tempest

Tests fail because auth token is too long

Bug #1326451 reported by Alex Gaynor
10
This bug affects 2 people
Affects Status Importance Assigned to Milestone
tempest
Invalid
Undecided
Unassigned

Bug Description

This failure looks like:

2014-06-04 14:45:28.784 | Captured traceback:
2014-06-04 14:45:28.784 | ~~~~~~~~~~~~~~~~~~~
2014-06-04 14:45:28.784 | Traceback (most recent call last):
2014-06-04 14:45:28.784 | File "tempest/scenario/test_server_advanced_ops.py", line 40, in setUpClass
2014-06-04 14:45:28.785 | super(TestServerAdvancedOps, cls).setUpClass()
2014-06-04 14:45:28.785 | File "tempest/scenario/manager.py", line 71, in setUpClass
2014-06-04 14:45:28.785 | network_resources=cls.network_resources)
2014-06-04 14:45:28.785 | File "tempest/common/isolated_creds.py", line 41, in __init__
2014-06-04 14:45:28.785 | self._get_admin_clients())
2014-06-04 14:45:28.785 | File "tempest/common/isolated_creds.py", line 54, in _get_admin_clients
2014-06-04 14:45:28.785 | auth.get_default_credentials('identity_admin')
2014-06-04 14:45:28.785 | File "tempest/clients.py", line 474, in __init__
2014-06-04 14:45:28.786 | credentials)
2014-06-04 14:45:28.786 | File "tempest/clients.py", line 692, in _get_data_processing_client
2014-06-04 14:45:28.786 | auth_url=auth_url)
2014-06-04 14:45:28.786 | File "/opt/stack/new/python-saharaclient/saharaclient/client.py", line 45, in Client
2014-06-04 14:45:28.786 | return client_class(*args, **kwargs)
2014-06-04 14:45:28.786 | File "/opt/stack/new/python-saharaclient/saharaclient/api/client.py", line 55, in __init__
2014-06-04 14:45:28.786 | project_name=project_name)
2014-06-04 14:45:28.786 | File "/opt/stack/new/python-saharaclient/saharaclient/api/client.py", line 98, in get_keystone_client
2014-06-04 14:45:28.786 | self.keystone_client.authenticate()
2014-06-04 14:45:28.786 | File "/opt/stack/new/python-keystoneclient/keystoneclient/utils.py", line 324, in inner
2014-06-04 14:45:28.786 | return func(*args, **kwargs)
2014-06-04 14:45:28.787 | File "/opt/stack/new/python-keystoneclient/keystoneclient/httpclient.py", line 392, in authenticate
2014-06-04 14:45:28.787 | resp = self.get_raw_token_from_identity_service(**kwargs)
2014-06-04 14:45:28.787 | File "/opt/stack/new/python-keystoneclient/keystoneclient/v2_0/client.py", line 181, in get_raw_token_from_identity_service
2014-06-04 14:45:28.787 | "%s" % e)
2014-06-04 14:45:28.787 | AuthorizationFailure: Authorization Failed: Request attribute token must be less than or equal to 8192. The server could not comply with the request because the attribute size is invalid (too large). The client is assumed to be in error. (HTTP 400)

A full log is available at: http://logs.openstack.org/74/97074/2/gate/gate-tempest-dsvm-marconi/35a8b37/console.html

Amit Prakash Pandey (amitpp23)
Changed in tempest:
assignee: nobody → Amit Prakash Pandey (amitpp23)
status: New → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to tempest (master)

Fix proposed to branch: master
Review: https://review.openstack.org/98092

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Change abandoned on tempest (master)

Change abandoned by Amit Prakash Pandey (<email address hidden>) on branch: master
Review: https://review.openstack.org/98092
Reason: doesn't seem to work

Om Prakash Pandey (pandeyop)
Changed in tempest:
status: In Progress → Confirmed
Revision history for this message
Amit Prakash Pandey (amitpp23) wrote :

king_kilr : I am not able to open full log. Can you provide some more details of tests that failed.

Amit Prakash Pandey (amitpp23)
Changed in tempest:
assignee: Amit Prakash Pandey (amitpp23) → nobody
Revision history for this message
Udi Kalifon (ukalifon) wrote :

Is this happening when keystone is running under Apache?
Apache has a hard-coded limitation of 8192 bytes on header sizes, and the token can get well over 10K... I haven't tried to deal with this issue in tempest, but the general direction should be to add "?nocatalog" to the auth request.

Revision history for this message
Andrea Frittoli (andrea-frittoli) wrote :

This bug is 2y+ old, and abandoned by the original assignee. Marking as invalid.

Changed in tempest:
status: Confirmed → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.