-
Bug
-
Resolution: Done
-
High
-
Frankfurt Release
-
None
-
ubuntu@onap-5699-rke-node:~$ helm list NAME REVISION UPDATED STATUS CHART APP VERSION NAMESPACE dev 1 Tue Apr 21 13:11:42 2020 DEPLOYED onap-6.0.0 El Alto onap dev-aaf 1 Tue Apr 21 13:11:43 2020 DEPLOYED aaf-6.0.0 onap dev-aai 1 Tue Apr 21 13:11:46 2020 DEPLOYED aai-6.0.0 onap dev-appc 1 Tue Apr 21 13:11:53 2020 DEPLOYED appc-6.0.0 onap dev-cassandra 1 Tue Apr 21 13:11:58 2020 DEPLOYED cassandra-6.0.0 onap dev-cds 1 Tue Apr 21 13:11:58 2020 DEPLOYED cds-6.0.0 onap dev-clamp 1 Tue Apr 21 13:12:01 2020 DEPLOYED clamp-6.0.0 onap dev-cli 1 Tue Apr 21 13:12:02 2020 DEPLOYED cli-6.0.0 onap dev-consul 1 Tue Apr 21 13:12:02 2020 DEPLOYED consul-6.0.0 onap dev-contrib 1 Tue Apr 21 13:12:03 2020 DEPLOYED contrib-6.0.0 onap dev-dcaegen2 1 Tue Apr 21 13:12:09 2020 DEPLOYED dcaegen2-6.0.0 onap dev-dcaemod 1 Tue Apr 21 13:12:26 2020 DEPLOYED dcaemod-6.0.0 onap dev-dmaap 1 Tue Apr 21 13:12:32 2020 DEPLOYED dmaap-6.0.0 onap dev-esr 1 Tue Apr 21 13:21:45 2020 DEPLOYED esr-6.0.0 onap dev-log 1 Tue Apr 21 13:21:46 2020 DEPLOYED log-6.0.0 onap dev-mariadb-galera 1 Tue Apr 21 13:21:47 2020 DEPLOYED mariadb-galera-6.0.0 onap dev-modeling 1 Tue Apr 21 13:21:48 2020 DEPLOYED modeling-6.0.0 onap dev-msb 1 Tue Apr 21 13:21:50 2020 DEPLOYED msb-6.0.0 onap dev-multicloud 1 Tue Apr 21 13:21:51 2020 DEPLOYED multicloud-6.0.0 onap dev-nbi 1 Tue Apr 21 13:21:53 2020 DEPLOYED nbi-6.0.0 onap dev-oof 1 Tue Apr 21 13:21:57 2020 DEPLOYED oof-6.0.0 onap dev-policy 1 Tue Apr 21 13:22:04 2020 DEPLOYED policy-6.0.0 onap dev-pomba 1 Tue Apr 21 13:22:12 2020 DEPLOYED pomba-6.0.0 onap dev-portal 1 Tue Apr 21 13:22:15 2020 DEPLOYED portal-6.0.0 onap dev-robot 1 Tue Apr 21 13:22:17 2020 DEPLOYED robot-6.0.0 onap dev-sdc 1 Thu Apr 23 10:51:50 2020 DEPLOYED sdc-6.0.0 onap dev-sdnc 1 Tue Apr 21 13:22:20 2020 DEPLOYED sdnc-6.0.0 onap dev-sniro-emulator 1 Tue Apr 21 13:30:05 2020 DEPLOYED sniro-emulator-6.0.0 onap dev-so 1 Tue Apr 21 13:30:06 2020 DEPLOYED so-6.0.0 onap dev-uui 1 Tue Apr 21 13:30:58 2020 DEPLOYED uui-6.0.0 onap dev-vfc 1 Tue Apr 21 13:30:59 2020 DEPLOYED vfc-6.0.0 onap dev-vid 1 Tue Apr 21 13:31:04 2020 DEPLOYED vid-6.0.0 onap dev-vnfsdk 1 Tue Apr 21 13:31:06 2020 DEPLOYED vnfsdk-6.0.0 onap k8s-dashboard 1 Fri Apr 10 12:59:21 2020 DEPLOYED kubernetes-dashboard-1.10.1 1.10.1 kube-system ubuntu@onap-5699-rke-node:~$
health check:
ubuntu@onap-5699-rke-node:~$ helm list NAME REVISION UPDATED STATUS CHART APP VERSION NAMESPACE dev 1 Tue Apr 21 13:11:42 2020 DEPLOYED onap-6.0.0 El Alto onap dev-aaf 1 Tue Apr 21 13:11:43 2020 DEPLOYED aaf-6.0.0 onap dev-aai 1 Tue Apr 21 13:11:46 2020 DEPLOYED aai-6.0.0 onap dev-appc 1 Tue Apr 21 13:11:53 2020 DEPLOYED appc-6.0.0 onap dev-cassandra 1 Tue Apr 21 13:11:58 2020 DEPLOYED cassandra-6.0.0 onap dev-cds 1 Tue Apr 21 13:11:58 2020 DEPLOYED cds-6.0.0 onap dev-clamp 1 Tue Apr 21 13:12:01 2020 DEPLOYED clamp-6.0.0 onap dev-cli 1 Tue Apr 21 13:12:02 2020 DEPLOYED cli-6.0.0 onap dev-consul 1 Tue Apr 21 13:12:02 2020 DEPLOYED consul-6.0.0 onap dev-contrib 1 Tue Apr 21 13:12:03 2020 DEPLOYED contrib-6.0.0 onap dev-dcaegen2 1 Tue Apr 21 13:12:09 2020 DEPLOYED dcaegen2-6.0.0 onap dev-dcaemod 1 Tue Apr 21 13:12:26 2020 DEPLOYED dcaemod-6.0.0 onap dev-dmaap 1 Tue Apr 21 13:12:32 2020 DEPLOYED dmaap-6.0.0 onap dev-esr 1 Tue Apr 21 13:21:45 2020 DEPLOYED esr-6.0.0 onap dev-log 1 Tue Apr 21 13:21:46 2020 DEPLOYED log-6.0.0 onap dev-mariadb-galera 1 Tue Apr 21 13:21:47 2020 DEPLOYED mariadb-galera-6.0.0 onap dev-modeling 1 Tue Apr 21 13:21:48 2020 DEPLOYED modeling-6.0.0 onap dev-msb 1 Tue Apr 21 13:21:50 2020 DEPLOYED msb-6.0.0 onap dev-multicloud 1 Tue Apr 21 13:21:51 2020 DEPLOYED multicloud-6.0.0 onap dev-nbi 1 Tue Apr 21 13:21:53 2020 DEPLOYED nbi-6.0.0 onap dev-oof 1 Tue Apr 21 13:21:57 2020 DEPLOYED oof-6.0.0 onap dev-policy 1 Tue Apr 21 13:22:04 2020 DEPLOYED policy-6.0.0 onap dev-pomba 1 Tue Apr 21 13:22:12 2020 DEPLOYED pomba-6.0.0 onap dev-portal 1 Tue Apr 21 13:22:15 2020 DEPLOYED portal-6.0.0 onap dev-robot 1 Tue Apr 21 13:22:17 2020 DEPLOYED robot-6.0.0 onap dev-sdc 1 Thu Apr 23 10:51:50 2020 DEPLOYED sdc-6.0.0 onap dev-sdnc 1 Tue Apr 21 13:22:20 2020 DEPLOYED sdnc-6.0.0 onap dev-sniro-emulator 1 Tue Apr 21 13:30:05 2020 DEPLOYED sniro-emulator-6.0.0 onap dev-so 1 Tue Apr 21 13:30:06 2020 DEPLOYED so-6.0.0 onap dev-uui 1 Tue Apr 21 13:30:58 2020 DEPLOYED uui-6.0.0 onap dev-vfc 1 Tue Apr 21 13:30:59 2020 DEPLOYED vfc-6.0.0 onap dev-vid 1 Tue Apr 21 13:31:04 2020 DEPLOYED vid-6.0.0 onap dev-vnfsdk 1 Tue Apr 21 13:31:06 2020 DEPLOYED vnfsdk-6.0.0 onap k8s-dashboard 1 Fri Apr 10 12:59:21 2020 DEPLOYED kubernetes-dashboard-1.10.1 1.10.1 kube-system ubuntu@onap-5699-rke-node:~$ health check: health.zip
In Frankfurt release has been introduced automated E2E test cases for 5G bulk PM
In task https://jira.onap.org/browse/INT-1521 https://gerrit.onap.org/r/c/testsuite/+/105492 has been introduced required changes in order to use PM Mapper and Data File Collector blueprints from dace inventory.
After E2E test case run at laboratory installed using master branch from Tuesday we noticed that there is an issue between Data File Collector and Data Router. In order to see logs in DFC and PM Mapper before test case execution we turned off teardown removing those two pods:
- at robot pod edit following file vim /var/opt/ONAP/robot/testsuites/usecases/5gbulkpm.robot
- remove line with suite teardown
- logs from test case execution ete_5gbulkpm.zip
- logs from dfc dfc_application.log
Issues:
- during dfc file publish to DR node we have following error:
org.onap.dcaegen2.collectors.datafile.tasks.DataRouterPublisher |2020-04-24T14:29:00.627Z |WARN |Publishing file A1587738448.6.xml.gz to DR unsuccessful. Response code: 403 FORBIDDEN |RequestID=A1587738448.6.xml.gz | | |parallel-1 | org.onap.dcaegen2.collectors.datafile.tasks.ScheduledTasks |2020-04-24T14:29:00.628Z |ERROR |File publishing failed: FilePublishInformation{productName=RnNode, vendorName=Ericsson, lastEpochMicrosec=8745745764578, sourceName=oteNB5309, startEpochMicrosec=8745745764578, timeZoneOffset=UTC+05.30, location=####, compression=gzip, fileFormatType=org.3GPP.32.435#measCollec, fileFormatVersion=V10, internalLocation=/tmp/onap_datafile/A1587738448.6.xml.gz, name=A1587738448.6.xml.gz, context={RequestID=A1587738448.6.xml.gz}, changeIdentifier=PM_MEAS_FILES} |RequestID=A1587738448.6.xml.gz | | |parallel-1 |
- according to DMAAP DR API https://docs.onap.org/en/elalto/submodules/dmaap/datarouter.git/docs/apis/data-router-api.html
403 means Forbidden - The request failed authorization. Possible causes:- Request originated from an unauthorized IP address
- Client certificate subject is not on the API’s authorized list.
- X-DMAAP-DR-ON-BEHALF-OF identity is not authorized to perform
- also in logs we see some strange file: oteNB5309 test.xml.gz isn't it something hard coded (used in csit), generating some nasty errors in log files
Test has been also executed manually and same problem appeared.
Also we tried to turn on TLS by setting use_tls flag to true and setting in consul for DFC and
"dmaap.security.enableDmaapCertAuth": true,
in Consul. Thee were still some issues with path to certificates that are wrongly defined in dfc blueprint loaded by bootstrap and application was not working. **
After correction in consul following configuration started to work but issue with 403 still exists**
dmaap.ftpesConfig.keyCert: /opt/app/datafile/config/cert.jks dmaap.ftpesConfig.keyPasswordPath: /opt/app/datafile/config/jks.pass dmaap.ftpesConfig.trustedCa: /opt/app/datafile/config/trust.jks dmaap.ftpesConfig.trustedCaPasswordPath: /opt/app/datafile/etc/cert/trust.pass dmaap.security.enableDmaapCertAuth:false ---> true dmaap.security.keyStorePasswordPath: /opt/app/datafile/etc/cert/key.pass ---> p12.pass dmaap.security.keyStorePath: /opt/app/datafile/etc/cert/key.p12 ---> cert.p12 dmaap.security.trustStorePasswordPath: /opt/app/datafile/etc/cert/trust.pass dmaap.security.trustStorePath: /opt/app/datafile/etc/cert/trust.jks
Also we tried manually put file to feed:
- user and pass taken from already created feed configuration
- error is same independent form place from which command has been originated/called
- during request both internal dmaap-dr ip/port, external dmaap-dr ip/port has been used an both gave same error
Request:
curl -k -X PUT --user tmp_2j6pq0u8k14mluz:cu8k9ixhcom4spc -H "Content-Type:application/octet-stream" -H "X-DMAAP-DR-META:{\"filetype\":\"gzip\"}" --data-binary @magda_test_1.xml.gz --post301 --location-trusted https://10.74.70.83:30269/publish/1/magda_test_1.xml.gz -vv
Response:
* Trying 10.74.70.83... * TCP_NODELAY set * Connected to 10.74.70.83 (10.74.70.83) port 30269 (#0) * ALPN, offering h2 * ALPN, offering http/1.1 * successfully set certificate verify locations: * CAfile: /etc/ssl/certs/ca-certificates.crt CApath: /etc/ssl/certs * TLSv1.3 (OUT), TLS handshake, Client hello (1): * TLSv1.3 (IN), TLS handshake, Server hello (2): * TLSv1.2 (IN), TLS handshake, Certificate (11): * TLSv1.2 (IN), TLS handshake, Server key exchange (12): * TLSv1.2 (IN), TLS handshake, Request CERT (13): * TLSv1.2 (IN), TLS handshake, Server finished (14): * TLSv1.2 (OUT), TLS handshake, Certificate (11): * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): * TLSv1.2 (OUT), TLS change cipher, Client hello (1): * TLSv1.2 (OUT), TLS handshake, Finished (20): * TLSv1.2 (IN), TLS handshake, Finished (20): * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-SHA384 * ALPN, server did not agree to a protocol * Server certificate: * subject: CN=dmaap-dr-prov; OU=dmaap-dr-prov@dmaap-dr.onap.org:DEV; OU=OSAAF; O=ONAP; C=US * start date: Apr 21 15:14:23 2020 GMT * expire date: Apr 21 15:14:23 2021 GMT * issuer: C=US; O=ONAP; OU=OSAAF; CN=intermediateCA_9 * SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway. * Server auth using Basic with user 'tmp_a1s83q43eocnm1m' > PUT /publish/1/magda_test_1.xml.gz HTTP/1.1 > Host: 10.74.70.83:30269 > Authorization: Basic dG1wX2ExczgzcTQzZW9jbm0xbTo2ZmE1NzJ4eW5ybmxuY24= > User-Agent: curl/7.58.0 > Accept: */* > Content-Type:application/octet-stream > X-DMAAP-DR-META:{"filetype":"gzip"} > Content-Length: 0 > < HTTP/1.1 301 Moved Permanently < Location: https://dmaap-dr-node:8443/publish/1/magda_test_1.xml.gz < Content-Length: 0 < Server: Jetty(9.4.20.v20190813) * HTTP error before end of send, stop sending < * Closing connection 0 * TLSv1.2 (OUT), TLS alert, Client hello (1): * Issue another request to this URL: 'https://dmaap-dr-node:8443/publish/1/magda_test_1.xml.gz' * Trying 10.43.210.192... * TCP_NODELAY set * Connected to dmaap-dr-node (10.43.210.192) port 8443 (#1) * ALPN, offering h2 * ALPN, offering http/1.1 * successfully set certificate verify locations: * CAfile: /etc/ssl/certs/ca-certificates.crt CApath: /etc/ssl/certs * TLSv1.3 (OUT), TLS handshake, Client hello (1): * TLSv1.3 (IN), TLS handshake, Server hello (2): * TLSv1.2 (IN), TLS handshake, Certificate (11): * TLSv1.2 (IN), TLS handshake, Server key exchange (12): * TLSv1.2 (IN), TLS handshake, Server finished (14): * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): * TLSv1.2 (OUT), TLS change cipher, Client hello (1): * TLSv1.2 (OUT), TLS handshake, Finished (20): * TLSv1.2 (IN), TLS handshake, Finished (20): * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-SHA384 * ALPN, server did not agree to a protocol * Server certificate: * subject: CN=dmaap-dr-node; OU=dmaap-dr-node@dmaap-dr.onap.org:DEV; OU=OSAAF; O=ONAP; C=US * start date: Apr 21 15:16:07 2020 GMT * expire date: Apr 21 15:16:07 2021 GMT * issuer: C=US; O=ONAP; OU=OSAAF; CN=intermediateCA_9 * SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway. * Server auth using Basic with user 'tmp_a1s83q43eocnm1m' > PUT /publish/1/magda_test_1.xml.gz HTTP/1.1 > Host: dmaap-dr-node:8443 > Authorization: Basic dG1wX2ExczgzcTQzZW9jbm0xbTo2ZmE1NzJ4eW5ybmxuY24= > User-Agent: curl/7.58.0 > Accept: */* > Content-Type:application/octet-stream > X-DMAAP-DR-META:{"filetype":"gzip"} > Content-Length: 0 > < HTTP/1.1 403 Feed does not exist < Date: Thu, 23 Apr 2020 12:47:11 GMT < Strict-Transport-Security: max-age=2000; includeSubDomains < Content-Length: 0 < Server: Jetty(9.4.20.v20190813) * HTTP error before end of send, stop sending < * Closing connection 1 * TLSv1.2 (OUT), TLS alert, Client hello (1):
- mentioned in
-
Page Loading...