Bug 806053

Summary: configserver does not handle 302 properly
Product: [Retired] CloudForms Cloud Engine Reporter: dgao
Component: aeolus-configserverAssignee: Greg Blomquist <gblomqui>
Status: CLOSED ERRATA QA Contact: dgao
Severity: medium Docs Contact:
Priority: unspecified    
Version: 1.0.0CC: akarol, asettle, cpelland, deltacloud-maint, dmacpher, hbrock, jclift, jrd, juwu, mitch, morazi, redakkan, whayutin
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
A 302 error was not being handled properly by aeolus-configserver. This bug fix updates aeolus-configserver so that it retries the access attempt (with a maximum of 10 times) using the re-directed URL.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2012-12-04 15:00:52 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description dgao 2012-03-22 18:40:28 UTC 
When getting a 302, configserver errors out even though it's a benign error. 

ERROR: could not get configuration file contents
Could not download file https://github.com/aeolusproject/audrey/raw/master/examples/wordpress/wordpress-http.sh.  Http Response code: 302
Comment 1 jrd 2012-03-28 14:28:29 UTC 
Greg, IIRC we discussed this and decided that at least for 1.0, this was a "well don't do that then" situation.  Can you confirm?  If so, let's move this off the 1.0 list.
Comment 3 Justin Clift 2012-07-06 11:26:18 UTC 
As a practical example of where this affects things, the present Audrey wordpress examples use GitHub URLs like this:

  https://github.com/aeolusproject/audrey/raw/master/examples/wordpress/wordpress-http.sh

These should be:

  https://raw.github.com/aeolusproject/audrey/master/examples/wordpress/wordpress-http.sh

On the GitHub side, when a request for the first (above) URL comes in, a 302 response is given, with the new (updated) URL to use.

However, Config Server barfs instead of using the information correctly.

The deployment then fails, not being able to retrieve the needed configuration info from the URL.

The evidence of the failure is in /var/log/aeolus-configserver/thin.log on the running Config Server instance:

  warning: peer certificate won't be verified in this SSL session
  ERROR: could not get configuration file contents
  Could not download file https://github.com/aeolusproject/audrey/raw/master/examples/wordpress/wordpress-http.sh.  Http Response code: 302

Compare to a successful download, using a correct URL:

  warning: peer certificate won't be verified in this SSL session
Comment 4 Justin Clift 2012-07-06 11:29:26 UTC 
All that's required here, is for Config Server to honour the http 302 status code (a redirect, pointing to a newer URL location), and automatically retry the download, using the new URL location provided.
Comment 5 jrd 2012-07-26 19:36:13 UTC 
PM input required.
Comment 6 Mitch 2012-07-26 20:09:41 UTC 
This comes down to whether QE can get this added to their testing and still make the original 1.1 date.  If they can, then yes, this should be in 1.1.  If not, I'm not willing to slip 1.1 for this.  We can add it to v.next.  I'll confirm with QE and get back to everyone.
Comment 8 Mike Orazi 2012-08-06 22:23:36 UTC 
Moving it back, this should have already had devel-ack
Comment 9 Greg Blomquist 2012-08-09 21:13:32 UTC 
The implementation change here is to attempt to follow a max of 10 redirects before failing to download a file referenced in a deployable.
Comment 10 Greg Blomquist 2012-08-27 18:17:49 UTC 
https://github.com/aeolusproject/audrey/commit/f620722e5df0c1944f99a25861be682caea0ece1
Comment 12 dgao 2012-09-19 15:42:02 UTC 
Configured a redirect in apache and used the following blueprint:

<?xml version="1.0"?>
<deployable version="1.0" name="rhel62_test">
  <description/>
  <assemblies>
    <assembly name="test" hwp="small-x86_64">
      <image id="80f54e44-01b7-11e2-9261-00145e6d1d0c"/>
      <services>
        <service name="http">
          <executable url="https://zhongyong.usersys.redhat.com/redirect_script"/>
          <files>
            <file url="https://zhongyong.usersys.redhat.com/redirect_script"/>
          </files>
          <parameters>
            <parameter name="foo">
                <value>bar</value>
            </parameter>
          </parameters>
        </service>
      </services>
    </assembly>
  </assemblies>
</deployable>




on configserver:


[root@deaddonkey tmp]# tar xvzf ../6903b8a8-026f-11e2-9261-00145e6d1d0c.tgz 
.
http
http/redirect_script
http/start
[root@deaddonkey tmp]# ls
http
[root@deaddonkey tmp]# cd http/
[root@deaddonkey http]# ls
redirect_script  start
[root@deaddonkey http]# cat redirect_script 
#!/bin/bash
touch /etc/cloud-qe.cfg
printenv | grep auto_service_param > /etc/cloud-qe.cfg

exit 0 # Success
Comment 14 errata-xmlrpc 2012-12-04 15:00:52 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHEA-2012-1516.html