[Bug 1190122] New: firewall-cmd lists docker zone on fresh JeOS image
http://bugzilla.opensuse.org/show_bug.cgi?id=1190122 Bug ID: 1190122 Summary: firewall-cmd lists docker zone on fresh JeOS image Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem Assignee: screening-team-bugs@suse.de Reporter: felix.niederwanger@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- I'm noticing a weird behaviour in firewall-cmd on a fresh openSUSE Tumbleweed JeOS image. firewall-cmd shows an active docker zone, however docker is not installed.
firewall-cmd --get-active-zones docker interfaces: docker0 public interfaces: enp1s0 localhost:~ # ip l 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: enp1s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP mode DEFAULT group default qlen 1000 link/ether 52:54:00:73:a3:78 brd ff:ff:ff:ff:ff:ff localhost:~ # docker -bash: docker: command not found
Tested on the fresh current openSUSE Tumbleweed JeOS image, out of the box after the first run wizard. No additional packages are installed, nor did I touched any other system configuration. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1190122 http://bugzilla.opensuse.org/show_bug.cgi?id=1190122#c1 Vincent Moutoussamy <vmoutoussamy@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium Status|NEW |CONFIRMED CC| |vmoutoussamy@suse.com Assignee|screening-team-bugs@suse.de |jeos-internal@suse.de --- Comment #1 from Vincent Moutoussamy <vmoutoussamy@suse.com> --- I'm able to reproduce the issue with a fresh JeOS SLES 15SP3... so I guess this is not caused by a recent changes. Also openSUSE 15.3 should be affected as well but I didn't check yet. Assigning to the jeos team for now. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1190122 Pavel Dost�l <pdostal@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |pdostal@suse.com -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1190122 http://bugzilla.opensuse.org/show_bug.cgi?id=1190122#c2 Guilherme Moro <gmoro@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |gmoro@suse.com --- Comment #2 from Guilherme Moro <gmoro@suse.com> --- firewalld is shipping the configuration for docker zone in /usr/lib/firewalld/zones by default. The usual firewalld configuration would use NetworkManager to manage which interfaces are attached to each zone, as we don't use it, our zone configuration has <interface name="docker0"/> in it's configuration file, so firewalld automatically considers this zone as an "active" zone. This is misleading and we should probably move the configuration file to docker packages, or at least remove the default interface configuration from the zone definition. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1190122 http://bugzilla.opensuse.org/show_bug.cgi?id=1190122#c3 Guilherme Moro <gmoro@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|jeos-internal@suse.de |mrostecki@suse.com --- Comment #3 from Guilherme Moro <gmoro@suse.com> --- Hi mrostecki@suse.com, Hopefully you are the right maintainer for this? -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com