[SRU] nova errors when keypair starts with 0XG using EC2 API

Bug #983206 reported by Joe Gordon
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Compute (nova)
Fix Released
Low
Joe Gordon
Essex
Fix Released
Undecided
Unassigned
nova (Ubuntu)
Fix Released
Undecided
Unassigned
Precise
Fix Released
Undecided
Unassigned

Bug Description

_try_convert in /nova/api/ec2/ec2utils.py throws a stack trace when the value is a string that starts the same way as a hex or binary value. (0x,0X,0b,0B).

2012-04-13 02:34:56 ERROR nova.api.ec2 [req-6bd2ab84-33b5-459d-98e8-4a113b7d7f3c e3190f0705824709b17a5b6828dd53e9 eeea40f81fe54bea956ab1ad9275c124] Unexpected error raised: invalid literal for int(
) with base 2: '0BKIF4DHWSYTSO8QGS36'
2012-04-13 02:34:56 TRACE nova.api.ec2 Traceback (most recent call last):
2012-04-13 02:34:56 TRACE nova.api.ec2 File "/usr/local/lib/python2.7/dist-packages/nova-2012.1-py2.7.egg/nova/api/ec2/__init__.py", line 582, in __call__
2012-04-13 02:34:56 TRACE nova.api.ec2 result = api_request.invoke(context)
2012-04-13 02:34:56 TRACE nova.api.ec2 File "/usr/local/lib/python2.7/dist-packages/nova-2012.1-py2.7.egg/nova/api/ec2/apirequest.py", line 71, in invoke
2012-04-13 02:34:56 TRACE nova.api.ec2 args = ec2utils.dict_from_dotted_str(self.args.items())
2012-04-13 02:34:56 TRACE nova.api.ec2 File "/usr/local/lib/python2.7/dist-packages/nova-2012.1-py2.7.egg/nova/api/ec2/ec2utils.py", line 221, in dict_from_dotted_str
2012-04-13 02:34:56 TRACE nova.api.ec2 value = _try_convert(value)
2012-04-13 02:34:56 TRACE nova.api.ec2 File "/usr/local/lib/python2.7/dist-packages/nova-2012.1-py2.7.egg/nova/api/ec2/ec2utils.py", line 187, in _try_convert
2012-04-13 02:34:56 TRACE nova.api.ec2 return int(value, 2)
2012-04-13 02:34:56 TRACE nova.api.ec2 ValueError: invalid literal for int() with base 2: '0BKIF4DHWSYTSO8QGS36'
2012-04-13 02:34:56 TRACE nova.api.ec2
2012-04-13 02:34:56 ERROR nova.api.ec2

Related branches

CVE References

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to nova (master)

Fix proposed to branch: master
Review: https://review.openstack.org/6604

Changed in nova:
assignee: nobody → Joe Gordon (joe-gordon0)
status: New → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to nova (master)

Reviewed: https://review.openstack.org/6604
Committed: http://github.com/openstack/nova/commit/c95162e52899618fc269fb536f6a2d3b26b7794d
Submitter: Jenkins
Branch: master

commit c95162e52899618fc269fb536f6a2d3b26b7794d
Author: Joe Gordon <email address hidden>
Date: Fri Apr 13 15:12:04 2012 -0400

    Fix bug 983206 : _try_convert parsing string

    * _try_convert in ec2utils.py didn't handle strings starting with "0x"
    * Added tests to cover bug
    * Add better float support
    * remove unused complex number support

    Change-Id: I382d36f4a8671bcceccfa1ebdbae89a9d2aca207

Changed in nova:
status: In Progress → Fix Committed
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to nova (stable/essex)

Fix proposed to branch: stable/essex
Review: https://review.openstack.org/7244

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to nova (stable/essex)

Reviewed: https://review.openstack.org/7244
Committed: http://github.com/openstack/nova/commit/21e918a8f6e0fd144287ff7fc2ab3d262ac9edd7
Submitter: Jenkins
Branch: stable/essex

commit 21e918a8f6e0fd144287ff7fc2ab3d262ac9edd7
Author: Joe Gordon <email address hidden>
Date: Fri Apr 13 15:12:04 2012 -0400

    Fix bug 983206 : _try_convert parsing string

    * _try_convert in ec2utils.py didn't handle strings starting with "0x"
    * Added tests to cover bug
    * Add better float support
    * remove unused complex number support

    Change-Id: I382d36f4a8671bcceccfa1ebdbae89a9d2aca207
    (cherry picked from commit c95162e52899618fc269fb536f6a2d3b26b7794d)

tags: added: in-stable-essex
Devin Carlen (devcamcar)
Changed in nova:
importance: Undecided → Low
milestone: none → folsom-1
Thierry Carrez (ttx)
Changed in nova:
status: Fix Committed → Fix Released
Chuck Short (zulcss)
Changed in nova (Ubuntu):
status: New → In Progress
Changed in nova (Ubuntu Precise):
status: New → In Progress
Chuck Short (zulcss)
summary: - nova errors when keypair starts with 0XG using EC2 API
+ [SRU] nova errors when keypair starts with 0XG using EC2 API
Revision history for this message
Chuck Short (zulcss) wrote :

** Impact **

When creating an EC2 key with binary or hex characters value ( ie: 0x,0X,0b,0B), results in a traceback:

2012-04-13 02:34:56 ERROR nova.api.ec2 [req-6bd2ab84-33b5-459d-98e8-4a113b7d7f3c e3190f0705824709b17a5b6828dd53e9 eeea40f81fe54bea956ab1ad9275c124] Unexpected error raised: invalid literal for int(
) with base 2: '0BKIF4DHWSYTSO8QGS36'
2012-04-13 02:34:56 TRACE nova.api.ec2 Traceback (most recent call last):
2012-04-13 02:34:56 TRACE nova.api.ec2 File "/usr/local/lib/python2.7/dist-packages/nova-2012.1-py2.7.egg/nova/api/ec2/__init__.py", line 582, in __call__
2012-04-13 02:34:56 TRACE nova.api.ec2 result = api_request.invoke(context)
2012-04-13 02:34:56 TRACE nova.api.ec2 File "/usr/local/lib/python2.7/dist-packages/nova-2012.1-py2.7.egg/nova/api/ec2/apirequest.py", line 71, in invoke
2012-04-13 02:34:56 TRACE nova.api.ec2 args = ec2utils.dict_from_dotted_str(self.args.items())
2012-04-13 02:34:56 TRACE nova.api.ec2 File "/usr/local/lib/python2.7/dist-packages/nova-2012.1-py2.7.egg/nova/api/ec2/ec2utils.py", line 221, in dict_from_dotted_str
2012-04-13 02:34:56 TRACE nova.api.ec2 value = _try_convert(value)
2012-04-13 02:34:56 TRACE nova.api.ec2 File "/usr/local/lib/python2.7/dist-packages/nova-2012.1-py2.7.egg/nova/api/ec2/ec2utils.py", line 187, in _try_convert
2012-04-13 02:34:56 TRACE nova.api.ec2 return int(value, 2)
2012-04-13 02:34:56 TRACE nova.api.ec2 ValueError: invalid literal for int() with base 2: '0BKIF4DHWSYTSO8QGS36'
2012-04-13 02:34:56 TRACE nova.api.ec2
2012-04-13 02:34:56 ERROR nova.api.ec2

** Development Fix **

This has been addressed in the development trunk at: https://review.openstack.org/6604 and fixed in quantal.

** Stable Fix **

This has been addressed in the stable/essex tree at: https://review.openstack.org/7244

** Test Case **

Run the following command:

euca-create-key 0xDD8G > tmp.key

it should not get a traceback in the nova-api.log

** Regression Potential **

Minimal, this is a corner case as well.

Revision history for this message
Steve Langasek (vorlon) wrote : Please test proposed package

Hello Joe, or anyone else affected,

Accepted nova into precise-proposed. The package will build now and be available in a few hours. Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users. If this package fixes the bug for you please change the bug tag from verification-needed to verification-done. If it does not, change the tag to verification-failed. In either case details of your testing will help us make a better decision. Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

Changed in nova (Ubuntu Precise):
status: In Progress → Fix Committed
tags: added: verification-needed
James Page (james-page)
Changed in nova (Ubuntu Precise):
milestone: none → ubuntu-12.04.1
Revision history for this message
Adam Gandelman (gandelman-a) wrote :

Please find the attached Jenkins job results from the Ubuntu Server Team's CI
infrastructure. As part of the verification process for this bug, Nova has
been deployed and configured across multiple nodes using precise-proposed as
an installation source. After successful bring-up and configuration of the
cluster, a number of exercises and smoke tests have be invoked to ensure the
updated package did not introduce any regressions. A number of test iterations
were carried out to catch any possible transient errors.

Note the list of installed packages at the top and bottom of the report.

For records of upstream test coverage of this update, please see the
Jenkins links in the comments of the relevant upstream code-review:

https://review.openstack.org/7244

As per the provisional Micro Release Exception granted to this package by
the Technical Board, we hope this contributes toward verification of this
update.

Dave Walker (davewalker)
tags: added: verification-done
removed: verification-needed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package nova - 2012.1+stable~20120612-3ee026e-0ubuntu1

---------------
nova (2012.1+stable~20120612-3ee026e-0ubuntu1) precise-proposed; urgency=low

  * New upstream snapshot. (LP: #1010473)
  * Dropped, superseeded by new snapshot:
    - debian/patches/upstream/0001-fix-bug-where-nova-ignores-glance-host-in-imageref.patch
    - debian/patches/upstream/0002-Stop-libvirt-test-from-deleting-instances-dir.patch
    - debian/patches/upstream/0003-Allow-unprivileged-RADOS-users-to-access-rbd-volumes.patch
    - debian/patches/upstream/0004-Fixed-bug-962840-added-a-test-case.patch
    - debian/patches/upstream/0005-Populate-image-properties-with-project_id-again.patch
    - debian/patches/upstream/0006-Use-project_id-in-ec2.cloud._format_image.patc
    - debian/patches/CVE-2012-2101.patch
    - debian/patches/CVE-2012-2654.patch
  * Resynchronize with stable/essex:
    - 3ee026e Only invoke .lower() on non-None protocols. (LP: #1010514)
    - f0a9f47 Create a utf8 version of the dns_domains table. (LP: #993663)
    - 84a43e1 Report memory correctly on Xen. (LP: #997014)
    - 8c72924 Add libvirt get_console_output tests: pty and file. (LP: #990237)
    - 4e423cd Fix Multi_Scheduler to process host capabilities. (LP: #1000403)
    - 4aea7f1 Nail pep8 dependencies to 1.0.1
    - 2b3bbc4 handle updated qemu-img info output. (LP: #1000261)
    - 2d7d51c Fix type of snapshot_id column to match db. (LP: #962615)
    - ec70c69 Generate a Changelog for Nova
    - e5e890f Fix nova.tests.test_nova_rootwrap on Fedora 17. (LP: #992916)
    - 9e9a554 Ec2 handle strings with "0x" (LP: #983206)
    - 26dc6b7 QuantumManager will start dnsmasq during startup. Fixes (LP: #977759)
    - 7028d66 Introduced flag base_dir_name. (LP: #973194)
    - 76b525a Get unit tests functional in OS X.
    - facb936 Update KillFilter to handle 'deleted' exe's. (LP: #967931)
    - 1209af4 Checks if value is string or not before decode. (LP: #952176)
    - 1209af4 Fix timeout in EC2 CloudController.create_image(). (LP: #989764)
    - 108e74b Re-add console_log from console_console_output(). (LP: #987335)
    - 48a0768 Don't leak RPC connections on timeouts or other exceptions. (LP: #968843)
    - 7c64de9 Cloudpipe tap vpn not always working. (LP: #975043)
    - 5ab5051 add libvirt_inject_key flag fix (LP: #971640)
    - 6c68ef5 Xen: Pass session to destroy_vdi. (LP: #988615)
    - 015744e Delete fixed_ips when network is deleted. (LP: #754900)
  * Add debian/scripts/changelog.sh to help generate the changelog.
  * Add debian/nova-common.docs:
    - Include changelog and README.rst
  * debian/rules: Generate a tarball from git snapshot.
  * debian/patches/fix-pep8-errors.patch: Fix pep8 errors due to pep8 upstream
    migration.
 -- Chuck Short <email address hidden> Tue, 05 Jun 2012 09:50:59 -0400

Changed in nova (Ubuntu Precise):
status: Fix Committed → Fix Released
Chuck Short (zulcss)
Changed in nova (Ubuntu):
status: In Progress → Fix Released
Thierry Carrez (ttx)
Changed in nova:
milestone: folsom-1 → 2012.2
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.