1.25.4: Units attempt to go through the proxy to download charm from state server

/var/log of the bootstrap node using juju 1.25.3. This is the working case.

Tarball of /var/log of the bootstrap node with juju 1.25.4. This is the non working case.

/var/log of the bootstrap node, this time the env was bootstrapped with debug logs.

Andreas - looks like the second upload was just the bootstrap log and not /var/log. Can you re-upload?

In the meantime, I'm going to try and set up one of my vMAASes to use a proxy to see if I can recreate.

Hmm, sorry, I'll fix that when I'm back in about 3h
On Mar 11, 2016 6:15 PM, "Cheryl Jennings" <email address hidden>
wrote:

> Andreas - looks like the second upload was just the bootstrap log and
> not /var/log. Can you re-upload?
>
> In the meantime, I'm going to try and set up one of my vMAASes to use a
> proxy to see if I can recreate.
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/1556207
>
> Title:
> 1.25.4: "tomb: dying" in all units
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/juju-core/+bug/1556207/+subscriptions
>

And now the real juju debug logs for the failing case.

Looks like this was injected by the fix for bug 1515289. We added in the proxy, but need a way to specify to not use the proxy when downloading things from the state server.

If you add the state server to the no-proxy list, can you deploy?

I assigned a static IP to the maas node, added that IP to the no_proxy list, bootstrapped into it (bootstrap --to node-1) and then deployed ubuntu into lxc:0. That worked. Logs attached.

I was able to recreate by setting up a tinyproxy in AWS (which obviously can't talk to my vMAAS) and attempting a basic deploy.

The fix will be to specify noproxy or add the state server to the no proxy list when downloading the charm from the state server. I will also need to go through the code to find any other places affected by the fix for bug 1515289 and fix them as well.

Discussed possible solutions with John and Andy a few days ago and came up with the general idea to make sure state server addresses are automatically added to the no-proxy list.

The trouble arises in that we cannot just get the no-proxy list from golang's http.ProxyFromEnvironment as it only reads the proxy information once, so if it is changed after the process starts running, the updates won't get applied.

The general gist of the proposal was:
1 - Implement tracking of proxy information inside juju/utils, so if updates are made to proxy information, the changes are reflected in any jujud processes currently running. (This information would be http(s)-proxy and the no-proxy lists). Post-discussion question - could we just update the env vars and not keep an internal list? Then just re-read the env vars whenever we create a new HTTP transport?

2 - Update the machine agent to populate the lists in #1 when starting, if not just updating env vars.

3 - Update the proxy list whenever APIHostPorts are changed

Don't environment variables get read when a process is spawned and inherited by its children? This would prevent us from performing a re-read.

package main

import (
 "fmt"
 "os"
 "os/exec"
 "strings"
 "time"
)

func main() {
 useExec := false
 var strout string

 for {
  if useExec {
   out, err := exec.Command("/usr/bin/printenv", "FOOBAR").Output()
   if err != nil {
    panic(err)
   }
   strout = string(out)
  } else {
   strout = os.Getenv("FOOBAR")
  }

  strout = strings.TrimSpace(strout)
  if strout != "hello" {
   fmt.Println(strout)
  }

  time.Sleep(1000 * time.Millisecond)
 }
}

To test:
FOOBAR=hello go run main.go &
export FOOBAR=foo

(now fg and kill it)

No change seen.

https://github.com/juju/juju/pull/4913 is up for review.

To fix this we add the API server addresses to the no-proxy list.