OpenStack Nova Cloud Controller Charm

Ironic does not use secure web socket for remote console

Bug #2039490 reported by Narinder Gupta on 2023-10-16

This bug affects 1 person

	Status	Importance	Assigned to
OpenStack Ironic API Charm	Invalid	Undecided	Unassigned
OpenStack Nova Cloud Controller Charm	Fix Committed	Undecided	Felipe Reyes
2023.1	Fix Committed	Undecided	Unassigned
2023.2	Fix Committed	Undecided	Unassigned
Ussuri	Fix Committed	Undecided	Unassigned
Victoria	Fix Committed	Undecided	Unassigned
Wallaby	Fix Committed	Undecided	Unassigned
Xena	Fix Committed	Undecided	Unassigned
Yoga	Fix Committed	Undecided	Unassigned
Zed	Fix Committed	Undecided	Unassigned

Bug Description

When nova Ironic API and nova cloud controller uses the serial_console_base_url to connect to ironic console it uses not secure rather then secure one and fails to connect. Expectation is to use secure connection.
current value serial_console_base_url: ws://10.0.0.127:6083/
expected value: serial_console_base_url: wss://10.0.0.127:6083/

Felipe Reyes (freyes) on 2023-10-16

Changed in charm-ironic-api:
status:	New → Triaged
assignee:	nobody → Felipe Reyes (freyes)

Revision history for this message

Felipe Reyes (freyes) wrote on 2023-10-16:

this happens when openstack-dashboard is being served over https, since browsers (b/c security) won't allow a page served over https make connections to a non-secure web socket.

Felipe Reyes (freyes) on 2023-10-26

Changed in charm-ironic-api:
assignee:	Felipe Reyes (freyes) → nobody
status:	Triaged → Invalid

OpenStack Infra (hudson-openstack) on 2023-10-26

Changed in charm-nova-cloud-controller:
status:	New → In Progress

Felipe Reyes (freyes) on 2023-10-26

Changed in charm-nova-cloud-controller:
assignee:	nobody → Felipe Reyes (freyes)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix merged to charm-nova-cloud-controller (master)

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/899430
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/b915f8e6f81df6a776fc1ad6725207a199440a3b
Submitter: "Zuul (22348)"
Branch: master

commit b915f8e6f81df6a776fc1ad6725207a199440a3b
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

Change-Id: I738652373604966b6df079e45a0ad26c83e21688
Closes-Bug: #2039490

Changed in charm-nova-cloud-controller:
status:	In Progress → Fix Committed

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix proposed to charm-nova-cloud-controller (stable/2023.2)

Fix proposed to branch: stable/2023.2
Review: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901929

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix proposed to charm-nova-cloud-controller (stable/2023.1)

Fix proposed to branch: stable/2023.1
Review: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901930

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix proposed to charm-nova-cloud-controller (stable/zed)

Fix proposed to branch: stable/zed
Review: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901931

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix proposed to charm-nova-cloud-controller (stable/yoga)

Fix proposed to branch: stable/yoga
Review: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901932

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix proposed to charm-nova-cloud-controller (stable/xena)

Fix proposed to branch: stable/xena
Review: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901933

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix proposed to charm-nova-cloud-controller (stable/wallaby)

Fix proposed to branch: stable/wallaby
Review: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901934

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix proposed to charm-nova-cloud-controller (stable/victoria)

Fix proposed to branch: stable/victoria
Review: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901935

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-27: Fix proposed to charm-nova-cloud-controller (stable/ussuri)

#10

Fix proposed to branch: stable/ussuri
Review: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901936

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-30: Fix merged to charm-nova-cloud-controller (stable/2023.2)

#11

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901929
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/7da2878e62e9841e57356d6cee31e1e35c3cafe5
Submitter: "Zuul (22348)"
Branch: stable/2023.2

commit 7da2878e62e9841e57356d6cee31e1e35c3cafe5
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

    Change-Id: I738652373604966b6df079e45a0ad26c83e21688
    Closes-Bug: #2039490
    (cherry picked from commit b915f8e6f81df6a776fc1ad6725207a199440a3b)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-30: Fix merged to charm-nova-cloud-controller (stable/2023.1)

#12

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901930
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/2270b099e5bc973922ba6ed7138ecc0a88c4954a
Submitter: "Zuul (22348)"
Branch: stable/2023.1

commit 2270b099e5bc973922ba6ed7138ecc0a88c4954a
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

    Change-Id: I738652373604966b6df079e45a0ad26c83e21688
    Closes-Bug: #2039490
    (cherry picked from commit b915f8e6f81df6a776fc1ad6725207a199440a3b)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-30: Fix merged to charm-nova-cloud-controller (stable/zed)

#13

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901931
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/89ed4456c63df5c453201e7b4ef776920f398f1a
Submitter: "Zuul (22348)"
Branch: stable/zed

commit 89ed4456c63df5c453201e7b4ef776920f398f1a
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

    Change-Id: I738652373604966b6df079e45a0ad26c83e21688
    Closes-Bug: #2039490
    (cherry picked from commit b915f8e6f81df6a776fc1ad6725207a199440a3b)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-11-30: Fix merged to charm-nova-cloud-controller (stable/yoga)

#14

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901932
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/8b10e2e1d31d4f3fa3224890337843b7fca4ccdc
Submitter: "Zuul (22348)"
Branch: stable/yoga

commit 8b10e2e1d31d4f3fa3224890337843b7fca4ccdc
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

    Change-Id: I738652373604966b6df079e45a0ad26c83e21688
    Closes-Bug: #2039490
    (cherry picked from commit b915f8e6f81df6a776fc1ad6725207a199440a3b)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-12-01: Fix merged to charm-nova-cloud-controller (stable/xena)

#15

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901933
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/b66fb3c85d31382ed03f03b0e153fc30e630df0b
Submitter: "Zuul (22348)"
Branch: stable/xena

commit b66fb3c85d31382ed03f03b0e153fc30e630df0b
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

    Change-Id: I738652373604966b6df079e45a0ad26c83e21688
    Closes-Bug: #2039490
    (cherry picked from commit b915f8e6f81df6a776fc1ad6725207a199440a3b)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-12-01: Fix merged to charm-nova-cloud-controller (stable/wallaby)

#16

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901934
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/968fa1534ea032618ff7cde237604ec9aeae5013
Submitter: "Zuul (22348)"
Branch: stable/wallaby

commit 968fa1534ea032618ff7cde237604ec9aeae5013
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

    Change-Id: I738652373604966b6df079e45a0ad26c83e21688
    Closes-Bug: #2039490
    (cherry picked from commit b915f8e6f81df6a776fc1ad6725207a199440a3b)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-12-01: Fix merged to charm-nova-cloud-controller (stable/victoria)

#17

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901935
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/b453e5b4ec215c0035ee2ad0a98f6e6fcae7f4ca
Submitter: "Zuul (22348)"
Branch: stable/victoria

commit b453e5b4ec215c0035ee2ad0a98f6e6fcae7f4ca
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

    Change-Id: I738652373604966b6df079e45a0ad26c83e21688
    Closes-Bug: #2039490
    (cherry picked from commit b915f8e6f81df6a776fc1ad6725207a199440a3b)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-12-01: Fix merged to charm-nova-cloud-controller (stable/ussuri)

#18

Reviewed: https://review.opendev.org/c/openstack/charm-nova-cloud-controller/+/901936
Committed: https://opendev.org/openstack/charm-nova-cloud-controller/commit/ae6ef76f937b54be3c1c8cab7b027be945bc11e3
Submitter: "Zuul (22348)"
Branch: stable/ussuri

commit ae6ef76f937b54be3c1c8cab7b027be945bc11e3
Author: Felipe Reyes <email address hidden>
Date: Thu Oct 26 17:41:41 2023 -0300

Use wss protocol when SSL enabled

    This patch checks if HTTPS configuration is enabled in Apache to
    determine if the websocket protocol should switch from 'ws' to 'wss' or
    not.

    Change-Id: I738652373604966b6df079e45a0ad26c83e21688
    Closes-Bug: #2039490
    (cherry picked from commit b915f8e6f81df6a776fc1ad6725207a199440a3b)

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.