OpenStack Identity (keystone)

hard to understand the uri printed in the log

Bug #1454968 reported by Dave Chen on 2015-05-14

This bug affects 3 people

	Status	Importance	Assigned to	Milestone
OpenStack Identity (keystone)	Fix Released	Medium	Deepti Ramakrishna	OpenStack Identity (keystone) 8.0.0 "liberty"
Juno	Won't Fix	Medium	Dolph Mathews
Kilo	Fix Released	Medium	Dolph Mathews	OpenStack Identity (keystone) 2015.1.3

Bug Description

In keystone's log file, we can easily find some uri printed like this:
http://127.0.0.1:35357/v3/auth/tokens/auth/tokens/auth/tokens/auth/tokens/auth/tokens/auth/tokens/auth/tokens/auth/tokens/auth/tokens

seems there is something wrong when we are trying to log the uri in the log file.
        LOG.info('%(req_method)s %(uri)s', {
            'req_method': req.environ['REQUEST_METHOD'].upper(),
            'uri': wsgiref.util.request_uri(req.environ),
        })

code is here: https://github.com/openstack/keystone/blob/0debc2fbf448b44574da6f3fef7d457037c59072/keystone/common/wsgi.py#L232 but seems it has already been wrong when the req is passed in.

See original description

Tags:

Revision history for this message

Dolph Mathews (dolph) wrote on 2015-05-14:

I must have just introduced this in https://review.openstack.org/#/c/177427/ but perhaps paste is manipulating the environ somehow? I'm not sure why the application path would be replicated 9 (!) times after the pipeline's endpoint (/v3/)! That's weird. Are there 9 pieces of similar middleware or something in that pipeline? Maybe they're all doing something funky...?

Changed in keystone:
status:	New → Triaged
importance:	Undecided → Medium
milestone:	none → liberty-1

Lance Bragstad (lbragstad) on 2015-05-15

description:	updated
tags:	added: user-experience

Revision history for this message

Lance Bragstad (lbragstad) wrote on 2015-05-15:

The code linked in the description is in the Application class, which is inherited by every other middleware. I have a funny feeling that if we have duplication, it's happening through the inheritance somewhere. Maybe we can make the code in Application [0] smart enough to know if the path has already been addressed and continue otherwise?

[0] https://github.com/openstack/keystone/blob/0debc2fbf448b44574da6f3fef7d457037c59072/keystone/common/wsgi.py#L232

Deepti Ramakrishna (dramakri) on 2015-05-29

Changed in keystone:
assignee:	nobody → Deepti Ramakrishna (dramakri)

Revision history for this message

Deepti Ramakrishna (dramakri) wrote on 2015-06-04:

I printed the stack trace and the value of req.environ at the location mentioned above (Application.__call__()) and I see the following:

req.environ dict
----------------------
...
req.environ[SCRIPT_NAME] = /v3/auth/tokens/auth/tokens/auth/tokens/auth/tokens/auth/tokens/auth/tokens/auth/tokens
req.environ[PATH_INFO] = /auth/tokens
...

Stack trace (this stack and the above value of req.environ may have been obtained on different runs)
------------------------------------------------------------------------------------------------------------------------------------------
See http://paste.openstack.org/show/261406/ for the stack trace.

One of the files the stack, namely /usr/local/lib/python2.7/dist-packages/routes/middleware.py, has logic to extract a prefix of the PATH_INFO and append it to SCRIPT_PATH. I suspect that this what is responsible for the growing value of SCRIPT_NAME. Investigating further ...

OpenStack Infra (hudson-openstack) on 2015-06-04

Changed in keystone:
status:	Triaged → In Progress

Revision history for this message

Deepti Ramakrishna (dramakri) wrote on 2015-06-04:

Please review: https://review.openstack.org/#/c/188269

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-06-06: Fix merged to keystone (master)

Reviewed: https://review.openstack.org/188269
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=f7385b70b7556c703c96d86223d73d7e9beabd6b
Submitter: Jenkins
Branch: master

commit f7385b70b7556c703c96d86223d73d7e9beabd6b
Author: Deepti Ramakrishna <email address hidden>
Date: Wed Jun 3 20:03:18 2015 -0700

Fix req.environ[SCRIPT_NAME] value.

    The computation done inside
    /usr/local/lib/python2.7/dist-packages/routes/middleware.py
    was leaving req.environ[SCRIPT_NAME] with a wrong value with
    a repeated text block. No code in keystone seems to use the
    value of this variable, hence it has escaped detection until
    https://review.openstack.org/#/c/177427/ which logs req URLs
    by using SCRIPT_NAME in the url construction (via
    wsgiref.util.request_uri()).

    I backtraced the execution flow to the middleware.py file
    from the keystone middleware components. Prepending a '/'
    to the mapper path used in the ExtensionsRouter seems harmless
    as well as seems to fix the problem.

See log files before and after, from sample Jenkins runs.

BEFORE: http://goo.gl/YI89e4
AFTER (for this review): http://goo.gl/I1qVaI

Closes-Bug:#1454968

Change-Id: Ia9bf1e1644c996e5aa71ac4e634ead3c4de7edcf

Changed in keystone:
status:	In Progress → Fix Committed

Doug Hellmann (doug-hellmann) on 2015-06-23

Changed in keystone:
status:	Fix Committed → Fix Released

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-07-14: Fix proposed to keystone (stable/kilo)

Fix proposed to branch: stable/kilo
Review: https://review.openstack.org/201708

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-07-14: Fix proposed to keystone (stable/juno)

Fix proposed to branch: stable/juno
Review: https://review.openstack.org/201726

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-08-05: Change abandoned on keystone (stable/juno)

Change abandoned by Dolph Mathews (<email address hidden>) on branch: stable/juno
Review: https://review.openstack.org/201726

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-08-29: Fix merged to keystone (stable/kilo)

Reviewed: https://review.openstack.org/201708
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=20fd5af10d1551721b9c95f51fbc166977c016ae
Submitter: Jenkins
Branch: stable/kilo

commit 20fd5af10d1551721b9c95f51fbc166977c016ae
Author: Dolph Mathews <email address hidden>
Date: Fri Apr 24 20:05:35 2015 +0000

Fix WSGI request logging

    This is a backport of two patches that must be carried together. The
    first patch, which is a desirable backport, revealed a problem with
    middleware's handling of SCRIPT_NAME values, and so they must be
    backported together to avoid introducing a regression in a stable
    branch.

The original commit messages are below.

---

Allow wsgiref to reconstruct URIs per the WSGI spec

Instead of reimplementing URL reconstruction for logging purposes, and
getting it wrong over and over and over, let's just use wsgiref.util.

    Change-Id: Ib64877c35ad856bdef8f64f6df44a054eaa2321b
    Closes-Bug: 1448286
    (cherry picked from commit f2a75866319c249e8ebdfb393172ab5ca8816b22)

---

Fix req.environ[SCRIPT_NAME] value.

See log files before and after, from sample Jenkins runs.

BEFORE: http://goo.gl/YI89e4
AFTER (for this review): http://goo.gl/I1qVaI

Closes-Bug:#1454968

Change-Id: Ia9bf1e1644c996e5aa71ac4e634ead3c4de7edcf
(cherry picked from commit f7385b70b7556c703c96d86223d73d7e9beabd6b)

Reviewed:  https://review.openstack.org/201708
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=20fd5af10d1551721b9c95f51fbc166977c016ae
Submitter: Jenkins
Branch:    stable/kilo

commit 20fd5af10d1551721b9c95f51fbc166977c016ae
Author: Dolph Mathews <dolph.mathews@gmail.com>
Date:   Fri Apr 24 20:05:35 2015 +0000

Fix WSGI request logging
    
    This is a backport of two patches that must be carried together. The
    first patch, which is a desirable backport, revealed a problem with
    middleware's handling of SCRIPT_NAME values, and so they must be
    backported together to avoid introducing a regression in a stable
    branch.
    
    The original commit messages are below.
    
    ---
    
    Allow wsgiref to reconstruct URIs per the WSGI spec
    
    Instead of reimplementing URL reconstruction for logging purposes, and
    getting it wrong over and over and over, let's just use wsgiref.util.
    
    Change-Id: Ib64877c35ad856bdef8f64f6df44a054eaa2321b
    Closes-Bug: 1448286
    (cherry picked from commit f2a75866319c249e8ebdfb393172ab5ca8816b22)
    
    ---
    
    Fix req.environ[SCRIPT_NAME] value.
    
    The computation done inside
    /usr/local/lib/python2.7/dist-packages/routes/middleware.py
    was leaving req.environ[SCRIPT_NAME] with a wrong value with
    a repeated text block. No code in keystone seems to use the
    value of this variable, hence it has escaped detection until
    https://review.openstack.org/#/c/177427/ which logs req URLs
    by using SCRIPT_NAME in the url construction (via
    wsgiref.util.request_uri()).
    
    I backtraced the execution flow to the middleware.py file
    from the keystone middleware components. Prepending a '/'
    to the mapper path used in the ExtensionsRouter seems harmless
    as well as seems to fix the problem.
    
    See log files before and after, from sample Jenkins runs.
    
    BEFORE: http://goo.gl/YI89e4
    AFTER (for this review): http://goo.gl/I1qVaI
    
    Closes-Bug:#1454968
    
    Change-Id: Ia9bf1e1644c996e5aa71ac4e634ead3c4de7edcf
    (cherry picked from commit f7385b70b7556c703c96d86223d73d7e9beabd6b)

Thierry Carrez (ttx) on 2015-10-15

Changed in keystone:
milestone:	liberty-1 → 8.0.0

Report a bug

This report contains Public information

Everyone can see this information.

Duplicates of this bug

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.