remote_file checksum issue with client 12.6.0+ #4742
Comments
|
debug run is just an empty run_list |
|
the checksum on the resource looks accurate: % shasum -a 256 collectd-5.4.1.tar.gz i'm not sure how the checksum on the new_resource.checksum is getting set. since 12.4.0 we've only saved the target checksum in the final_checksum on the resource and not ever mutated new_resource.checksum: |
|
found where the checksum is getting set, so that is accurate: |
|
#3991 did change between 12.5.1 and 12.6.0 |
|
I fixed the debug output gist with a debug run with correct runlist. Other thing I noticed is that even when I wrap this cookbook and change the file version and checksum to a newer version of collectd tar ball it throws the same error but with the same checksum so I think something is getting stored wrong or wrong file is getting checked that the computed sum doesn't change even if the file has. 172.21.26.171 Error executing action 172.21.26.171 Error executing action |
|
cool, i was trying to figure out how to ask you for information like that. it'd be nice to know what is in that tempfile but its difficult to check the tempfile since it is deleted automatically when the remote_file provider gets unwound by the stacktrace. |
|
Uh, looks like this isn't a bug in the checksum code: [2016-03-23T14:21:52-04:00] DEBUG: ---- HTTP Response Body ----
[2016-03-23T14:21:52-04:00] DEBUG: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="http://collectd.org/temp/ContactMe.chef">here</a>.</p>
<hr>
<address>Apache/2.2.22 (Debian) Server at collectd.org Port 80</address>
</body></html>
[2016-03-23T14:21:52-04:00] DEBUG: ---- End HTTP Response Body -----and that URL: Looks like we correctly blocked you from deploying a file that had been MITM'd (lol) |
|
and that repo has been deleted, and that redirect has likely been in place for a very long time. i think what changed in 12.6.0 is that we fixed the User-Agent for chef requests which had been incorrectly telling the world that it was knife and went back to correctly telling the world it was chef-client... |
|
yeah #4074 was mitigated by 0103928#diff-19a9dc2400e2a14914853754a8083767 |
|
ok, yeah looks like that is the issue after downloading the file and putting it on a local file server and changing download url it is working as expected. Sorry for the troubles. |
|
I cut collectd/collectd#1632 to see if we can't work through the issues with collectd.org folks again... |
|
cool thanks. |
Description
using remote_file resource with checksum on chef-clients 12.6.0 and higher always gets the same checksum ID even if you change files and resource fails to download files.
Chef Version
12.6.0 through 12.8.1. 12.5.1 and below are working as expected.
Platform Version
CentOS 6.7 x86_64 linux.
Replication Case
bootstrap a server with 12.5.1 client and the collectd-ng cookbook in the runlist and everything works fine. Then bootstrap another node with 12.6.0 or higher with same runlist and cookbook fails on the remote_file download due to checksum error.
Client Output
client run
https://gist.github.com/Stromweld/8b78349757f5df1f9eee
debug run
https://gist.github.com/Stromweld/0d4fb07593f1fe051a74
Stacktrace
https://gist.github.com/Stromweld/3267621bd0f7f96fdbaa
The text was updated successfully, but these errors were encountered: