profile
viewpoint

issue commentliquibase/liquibase-hibernate

liquibase-hibernate5 V3.6 wrongly returning "HIBERNATE" as defaultCatalog and SchemaName

I'm having this issue too. It's open since 2017 any workaround???

yogeshmoodoo

comment created time in 21 days

issue openedroidrage/redis-session-store

Not working with rack 2.0.8

I've updated to rack 2.0.8 because of CVE-2019-16782 but my application has problems and raise an error with that version of rack when accessing sidekiq interface.

Here's the involved rack commit https://github.com/rack/rack/commit/7fecaee81f59926b6e1913511c90650e76673b38

And I get an error coming from this line that calls this line

created time in a month

issue openedkylemanna/docker-openvpn

Having issues when running on kubernetes

I have a working configuration for this image initially generated with this configuration command:

ovpn_genconfig -u tcp://old.host -z -N -D -s 10.82.171.0/24 -p 'route 192.168.5.0 255.255.255.0

Everything was working on plain docker (actually with rancher1 as orchestrator) and when I connect to vpn from outside I'm able to ping and access any service in 192.168.5.0/24 which is the main purpose of having this VPN.

Now I'm moving everything to kubernetes (plus rancher2) and I migrated old volume to a kubernetes deployment with the same specs as before. I've just changed VPN subnet to be able to have both images running in parallel:

ovpn_genconfig -u tcp://new.host -z -N -D -s 172.16.33.0/24 -p 'route 192.168.5.0 255.255.255.0'

I'd expect everything works as before, however I'm not able to interact with 192.168.5.0/24 network anymore.

I spent a lot of time in debugging this but I wasn't able to make it working. I compared line by line client output and it's identical (except for the networks used), so the issue must be in server configuration.

Here's server log in the old image (working)

15/11/2019 17:24:34RTNETLINK answers: Operation not permitted
15/11/2019 17:24:34RTNETLINK answers: Operation not permitted
15/11/2019 17:24:34RTNETLINK answers: Operation not permitted
15/11/2019 17:24:36Enabling IPv6 Forwarding
15/11/2019 17:24:36sysctl: error setting key 'net.ipv6.conf.default.forwarding': Read-only file system
15/11/2019 17:24:36Failed to enable IPv6 Forwarding default
15/11/2019 17:24:36Failed to enable IPv6 Forwarding
15/11/2019 17:24:36sysctl: error setting key 'net.ipv6.conf.all.forwarding': Read-only file system
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 OpenVPN 2.3.7 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jul 10 2015
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 library versions: OpenSSL 1.0.2e 3 Dec 2015, LZO 2.09
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 Diffie-Hellman initialized with 2048 bit key
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 Control Channel Authentication: using '/etc/openvpn/pki/ta.key' as a OpenVPN static key file
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 Socket Buffers: R=[87380->131072] S=[16384->131072]
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 ROUTE_GATEWAY 192.168.5.1/255.255.255.0 IFACE=eth0 HWADDR=66:32:30:39:36:37
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 TUN/TAP device tun0 opened
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 TUN/TAP TX queue length set to 100
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 /sbin/ip link set dev tun0 up mtu 1500
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 /sbin/ip addr add dev tun0 local 10.82.171.1 peer 10.82.171.2
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 /sbin/ip route add 192.168.1.0/24 via 10.82.171.2
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 /sbin/ip route add 10.82.171.0/24 via 10.82.171.2
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 GID set to nogroup
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 UID set to nobody
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 Listening for incoming TCP connection on [undef]
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 TCPv4_SERVER link local (bound): [undef]
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 TCPv4_SERVER link remote: [undef]
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 MULTI: multi_init called, r=256 v=256
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 IFCONFIG POOL: base=10.82.171.4 size=62, ipv6=0
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 MULTI: TCP INIT maxclients=1024 maxevents=1028
15/11/2019 17:24:36Fri Nov 15 16:24:36 2019 Initialization Sequence Completed

And here's the debug log of the new image

+ set -e 
+ cd /etc/openvpn 
+ USER_ARGS=("${@}") 
+ ARGS=() 
+ addArg --config /etc/openvpn/openvpn.conf 
+ local arg=--config 
+ '[' 2 -ge 1 ']' 
+ local val=/etc/openvpn/openvpn.conf 
+ hasArg --config 
+ local element 
+ return 1 
+ ARGS+=("${arg}") 
+ '[' 2 -ge 1 ']' 
+ ARGS+=("${val}") 
+ source /etc/openvpn/ovpn_env.sh 
++ declare -x OVPN_AUTH= 
++ declare -x OVPN_CIPHER= 
++ declare -x OVPN_CLIENT_TO_CLIENT= 
++ declare -x OVPN_CN=vpn.sportcare.tech 
++ declare -x OVPN_COMP_LZO=1 
++ declare -x OVPN_DEFROUTE=0 
++ declare -x OVPN_DEVICE=tun 
++ declare -x OVPN_DEVICEN=0 
++ declare -x OVPN_DISABLE_PUSH_BLOCK_DNS=0 
++ declare -x OVPN_DNS=0 
++ OVPN_DNS_SERVERS=([0]="8.8.8.8" [1]="8.8.4.4") 
++ declare -x OVPN_DNS_SERVERS 
++ declare -x OVPN_ENV=/etc/openvpn/ovpn_env.sh 
++ OVPN_EXTRA_CLIENT_CONFIG=() 
++ declare -x OVPN_EXTRA_CLIENT_CONFIG 
++ OVPN_EXTRA_SERVER_CONFIG=() 
++ declare -x OVPN_EXTRA_SERVER_CONFIG 
++ declare -x OVPN_FRAGMENT= 
++ declare -x 'OVPN_KEEPALIVE=10 60' 
++ declare -x OVPN_MTU= 
++ declare -x OVPN_NAT=1 
++ declare -x OVPN_PORT=1194 
++ declare -x OVPN_PROTO=tcp 
++ OVPN_PUSH=([0]="route 192.168.5.0 255.255.255.0" [1]="route 192.168.5.0 255.255.255.0") 
++ declare -x OVPN_PUSH 
++ OVPN_ROUTES=([0]="192.168.1.0/24") 
++ declare -x OVPN_ROUTES 
++ declare -x OVPN_SERVER=172.16.33.0/24 
++ declare -x OVPN_SERVER_URL=tcp://vpn.sportcare.tech 
++ declare -x OVPN_TLS_CIPHER= 
+ mkdir -p /dev/net 
+ '[' '!' -c /dev/net/tun ']' 
+ mknod /dev/net/tun c 10 200 
+ '[' -d /etc/openvpn/ccd ']' 
+ addArg --client-config-dir /etc/openvpn/ccd 
+ local arg=--client-config-dir 
+ '[' 2 -ge 1 ']' 
+ local val=/etc/openvpn/ccd 
+ hasArg --client-config-dir 
+ local element 
+ return 1 
+ ARGS+=("${arg}") 
+ '[' 2 -ge 1 ']' 
+ ARGS+=("${val}") 
+ '[' -z '' ']' 
+ OVPN_NATDEVICE=eth0 
+ '[' 0 '!=' 0 ']' 
+ '[' 1 == 1 ']' 
+ setupIptablesAndRouting 
+ iptables -t nat -C POSTROUTING -s 172.16.33.0/24 -o eth0 -j MASQUERADE 
iptables: No chain/target/match by that name. 
+ iptables -t nat -A POSTROUTING -s 172.16.33.0/24 -o eth0 -j MASQUERADE 
+ for i in "${OVPN_ROUTES[@]}" 
+ iptables -t nat -C POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE 
iptables: No chain/target/match by that name. 
+ iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE 
+ '[' /etc/openvpn/pki/crl.pem -nt /etc/openvpn/crl.pem ']' 
+ '[' -r /etc/openvpn/crl.pem ']' 
+ addArg --crl-verify /etc/openvpn/crl.pem 
+ local arg=--crl-verify 
+ '[' 2 -ge 1 ']' 
+ local val=/etc/openvpn/crl.pem 
+ hasArg --crl-verify 
+ local element 
+ return 1 
+ ARGS+=("${arg}") 
+ '[' 2 -ge 1 ']' 
+ ARGS+=("${val}") 
+ ip -6 route show default 
+ '[' 0 = 0 ']' 
+ echo 'Enabling IPv6 Forwarding' 
Enabling IPv6 Forwarding 
+ sysctl -w net.ipv6.conf.all.disable_ipv6=0 
sysctl: error setting key 'net.ipv6.conf.all.disable_ipv6': Read-only file system 
+ echo 'Failed to enable IPv6 support' 
Failed to enable IPv6 support 
+ sysctl -w net.ipv6.conf.default.forwarding=1 
sysctl: error setting key 'net.ipv6.conf.default.forwarding': Read-only file system 
+ echo 'Failed to enable IPv6 Forwarding default' 
Failed to enable IPv6 Forwarding default 
+ sysctl -w net.ipv6.conf.all.forwarding=1 
sysctl: error setting key 'net.ipv6.conf.all.forwarding': Read-only file system 
+ echo 'Failed to enable IPv6 Forwarding' 
Failed to enable IPv6 Forwarding 
+ echo 'Running '\''openvpn --config' /etc/openvpn/openvpn.conf --client-config-dir /etc/openvpn/ccd --crl-verify '/etc/openvpn/crl.pem '\''' 
Running 'openvpn --config /etc/openvpn/openvpn.conf --client-config-dir /etc/openvpn/ccd --crl-verify /etc/openvpn/crl.pem ' 
+ exec openvpn --config /etc/openvpn/openvpn.conf --client-config-dir /etc/openvpn/ccd --crl-verify /etc/openvpn/crl.pem 
Fri Nov 15 16:27:14 2019 OpenVPN 2.4.7 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on May  5 2019 
Fri Nov 15 16:27:14 2019 library versions: OpenSSL 1.1.1c  28 May 2019, LZO 2.10 
Fri Nov 15 16:27:14 2019 Diffie-Hellman initialized with 2048 bit key 
Fri Nov 15 16:27:14 2019 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication 
Fri Nov 15 16:27:14 2019 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication 
Fri Nov 15 16:27:14 2019 ROUTE_GATEWAY 169.254.1.1 
Fri Nov 15 16:27:14 2019 TUN/TAP device tun0 opened 
Fri Nov 15 16:27:14 2019 TUN/TAP TX queue length set to 100 
Fri Nov 15 16:27:14 2019 /sbin/ip link set dev tun0 up mtu 1500 
Fri Nov 15 16:27:14 2019 /sbin/ip addr add dev tun0 local 172.16.33.1 peer 172.16.33.2 
Fri Nov 15 16:27:14 2019 /sbin/ip route add 192.168.1.0/24 via 172.16.33.2 
Fri Nov 15 16:27:14 2019 /sbin/ip route add 172.16.33.0/24 via 172.16.33.2 
Fri Nov 15 16:27:14 2019 Could not determine IPv4/IPv6 protocol. Using AF_INET 
Fri Nov 15 16:27:14 2019 Socket Buffers: R=[87380->87380] S=[16384->16384] 
Fri Nov 15 16:27:14 2019 Listening for incoming TCP connection on [AF_INET][undef]:1194 
Fri Nov 15 16:27:14 2019 TCPv4_SERVER link local (bound): [AF_INET][undef]:1194 
Fri Nov 15 16:27:14 2019 TCPv4_SERVER link remote: [AF_UNSPEC] 
Fri Nov 15 16:27:14 2019 GID set to nogroup 
Fri Nov 15 16:27:14 2019 UID set to nobody 
Fri Nov 15 16:27:14 2019 MULTI: multi_init called, r=256 v=256 
Fri Nov 15 16:27:14 2019 IFCONFIG POOL: base=172.16.33.4 size=62, ipv6=0 
Fri Nov 15 16:27:14 2019 MULTI: TCP INIT maxclients=1024 maxevents=1028 
Fri Nov 15 16:27:14 2019 Initialization Sequence Completed 

I think the issue should be in this error in the new image

+ iptables -t nat -C POSTROUTING -s 172.16.33.0/24 -o eth0 -j MASQUERADE 
iptables: No chain/target/match by that name. 
+ iptables -t nat -A POSTROUTING -s 172.16.33.0/24 -o eth0 -j MASQUERADE 
+ for i in "${OVPN_ROUTES[@]}" 
+ iptables -t nat -C POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE 
iptables: No chain/target/match by that name. 
+ iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE 

However if I run iptables after the container is started I can see those rules

+ iptables -t nat -C POSTROUTING -s 172.16.33.0/24 -o eth0 -j MASQUERADE 
iptables: No chain/target/match by that name. 
+ iptables -t nat -A POSTROUTING -s 172.16.33.0/24 -o eth0 -j MASQUERADE 
+ for i in "${OVPN_ROUTES[@]}" 
+ iptables -t nat -C POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE 
iptables: No chain/target/match by that name. 
+ iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE 

Also another strange thing is in this lines:

# Old image
ROUTE_GATEWAY 192.168.5.1/255.255.255.0 IFACE=eth0 HWADDR=66:32:30:39:36:37
# New image
ROUTE_GATEWAY 169.254.1.1 

Any hint?

created time in 2 months

delete branch uala/drone-rancher-deploy

delete branch : additional-options

delete time in 2 months

push eventuala/drone-rancher-deploy

fizzyduck

commit sha 83d34f8330767eb5875192d0de9ea9e33178961d

Add the ability to set kubectl CLI flags

view details

Fabio Napoleoni

commit sha 3327494e3cd89645bc1f1f228e7b7f5dc8a00ad4

Allow additional options to rancher login, closes #6

view details

Fabio Napoleoni

commit sha c0617ab13a50b1c3dfb0aafaf618b5dc7d70ef2b

Merge branch 'kubectl-flags' of https://github.com/fizzyduck/drone-rancher-deploy into additional-options

view details

Fabio Napoleoni

commit sha ee7bc0949d0a0e55aad0fafb7d05a54fcc509858

Allow additional options for kubectl commands, closes #4

view details

Fabio Napoleoni

commit sha 3bfa26c06490d732da1f33f332043925556b0144

Merge pull request #7 from uala/additional-options Additional options for both rancher login and kubectl commands

view details

push time in 2 months

PR merged uala/drone-rancher-deploy

Reviewers
Add the ability to set kubectl CLI flags

Adds an additional plugin setting called kubectl_flags which adds the specified string to the end of the kubectl command when running the plugin.

+3 -2

3 comments

2 changed files

fizzyduck

pr closed time in 2 months

PR merged uala/drone-rancher-deploy

Reviewers
Add the ability to set kubectl CLI flags

Adds an additional plugin setting called kubectl_flags which adds the specified string to the end of the kubectl command when running the plugin.

+3 -2

3 comments

2 changed files

fizzyduck

pr closed time in 2 months

pull request commentuala/drone-rancher-deploy

Add the ability to set kubectl CLI flags

@fizzyduck would you mind to review #7 to see if it suits your needs?

fizzyduck

comment created time in 2 months

issue commentuala/drone-rancher-deploy

Include --cacert as Environment/Secret

@alexismaior would you mind to review #7 to see if it suits your needs?

alexismaior

comment created time in 2 months

create barnchuala/drone-rancher-deploy

branch : additional-options

created branch time in 2 months

fork fabn/namae

Namae (名前) parses personal names and splits them into their component parts.

fork in 2 months

issue openedMarcGiffing/bucket4j-spring-boot-starter

Application startup failure after following readme instructions

I tried readme instruction in a Spring Boot v1.5.1.RELEASE project and I'm not able to start the application. When I do that I get this error:

2019-10-29 09:02:55.785  WARN 70206 --- [  restartedMain] ationConfigEmbeddedWebApplicationContext : Exception encountered during context initialization - cancelling refresh attempt: org.springframework.beans.factory.BeanDefinitionStoreException: Failed to process import candidates for configuration class [it.nesea.kcar.KCarApplication]; nested exception is java.io.FileNotFoundException: class path resource [org/springframework/boot/web/server/WebServerFactoryCustomizer.class] cannot be opened because it does not exist
2019-10-29 09:02:55.796 ERROR 70206 --- [  restartedMain] o.s.b.f.s.DefaultListableBeanFactory     : Destroy method on bean with name 'org.springframework.boot.autoconfigure.internalCachingMetadataReaderFactory' threw an exception

java.lang.IllegalStateException: ApplicationEventMulticaster not initialized - call 'refresh' before multicasting events via the context: org.springframework.boot.context.embedded.AnnotationConfigEmbeddedWebApplicationContext@2d16c62f: startup date [Tue Oct 29 09:02:54 CET 2019]; root of context hierarchy
	at org.springframework.context.support.AbstractApplicationContext.getApplicationEventMulticaster(AbstractApplicationContext.java:404) [spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.support.ApplicationListenerDetector.postProcessBeforeDestruction(ApplicationListenerDetector.java:97) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.beans.factory.support.DisposableBeanAdapter.destroy(DisposableBeanAdapter.java:253) ~[spring-beans-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.destroyBean(DefaultSingletonBeanRegistry.java:578) [spring-beans-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.destroySingleton(DefaultSingletonBeanRegistry.java:554) [spring-beans-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.beans.factory.support.DefaultListableBeanFactory.destroySingleton(DefaultListableBeanFactory.java:961) [spring-beans-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.destroySingletons(DefaultSingletonBeanRegistry.java:523) [spring-beans-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.beans.factory.support.DefaultListableBeanFactory.destroySingletons(DefaultListableBeanFactory.java:968) [spring-beans-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.support.AbstractApplicationContext.destroyBeans(AbstractApplicationContext.java:1033) [spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:555) [spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.boot.context.embedded.EmbeddedWebApplicationContext.refresh(EmbeddedWebApplicationContext.java:122) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.refresh(SpringApplication.java:737) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.refreshContext(SpringApplication.java:370) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.run(SpringApplication.java:314) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.run(SpringApplication.java:1162) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.run(SpringApplication.java:1151) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at it.nesea.kcar.KCarApplication.main(KCarApplication.java:22) [classes/:na]
	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[na:1.8.0_162]
	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[na:1.8.0_162]
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[na:1.8.0_162]
	at java.lang.reflect.Method.invoke(Method.java:498) ~[na:1.8.0_162]
	at org.springframework.boot.devtools.restart.RestartLauncher.run(RestartLauncher.java:49) [spring-boot-devtools-1.5.1.RELEASE.jar:1.5.1.RELEASE]

2019-10-29 09:02:55.801 ERROR 70206 --- [  restartedMain] o.s.boot.SpringApplication               : Application startup failed

org.springframework.beans.factory.BeanDefinitionStoreException: Failed to process import candidates for configuration class [it.nesea.kcar.KCarApplication]; nested exception is java.io.FileNotFoundException: class path resource [org/springframework/boot/web/server/WebServerFactoryCustomizer.class] cannot be opened because it does not exist
	at org.springframework.context.annotation.ConfigurationClassParser.processImports(ConfigurationClassParser.java:579) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassParser.processDeferredImportSelectors(ConfigurationClassParser.java:513) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassParser.parse(ConfigurationClassParser.java:184) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassPostProcessor.processConfigBeanDefinitions(ConfigurationClassPostProcessor.java:308) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassPostProcessor.postProcessBeanDefinitionRegistry(ConfigurationClassPostProcessor.java:228) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.support.PostProcessorRegistrationDelegate.invokeBeanDefinitionRegistryPostProcessors(PostProcessorRegistrationDelegate.java:270) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.support.PostProcessorRegistrationDelegate.invokeBeanFactoryPostProcessors(PostProcessorRegistrationDelegate.java:93) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.support.AbstractApplicationContext.invokeBeanFactoryPostProcessors(AbstractApplicationContext.java:686) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:524) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.boot.context.embedded.EmbeddedWebApplicationContext.refresh(EmbeddedWebApplicationContext.java:122) ~[spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.refresh(SpringApplication.java:737) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.refreshContext(SpringApplication.java:370) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.run(SpringApplication.java:314) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.run(SpringApplication.java:1162) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.SpringApplication.run(SpringApplication.java:1151) [spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at it.nesea.kcar.KCarApplication.main(KCarApplication.java:22) [classes/:na]
	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[na:1.8.0_162]
	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[na:1.8.0_162]
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[na:1.8.0_162]
	at java.lang.reflect.Method.invoke(Method.java:498) ~[na:1.8.0_162]
	at org.springframework.boot.devtools.restart.RestartLauncher.run(RestartLauncher.java:49) [spring-boot-devtools-1.5.1.RELEASE.jar:1.5.1.RELEASE]
Caused by: java.io.FileNotFoundException: class path resource [org/springframework/boot/web/server/WebServerFactoryCustomizer.class] cannot be opened because it does not exist
	at org.springframework.core.io.ClassPathResource.getInputStream(ClassPathResource.java:172) ~[spring-core-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.core.type.classreading.SimpleMetadataReader.<init>(SimpleMetadataReader.java:50) ~[spring-core-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.core.type.classreading.SimpleMetadataReaderFactory.getMetadataReader(SimpleMetadataReaderFactory.java:98) ~[spring-core-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.boot.type.classreading.ConcurrentReferenceCachingMetadataReaderFactory.createMetadataReader(ConcurrentReferenceCachingMetadataReaderFactory.java:89) ~[spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.boot.type.classreading.ConcurrentReferenceCachingMetadataReaderFactory.getMetadataReader(ConcurrentReferenceCachingMetadataReaderFactory.java:76) ~[spring-boot-1.5.1.RELEASE.jar:1.5.1.RELEASE]
	at org.springframework.core.type.classreading.SimpleMetadataReaderFactory.getMetadataReader(SimpleMetadataReaderFactory.java:93) ~[spring-core-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassParser.asSourceClass(ConfigurationClassParser.java:671) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassParser$SourceClass.getInterfaces(ConfigurationClassParser.java:848) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassParser.processInterfaces(ConfigurationClassParser.java:343) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassParser.doProcessConfigurationClass(ConfigurationClassParser.java:300) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassParser.processConfigurationClass(ConfigurationClassParser.java:230) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	at org.springframework.context.annotation.ConfigurationClassParser.processImports(ConfigurationClassParser.java:570) ~[spring-context-4.3.6.RELEASE.jar:4.3.6.RELEASE]
	... 20 common frames omitted

If I set bucket4j.enabled: false the application starts with no issues.

How can I solve?

created time in 3 months

issue commentdigitalocean/doctl

Context switch not persisted

Yes, I tried binary from releases page and it's working. Homebrew didn't publish it yet, but the issue can be closed.

fabn

comment created time in 3 months

pull request commentdigitalocean/doctl

Allow users to switch contexts

Ok thanks I'll try

bentranter

comment created time in 3 months

pull request commentdigitalocean/doctl

Allow users to switch contexts

Upgraded to latest brew version but the issue is still there

@mbp.local ➜ Downloads rvm:(ruby-2.6.2)  brew upgrade doctl
==> Upgrading 1 outdated package:
doctl 1.32.3 -> 1.32.3_1
bentranter

comment created time in 3 months

issue commentdigitalocean/doctl

Context switch not persisted

@fabn you could install from source or just revert for the moment. The new release will be out on Monday with the fix.

I've used homebrew to install. Which version I should rollback to to have ti working again?

fabn

comment created time in 3 months

issue openeddigitalocean/doctl

Context switch not persisted

I've just upgraded to latest doctl and now my context are broken:

$ doctl version
doctl version 1.32.3-release
$ doctl auth switch --context xxx
Now using context [xxx] by default
$ doctl k8s clusters list
ID    Name    Region    Version    Auto Upgrade    Status    Node Pools
# This is the expected output, but I get it only if I pass context
$ doctl k8s clusters list --context xxx
ID                                      Name        Region    Version        Auto Upgrade    Status     Node Pools
325b08c2-8e24-4c9b-9c55-d2f0aafb33ab    xxx         fra1      1.15.4-do.0    true            running    xxx-default-pool

As result I cannot interact with my Kubernetes cluster anymore

kubectl get pods
Error: failed to fetch credentials for cluster "325b08c2-8e24-4c9b-9c55-d2f0aafb33ab": cluster not found
Error: failed to fetch credentials for cluster "325b08c2-8e24-4c9b-9c55-d2f0aafb33ab": cluster not found
Error: failed to fetch credentials for cluster "325b08c2-8e24-4c9b-9c55-d2f0aafb33ab": cluster not found
Error: failed to fetch credentials for cluster "325b08c2-8e24-4c9b-9c55-d2f0aafb33ab": cluster not found
Error: failed to fetch credentials for cluster "325b08c2-8e24-4c9b-9c55-d2f0aafb33ab": cluster not found
Unable to connect to the server: getting credentials: exec: exit status 1

How can I fix that?

created time in 3 months

issue commentcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

What's the upstream? route53?

Currently both 8.8.8.8 and 1.1.1.1 this is leading me to think that the issue is in the LAN gateway. It's very unlikely that two different upstreams from different vendors causes the same malformed response.

fabn

comment created time in 3 months

issue commentcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

Another question useful for my investigation, you said

The upstream sending back this response is not compliant with the DNS standard

I want to try to dump the same kind of packets by excluding the mikrotik router from the chain. How can I compare that with my previous dump? How can I say if a response is malformed or not?

Thanks again.

fabn

comment created time in 3 months

issue closedcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

First of all forgive me if this is not the right place to post. I'm using coredns (in a k8s/rancher installation). Rancher uses its own fork of coredns, but looking at their repository it seems to be the same code of coredns itself.

Here's my original issue: rancher/rke/issues/1662 but I think that I've posted it in the wrong place.

Their rke tool install CoreDNS-1.3.1 with this configuration

.:53 {
    errors
    health
    kubernetes cluster.local in-addr.arpa ip6.arpa {
      pods insecure
      upstream
      fallthrough in-addr.arpa ip6.arpa
      ttl 30
    }
    prometheus :9153
    forward . '/etc/resolv.conf'
    cache 30
    loop
    reload
    loadbalance
}

Log start:

.:53
2019-09-24T13:54:37.187Z [INFO] CoreDNS-1.3.1
2019-09-24T13:54:37.187Z [INFO] linux/amd64, go1.11.4, 6b56a9c
CoreDNS-1.3.1
linux/amd64, go1.11.4, 6b56a9c

I've installed a rancher cluster using RKE with 3 nodes on KVM, until now everything worked well, but starting today I have an (intermittent) issue in DNS names resolution in my pods. It happens only for some hosts and randomly.

When it happens dns resolution (for external names) in pods is not working and I get some nasty errors in coredns pod, here are some examples:

2019-09-24T12:46:25.111Z [INFO] plugin/reload: Running configuration MD5 = 45cd9f91917cc54711e243e0d08537a7
2019-09-24T12:47:27.474Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T12:47:32.475Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T12:47:37.476Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T13:12:39.537Z [ERROR] plugin/errors: 2 registry.npmjs.org. A: dns: overflow unpacking uint32
2019-09-24T13:12:39.549Z [ERROR] plugin/errors: 2 registry.npmjs.org. AAAA: dns: overflow unpacking uint16
2019-09-24T13:12:44.539Z [ERROR] plugin/errors: 2 registry.npmjs.org. AAAA: dns: overflow unpacking uint16
2019-09-24T13:12:44.543Z [ERROR] plugin/errors: 2 registry.npmjs.org. A: dns: overflow unpacking uint32   

I've enabled coredns logs directive in configmap to have verbose logging and I get this:

2019-09-24T13:13:56.246Z [INFO] 10.42.0.230:56169 - 21605 "A IN registry.npmjs.org. udp 36 false 512" SERVFAIL qr,rd 36 5.003233501s
2019-09-24T13:13:56.246Z [ERROR] plugin/errors: 0 registry.npmjs.org. A: dns: overflow unpacking uint32
2019-09-24T13:13:56.251Z [INFO] 10.42.0.230:56169 - 4205 "AAAA IN registry.npmjs.org. udp 36 false 512" SERVFAIL qr,rd 36 5.008031338s
2019-09-24T13:13:56.251Z [ERROR] plugin/errors: 0 registry.npmjs.org. AAAA: dns: overflow unpacking uint16

Finally I also changed this directive in Corefile

forward . "/etc/resolv.conf"
# replaced with
forward . 1.1.1.1
# also tried with
forward . 8.8.8.8

Nothing changes.

I can find nothing relevant by googling for message "overflow unpacking uint32", just some code fragment where is triggered.

My coredns deplyoment uses rancher/coredns-coredns:1.3.1 as image.

What can be?

closed time in 3 months

fabn

issue commentcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

docker itself, you mean the Go code in docker? Then they are doing it (somewhat) wrong.

Yes, it should be go code in docker. I was able to reproduce the issue outside kubernetes and coredns.

I get a similar issue by using a plain docker pull hello-world command in the same machine where coredns is running and also in another machine in the same network. Here's the output:

docker pull hello-world
Error while pulling image: Get https://index.docker.io/v1/repositories/library/hello-world/images: dial tcp: lookup index.docker.io on 8.8.4.4:53: cannot unmarshal DNS message

If I do a dig/curl/nslookup for index.docker.io everything works, so it must be something inside the go code that causes this issue.

The upstream sending back this response is not compliant with the DNS standard. It should not send back such a response.

This is very unlikely, I changed upstream servers with both 8.8.8.8 (google) and 1.1.1.1 (cloudflare) and the issue persists. Also is strange that Google's dns sends a malformed response.

I also tried another approach: I installed dnsmasq locally using 8.8.8.8 as upstream server, then I've updated local /etc/resolv.conf with nameserver 127.0.0.1 and everything worked, I'm able to pull images from registries and docker works.

I'm starting to think that the issue could be in the LAN itself, main gateway (from Microtik) which runs RouterOS could have some issues with EDNS. I found these resources (even if they are pretty old) on the web, so I'll point my investigation in that direction.

https://www.dns-oarc.net/oarc/services/replysizetest https://forum.mikrotik.com/viewtopic.php?t=46227

You can maybe work around it by setting force_tcp option in the forward stanza. tl;dr: various pieces seem to violate the DNS standard. I think coredns is doing the right thing here and I'm reluctant to add (non-standard) work arounds

My attempts clearly shows that coredns is not involved in this issue, so I think this could be closed. I'll try to use force_tcp as temporary workaround until I don't find the actual issue with my setup.

Thanks for your support any way.

P.S. in order to continue my investigations, since I'm not so expert in DNS protocol could you please tell me how can I distinguish EDNS requests and responses in PCAP dumps?

fabn

comment created time in 3 months

issue commentcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

I see you ask git.rancher.io with a upd buffer of 512 bytes (no EDNS0) and the reply comes back that is 599 bytes... that will never work.

I understand the issue. However the client is docker itself. This is running inside a kubernetes cluster. Here's the coredns configuration of dns pod:

.:53 {
    errors
    health
    kubernetes cluster.local in-addr.arpa ip6.arpa {
      pods insecure
      upstream
      fallthrough in-addr.arpa ip6.arpa
      ttl 30
    }
    prometheus :9153
    forward . 8.8.8.8 1.1.1.1
    cache 30
    loop
    reload
    loadbalance
}
fabn

comment created time in 3 months

issue commentcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

The issue is back and this time isn't going away. I was able to capture packets when this happens, here's the link: https://gofile.io/?c=2CX96f

I also see #3367 that can be related.

Please advice if you can.

fabn

comment created time in 3 months

pull request commentrswag/rswag

Configurable Host header

This is very useful, why don't accepting it?

amiuhle

comment created time in 3 months

issue commentrswag/rswag

No ability to generate swagger.json during deploy

That's a pity. It defeats advantages of automatic generation. If one forgets to generate up to date documentation it will go online with wrong format.

heaven

comment created time in 3 months

issue commentrswag/rswag

No ability to generate swagger.json during deploy

this preloads our entire test suite, unable to find some gems that are installed only in test env and finally tries to set up the test DB.

Did you solved this issue?

heaven

comment created time in 3 months

issue commentdocker/for-mac

"Kubernetes is starting…" state never ends

Same issue, tried eveything. Only things that worked was a full reset.

plambert

comment created time in 3 months

issue openedStackPointCloud/ark-plugin-digitalocean

Any plan to support Velero 1.x

Currently this plugin is not working. Any plan to support Velero 1.x?

created time in 3 months

created tagfabn/motohelp-test

tagv1

Base image for running ruby specs with capybara, chrome and nodejs installed

created time in 3 months

release fabn/motohelp-test

v1

released time in 3 months

push eventfabn/motohelp-test

Fabio Napoleoni

commit sha f3005c1886a8c9a8d7965b979168a1514532c5f0

Update Dockerfile

view details

push time in 3 months

push eventfabn/motohelp-test

Fabio Napoleoni

commit sha 73264681a36251b0dccb45878f0c352738dbd1bf

Update README.md

view details

push time in 3 months

push eventfabn/motohelp-test

Fabio Napoleoni

commit sha d93e6baf53cd9ae745f33d78f0255f37b96d0d1b

Base dockerfile

view details

push time in 3 months

create barnchfabn/motohelp-test

branch : master

created branch time in 3 months

created repositoryfabn/motohelp-test

Base image for running ruby specs with capybara, chrome and nodejs installed

created time in 3 months

startedmachinio/cuprite

started time in 3 months

issue commentrancher/rancher

[cli] kubectl not found in docker image

There are a lot of attempts to have this: https://hub.docker.com/search?q=rancher-cli-k8s&type=image but having an official one is the way.

zhangyelong

comment created time in 3 months

issue commentrancher/rancher

[cli] kubectl not found in docker image

Any news on this? It's pretty useless to have a rancher/cli2 image without kubectl

zhangyelong

comment created time in 3 months

issue commentrancher/rancher

Issuing Let's Encrypt certificates through Rancher

Also it would be nice to have a select box that lists existing Issuer for current namespace and global ClusterIssuers available in cluster

HansAdema

comment created time in 3 months

push eventuala/drone-rancher-deploy

fizzyduck

commit sha 05b1e80c56537274c52453be7c424e3c1a800aa5

Correct default logging value

view details

Fabio Napoleoni

commit sha c23a6b98858846f24dc54aacf5eca123979fba54

Merge pull request #5 from fizzyduck/fix-readme Correct default logging value

view details

push time in 3 months

PR merged uala/drone-rancher-deploy

Correct default logging value

The default logging level is incorrectly documented in the README.md.

This PR corrects that.

+1 -1

0 comment

1 changed file

fizzyduck

pr closed time in 3 months

pull request commentuala/drone-rancher-deploy

Add the ability to set kubectl CLI flags

@fizzyduck could you please document a use case for this flag? Also this PR will fail this test.

Failures:

  1) RancherDeployer::Deployer#deploy! with matching environments should update individual services
     Failure/Error:
       expect(shell).to receive(:run).with(
           'rancher kubectl set image deployment web web=image:tag',
           '-n', 'backend'
       )

       #<Double :shell> received :run with unexpected arguments
         expected: ("rancher kubectl set image deployment web web=image:tag", "-n", "backend")
              got: ("rancher login", "https://k8s.example.com", "-t", "access_key:secret_key", {:in=>#<StringIO:0x00007fe36a0bd498>, :only_output_on_error=>true}) (1 time)
                   ("rancher", "context", "switch", "MyCoolProject") (1 time)
                   ("rancher kubectl set image deployment web web=image:tag ", "-n", "backend") (1 time)
                   ("rancher kubectl set image deployment worker worker=image:tag ", "-n", "backend") (1 time)
     # ./spec/deployer_spec.rb:125:in `block (4 levels) in <top (required)>'

Finished in 27.17 seconds (files took 0.26431 seconds to load)
55 examples, 1 failure

Failed examples:

rspec ./spec/deployer_spec.rb:124 # RancherDeployer::Deployer#deploy! with matching environments should update individual services

Don't know if you have a working ruby environment on your machine but you can always run tests locally by using drone exec --pipeline rspec in your local branch.

N.B. if the above command fails ensure you cloned the repo with https or add this line as first step in "Fetch all tags" step in .drone.yml before running specs:

ssh-keyscan github.com >> ~/.ssh/known_hosts
fizzyduck

comment created time in 3 months

issue commentGoogleContainerTools/kaniko

error building image: error building stage: lstat /tmp/apt-key-gpghome.VoPBz66R2g/gnupg_spawn_agent_sentinel.lock: no such file or directory

@Neonox31 that was my first thought but same dockerfile builds in native docker with no issues

olivierboudet

comment created time in 3 months

push eventuala/drone-rancher-deploy

Fabio Napoleoni

commit sha 378c9014d2acc8885925820035a22a5f00ae282e

Add licenses, closes #3

view details

push time in 3 months

issue closeduala/drone-rancher-deploy

Missing license

Would it be possible to add a license to this project so that its usage and modification are clear?

I'd like to suggest BSD.

closed time in 3 months

fizzyduck

issue commentuala/drone-rancher-deploy

Missing license

I know MIT license and it fits our project and purposes.

fizzyduck

comment created time in 3 months

startedanseki/readline-sync

started time in 3 months

issue commentGoogleContainerTools/kaniko

error building image: error building stage: lstat /tmp/apt-key-gpghome.VoPBz66R2g/gnupg_spawn_agent_sentinel.lock: no such file or directory

Getting same kind of error here:

update-alternatives: using /usr/bin/google-chrome-stable to provide /usr/bin/x-www-browser (x-www-browser) in auto mode
update-alternatives: using /usr/bin/google-chrome-stable to provide /usr/bin/gnome-www-browser (gnome-www-browser) in auto mode
update-alternatives: using /usr/bin/google-chrome-stable to provide /usr/bin/google-chrome (google-chrome) in auto mode
Processing triggers for libc-bin (2.24-11+deb9u4) ...
INFO[0254] Taking snapshot of full filesystem...        
error building image: error building stage: lstat /tmp/apt-key-gpghome.4lNiMJ5oLl/pubring.kbx: no such file or directory

Any solution?

olivierboudet

comment created time in 4 months

issue commentcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

Obviously, I'll try to grab some packets, any hint on command to use, and format of packet to save? Do I need to grab packets on container or in the host machine?

fabn

comment created time in 4 months

startedwebnicer/chrome-downloads

started time in 4 months

issue commentcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

Today issue disappeared for A records, but it's still present for AAAA records, so name resolution is working for A records. I've also updated coredns to 1.6.2 but issue persists.

fabn

comment created time in 4 months

startedarturictus/sidekiq_alive

started time in 4 months

startedrestic/restic

started time in 4 months

issue openedcoredns/coredns

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

First of all forgive me if this is not the right place to post. I'm using coredns (in a k8s/rancher installation). Rancher uses its own fork of coredns, but looking at their repository it seems to be the same code of coredns itself.

Here's my original issue: rancher/rke/issues/1662 but I think that I've posted it in the wrong place.

Their rke tool install CoreDNS-1.3.1 with this configuration

.:53 {
    errors
    health
    kubernetes cluster.local in-addr.arpa ip6.arpa {
      pods insecure
      upstream
      fallthrough in-addr.arpa ip6.arpa
      ttl 30
    }
    prometheus :9153
    forward . '/etc/resolv.conf'
    cache 30
    loop
    reload
    loadbalance
}

Log start:

.:53
2019-09-24T13:54:37.187Z [INFO] CoreDNS-1.3.1
2019-09-24T13:54:37.187Z [INFO] linux/amd64, go1.11.4, 6b56a9c
CoreDNS-1.3.1
linux/amd64, go1.11.4, 6b56a9c

I've installed a rancher cluster using RKE with 3 nodes on KVM, until now everything worked well, but starting today I have an (intermittent) issue in DNS names resolution in my pods. It happens only for some hosts and randomly.

When it happens dns resolution (for external names) in pods is not working and I get some nasty errors in coredns pod, here are some examples:

2019-09-24T12:46:25.111Z [INFO] plugin/reload: Running configuration MD5 = 45cd9f91917cc54711e243e0d08537a7
2019-09-24T12:47:27.474Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T12:47:32.475Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T12:47:37.476Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T13:12:39.537Z [ERROR] plugin/errors: 2 registry.npmjs.org. A: dns: overflow unpacking uint32
2019-09-24T13:12:39.549Z [ERROR] plugin/errors: 2 registry.npmjs.org. AAAA: dns: overflow unpacking uint16
2019-09-24T13:12:44.539Z [ERROR] plugin/errors: 2 registry.npmjs.org. AAAA: dns: overflow unpacking uint16
2019-09-24T13:12:44.543Z [ERROR] plugin/errors: 2 registry.npmjs.org. A: dns: overflow unpacking uint32   

I've enabled coredns logs directive in configmap to have verbose logging and I get this:

2019-09-24T13:13:56.246Z [INFO] 10.42.0.230:56169 - 21605 "A IN registry.npmjs.org. udp 36 false 512" SERVFAIL qr,rd 36 5.003233501s
2019-09-24T13:13:56.246Z [ERROR] plugin/errors: 0 registry.npmjs.org. A: dns: overflow unpacking uint32
2019-09-24T13:13:56.251Z [INFO] 10.42.0.230:56169 - 4205 "AAAA IN registry.npmjs.org. udp 36 false 512" SERVFAIL qr,rd 36 5.008031338s
2019-09-24T13:13:56.251Z [ERROR] plugin/errors: 0 registry.npmjs.org. AAAA: dns: overflow unpacking uint16

Finally I also changed this directive in Corefile

forward . "/etc/resolv.conf"
# replaced with
forward . 1.1.1.1
# also tried with
forward . 8.8.8.8

Nothing changes.

I can find nothing relevant by googling for message "overflow unpacking uint32", just some code fragment where is triggered.

My coredns deplyoment uses rancher/coredns-coredns:1.3.1 as image.

What can be?

created time in 4 months

issue openedrancher/rke

CoreDNS resolution failure for external hostnames with "overflow unpacking uint32"

RKE version:

rke version v0.2.8

Docker version: (docker version,docker info preferred)

Containers: 119 Running: 90 Paused: 0 Stopped: 29 Images: 58 Server Version: 18.09.8 Storage Driver: overlay2 Backing Filesystem: extfs Supports d_type: true Native Overlay Diff: true Logging Driver: json-file Cgroup Driver: cgroupfs Plugins: Volume: local Network: bridge host macvlan null overlay Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog Swarm: inactive Runtimes: runc Default Runtime: runc Init Binary: docker-init containerd version: 894b81a4b802e4eb2a91d1ce216b8817763c29fb runc version: 425e105d5a03fabd737a126ad93d62a9eeede87f init version: fec3683 Security Options: seccomp Profile: default Kernel Version: 4.14.138-rancher Operating System: RancherOS v1.5.4 OSType: linux Architecture: x86_64 CPUs: 4 Total Memory: 9.761GiB Name: master-203.lan.sportcare.tech ID: V6XI:4DAQ:UG4H:2BEX:2IW2:K7L2:4DV7:XWDI:HDNB:O3W5:ULGZ:AB7E Docker Root Dir: /var/lib/docker Debug Mode (client): false Debug Mode (server): false Registry: https://index.docker.io/v1/ Labels: Experimental: false Insecure Registries: 127.0.0.0/8 Live Restore Enabled: false Product License: Community Engine

Operating system and kernel: (cat /etc/os-release, uname -r preferred)

4.14.138-rancher

Type/provider of hosts: (VirtualBox/Bare-metal/AWS/GCE/DO)

KVM

Steps to Reproduce:

Don't know if issue belongs to this project, I wrote here because the image I'm running trouble with was installed by rke and it's a rancher customized version of coredns.

I've installed a rancher cluster using RKE with 3 nodes on KVM, until now everything worked well, but starting today I have an (intermittent) issue in DNS names resolution in my pods. It happens only for some hosts and randomly.

Results:

When it happens dns resolution (for external names) in pods is not working and I get some nasty errors in coredns pod, here are some examples:

2019-09-24T12:46:25.111Z [INFO] plugin/reload: Running configuration MD5 = 45cd9f91917cc54711e243e0d08537a7
2019-09-24T12:47:27.474Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T12:47:32.475Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T12:47:37.476Z [ERROR] plugin/errors: 2 security.ubuntu.com. A: dns: overflow unpacking uint32
2019-09-24T13:12:39.537Z [ERROR] plugin/errors: 2 registry.npmjs.org. A: dns: overflow unpacking uint32
2019-09-24T13:12:39.549Z [ERROR] plugin/errors: 2 registry.npmjs.org. AAAA: dns: overflow unpacking uint16
2019-09-24T13:12:44.539Z [ERROR] plugin/errors: 2 registry.npmjs.org. AAAA: dns: overflow unpacking uint16
2019-09-24T13:12:44.543Z [ERROR] plugin/errors: 2 registry.npmjs.org. A: dns: overflow unpacking uint32   

I've enabled coredns logs directive in configmap to have verbose logging and I get this:

2019-09-24T13:13:56.246Z [INFO] 10.42.0.230:56169 - 21605 "A IN registry.npmjs.org. udp 36 false 512" SERVFAIL qr,rd 36 5.003233501s
2019-09-24T13:13:56.246Z [ERROR] plugin/errors: 0 registry.npmjs.org. A: dns: overflow unpacking uint32
2019-09-24T13:13:56.251Z [INFO] 10.42.0.230:56169 - 4205 "AAAA IN registry.npmjs.org. udp 36 false 512" SERVFAIL qr,rd 36 5.008031338s
2019-09-24T13:13:56.251Z [ERROR] plugin/errors: 0 registry.npmjs.org. AAAA: dns: overflow unpacking uint16

Finally I also changed this directive in Corefile

forward . "/etc/resolv.conf"
# replaced with
forward . 1.1.1.1
# also tried with
forward . 8.8.8.8

Nothing changes.

I can find anything by googling for message "overflow unpacking uint32", just the code fragment where is triggered.

My coredns deplyoment uses rancher/coredns-coredns:1.3.1 as image.

What can be?

created time in 4 months

issue commenthelm/charts

stable/sonatype-nexus can't pass through the proxy

There is no chance to disable nexus-proxy at all and use only nexus. Is it possible to add such feature to disable proxy and point the service directly to nexus or create service for direct access to nexus?

I'm having the same issue. I'm doing SSL termination outside kubernetes in a haproxy installation. I was able to connect to proxy with this config but then all assets are not found since nexus HTML uses absolute urls.

frontend https-in
  bind :443
  [...]
  # Define hosts for virtual hosting
  acl nexus hdr(host) -i nexus.example.com

  # Routing rules, letsencrypt must be the first rule
  use_backend NEXUS if nexus
 
  # Add host header needed by K8S ingress
  http-request set-header Host nexus.lan.example.com if nexus
  http-request set-header X-Forwarded-Host nexus.example.com

backend NEXUS
  option httpchk GET / HTTP/1.1\r\nHost:\ nexus.lan.example.com
  server nexus nexus.lan.example.com:80 check inter 60s fastinter 1s downinter 2s

How to get rid of nexus proxy and get a plain service to nexus3?? (BTW what is its purpose)

Or alternatively is there any way to make nexus produce relative links instead of absolute ones?

oz123

comment created time in 4 months

issue commentrancher/rancher

Specifiy non-existent certificate for ingress in UI to work with cert-manager ingress-shim

I was about to ask the same thing +1000 for this.

jonaskello

comment created time in 4 months

startedoracle/mysql-operator

started time in 4 months

fork fabn/charts

Curated applications for Kubernetes

fork in 4 months

issue openedhelm/charts

[stable/sematext-agent] Current version is broken

<!-- Thanks for filing an issue! Before hitting the button, please answer these questions. It's helpful to search the existing GitHub issues first. It's likely that another user has already reported the issue you're facing, or it's a known issue that we're already aware of

Fill in as much of the template below as you can. If you leave out information, we can't help you as well.

Be ready for followup questions, and please respond in a timely manner. If we can't reproduce a bug or think a feature already exists, we might close your issue. If we're wrong, PLEASE feel free to reopen it and explain why. -->

Describe the bug

Current version of chart cannot be deployed because of this line, it references a file deleted in #15937

Version of Helm and Kubernetes:

Client: &version.Version{SemVer:"v2.12.1", GitCommit:"02a47c7249b1fc6d8fd3b94e6b4babf9d818144e", GitTreeState:"clean"}
Server: &version.Version{SemVer:"v2.12.1", GitCommit:"02a47c7249b1fc6d8fd3b94e6b4babf9d818144e", GitTreeState:"clean"}

What happened:

When I try to install chart I get this error

Error: render error in "sematext-agent/templates/daemonset.yaml": template: sematext-agent/templates/daemonset.yaml:27:44: executing "sematext-agent/templates/daemonset.yaml" at <include (print $.Tem...>: error calling include: template: no template "sematext-agent/templates/configmap-agent-autodisco.yaml" associated with template "gotpl"

created time in 4 months

more