keystone under apache can't handle request chunking

If I'm reading the information on the google groups archive for mod_wsgi, this is an issue with mod_wsgi and not something that can be fixed in Keystone directly. This is related to the 3.X tree for mod_wsgi, which *should* be fixed in the 4.X series. It appears that Ubuntu 14.04 (Trusty) has the 3.4 release of mod_wsgi

See: https://groups.google.com/forum/#!topic/modwsgi/Rk-cXTGSCHQ

This is going to take some extra work to determine if anything can be done prior to using a 4.X release of mod_wsgi.

Two issues here.

1. Has Keystone even been modified to violate the WSGI specification so as to allow chunked request content? Simply enabling that mod_wsgi option will not help if your application hasn't been modified so as to ignore the WSGI specification and try and work anyway. For portability to different WSGI servers, you shouldn't be violating the WSGI specification.

2. That option will not work with mod_wsgi daemon mode. That is still the case even with latest mod_wsgi versions.

Please note that prior moving KeyStone to work by default in apache, working in chunked mode was supported.
So if you configure devstack to not use apache (KEYSTONE_USE_MOD_WSGI=False in local.conf) chunking works.

This may create an issue to code who works with the KeyStone API in chunking model and used to work prior the change to work by default with apache.

@graham,

We have not modified keystone to violate wsgi spec and we recommend daemon mode. We should not be violating the wsgi spec. I want to support other wsgi servers and deployment options (not just eventlet and mod_wsgi). So I don't think we should break portability.

@samuel
If eventlet allows chunked and it violates the spec, I would argue it was a bug in eventlet and should either :

a) be documented that chunked only works under eventlet and that it is not guaranteed to continue working as it is in violation of the wsgi spec

B) disable chunked support even in eventlet with documentation that it violates the spec.

I am inclined to say the right answer is option (a).

David: What's the use case for attempting chunking in the first place?

It is a long story. The version of jersey/apachehttpclient4 we used in our OpenStack Java libraries always used chunking. It always worked with OpenStack until Keystone moved to using apache as the default in devstack. (It is the only project that uses apache as default, other than horizon.)

Of course, our luck is that there is a bug in the version of jersey/apachehttpclient4 we were using that didn't allow turning off chunking. We had to upgrade jersey and turn off chunking for requests not needing it. (We chose to only use chunking on application/octet-stream requests such as uploding an image.) To upgrade jersey we had to (re)shade asm.

All that from a seemingly small, innocuous config change. :)

Adding the meeting-topic tag to this discuss in #openstack-meeting if we can improve the documentation before Juno RC1.

Discussed this in the Keystone weekly meeting and we've decided that we should target a documentation fix for Juno RC1. The proper fix belongs upstream in Apache (cc. morganfainberg).

There is no proper fix, the wsgi spec pretty much precludes the use of request chunking short of violating the spec. In short, under apache request chunking wont be supported as outlined in my previous comment.

Fix proposed to branch: master
Review: https://review.openstack.org/120274

Reviewed: https://review.openstack.org/120274
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=05c01e26d1e62298489ba3894576faf3c352e2c9
Submitter: Jenkins
Branch: master

commit 05c01e26d1e62298489ba3894576faf3c352e2c9
Author: Morgan Fainberg <email address hidden>
Date: Tue Sep 9 15:44:17 2014 -0700

    Document mod_wsgi doesn't support chunked encoding

    Document in logical places that keystone under mod_wsgi will not
    support chunked encoding.

    Change-Id: I957059be560fa65e2f0d5166d9490b2c7bab9f17
    Closes-Bug: #1346211