cks: use HttpsURLConnection for checking api server #4639
Conversation
Signed-off-by: Abhishek Kumar <abhishek.mrt22@gmail.com>
|
@blueorangutan package |
|
@shwstppr a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress. |
|
Packaging result: ✔centos7 ✖centos8 ✔debian. JID-2629 |
|
@blueorangutan test |
|
@rhtyd a Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests |
| @@ -218,7 +221,10 @@ public static boolean isKubernetesClusterServerRunning(final KubernetesCluster k | |||
| boolean k8sApiServerSetup = false; | |||
| while (System.currentTimeMillis() < timeoutTime) { | |||
| try { | |||
| String versionOutput = IOUtils.toString(new URL(String.format("https://%s:%d/version", ipAddress, port)), StringUtils.getPreferredCharset()); | |||
| URL url = new URL(String.format("https://%s:%d/version", ipAddress, port)); | |||
| HttpsURLConnection con = (HttpsURLConnection)url.openConnection(); | |||
There was a problem hiding this comment.
should we configure it to ignore ssl cert validation?
There was a problem hiding this comment.
and get more static analysis reports as issues?
Signed-off-by: Abhishek Kumar <abhishek.mrt22@gmail.com>
|
@blueorangutan package |
|
@shwstppr a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress. |
|
Packaging result: ✔centos7 ✖centos8 ✔debian. JID-2637 |
If I want to test this, how do I do so? You will have to give instructions to obtain/install the packages in my environment. |
|
Trillian test result (tid-3471)
|
@nxsbi do you want to test the fix in 4.15 or 4.14 or it doesn't matter? |
@shwstppr I want to test in 4.15. |
|
okay @nxsbi, I'll share the 4.15 packages with the fix soon |
|
@nxsbi please find build packages here, http://download.cloudstack.org/testing/is-4637/ |
|
Trillian test result (tid-3482)
|
|
Tried to do a quick deployment with the new packages --
NOTE -- I can login into the Master node via command line with SSH Key, and I can see that the cluster is actually functional, however it does nto report so in the UI (I ssh using the user Core, and then sudo su to root). IF I run the commands as core, I get access denied, as all files are owned by root with user/group as no access.
|
|
@shwstppr - Tested inside Master node, with curl just to see if the certificate issue persists -- Yes it does
|
|
@nxsbi can you please share output of, |
Here it is. I have cleansed the log for IP, passwords, Keys etc. so you may see XXXXX.. For IP I only changed the management LAN IPs and external IPs. You will see them as 192.168.100.XXX where XXX is the actual last bit of correct IP or as 172.100.100.100 |
|
@shwstppr
|
|
@nxsbi service is not being able to connect to SSH with VR public IP and forwarded port (must be 2222), failing here Are you able to manually do SSH from the management server? Firewall and port forwarding rules must be automatically provisioned by the service in the cluster's network. |
|
@shwstppr a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress. |
|
Packaging result: ✔centos7 ✔centos8 ✔debian. JID-2803 |
|
LGTM |
|
@shwstppr is this good to go? |
|
@ |
|
@weizhouapache possible for you to test this and see if this fixes curl -L issue you highlighted in #4146? |
|
@blueorangutan package |
|
@shwstppr a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress. |
|
Packaging result: ✖centos7 ✖centos8 ✔debian. JID-2833 |
|
@blueorangutan package |
|
@rhtyd a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress. |
|
Packaging result: ✔centos7 ✔centos8 ✔debian. JID-2839 |
|
@blueorangutan test |
|
@rhtyd a Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests |
|
Trillian test result (tid-3625)
|
Description
Frobable fix for #4146 , #4637
Types of changes
Feature/Enhancement Scale or Bug Severity
Feature/Enhancement Scale
Bug Severity
Screenshots (if appropriate):
How Has This Been Tested?