From 3e8a5d20c862721e0c84e82e1a3d56b5bb73a301 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Lukas=20M=C3=A4rdian?= <slyon@ubuntu.com>
Date: Mon, 2 Dec 2024 16:48:09 +0100
Subject: [PATCH 1/2] generator: Do not re-execute during daemon-reload

As intended when originally implemented the netplan generator.stamp
is supposed to avoid re-generating all of the Netplan configuration
during 'systemd daemon-reload'.

The stamp has originally been placed in /run/systemd/generator/,
which is nowadays cleaned during 'daemon-reload', leading to
Netplan regenerating its configuration during each such call.

Let's move the stamp file into /run/netplan/generator.stamp instead
to avoid that. Triggering the Netplan generator only at reboot,
or when called explicitly.

Original intend: d2a45b3066cb20f8cfeb3e778af025ecdfbc6461
---
 src/generate.c               | 5 ++++-
 tests/generator/test_args.py | 8 +++++---
 tests/integration/base.py    | 2 +-
 3 files changed, 10 insertions(+), 5 deletions(-)

diff --git a/src/generate.c b/src/generate.c
index aa5232437..e11a88f6e 100644
--- a/src/generate.c
+++ b/src/generate.c
@@ -236,7 +236,9 @@ int main(int argc, char** argv)
             g_fprintf(stderr, "%s can not be called directly, use 'netplan generate'.", argv[0]);
             return 1;
         }
-        generator_run_stamp = g_build_path(G_DIR_SEPARATOR_S, files[0], "netplan.stamp", NULL);
+        /* Write generator.stamp in /run/netplan/generator.stamp, this is due to
+         * /run/systemd/generator/... being cleaned on every daemon-reload. */
+        generator_run_stamp = g_build_path(G_DIR_SEPARATOR_S, rootdir, "run", "netplan", "generator.stamp", NULL);
         if (g_access(generator_run_stamp, F_OK) == 0) {
             g_fprintf(stderr, "netplan generate already ran, remove %s to force re-run\n", generator_run_stamp);
             return 0;
@@ -318,6 +320,7 @@ int main(int argc, char** argv)
 
         /* Leave a stamp file so that we don't regenerate the configuration
          * multiple times and userspace can wait for it to finish */
+        _netplan_safe_mkdir_p_dir(generator_run_stamp);
         FILE* f = fopen(generator_run_stamp, "w");
         g_assert(f != NULL);
         fclose(f);
diff --git a/tests/generator/test_args.py b/tests/generator/test_args.py
index bb79c40d0..8840edc5f 100644
--- a/tests/generator/test_args.py
+++ b/tests/generator/test_args.py
@@ -222,7 +222,8 @@ def test_systemd_generator(self):
 
         # after removing the stamp it generates again, and not trip over the
         # existing enablement symlink
-        os.unlink(os.path.join(outdir, 'netplan.stamp'))
+        run_netplan = os.path.join(self.workdir.name, 'run', 'netplan')
+        os.unlink(os.path.join(run_netplan, 'generator.stamp'))
         subprocess.check_output([generator, '--root-dir', self.workdir.name, outdir, outdir, outdir])
         self.assertTrue(os.path.exists(n))
 
@@ -340,7 +341,7 @@ def test_systemd_generator_noconf(self):
 
         subprocess.check_call([generator, '--root-dir', self.workdir.name, outdir, outdir, outdir])
         # no enablement symlink here
-        self.assertEqual(os.listdir(outdir), ['netplan.stamp'])
+        self.assertEqual(os.listdir(outdir), [])
 
     def test_systemd_generator_badcall(self):
         outdir = os.path.join(self.workdir.name, 'out')
@@ -409,6 +410,7 @@ def test_systemd_generator_escaping(self):
 
         # after removing the stamp it generates again, and not trip over the
         # existing enablement symlink
-        os.unlink(os.path.join(outdir, 'netplan.stamp'))
+        run_netplan = os.path.join(self.workdir.name, 'run', 'netplan')
+        os.unlink(os.path.join(run_netplan, 'generator.stamp'))
         subprocess.check_output([generator, '--root-dir', self.workdir.name, outdir, outdir, outdir])
         self.assertTrue(os.path.exists(n))
diff --git a/tests/integration/base.py b/tests/integration/base.py
index d1f823ecc..953b48498 100644
--- a/tests/integration/base.py
+++ b/tests/integration/base.py
@@ -127,7 +127,7 @@ def tearDown(self):
         subprocess.call(['udevadm', 'trigger', '--attr-match=subsystem=net'])
         subprocess.call(['udevadm', 'settle'])
         try:
-            os.remove('/run/systemd/generator/netplan.stamp')
+            os.remove('/run/netplan/generator.stamp')
         except FileNotFoundError:
             pass
         # Keep the management network (eth0/ens3 from 20-wired.network) up

From e44fc6684359efda8de29d0ba9f8d817df4b488f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Lukas=20M=C3=A4rdian?= <slyon@ubuntu.com>
Date: Wed, 19 Feb 2025 17:46:26 +0100
Subject: [PATCH 2/2] CI:network-manager: CAP_CHOWN workaround

---
 .github/workflows/network-manager.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/network-manager.yml b/.github/workflows/network-manager.yml
index 20a1e599a..1e7fd6e24 100644
--- a/.github/workflows/network-manager.yml
+++ b/.github/workflows/network-manager.yml
@@ -63,8 +63,9 @@ jobs:
       - name: Run autopkgtest
         run: |
           pull-lp-source network-manager noble
+          sed -i 's|CAP_SYS_CHROOT|CAP_SYS_CHROOT CAP_CHOWN|' network-manager-*/data/NetworkManager.service.in  # https://github.com/canonical/netplan/pull/529
           sudo autopkgtest -U \
             --copy=debian/artifacts:/root/ --setup-commands='dpkg -i /root/*.deb' \
             --env=DEB_BUILD_OPTIONS=nocheck \
             --apt-pocket=proposed=src:network-manager \
-            network-manager_*.dsc -- lxd autopkgtest/ubuntu/noble/amd64 || test $? -eq 2  # allow for skipped tests (exit code = 2)
+            network-manager-*/ -- lxd autopkgtest/ubuntu/noble/amd64 || test $? -eq 2  # allow for skipped tests (exit code = 2)