Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1391382

Summary: [networking_public_222]edge/Allow temination route cannot work for http request when enable wildcard routes
Product: OpenShift Container Platform Reporter: zhaozhanqi <zzhao>
Component: NetworkingAssignee: Ram Ranganathan <ramr>
Networking sub component: router QA Contact: zhaozhanqi <zzhao>
Status: CLOSED ERRATA Docs Contact:
Severity: medium    
Priority: medium CC: aos-bugs, bbennett, bmeng, tdawson
Version: 3.4.0   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
undefined
 Story Points: ---
Clone Of: Environment:
Last Closed: 2017-01-18 12:49:11 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description zhaozhanqi 2016-11-03 08:35:11 UTC 
Description of problem:
Enable wildcard routes for router. Create edge route and change it to 'edge/Allow'. the route cannot work when sent a http request.

Version-Release number of selected component (if applicable):
# openshift version
openshift v3.4.0.19+346a31d
kubernetes v1.4.0+776c994
etcd 3.1.0-rc.0
openshift3/ose-haproxy-router          v3.4.0.19           6e54d63e6bc9

How reproducible:
always

Steps to Reproduce:
1. make sure the router is running
2. enable wildcard route for router
   #oc env dc router ROUTER_ALLOW_WILDCARD_ROUTES=true
3. Create app/service/edge route
 $ oc create -f https://raw.githubusercontent.com/openshift-qe/v3-testfiles/master/routing/caddy-docker.json -f https://raw.githubusercontent.com/openshift-qe/v3-testfiles/master/routing/edge/service_unsecure.json -f https://raw.githubusercontent.com/zhaozhanqi/subdomain/master/route_edge.json

4. change route termination to 'edge/Allow'
  oc patch route secured-edge-route -p '{"spec":{"tls": { "insecureEdgeTerminationPolicy":"Allow"}}}'
5. Sent https and http request to route
 
Actual results:

https request can work well
http return 503

Expected results:
both https and http work well.

Additional info:
'edge/Redirct' works well
Comment 1 Ram Ranganathan 2016-11-03 19:56:16 UTC 
Fixed with PR: https://github.com/openshift/origin/pull/11760
Comment 2 Troy Dawson 2016-11-04 18:42:22 UTC 
This has been merged into ose and is in OSE v3.4.0.22 or newer.
Comment 4 Meng Bo 2016-11-07 11:25:21 UTC 
Checked on ocp build v3.4.0.22 with router image ccce8ccad9bb

Issue has been fixed.

The wildcard domain works well for the edge route with all the insecureEdgeTerminationPolicy.
Comment 6 errata-xmlrpc 2017-01-18 12:49:11 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2017:0066