[meta-virtualization][PATCH] libvirtd: don't allow named.service listening on libvirt network interface

[meta-virtualization][PATCH] libvirtd: don't allow named.service listening on libvirt network interface

[Xiangyu Chen]

From: Xiangyu Chen <xiangyu.chen@windriver.com>

libvirtd has its own network interface named virbr0, and it using
dnsmasq to setup the DNS. the named.service also listen interface and try to
bind the port 59 on virtbr0, that cause dnsmasq report following error:

dnsmasq: failed to create listening socket for 192.168.122.1: Address already in use

Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com>
---
 recipes-core/bind/bind_virtualization.inc | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/recipes-core/bind/bind_virtualization.inc b/recipes-core/bind/bind_virtualization.inc
index dc63b2aa..a6e39049 100644
--- a/recipes-core/bind/bind_virtualization.inc
+++ b/recipes-core/bind/bind_virtualization.inc
@@ -1,4 +1,4 @@
-# Tell named not to bother listening on the IP address that lxc handles itself.
+# Tell named not to bother listening on the IP address that lxc and libvirtd handles itself.
 do_install:append() {
-	sed -i -e 's,^\( *options *{\)$,\1\n\t// lxc would take care of this address itself\n\tlisten-on { ! 10.0.3.1; any;};\n,' ${D}${sysconfdir}/bind/named.conf.options
+	sed -i -e 's,^\( *options *{\)$,\1\n\t// lxc and libvirtd would take care of this address itself\n\tlisten-on { ! 10.0.3.1; ! 192.168.122.1; any;};\n,' ${D}${sysconfdir}/bind/named.conf.options
 }
-- 
2.35.5

Re: [meta-virtualization][PATCH] libvirtd: don't allow named.service listening on libvirt network interface

[Bruce Ashfield]

Staged on master-next

Bruce

In message: [meta-virtualization][PATCH] libvirtd: don't allow named.service listening on libvirt network interface
on 12/03/2024 Xiangyu Chen wrote:

> From: Xiangyu Chen <xiangyu.chen@windriver.com>
> 
> libvirtd has its own network interface named virbr0, and it using
> dnsmasq to setup the DNS. the named.service also listen interface and try to
> bind the port 59 on virtbr0, that cause dnsmasq report following error:
> 
> dnsmasq: failed to create listening socket for 192.168.122.1: Address already in use
> 
> Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com>
> ---
>  recipes-core/bind/bind_virtualization.inc | 4 ++--
>  1 file changed, 2 insertions(+), 2 deletions(-)
> 
> diff --git a/recipes-core/bind/bind_virtualization.inc b/recipes-core/bind/bind_virtualization.inc
> index dc63b2aa..a6e39049 100644
> --- a/recipes-core/bind/bind_virtualization.inc
> +++ b/recipes-core/bind/bind_virtualization.inc
> @@ -1,4 +1,4 @@
> -# Tell named not to bother listening on the IP address that lxc handles itself.
> +# Tell named not to bother listening on the IP address that lxc and libvirtd handles itself.
>  do_install:append() {
> -	sed -i -e 's,^\( *options *{\)$,\1\n\t// lxc would take care of this address itself\n\tlisten-on { ! 10.0.3.1; any;};\n,' ${D}${sysconfdir}/bind/named.conf.options
> +	sed -i -e 's,^\( *options *{\)$,\1\n\t// lxc and libvirtd would take care of this address itself\n\tlisten-on { ! 10.0.3.1; ! 192.168.122.1; any;};\n,' ${D}${sysconfdir}/bind/named.conf.options
>  }
> -- 
> 2.35.5
> 

> 
> -=-=-=-=-=-=-=-=-=-=-=-
> Links: You receive all messages sent to this group.
> View/Reply Online (#8627): https://lists.yoctoproject.org/g/meta-virtualization/message/8627
> Mute This Topic: https://lists.yoctoproject.org/mt/104881353/1050810
> Group Owner: meta-virtualization+owner@lists.yoctoproject.org
> Unsubscribe: https://lists.yoctoproject.org/g/meta-virtualization/unsub [bruce.ashfield@gmail.com]
> -=-=-=-=-=-=-=-=-=-=-=-
>