[2.4-beta3] wildcard syntax is not supported by no-proxy/juju-no-proxy
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical Juju |
Triaged
|
Low
|
Unassigned |
Bug Description
Looks like *.domain.com[:port] syntax is no supported by no-proxy (CIDR syntax is supported judging by other tests I performed):
cat model-config.yaml
logging-config: '<root>
#no-proxy: 'localhost,
#http-proxy: 'http://
#https-proxy: 'http://
no-proxy: ''
http-proxy: ''
https-proxy: ''
juju-no-proxy: 'localhost,
juju-http-proxy: 'http://
juju-https-proxy: 'http://
apt-http-proxy: 'http://
apt-https-proxy: 'http://
juju model-config -m controller model-config.yaml
dd6ca7e2-
dd6ca7e2-
32041e72-
ubuntu@proxytest:~$ juju model-config -m controller | grep proxy
apt-ftp-proxy default ""
apt-http-proxy model http://
apt-https-proxy model http://
apt-no-proxy default ""
ftp-proxy default ""
http-proxy default ""
https-proxy default ""
juju-ftp-proxy default ""
juju-http-proxy model http://
juju-https-proxy model http://
juju-no-proxy model localhost,
logging-config model <root>=
no-proxy model ""
proxy-ssh default false
With this model-config I still get requests sent out to a proxy.
1527286866.141 285 10.10.101.3 TCP_TUNNEL/200 3529 CONNECT streams.
1527286866.431 289 10.10.101.3 TCP_TUNNEL/200 6692 CONNECT streams.
1527286866.929 150 10.10.101.3 TCP_MISS/404 507 GET http://
1527286866.994 64 10.10.101.3 TCP_MISS/200 2894 GET http://
1527286867.061 65 10.10.101.3 TCP_MISS/404 507 GET http://
1527286867.200 137 10.10.101.3 TCP_MISS/200 21719 GET http://
1527286869.411 5170 10.10.101.3 TCP_TUNNEL/200 52275 CONNECT api.jujucharms.
Example implementation of wildcard support:
https:/
https:/
Changed in juju: | |
status: | New → Triaged |
importance: | Undecided → Low |
tags: | added: go1.11 proxy |
* is not supported (as it wasn't supported by the underlying Go proxy code).
However
"bar.com" matches foo.bar.com, as does ".bar.com"
So while we don't allow "*.bar.com" it can be expressed as just "bar.com"
and ".bar.com".
On Sat, May 26, 2018 at 2:43 AM, Dmitrii Shcherbakov <
<email address hidden>> wrote:
> Public bug reported: =ERROR; unit=TRACE; juju.worker. proxyupdater= TRACE' 127.0.0. 1,10.10. 101.0/24, 10.10.10. 0/24' 10.10.10. 88:3128' 10.10.10. 88:3128' 127.0.0. 1,10.10. 101.0/24, 10.10.10. 0/24,*. com,*.ubuntu. com' 10.10.10. 88:3128' 10.10.10. 88:3128' 10.10.10. 88:3128' 10.10.10. 88:3128' 1304-456b- 8d0a-d2eaa3993f 53: machine-0 2018-05-25 22:17:54 DEBUG proxyupdater proxyupdater.go:165 new legacy proxy settings Http:"" , Https:"", Ftp:"", NoProxy: "10.10. 101.3", 1304-456b- 8d0a-d2eaa3993f 53: machine-0 2018-05-25 22:17:54 DEBUG proxyupdater proxyupdater.go:186 new apt proxy settings Http:"http:// 10.10.10. 88:3128", Https:" 10.10.10. 88:3128", Ftp:"", NoProxy: "*.canonical. com,*.ubuntu. com, 0/24,10. 10.101. 0/24,127. 0.0.1,localhost ", AutoNoProxy:""} 121e-4e4c- 89f7-7a35918f4a 4c: unit-ubuntu-0 2018-05-25 22:18:13 0.juju- log server.go:284 Reactive main running for hook 10.10.10. 88:3128 10.10.10. 88:3128 10.10.10. 88:3128 10.10.10. 88:3128 127.0.0. 1,10.10. 101. 10.10.0/ 24,*.canonical. com,*.ubuntu. com ERROR;unit= TRACE;juju. proxyupdater= TRACE canonical. com:443 - HIER_DIRECT/ 91.189. 88.141 - canonical. com:443 - HIER_DIRECT/ 91.189. 88.141 - cloud-images. ubuntu. com/releases/ streams/ v1/index2. sjson -...
>
> Looks like *.domain.com[:port] syntax is no supported by no-proxy (CIDR
> syntax is supported judging by other tests I performed):
>
> cat model-config.yaml
> logging-config: '<root>
> #no-proxy: 'localhost,
> #http-proxy: 'http://
> #https-proxy: 'http://
> no-proxy: ''
> http-proxy: ''
> https-proxy: ''
> juju-no-proxy: 'localhost,
> canonical.
> juju-http-proxy: 'http://
> juju-https-proxy: 'http://
> apt-http-proxy: 'http://
> apt-https-proxy: 'http://
>
> juju model-config -m controller model-config.yaml
>
> dd6ca7e2-
> juju.worker.
> proxy.Settings{
> AutoNoProxy:""}
> dd6ca7e2-
> juju.worker.
> proxy.Settings{
> http://
> 10.10.10.
> 32041e72-
> INFO unit.ubuntu/
> update-status
>
> ubuntu@proxytest:~$ juju model-config -m controller | grep proxy
> apt-ftp-proxy default ""
> apt-http-proxy model http://
> apt-https-proxy model http://
> apt-no-proxy default ""
> ftp-proxy default ""
> http-proxy default ""
> https-proxy default ""
> juju-ftp-proxy default ""
> juju-http-proxy model http://
> juju-https-proxy model http://
> juju-no-proxy model localhost,
> 0/24,10.
> logging-config model <root>=
> worker.
> no-proxy model ""
> proxy-ssh default false
>
> With this model-config I still get requests sent out to a proxy.
>
> 1527286866.141 285 10.10.101.3 TCP_TUNNEL/200 3529 CONNECT
> streams.
> 1527286866.431 289 10.10.101.3 TCP_TUNNEL/200 6692 CONNECT
> streams.
> 1527286866.929 150 10.10.101.3 TCP_MISS/404 507 GET
> http://