Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1760797

Summary: There are "Connection refused" or "connect timed out" error shown in jenkins pod log
Product: OpenShift Container Platform Reporter: XiuJuan Wang <xiuwang>
Component: JenkinsAssignee: Akram Ben Aissi <abenaiss>
Status: CLOSED CANTFIX QA Contact: XiuJuan Wang <xiuwang>
Severity: low Docs Contact:
Priority: medium    
Version: 4.2.0CC: vbobade, wsun, wzheng
Target Milestone: ---Keywords: Regression
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 1760798 (view as bug list) Environment:
Last Closed: 2020-07-09 07:10:34 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1760798    

Description XiuJuan Wang 2019-10-11 10:48:42 UTC 
Description of problem:
There are "Connection refused" or "connect timed out" error shown in jenkins pod log

Version-Release number of selected component (if applicable):
4.2.0-rc4 and 4.2.0-rc5

How reproducible:
always

Steps to Reproduce:
1.Create a jenkins app
2.Wait pod deployed, access jenkins webconsole.
3.

Actual results:
Could access jenkins webconsole, but there are error in jenkins pod log.

INFO: OpenShift OAuth: provider: OpenShiftProviderInfo: issuer: https://oauth-openshift.apps.qe-wzheng-share.qe.devcluster.openshift.com auth ep: https://oauth-openshift.apps.qe-wzheng-share.qe.devcluster.openshift.com/oauth/authorize token ep: https://oauth-openshift.apps.qe-wzheng-share.qe.devcluster.openshift.com/oauth/token
Oct 11, 2019 8:23:15 AM org.openshift.jenkins.plugins.openshiftlogin.OpenShiftOAuth2SecurityRealm useProviderOAuthEndpoint
INFO: OpenShift OAuth server is 4.x, specifically OpenShiftVersionInfo: major: 1 minor: 14+ gitVersion: v1.14.6+2e5ed54
Oct 11, 2019 8:23:15 AM org.openshift.jenkins.plugins.openshiftlogin.OpenShiftOAuth2SecurityRealm initializeHttpsProxyAuthenticator
INFO: Checking if HTTPS proxy initialization is required ... 
Oct 11, 2019 8:23:15 AM org.openshift.jenkins.plugins.openshiftlogin.OpenShiftOAuth2SecurityRealm transportToUse
INFO: OpenShift OAuth provider token endpoint failed unexpectedly using this pod's SA's certificate
java.net.ConnectException: Connection refused (Connection refused)
	at java.net.PlainSocketImpl.socketConnect(Native Method)
	at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350)
	at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206)
	at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188)
	at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392)
	at java.net.Socket.connect(Socket.java:589)
	at sun.security.ssl.SSLSocketImpl.connect(SSLSocketImpl.java:666)
	at sun.net.NetworkClient.doConnect(NetworkClient.java:175)
	at sun.net.www.http.HttpClient.openServer(HttpClient.java:463)
	at sun.net.www.http.HttpClient.openServer(HttpClient.java:558)
	at sun.net.www.protocol.https.HttpsClient.<init>(HttpsClient.java:264)
	at sun.net.www.protocol.https.HttpsClient.New(HttpsClient.java:367)
	at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.getNewHttpClient(AbstractDelegateHttpsURLConnection.java:191)
	at sun.net.www.protocol.http.HttpURLConnection.plainConnect0(HttpURLConnection.java:1162)
	at sun.net.www.protocol.http.HttpURLConnection.plainConnect(HttpURLConnection.java:1056)
	at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:177)
	at sun.net.www.protocol.https.HttpsURLConnectionImpl.connect(HttpsURLConnectionImpl.java:167)
	at com.google.api.client.http.javanet.NetHttpRequest.execute(NetHttpRequest.java:143)
	at com.google.api.client.http.javanet.NetHttpRequest.execute(NetHttpRequest.java:79)
	at com.google.api.client.http.HttpRequest.execute(HttpRequest.java:996)
	at org.openshift.jenkins.plugins.openshiftlogin.OpenShiftOAuth2SecurityRealm.transportToUse(OpenShiftOAuth2SecurityRealm.java:560)
	at org.openshift.jenkins.plugins.openshiftlogin.OpenShiftOAuth2SecurityRealm.populateDefaults(OpenShiftOAuth2SecurityRealm.java:413)
	at org.openshift.jenkins.plugins.openshiftlogin.OpenShiftOAuth2SecurityRealm.<init>(OpenShiftOAuth2SecurityRealm.java:315)
	at org.openshift.jenkins.plugins.openshiftlogin.OpenShiftSetOAuth.setOauth(OpenShiftSetOAuth.java:75)
	at org.openshift.jenkins.plugins.openshiftlogin.OpenShiftSetOAuth.setOauth(OpenShiftSetOAuth.java:47)
	at org.openshift.jenkins.plugins.openshiftlogin.OpenShiftItemListener.onLoaded(OpenShiftItemListener.java:42)
	at jenkins.model.Jenkins.<init>(Jenkins.java:999)
	at hudson.model.Hudson.<init>(Hudson.java:85)
	at hudson.model.Hudson.<init>(Hudson.java:81)
	at hudson.WebAppMain$3.run(WebAppMain.java:233)



Expected results:
Should have no this error in log

Additional info:
Comment 1 XiuJuan Wang 2019-10-11 11:10:41 UTC 
@Akram the auth/token result http://pastebin.test.redhat.com/805208 . And I see tls error in authentication pod log, not sure if the root cause, but I can access cluster webconsole with oauth too.
Comment 4 Vibhav Bobade 2020-07-09 07:10:34 UTC 
Closing this bug as it is old and there hasn't been much progress in the last half year.