invoking dhclient3 with -1 causes issue if no dhcp server available

The problem is actually more prevalent than just boot time. In fact, if the DHCP server goes away at any point and the lease expires, dhclient will timeout and exit without ever retrying again. The result is that the system in question basically falls off the network, with the only way to recover being manual intervention. To be clear, this means recovery requires physical access or remote management capabilities.

It's straightforward to reproduce the problem. Configure an Ubuntu system as a DHCP client and set the lease time on the server to something short, like 60 seconds. After the system has successfully booted and grabbed an IP, shut down the DHCP server. Within 2 minutes, the dhcp client will timeout, lose it's IP address and drop off the network with no chance of recovering automatically.

I think the upshot here is that neither dhclient -1 nor dhclient without -1 gives us the behavior we need for reliable handling via ifupdown; so we either need to modify the behavior of -1 to be more sensible regarding dropped leases *after* the initial lease, or we need to add a new dhclient option that does the right thing. Stéphane, do you agree?

Status changed to 'Confirmed' because the bug affects multiple users.

16:58 < smoser> ie, to safeguard for the power failure case, where 5 minutes wasn't enough, but 5 minutes and 3 seconds would have been.
16:59 < stgraber> so we want dhclient to try for $TIMEOUT, if it gets a lease during that time, background itself and get into a renewal/retry loop, if it doesn't, then ???
16:59 < stgraber> for ??? I tend to prefer failing as I really don't want to run the ifupdown hooks unless we have a working connection
17:00 < stgraber> but you clearly prefer continuing regardless that'll make all the upstart jobs trigger as well as all upstart hooks (even though you don't have network access)

So to make this happen we'd need to patch isc-dhcp-client to add a new parameter (to avoid regressing -1 or the default mode) that essentially only triggers the initial wait for lease part of -1 but not the exit on failure to renew part.

On Thu, 5 Apr 2012, Stéphane Graber wrote:

> 16:58 < smoser> ie, to safeguard for the power failure case, where 5 minutes wasn't enough, but 5 minutes and 3 seconds would have been.
> 16:59 < stgraber> so we want dhclient to try for $TIMEOUT, if it gets a lease during that time, background itself and get into a renewal/retry loop, if it doesn't, then ???
> 16:59 < stgraber> for ??? I tend to prefer failing as I really don't want to run the ifupdown hooks unless we have a working connection
> 17:00 < stgraber> but you clearly prefer continuing regardless that'll make all the upstart jobs trigger as well as all upstart hooks (even though you don't have network access)

Well, I don't know that I prefer that. Sorry I didn't see that earlier.
Obviously, triggering jobs that expect network when network isn't up isn't
a great solution.

What about exiting failure after $TIMEOUT, but forking into retry loop?

That sounds reasonable and is what I implemented for the isc-dhcp change currently in the queue.

isc-dhcp will "exit 2" if the first attempt to get a lease fails, if it works, it then gets into the same code path as a regular dhclient call.

Sorry, thanks to Adam for making me read Scott's comment properly ;)

Forking into a retry loop before exit 2 sounds really bad as you'll still get network coming up at some random point without triggering any of the ifupdown/upstart hooks/jobs.

This bug was fixed in the package isc-dhcp - 4.1.ESV-R4-0ubuntu5

---------------
isc-dhcp (4.1.ESV-R4-0ubuntu5) precise; urgency=low

  * When dhclient is called with -1, exit on failure to get a lease only
    when getting the initial lease. Once backgrounded, behave exactly like
    in normal mode. (LP: #974284)
 -- Stephane Graber <email address hidden> Tue, 10 Apr 2012 14:19:23 +0200

The patch to correct this issue never actually made it to precise, as it got added at the end of the 00series file, which gets reverted during build. Reopening.

Hello Scott, or anyone else affected,

Accepted isc-dhcp into precise-proposed. The package will build now and be available at http://launchpad.net/ubuntu/+source/isc-dhcp/4.1.ESV-R4-0ubuntu5.3 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please change the bug tag from verification-needed to verification-done. If it does not, change the tag to verification-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

Scott, can you confirm that this fixes the issue with dhclient -1 for you? We're waiting for SRU verification before publishing this change.

The patch is being applied but the result is still wrong. dhclient dies after the lease expires instead of just keeping retrying indefinitely.

This also suggests that the fix in Ubuntu 12.10 doesn't actually work... I'll have to take another go at that fix and update the patch in 12.10 and 12.04.

This bug was fixed in the package isc-dhcp - 4.2.4-1ubuntu8

---------------
isc-dhcp (4.2.4-1ubuntu8) quantal; urgency=low

  [ Scott Moser ]
  * debian/apparmor-profile.dhcpd: use include directory to enable
    other packages to re-use isc-dhcp-server. (LP: #1049177)

  [ Stéphane Graber ]
  * Re-introduce the wait_for_rw code in dhclient-script which got lost
    in the last merge, this code is there for the few rare systems that
    aren't using resolvconf and don't have /etc mounted read/write by the
    time dhclient-script is called.
  * Update onetry_retry_after_initial_success to disable the onetry variable
    early enough to actually prevent dhclient from exiting. (LP: #974284)
 -- Stephane Graber <email address hidden> Wed, 12 Sep 2012 17:30:26 -0400

I ended up just moving part of the patch a bit before so that it actually does something.

I tested with "dhclient -1 -d" before and after confirming that when there's no connectivity in the initial request it properly exits after a minute but that if it gets a lease and then looses connectivity it'll never exit again.

Committed the same fix to my local isc-dhcp SRU branch, this will be pushed to proposed later this week.

Hello Scott, or anyone else affected,

Accepted isc-dhcp into precise-proposed. The package will build now and be available at http://launchpad.net/ubuntu/+source/isc-dhcp/4.1.ESV-R4-0ubuntu5.6 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please change the bug tag from verification-needed to verification-done. If it does not, change the tag to verification-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

I remember testing this and nobody reported any regression, good to go.

This bug was fixed in the package isc-dhcp - 4.1.ESV-R4-0ubuntu5.6

---------------
isc-dhcp (4.1.ESV-R4-0ubuntu5.6) precise-proposed; urgency=low

  [ Scott Moser ]
  * debian/apparmor-profile.dhcpd: use include directory to enable
    other packages to re-use isc-dhcp-server. (LP: #1049177)

  [ Stéphane Graber ]
  * Update onetry_retry_after_initial_success to disable the onetry variable
    early enough to actually prevent dhclient from exiting. (LP: #974284)
  * Update droppriv patch to also call initgroups() (LP: #727837)
 -- Stephane Graber <email address hidden> Tue, 18 Sep 2012 10:34:10 -0400

The verification of this Stable Release Update has completed successfully and the package has now been released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regresssions.