar 24 15:59:24 2022: (/etc/keepalived/keepalived.conf: Line 26) Warning - cannot track route 172.16.128.0/24 with no interface specified, not tracking
Thu Mar 24 15:59:24 2022: Assigned address 208.80.153.188 for interface eno2.2120
Thu Mar 24 15:59:24 2022: Assigned address fe80::32e1:71ff:fe60:e97d for interface eno2.2120
Thu Mar 24 15:59:24 2022: Registering gratuitous ARP shared channel
Thu Mar 24 15:59:24 2022: (VRRP1) removing Virtual Routes
Thu Mar 24 15:59:24 2022: (VRRP1) removing VIPs.
Thu Mar 24 15:59:24 2022: bind unicast_src 208.80.153.188 failed 99 - Cannot assign requested address
Thu Mar 24 15:59:24 2022: (VRRP1): entering FAULT state (src address not configured)
Thu Mar 24 15:59:24 2022: (VRRP1) Entering FAULT STATE
Thu Mar 24 15:59:24 2022: (VRRP1) removing Virtual Routes
Thu Mar 24 15:59:24 2022: VRRP sockpool: [ifindex( 8), family(IPv4), proto(112), fd(-1,-1), unicast, address(208.80.153.188)]
^CThu Mar 24 16:00:05 2022: Stopping
Thu Mar 24 16:00:06 2022: Stopped - used 0.002007 user time, 0.000000 system time
Thu Mar 24 16:00:06 2022: CPU usage (self/children) user: 0.008240/0.003615 system: 0.004120/0.000000
Thu Mar 24 16:00:06 2022: Stopped Keepalived v2.1.5 (07/13,2020)
=== 8< ===
The config file is pretty straigt forward:
=== 8< ===
aborrero@cloudgw2001-dev:~ $ cat /etc/keepalived/keepalived.conf
global_defs {
}
vrrp_instance VRRP1 {
state BACKUP
interface eno2.2120
virtual_router_id 52
nopreempt
priority 6
advert_int 1
authentication {
auth_type PASS
auth_pass <redacted>
}
track_interface {
eno2.2107
}
virtual_routes {
185.15.57.0/29 table 10 nexthop via 185.15.57.10 dev eno2.2107 onlink
172.16.128.0/24 table 10 nexthop via 185.15.57.10 dev eno2.2107 onlink
}
virtual_ipaddress {
185.15.57.9/30 dev eno2.2107
208.80.153.190/29 dev eno2.2120
}
unicast_peer {
208.80.153.189
}
}
=== 8< ===
This exact same setup was previously working, and actually, the next version works just fine.
Not sure if this has anything to do with the kernel version warning at the beginning.
In summary:
| keepalived version | Debian | Works? |
| --------------------|--------------|--------|
| 1:2.0.10-1 | buster | yes |
| 1:2.1.5-0.2+deb11u1 | bullseye | no |
| 1:2.2.7-1~bpo11+1 | bullseye-bpo | yes |
I'm opeining this bug report mostly so others can find it.
Raelly appreciated the bpo package is ready to use.
regards.
severity -1 important fixed -1 1:2.2.7-1~bpo11+1 thanks ❦ 24 March 2022 17:24 +01, Arturo Borrero Gonzalez: Glad that the backport solves this issue. Unfortunately, I don't think it's worth reporting the issue upstream as they don't like us lagging so many versions late. I have used it myself with unicast_src, so it is not broken for everyone. After looking twice, I notice the VIP is in the same subnet as the peer. If you don't have any other address on the subnet, I don't see how this could work. If you have, maybe it would be better to use a /32 for the VIP.
On Thu, 24 Mar 2022 18:03:29 +0100 Vincent Bernat <bernat@debian.org> wrote: > Unfortunately, I don't think it's worth reporting the issue upstream > as they don't like us lagging > so many versions late. Agreed. Would you mind to elaborate? The setup is as follows: * peer 1, local IP 208.80.153.188/29 * peer 2, local IP 208.80.153.189/29 * VIP 208.80.153.190/29 I honestly don't know how this relates to the execution error itself. Do you think the address assignment fails because some misconfigured netmask?
❦ 25 March 2022 11:48 +01, Arturo Borrero Gonzalez: Usually, on Linux, VIP are using /32 to avoid issues with source address selection. Notably, when contacting a peer, the VIP could be selected when using a /29, while this is not possible when using a /32.
virtual_ipaddress {
185.15.57.9/32 dev eno2.2107
208.80.153.190/32 dev eno2.2120
}
Downgraded to the Bullseye version, but keepalived fails with the same
error:
aborrero@cloudgw2001-dev:~ $ sudo /usr/sbin/keepalived -lD --dont-fork
Tue Apr 5 08:14:32 2022: Starting Keepalived v2.1.5 (07/13,2020)
Tue Apr 5 08:14:32 2022: WARNING - keepalived was build for newer Linux
5.10.70, running on Linux 5.10.0-12-amd64 #1 SMP Debian 5.10.103-1
(2022-03-07)
Tue Apr 5 08:14:32 2022: Command line: '/usr/sbin/keepalived' '-lD'
'--dont-fork'
Tue Apr 5 08:14:32 2022: Opening file '/etc/keepalived/keepalived.conf'.
Tue Apr 5 08:14:32 2022: NOTICE: setting config option
max_auto_priority should result in better keepalived performance
Tue Apr 5 08:14:32 2022: Starting VRRP child process, pid=1571242
Tue Apr 5 08:14:32 2022: Registering Kernel netlink reflector
Tue Apr 5 08:14:32 2022: Registering Kernel netlink command channel
Tue Apr 5 08:14:32 2022: Opening file '/etc/keepalived/keepalived.conf'.
Tue Apr 5 08:14:32 2022: (/etc/keepalived/keepalived.conf: Line 25)
Warning - cannot track route 185.15.57.0/29 with no interface specified,
not tracking
Tue Apr 5 08:14:32 2022: (/etc/keepalived/keepalived.conf: Line 26)
Warning - cannot track route 172.16.128.0/24 with no interface
specified, not tracking
Tue Apr 5 08:14:32 2022: Assigned address 208.80.153.188 for interface
eno2.2120
Tue Apr 5 08:14:32 2022: Assigned address fe80::32e1:71ff:fe60:e97d for
interface eno2.2120
Tue Apr 5 08:14:32 2022: Registering gratuitous ARP shared channel
Tue Apr 5 08:14:32 2022: (VRRP1) removing Virtual Routes
Tue Apr 5 08:14:32 2022: (VRRP1) removing VIPs.
Tue Apr 5 08:14:32 2022: bind unicast_src 208.80.153.188 failed 99 -
Cannot assign requested address
Tue Apr 5 08:14:32 2022: (VRRP1): entering FAULT state (src address not
configured)
Tue Apr 5 08:14:32 2022: (VRRP1) Entering FAULT STATE
Tue Apr 5 08:14:32 2022: (VRRP1) removing Virtual Routes
Tue Apr 5 08:14:32 2022: VRRP sockpool: [ifindex( 8), family(IPv4),
proto(112), fd(-1,-1), unicast, address(208.80.153.188)]
^CTue Apr 5 08:14:36 2022: Stopping
Tue Apr 5 08:14:37 2022: Stopped - used 0.001718 user time, 0.000000
system time
Tue Apr 5 08:14:37 2022: CPU usage (self/children) user:
0.006457/0.003166 system: 0.006457/0.000000
Tue Apr 5 08:14:37 2022: Stopped Keepalived v2.1.5 (07/13,2020)