403 Forbidden during debian install from lf repository

[nstng]

Your Environment

• Version: all
• Affected Component: all components that install debian packages during setup
• Affected Subcomponent: see above
• Deployment Environment: see above

Describe the Issue

When setting up components where the installation of debian packages from the LF reposirory is needed, 403 Forbidden can occur and the setup fails. Has been observed in CI when VMs are setup or docker containers are build, locally and when setting up production environments. It looks like this only happens if a lot of packages are installed by one apt install call. See example logging below:

[1]

install 'magma'' failed: E: Failed to fetch https://jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com/aol-linuxfoundation/filestore/18/18aee15ead305b0aea6dcc01a7fbd877b15ce8a2?X-Artifactory-username=anonymous&X-Artifactory-repositoryKey=magma-packages-prod&X-Artifactory-artifactPath=focal-1.8.0/grpc-dev_1.15.0-3_amd64.deb&X-Artifactory-projectKey=magma&x-jf-traceId=7262d902ea57dfb2&response-content-type=application/x-debian-package&X-Amz-Security-Token=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&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20230113T175332Z&X-Amz-SignedHeaders=host&X-Amz-Expires=60&X-Amz-Credential=ASIASG3IHPL64B5SMMJJ/20230113/us-west-2/s3/aws4_request&X-Amz-Signature=375ba86b7800ba56a0c51c0f1182d16b17a2fae251ee5889a90a057366a9e2a7  403  Forbidden [IP: 52.92.193.57 443]\nE: Failed to fetch [https://jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com/aol-](https://jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com/aol-linuxfoundation/filestore/e0/e0fdd83f07b6741f70067e46ceb9cf90010841c7?X-Artifactory-username=anonymous&X-Artifactory-repositoryKey=magma-packages-prod&X-Artifactory-artifactPath=focal-1.8.0/libfolly-dev_2018.02.26.00-6ubuntu20.04_amd64.deb&X-Artifactory-projectKey=magma&x-jf-traceId=73d32f03db87d599&response-content-type=application/x-debian-package&X-Amz-Security-Token=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&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20230113T175332Z&X-Amz-SignedHeaders=host&X-Amz-Expires=59&X-Amz-Credential=ASIASG3IHPL64B5SMMJJ/20230113/us-west-2/s3/aws4_request&X-Amz-Signature=05af760e2b88800d76e198826ca14a9589cfaa3a32c1a6a0af53fc38ca9fc87d)

To Reproduce

It looks like this is happening when doing apt install in an environment with a low bandwidth. On a system with a sufficient bandwidth it can be reproduced using:

docker run --interactive --cap-add=NET_ADMIN ubuntu:focal <<EOT
apt update
env DEBIAN_FRONTEND=noninteractive apt install -y ca-certificates wondershaper
echo 'deb [trusted=yes] https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci main' > /etc/apt/sources.list.d/magma.list
apt update
wondershaper eth0 50 50
env DEBIAN_FRONTEND=noninteractive apt install -y magma
EOT

Expected behavior

Installing magma packages without issues.

Additional context

Hypothesis: it looks like the tokens in the generated URL have a low lifetime. On a system with a low bandwidth this lifetime can be exceeded.

Workarounds

• Try the build on an environment with a higher bandwidth.
• For setups where apt install can be repeated while keeping the current state (e.g., provisioning a VM) installing can be repeated until all packages are installed successfully. (This does not work for, e.g., docker builds, where a failed RUN is started from scratch for each call).
• Ugly Workaround: Split apt install package_1 package_2 ... package_n into apt install package_1 && apt install package_2 && ... && apt install package_n

[fabiopalumbo]

With regards to the issue, we have reported downloads failing with 403 Forbidden, we have parsed through your instance logs and I found the below errors.

16:02:35.140 artifactory-request.log -1 GET /magma-packages/focal-1.8.0/libfolly-dev_2018.02.26.00-6ubuntu20.04_amd64.deb 302 anonymous Debian APT-HTTP/1.3 (2.0.9) non-interactive Debian

This issue occurs when the bucket URL ( https:///jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com) is not whitelisted in your network or the S3-signed URL expired and failed to download the package.

As a next step, could you please whitelist the S3 bucket URL in your network ( https:///jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com )

Also, please try to download the package from the same client using the below REST call and share the output.
#curl -u: https://server_name.jfrog.io/<PATH_TO_A_FILE> --output some.file -vvv -L

#curl -u: https://jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com/aol-linuxfoundation/filestore/e0/e0fdd83f07b6741f70067e46ceb9cf90010841c7?X-Artifactory-username=anonymous&X-Artifactory-repositoryKey=magma-packages-prod&X-Artifactory-artifactPath=focal-1.8.0/libfolly-dev_2018.02.26.00-6ubuntu20.04_amd64.deb -output libfolly-dev_2018.02.26.00-6ubuntu20.04_amd64.deb -vvv -L

Looking forward to hearing from you.

[nstng]

@fabiopalumbo,
I am unsure what is meant by "whitelist the S3 bucket URL in your network". If the URL would be blocked then I expect that we can not download any package. I can reach the URL, but it returns an access denied (I expect an access denied without any authentication parameters - i.e. all good)

AccessDeniedAccess DeniedC0MGHGH9ZZTQJDC451h56WQJWAlTEJENwZO5h+zVJjNUSAca9bG7iPP5/5M9xDFvFhpev/TMlMDa9xxIVZWJJUyhoyU=

The second curl call is damaged and returns nothing reasonable for me. Even with quotation marks (needed for using URL parameters) around the URL I get errors.

The following curl is downloading the package as expected

curl -u: https://linuxfoundation.jfrog.io/artifactory/magma-packages/focal-1.8.0/libfolly-dev_2018.02.26.00-6ubuntu20.04_amd64.deb --output some.file -vvv -L

But from our analysis we expect downloading a single package to be working. The issue is happening when a couple of packages are installed in a single apt install foo bar ... call on a system with a low bandwidth. I agree with the statement above "or the S3-signed URL expired and failed to download the package" - this is exactly what we assuming is the root cause.

[fabiopalumbo]

Thank you for your patience.
From the last checkup due to network latency, if the client can't reach the S3 bucket within 60 seconds, then the URL will expire which leads to 403, please check and let us know if the request is taking more than 60 seconds.

If the above is correct, we might try increasing the timeout value (i.e signedUrlExpirySeconds) to 240 seconds depending on the time it is taking, by default signedUrlExpirySeconds value is 60 seconds.

For making this change we will need to restart the server for the change to take effect.

[nstng]

Hi @fabiopalumbo,

From the last checkup due to network latency, if the client can't reach the S3 bucket within 60 seconds, then the URL will expire which leads to 403, please check and let us know if the request is taking more than 60 seconds.

We expect this to be the case - based on the analysis above. In my opinion it is reasonable to try this and have a server restart. A maintenance window would be nice so we can interpret expected CI failures and communicate this to end-users.

I will get feedback from the TSC.

[nstng]

I will get feedback from the TSC.

Change and restart scheduled for Feb 15th 7am PT.

Note: 06:45am the issue was reproduced locally by the script above (with a less restricted bandwidth) - check will be done again after the config change

[nstng]

Update from Slack: https://magmacore.slack.com/archives/C01Q1T14YJ2/p1676887747835589?thread_ts=1675887162.599359&cid=C01Q1T14YJ2

---

I still can reproduce the issue. When I do

docker run --interactive --cap-add=NET_ADMIN ubuntu:focal <<EOT
apt update
apt install -y moreutils
env DEBIAN_FRONTEND=noninteractive apt install -y ca-certificates wondershaper
echo 'deb [trusted=yes] https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci main' > /etc/apt/sources.list.d/magma.list
apt update | ts
env DEBIAN_FRONTEND=noninteractive apt install -y magma | ts
EOT

-> i.e., install magma
(Note that my bandwidth is very low - on a system with a sufficient bandwidth one can reduce it artificially with e.g. wondershaper eth0 50 50) Then I can successfully install a couple of dependencies (from the artifactory -> the artifactory is not completely unreachable) and then I get:

...
Feb 20 09:49:22 Need to get 427 MB of archives.
Feb 20 09:49:22 After this operation, 1281 MB of additional disk space will be used.
...
Feb 20 09:51:21 Get:22 https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci/main amd64 magma-sctpd amd64 1.9.0-1676885777-211bfcf0 [7570 kB]
Feb 20 09:51:28 Ign:24 https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci/main amd64 oai-freediameter amd64 0.0.2-1
Feb 20 09:51:28 Err:24 https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci/main amd64 oai-freediameter amd64 0.0.2-1
Feb 20 09:51:28   403  Forbidden [IP: 52.218.250.3 443]
Feb 20 09:51:28 Err:26 https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci/main amd64 magma-libfluid amd64 0.1.0.7-1
Feb 20 09:51:28   403  Forbidden [IP: 52.218.250.3 443]
Feb 20 09:51:28 Err:27 https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci/main amd64 libopenvswitch amd64 2.15.4-10-magma
Feb 20 09:51:28   403  Forbidden [IP: 52.218.250.3 443]
Feb 20 09:51:28 Err:31 https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci/main amd64 openvswitch-switch amd64 2.15.4-10-magma
Feb 20 09:51:28   403  Forbidden [IP: 52.218.250.3 443]
Feb 20 09:51:28 Err:32 https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci/main amd64 openvswitch-datapath-dkms all 2.15.4-10-magma
Feb 20 09:51:28   403  Forbidden [IP: 52.218.250.3 443]
Feb 20 09:51:28 Err:33 https://linuxfoundation.jfrog.io/artifactory/magma-packages-test focal-ci/main amd64 magma amd64 1.9.0-1676885777-211bfcf0
Feb 20 09:51:28   403  Forbidden [IP: 52.218.250.3 443]
...

and at the end summary

...
Failed to fetch https://jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com/aol-linuxfoundation/filestore/74/749528267c208af1cbbdc663e0b33b67b9bf13f9?X-Artifactory-username=anonymous&X-Artifactory-repositoryKey=magma-packages-test&X-Artifactory-artifactPath=pool/focal/magma-libfluid_0.1.0.7-1_amd64.deb&X-Artifactory-projectKey=magma&x-jf-traceId=dd0213e3f761391c&response-content-type=application/x-debian-package&X-Amz-Security-Token=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&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20230220T094924Z&X-Amz-SignedHeaders=host&X-Amz-Expires=120&X-Amz-Credential=ASIASG3IHPL6UB6HWHFH/20230220/us-west-2/s3/aws4_request&X-Amz-Signature=b2a45789ef536202e6cf4c5fb34fe347ed95efb263530d16da57594ddef44b91  403  Forbidden [IP: 52.218.250.3 443]
...

If I click on the link, I see

AccessDeniedRequest has expired1202023-02-20T09:51:24Z2023-02-20T09:53:25Z9MWE3VSM67N0W3ZElHDZhNrIvW+hDp8gNZRB2CHIBKQiBtrR/F9a/7yFoGNKIo1eWifdnUSOMORYw4ZRw89YWJRHthQ=

This is:
libfluid is tried to be fetched at Feb 20 09:51:28
timestamps I see in the denied requests are 202023-02-20T09:51:24Z2023-02-20T09:53:25Z
My interpretation is:
This is, I do not see when the token was issued
I do see that the get-phase starts at Feb 20 09:49:22 and the last successful fetch was at Feb 20 09:51:21 followed by the first failure at Feb 20 09:51:28
This might indicate a ~2Min token lifetime

[arminghani]

One observation: I'm still getting this error when I have Spain's IP address but when I switch to the other IP like Germany it doesn't give the error. Moreover, When I'm in Spain IP address the packages that fail due to this error are not similar everytime.

[AtulSmahale]

I am currently trying to install AGW v1.6.1 in a bare metal system, but I am facing the following error.

E: Failed to fetch https://jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com/aol-linuxfoundation/filestore/51/5163a806e4160958fa4c45dc903f81738e42b5d6?X-Artifactory-username=anonymous&X-Artifactory-repoType=local&X-Artifactory-repositoryKey=magma-packages-prod&X-Artifactory-packageType=debian&X-Artifactory-artifactPath=focal-1.6.1/openvswitch-switch_2.15.2-6_amd64.deb&X-Artifactory-projectKey=magma&x-jf-traceId=c32a71974cddbe6f&response-content-type=application/x-debian-package&X-Amz-Security-Token=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&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240506T063030Z&X-Amz-SignedHeaders=host&X-Amz-Expires=120&X-Amz-Credential=ASIASG3IHPL6U4SQQ76Y/20240506/us-west-2/s3/aws4_request&X-Amz-Signature=914099005b728b92d174a2cd826cb6ef73b793039b0f87263a597fd502d6b911 403 Forbidden [IP: 52.92.242.17 443]
E: Failed to fetch https://jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com/aol-linuxfoundation/filestore/ab/ab257458ceb5e8d8aa22627cf682d142ba2ebe03?X-Artifactory-username=anonymous&X-Artifactory-repoType=local&X-Artifactory-repositoryKey=magma-packages-prod&X-Artifactory-packageType=debian&X-Artifactory-artifactPath=focal-1.6.1/openvswitch-datapath-dkms_2.15.2-6_all.deb&X-Artifactory-projectKey=magma&x-jf-traceId=a05002cc165141a9&response-content-type=application/x-debian-package&X-Amz-Security-Token=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&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240506T063030Z&X-Amz-SignedHeaders=host&X-Amz-Expires=120&X-Amz-Credential=ASIASG3IHPL6RD33LLDZ/20240506/us-west-2/s3/aws4_request&X-Amz-Signature=16871c566d16c3fa1236aa94b4f16d30075dc6e1023f9d01e9f714474c665359 403 Forbidden [IP: 52.92.242.17 443]
E: Failed to fetch https://jfrog-prod-usw2-shared-oregon-main.s3.amazonaws.com/aol-linuxfoundation/filestore/82/8251ea3d2103493305b58ee2200de4e9b880da29?X-Artifactory-username=anonymous&X-Artifactory-repoType=local&X-Artifactory-repositoryKey=magma-packages-prod&X-Artifactory-packageType=debian&X-Artifactory-artifactPath=focal-1.6.1/magma_1.6.1-1636529012-5d886707_amd64.deb&X-Artifactory-projectKey=magma&x-jf-traceId=21c48cdd6267676c&response-content-type=application/x-debian-package&X-Amz-Security-Token=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&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240506T063030Z&X-Amz-SignedHeaders=host&X-Amz-Expires=120&X-Amz-Credential=ASIASG3IHPL6RD33LLDZ/20240506/us-west-2/s3/aws4_request&X-Amz-Signature=09a3195ef678323c6270691b26cd59d015b055b3b39a48398a722cc3292f0160 403 Forbidden [IP: 52.92.242.17 443]
E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?