aports issueshttps://gitlab.alpinelinux.org/alpine/aports/-/issues2021-07-18T07:23:51Zhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10024dhcrelay is missing /var/run/dhcp in diskless mode2021-07-18T07:23:51ZThomas Liskeliske@ibh.dedhcrelay is missing /var/run/dhcp in diskless modeAlthough the dhcrelay package creates /var/run/dhcp during install it’s
missing after rebooting alpine in diskless mode. Dhcrelay does start
without it but openrc is unable to stop or restart it.
The dhcrelay init script needs to create...Although the dhcrelay package creates /var/run/dhcp during install it’s
missing after rebooting alpine in diskless mode. Dhcrelay does start
without it but openrc is unable to stop or restart it.
The dhcrelay init script needs to create the directory like it is
already done for dhcpd.
*(from redmine: issue id 10024, created on 2019-02-21, closed on 2019-06-19)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/9999[3.7] openssh: Multiple vulnerabilities (CVE-2018-20685, CVE-2019-6109, CVE-2...2021-07-18T07:23:51ZAlicha CH[3.7] openssh: Multiple vulnerabilities (CVE-2018-20685, CVE-2019-6109, CVE-2019-6111)**CVE-2018-20685**: In OpenSSH 7.9, scp.c in the scp client allows
remote SSH servers to bypass intended access restrictions via the
filename of . or an empty filename. The impact is modifying the
permissions of the target directory on...**CVE-2018-20685**: In OpenSSH 7.9, scp.c in the scp client allows
remote SSH servers to bypass intended access restrictions via the
filename of . or an empty filename. The impact is modifying the
permissions of the target directory on the client side.
### References:
https://nvd.nist.gov/vuln/detail/CVE-2018-20685
https://marc.info/?l=oss-security&m=154745764812881&w=2
### Patch:
https://github.com/openssh/openssh-portable/commit/6010c0303a422a9c5fa8860c061bf7105eb7f8b2
**CVE-2019-6109**: An issue was discovered in OpenSSH 7.9. Due to
missing character encoding in the progress display, a malicious server
(or Man-in-The-Middle attacker) can employ crafted object names to
manipulate the client output, e.g., by using ANSI control codes to hide
additional files being transferred. This affects
refresh\_progress\_meter() in progressmeter.c.
### References:
https://nvd.nist.gov/vuln/detail/CVE-2019-6109
https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt
### Patch:
https://github.com/openssh/openssh-portable/commit/8976f1c4b2721c26e878151f52bdf346dfe2d54c
possibly additionally needed:
https://github.com/openssh/openssh-portable/commit/bdc6c63c80b55bcbaa66b5fde31c1cb1d09a41eb
**CVE-2019-6111**: An issue was discovered in OpenSSH 7.9. Due to the
scp implementation being derived from 1983 rcp, the server chooses which
files/directories are sent to the client. However, the scp client only
performs cursory validation of the object name returned (only directory
traversal attacks are prevented). A malicious scp server (or
Man-in-The-Middle attacker) can overwrite arbitrary files in the scp
client target directory. If recursive operation (-r) is performed, the
server can manipulate subdirectories as well (for example, to overwrite
the .ssh/authorized\_keys file).
### References:
https://nvd.nist.gov/vuln/detail/CVE-2019-6111
### Patch:
https://github.com/openssh/openssh-portable/commit/391ffc4b9d31fa1f4ad566499fef9176ff8a07dc
*(from redmine: issue id 9999, created on 2019-02-20, closed on 2019-03-05)*
* Relations:
* parent #9995
* Changesets:
* Revision cfa04666c50b8dfbe34b6ac8e6b177add54ce649 on 2019-03-04T15:08:29Z:
```
main/openssh: security fixes
CVE-2018-20685, CVE-2019-6109, CVE-2019-6111
Rebased HPN patch, included upstream patch due regression bug due to CVE-2019-6109 fix
Fixes #9999
```3.7.2Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/9647Rpi3 setup-alpine bugs 3.8.12021-07-11T16:36:55ZAlex KRpi3 setup-alpine bugs 3.8.11. ssl\_client: mirrors.alpinelinux.org certificate verification failed:
certificate is not yet valid.
wget: error getting response. connection reset by peer.
2. after setup-alpine. I can’t login via SSH. access denied.
*(from redm...1. ssl\_client: mirrors.alpinelinux.org certificate verification failed:
certificate is not yet valid.
wget: error getting response. connection reset by peer.
2. after setup-alpine. I can’t login via SSH. access denied.
*(from redmine: issue id 9647, created on 2018-11-16)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/502perl-cgi-session perl-snmp-session is missing in 2.1.x2021-07-11T01:51:01ZNatanael Copaperl-cgi-session perl-snmp-session is missing in 2.1.xOn alpine v2.1:
# apk add smokeping
ERROR: Unable to satisfy all dependencies:
smokeping-2.4.2-r1: perl-cgi-session perl-snmp-session
ERROR: Missing packages:
perl-cgi-session perl-snmp-session
*(from redmine: is...On alpine v2.1:
# apk add smokeping
ERROR: Unable to satisfy all dependencies:
smokeping-2.4.2-r1: perl-cgi-session perl-snmp-session
ERROR: Missing packages:
perl-cgi-session perl-snmp-session
*(from redmine: issue id 502, created on 2010-12-29, closed on 2011-01-06)*
* Changesets:
* Revision 67d07593761db7142dbc2d00f9824983b7fa07c7 on 2010-12-29T09:45:03Z:
```
main/perl-{cgi,snmp}-session: backported
needed by smokeping which is in main
fixes #502
```Alpine 2.1.4Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/505php-cgi is missing2021-07-11T01:51:01ZNatanael Copaphp-cgi is missingLooks like the apache fixes broke the php support for lighttpd. The
php-cgi binary is missing.
*(from redmine: issue id 505, created on 2010-12-31, closed on 2011-03-11)*
* Changesets:
* Revision 264c8486ac878ba6a7647d2abf72112845e1...Looks like the apache fixes broke the php support for lighttpd. The
php-cgi binary is missing.
*(from redmine: issue id 505, created on 2010-12-31, closed on 2011-03-11)*
* Changesets:
* Revision 264c8486ac878ba6a7647d2abf72112845e14f3a by Matt Smith on 2011-01-09T11:55:42Z:
```
main/php: improved APKBUILD, see changes [resent, updated]
I based my updates off of Arch Linux's work for this package.
Here's the changelog:
- Each 'main subpackage' gets its own build dir, in order to eliminate
build-time complications.
- Added php-cgi subpackage (in combination with the above change, fixes #505)
- Added php-embed subpackage.
- Removed php-cli subpackage; it's now in the main 'php' package.
- Added the configure options --with-readline and --enable-pcntl to the 'php'
package (previously known as the php-cli package).
- Enabled the 'error_log' default option for php-fpm.conf
- Enabled cgi.discard_path in php.ini, as --enable-discard-path was dropped from
being a configure option.
- Dropped --enable-force-cgi-redirect from configure options, as it was
deprecated and enabled by default in php.ini.
- Did away with $phpextensionsapache2 in the APKBUILD; seems it was there for a
workaround. Perhaps it was part of the #183 fix? (Apache still segfaults,
with or without the $phpextensionsapache2 workaround.)
For more info regarding PHP configure options:
http://www.php.net/manual/en/configure.about.php
Also, can someone look over the updates I made to the #183 fix, regarding the
above $phpextensionsapache2 workaround changes and the changes to where it says
"# see #183" throughout the APKBUILD? I want to make sure that I didn't break
that fix.
Thanks,
Matt
P.S.: I resent the patch to fix quoting the $srcdir variables and the like.
e.g. From "$srcdir/$pkgname-$pkgver" to "$srcdir"/$pkgname-$pkgver
```Alpine 2.2.0Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/2834Package request: GlusterFS2021-07-07T18:37:12Zmastr y0daPackage request: GlusterFSWould it be possible to get a gluster package built?
-m
*(from redmine: issue id 2834, created on 2014-04-06)*Would it be possible to get a gluster package built?
-m
*(from redmine: issue id 2834, created on 2014-04-06)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/4490Package request: Tor Browser2021-06-28T02:47:00ZalgitbotPackage request: Tor Browser“In short, using any browser besides Tor Browser with Tor is a really
bad idea.”
From the very Tor FAQ.
https://www.torproject.org/docs/faq.html.en\#TBBOtherBrowser
Even though Alpine has the package tor, without the full featured
tor...“In short, using any browser besides Tor Browser with Tor is a really
bad idea.”
From the very Tor FAQ.
https://www.torproject.org/docs/faq.html.en\#TBBOtherBrowser
Even though Alpine has the package tor, without the full featured
tor-browser, it is insecure for users (who have to use it with other
browsers not configured as they should).
Links:
https://gitweb.torproject.org/builders/tor-browser-bundle.git/tree/gitian/README.build
https://gitweb.torproject.org/builders/tor-browser-bundle.git
*(from redmine: issue id 4490, created on 2015-07-28)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10610Cross Compile Bootstrapping OpenSSH fails2021-06-10T11:50:00ZAnthony DaviesCross Compile Bootstrapping OpenSSH failsFails due to requiring libedit to compile.
Fix was to add modify built packages to compile ncurses, libedit then
openssh.
*(from redmine: issue id 10610, created on 2019-06-24)*Fails due to requiring libedit to compile.
Fix was to add modify built packages to compile ncurses, libedit then
openssh.
*(from redmine: issue id 10610, created on 2019-06-24)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10153Unable to connect to a specific access point2021-06-09T10:04:12Zvinnie costanteUnable to connect to a specific access pointI did some tests but I couldn’t connect, I’ll try to be schematic.
1) With setup-interfaces I can’t connect to my router’s wifi connection,
but I can connect to my mobile phone’s wifi thetering. Alpine version is
3.9.2 .
2) I can conn...I did some tests but I couldn’t connect, I’ll try to be schematic.
1) With setup-interfaces I can’t connect to my router’s wifi connection,
but I can connect to my mobile phone’s wifi thetering. Alpine version is
3.9.2 .
2) I can connect to the same router with another live distro (ubuntu
studio), so I exclude a hardware problem.
3) The card is an “Intel Corporation Wifi Link 5100” (info by lspci)
4) During attempts with setup-interfaces (and after rc-service
networking restart) I got these errors:
“…
udhcpc: sending discover
udhcpc failed to get a DHCP lease
udhcpc: no lease, forking to background”
Then I tried to install the package “dhcpcd” (which anyway is not
necessary to connect to the thetering wifi mobile phone) and set
“udhcpc\_opts -t 12” inside “/etc/network/interfaces” in wlan0 section.
No results, it try until it expires.
5)I tried to disable both the wifi password and also the dhcp of router
without any result (but I have no problem to connect in both cases from
another distro).
6)Then I tried to follow this guide without any results:
https://wiki.alpinelinux.org/wiki/Connecting\_to\_a\_wireless\_access\_point
.
7) I thought that my card did not have the drivers installed and I try
to install “iwlwifi-5000-ucode”, but this prevented further attempts at
connection (setup-interfaces was no longer able to create an appropriate
section in “/etc/network/interfaces”).
8) I tried to follow the advice of a user of the mailinglist but without
result: https://lists.alpinelinux.org/alpine-user/0736.html . This is
the output of wpasupplicant: https://termbin.com/b3oj . In this case
this is my “/etc/network/interfaces” http://termbin.com/s3if and
“/etc/wpa\_supplicant/wpa\_supplicant.conf” is http://termbin.com/7rnp .
*(from redmine: issue id 10153, created on 2019-03-25)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10046AlpineLinux Xen Live CD contains not the Keyboard keymaps2021-06-09T03:02:22ZJo nnyAlpineLinux Xen Live CD contains not the Keyboard keymapsAlpineLinux Xen Live CD contains not the Keyboard keymaps.
When I start the setup-alpine its prompt an error:
cd line 17: can’t find //usr/share/bkeymaps
*(from redmine: issue id 10046, created on 2019-03-05)*AlpineLinux Xen Live CD contains not the Keyboard keymaps.
When I start the setup-alpine its prompt an error:
cd line 17: can’t find //usr/share/bkeymaps
*(from redmine: issue id 10046, created on 2019-03-05)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10200Timzone reset after removing tzdata2021-06-09T02:58:11ZRares VernicaTimzone reset after removing tzdataI followed the instructions here:
https://wiki.alpinelinux.org/wiki/Setting\_the\_timezone
They work, except for the last step of removing the \`tzdata\` package.
See the steps below. The \`date\` command uses the correct timezone.
Once...I followed the instructions here:
https://wiki.alpinelinux.org/wiki/Setting\_the\_timezone
They work, except for the last step of removing the \`tzdata\` package.
See the steps below. The \`date\` command uses the correct timezone.
Once I remove the \`tzdata\` package, \`date\` reverts back to UTC. If I
install \`tzdata\` back, the \`date\` command shows the correct timezone
again.
/ \# date
Fri Apr 5 15:00:51 UTC 2019
/ \# apk add tzdata
fetch
http://dl-cdn.alpinelinux.org/alpine/v3.8/main/x86\_64/APKINDEX.tar.gz
fetch
http://dl-cdn.alpinelinux.org/alpine/v3.8/community/x86\_64/APKINDEX.tar.gz
(1/1) Installing tzdata (2018f-r0)
Executing busybox-1.28.4-r0.trigger
OK: 369 MiB in 128 packages
/ \# cp /usr/share/zoneinfo/US/Pacific /etc/localtime
/ \# echo “US/Pacific” >/etc/timezone
/ \# date
Fri Apr 5 08:06:25 PDT 2019
/ \# apk del tzdata
(1/1) Purging tzdata (2018f-r0)
Executing busybox-1.28.4-r0.trigger
OK: 365 MiB in 127 packages
/ \# date
Fri Apr 5 15:15:27 UTC 2019
/ \# apk add tzdata
(1/1) Installing tzdata (2018f-r0)
Executing busybox-1.28.4-r0.trigger
OK: 369 MiB in 128 packages
/ \# date
Fri Apr 5 08:15:56 PDT 2019
*(from redmine: issue id 10200, created on 2019-04-05)*3.8.5https://gitlab.alpinelinux.org/alpine/aports/-/issues/6128cloud-init image resize functionality does not work2021-06-09T02:39:46ZSerge VScloud-init image resize functionality does not workcloud-init has cc\_growpart module (which is configured by default)
responsible
for resize image according to the size of the configured for an instance
flavour.
however that functionality does not work because:
1. cc\_growpart modu...cloud-init has cc\_growpart module (which is configured by default)
responsible
for resize image according to the size of the configured for an instance
flavour.
however that functionality does not work because:
1. cc\_growpart module (
/usr/lib/python2.7/site-packages/cloudinit/config/cc\_growpart.py )
depends on /dev/block/ device links which should be created by udev.
2. nor udev or eudev daemons supplied by alpine packages create the
links with default configuration
3. growpart script ( part of https://launchpad.net/cloud-utils ) which
do the actual resize work is
not supplied for alpine.
there are several ways to fix the issue. here is one of it:
1. patch cc\_growpart.py with the provided in attach patch to get a rid
of udev dependency
2. add growpart script to the cloud-init package. can be downloaded
from
http://bazaar.launchpad.net/~cloud-utils-dev/cloud-utils/trunk/download/head:/growpart-20110225134600-d84xgz6209r194ob-1/growpart
the script have to be placed to /usr/bin
3. patch growpart with the provided in attach patch. yes, it will not
work without it :)
4. add dependencies on sfdisk and parted packages to cloud-init. well, i
know it do the same but i have no intentions
to rewrite and maintain growpart script.
i have tested the provided way and it’s working.
*(from redmine: issue id 6128, created on 2016-09-09)*
* Uploads:
* [cc_growpart.py.patch](/uploads/0027720051e5caf454d560b35915a243/cc_growpart.py.patch)
* [growpart.patch](/uploads/27244d1cd998fb8744dfc1a8a26e82a8/growpart.patch)https://gitlab.alpinelinux.org/alpine/aports/-/issues/6933Not load color prompt2021-06-08T16:50:49ZAlex HunterNot load color promptIn package alpine-baselayout in file /etc/profile scripts load by mask
/etc/profile.d/\*.sh, but already exists file
/etc/profile.d/color\_prompt not load.
Probably solution: change in /etc/profile line
for script in /etc/profile.d...In package alpine-baselayout in file /etc/profile scripts load by mask
/etc/profile.d/\*.sh, but already exists file
/etc/profile.d/color\_prompt not load.
Probably solution: change in /etc/profile line
for script in /etc/profile.d/*.sh ; do
to
for script in /etc/profile.d/* ; do
or rename file
/etc/profile.d/color_prompt
to
/etc/profile.d/color_prompt.sh
*(from redmine: issue id 6933, created on 2017-02-25)*3.14.0https://gitlab.alpinelinux.org/alpine/aports/-/issues/7457crda: please do not embed the trusted pubkeys2021-05-26T18:35:13ZParide Legovinicrda: please do not embed the trusted pubkeysPlease do not embed the trusted pubkeys in the crda binary, thus
allowing wireless-regdb (regulatory.bin) to be built from source.
This is what Debian does:
https://paste.debian.net/973776/
*(from redmine: issue id 7457, created on 2...Please do not embed the trusted pubkeys in the crda binary, thus
allowing wireless-regdb (regulatory.bin) to be built from source.
This is what Debian does:
https://paste.debian.net/973776/
*(from redmine: issue id 7457, created on 2017-06-28)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/3440Feature request for setup-disk to provide option for disk encryption2021-05-09T17:57:23ZChris SpillaneFeature request for setup-disk to provide option for disk encryptionIt would be awesome if the setup-disk script provided the option for
disk encryption when using the ‘sys’ installation type.
There would presumably have to be some discussion over exactly how this
is done and what encryption method to ...It would be awesome if the setup-disk script provided the option for
disk encryption when using the ‘sys’ installation type.
There would presumably have to be some discussion over exactly how this
is done and what encryption method to use etc, and I would advise of
course overwriting the disk with random data before this is done; since
this is done at install and presumably on a new server, there is the
possibility of low system entropy at this time, so it may also be a good
idea to have the system attempt to generate at least some further
entropy through disk churn and perhaps use of the haveged package, since
poor entropy at this stage would defeat the purpose of disk encryption.
As usual, please let me know if you need anything further from me.
*(from redmine: issue id 3440, created on 2014-10-16)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10592udhcpc does not pass hostname2021-05-09T17:52:48ZShannon Barberudhcpc does not pass hostnameWhile this can be added in /etc/network/interfaces this file gets
stomped over by LXC and this ought to happen out-of-the-box not be an
add-on configuration.
*(from redmine: issue id 10592, created on 2019-06-20)*While this can be added in /etc/network/interfaces this file gets
stomped over by LXC and this ought to happen out-of-the-box not be an
add-on configuration.
*(from redmine: issue id 10592, created on 2019-06-20)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/9343Logic fault in setup-alpine (BTRFS boot partition)2021-05-09T17:46:16ZJohn DoeLogic fault in setup-alpine (BTRFS boot partition)export BOOTFS=btrfs
export ROOTFS=btrfs
setup-alpine
According to https://wiki.alpinelinux.org/wiki/Alpine\_setup\_scripts,
BTRFS should be supported as filesystem for all options (BOOTFS,ROOTFS
and VARFS).
However, setup-alpin...export BOOTFS=btrfs
export ROOTFS=btrfs
setup-alpine
According to https://wiki.alpinelinux.org/wiki/Alpine\_setup\_scripts,
BTRFS should be supported as filesystem for all options (BOOTFS,ROOTFS
and VARFS).
However, setup-alpine is lacking the intelligence to increase the size
of /boot if BTRFS requested.
If you proceed through the setup, you encounter the following fatal
message :
ERROR: ‘/dev/sda1’/ is too small to make a usable filesystem
ERROR: minimum size for each btrfs device is 114294784
*(from redmine: issue id 9343, created on 2018-08-27)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/9409Allow repository precedence when multiple instances of the same repository ex...2021-05-09T17:44:30ZMorgan HeinAllow repository precedence when multiple instances of the same repository exist in /etc/apk/repositoriesI have the following situation:
- Repository A is a custom compiled set of packages that also exist in
the public repository. This repository has the pkgs compiled with
extra security features and/or some unique flags set.
- ...I have the following situation:
- Repository A is a custom compiled set of packages that also exist in
the public repository. This repository has the pkgs compiled with
extra security features and/or some unique flags set.
- Repository B is a full mirror of the official repository.
What i’d like to happen is list both repositories in the
/etc/apk/repositories file, and have the clients prefer downloading all
pkgs from Repo A. In the case that the file doesn’t exist in Repo A,
then download from Repo B.
This, currently, doesn’t seem possible. After adding both repositories,
clients sometimes download from A, and sometimes download from B,
regardless of what is available in A.
The ability to add multiple repositories, with precedence, would be very
helpful in this situation.
Thanks,
Morgan
*(from redmine: issue id 9409, created on 2018-09-11)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/8571setup-interfaces: parsing iwlist is broken2021-05-09T17:43:15Zalgitbotsetup-interfaces: parsing iwlist is brokenAt my place the wifi around looks like this:
$ iwlist wlan0 scanning | grep -e Cell -e key: -e SSID -e Auth
Cell 01 - Address: A0:E4:CB:AF:1C:A5
Encryption key:on
ESSI...At my place the wifi around looks like this:
$ iwlist wlan0 scanning | grep -e Cell -e key: -e SSID -e Auth
Cell 01 - Address: A0:E4:CB:AF:1C:A5
Encryption key:on
ESSID:"foo5"
Authentication Suites (1) : PSK
Cell 02 - Address: A0:E4:CB:AF:1C:A4
Encryption key:on
ESSID:"foo2"
Authentication Suites (1) : PSK
Cell 03 - Address: FA:8F:CA:6A:2A:20
Encryption key:off
ESSID:""
Cell 04 - Address: 14:9D:09:31:02:81
Encryption key:off
ESSID:"Telekom_FON"
Cell 05 - Address: 14:9D:09:31:02:80
Encryption key:on
ESSID:"WLAN-PXFA7W"
Authentication Suites (1) : PSK
Cell 06 - Address: AE:75:57:D1:C7:D8
Encryption key:off
ESSID:"muenchen.freifunk.net"
Cell 07 - Address: 02:0E:8E:1E:61:17
Encryption key:off
ESSID:"mesh.ffmuc"
Cell 08 - Address: 5C:03:39:5B:12:F8
Encryption key:on
ESSID:"Susi"
Authentication Suites (1) : PSK
Cell 09 - Address: 34:31:C4:CF:AA:66
Encryption key:on
ESSID:"FRITZ!Box 7490"
Authentication Suites (1) : PSK
Cell 10 - Address: B4:A5:EF:0A:33:DC
Encryption key:on
ESSID:"EasyBox-570871"
Authentication Suites (1) : PSK
Authentication Suites (1) : PSK
Cell 11 - Address: 00:21:91:EC:FA:CB
Encryption key:on
ESSID:"Eiselbrecher_net"
Authentication Suites (1) : PSK
Authentication Suites (1) : PSK
This is taken by setup-interfaces and processed by awk to produce this:
"EasyBox-570871" : PSK
"Eiselbrecher_net" : PSK
"foo2" : PSK
"foo5" : PSK
"FRITZ!Box 7490" : PSK
"muenchen.freifunk.net" "mesh.ffmuc" "Susi" : PSK
: PSK
"" "Telekom_FON" "WLAN-PXFA7W" : PSK
Later this is interpreted as “muenchen.freifunk.net is using PSK”, which
is clearly wrong.
Connecting to such a network (using that script) is therefore not
possible.
Not sure about the best way to fix this. Parsing the text output
correctly is tricky and using something like iwlib would probably result
in an unwanted dependencies.
*(from redmine: issue id 8571, created on 2018-02-25)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/8668multiple interface with dhcp result into wrong metric and gateway2021-05-09T17:27:52Zalgitbotmultiple interface with dhcp result into wrong metric and gatewayI have 2 network interfaces, both are using DHCP, eth0 is for internet,
and eth1 is for lan only.
From the wiki: https://wiki.alpinelinux.org/wiki/Multi\_ISP
The DHCP client will automatically add a metric value to the default
gateway...I have 2 network interfaces, both are using DHCP, eth0 is for internet,
and eth1 is for lan only.
From the wiki: https://wiki.alpinelinux.org/wiki/Multi\_ISP
The DHCP client will automatically add a metric value to the default
gateway. It will pick 200 + interface index. Therefore we don’t need to
worry about that for DHCP.
But, ifconfig shows metric are both 1, so every time I reboot my system,
I have no internet.
The system will pick up the latest up interface as the default
gateway.
It is randomly unexpectable.
localhost:~# cat /etc/network/interfaces
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet dhcp
auto eth1
iface eth1 inet dhcp
localhost:~# netstat -nre
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 10.0.2.1 0.0.0.0 UG 202 0 0 eth0
10.0.2.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
192.168.56.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1
localhost:~# ifconfig
eth0 Link encap:Ethernet HWaddr 08:00:27:7B:1A:80
inet addr:10.0.2.4 Bcast:0.0.0.0 Mask:255.255.255.0
inet6 addr: fe80::a00:27ff:fe7b:1a80/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2 errors:0 dropped:0 overruns:0 frame:0
TX packets:14 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:1180 (1.1 KiB) TX bytes:1612 (1.5 KiB)
eth1 Link encap:Ethernet HWaddr 08:00:27:19:32:A2
inet addr:192.168.56.150 Bcast:0.0.0.0 Mask:255.255.255.0
inet6 addr: fe80::a00:27ff:fe19:32a2/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:203 errors:0 dropped:0 overruns:0 frame:0
TX packets:133 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:22257 (21.7 KiB) TX bytes:30775 (30.0 KiB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:40 errors:0 dropped:0 overruns:0 frame:0
TX packets:40 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1
RX bytes:2880 (2.8 KiB) TX bytes:2880 (2.8 KiB)
*(from redmine: issue id 8668, created on 2018-03-19)*