Page MenuHomePhabricator
Create Task
Maniphest T65322

ec2id puppet fact can yield some arbitrary HTML
Closed, ResolvedPublic
Actions

Description

I found out deployment-salt.eqiad.wmflabs puppet master got broken. Looking at ./puppet.conf and ./puppet.conf.d/10-self.conf I noticed the certname = fields had some HTML such as:

<html>
<title>error 500</title>
blah some error message

Which ... break puppet!

Our factor in modules/base/lib/facter/ec2id.rb has no error handling:

Facter::Util::Resolution.exec("curl http://169.254.169.254/1.0/meta-data/instance-id 2> /dev/null").chomp

Whenever the executed commands has an error it should bails out. Hopefully curl exit with non 0 whenever it receives a 500.

Version: unspecified
Severity: normal

Details

Reference
bz63322

Event Timeline

bzimport raised the priority of this task from to Needs Triage.Nov 22 2014, 3:01 AM
bzimport added a project: Cloud-VPS.
bzimport set Reference to bz63322.
bzimport added a subscriber: Unknown Object (MLST).
hashar created this task.Mar 31 2014, 7:30 PM
gerritbot added a comment.Apr 2 2014, 6:56 AM

Change 123168 had a related patch set uploaded by Hashar:
Labs: prevent ec2id fact from returing errors

https://gerrit.wikimedia.org/r/123168

gerritbot added a comment.Apr 2 2014, 1:28 PM

Change 123168 merged by Andrew Bogott:
Labs: prevent ec2id fact from returing errors

https://gerrit.wikimedia.org/r/123168

scfc added a comment.Apr 2 2014, 2:15 PM

Appears to have been fixed (cf. also Gerrit change #123221).

Aklapper added a project: Cloud-Services.Apr 29 2015, 12:20 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL