Page MenuHomePhabricator
Create Task
Maniphest T354320

[webservice] php 7.4 containers don't pass through the environment variables to the scripts
Closed, ResolvedPublicBUG REPORT
Actions

Description

Steps to replicate the issue (include links if applicable):

  • Create a new php7.4 webservice using the old shared images (not buildservice)
  • Add a script like so:
$ mkdir -p public_html
$ cat > public_html/test.php <<EOS
<?php
echo "PHP: ".getenv("TOOL_TOOLSDB_USER")."\n";
?>
EOS

What happens?:
It shows a null value

What should have happened instead?:
It should have shown the toolsdb user instead

Other information (browser name/version, screenshots, etc.):
The environment variables are set in the container:

tools.jupytest@tools-sgebastion-10:~$ kubectl get pods -o yaml | grep -A 2 TOOL
      - name: TOOL_REPLICA_PASSWORD
        valueFrom:
          secretKeyRef:
            key: TOOL_REPLICA_PASSWORD
            name: toolforge.envvar.v1.tool-replica-password
      - name: TOOL_REPLICA_USER
        valueFrom:
          secretKeyRef:
            key: TOOL_REPLICA_USER
            name: toolforge.envvar.v1.tool-replica-user
      - name: TOOL_TOOLSDB_PASSWORD
        valueFrom:
          secretKeyRef:
            key: TOOL_TOOLSDB_PASSWORD
            name: toolforge.envvar.v1.tool-toolsdb-password
      - name: TOOL_TOOLSDB_USER
        valueFrom:
          secretKeyRef:
            key: TOOL_TOOLSDB_USER
            name: toolforge.envvar.v1.tool-toolsdb-user
      - name: HOME

But they seem to be scrubbed somewhere in between.

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
lighthttpd: don't remove environment varsoperations/docker-images/toollabs-imagesmaster+0 -5
Customize query in gerrit

Related Objects
Search...

Event Timeline

dcaro created this task.Jan 4 2024, 8:39 AM
dcaro claimed this task.
dcaro moved this task from Next Up to In Progress on the Toolforge (Toolforge iteration 02) board.
dcaro removed a project: Grid-Engine-to-K8s-Migration.
dcaro added a comment.Jan 4 2024, 8:49 AM

Yep, this is it:
https://gerrit.wikimedia.org/r/plugins/gitiles/operations/software/tools-webservice/+/06e418c6952fcee64d2e63e6d70bdf0dd0c2cad5/toolsws/wstypes/lighttpd.py#609

ENABLE_PHP_CONFIG_TEMPLATE = """
fastcgi.server += ( ".php" =>
        ((
                "bin-path" => "/usr/bin/php-cgi",
                "socket" => "/var/run/lighttpd/php.socket.{toolname}",
                "max-procs" => 2,
                "bin-environment" => (
                        "PHP_FCGI_CHILDREN" => "2",
                        "PHP_FCGI_MAX_REQUESTS" => "500"
                ),
                "bin-copy-environment" => (
                        "PATH", "SHELL", "USER"
                ),
                "broken-scriptfilename" => "enable",
                "allow-x-send-file" => "enable"
         ))
)

bin-copy-environment will remove all the other environment variables and pass through only the given ones.

CodeReviewBot added a project: Patch-For-Review.Jan 4 2024, 9:15 AM

dcaro opened https://gitlab.wikimedia.org/repos/cloud/toolforge/tools-webservice/-/merge_requests/20

lighthttpd: don't remove envvars

dcaro changed the task status from Open to In Progress.Jan 4 2024, 11:17 AM
dcaro moved this task from In Progress to In Review on the Toolforge (Toolforge iteration 02) board.
gerritbot added a comment.Jan 8 2024, 2:06 PM

Change 988498 had a related patch set uploaded (by David Caro; author: David Caro):

[operations/docker-images/toollabs-images@master] lighthttpd: don't remove environment vars

https://gerrit.wikimedia.org/r/988498

dcaro edited projects, added Toolforge (Toolforge iteration 03); removed Toolforge (Toolforge iteration 02).Jan 9 2024, 3:27 PM
dcaro moved this task from Next Up to In Review on the Toolforge (Toolforge iteration 03) board.
dcaro edited projects, added Toolforge (Toolforge iteration 04); removed Toolforge (Toolforge iteration 03).Jan 24 2024, 9:16 AM
dcaro moved this task from Next Up to In Review on the Toolforge (Toolforge iteration 04) board.
gerritbot added a comment.Jan 25 2024, 1:40 PM

Change 988498 merged by jenkins-bot:

[operations/docker-images/toollabs-images@master] lighthttpd: don't remove environment vars

https://gerrit.wikimedia.org/r/988498

dcaro mentioned this in rODIT2c64e77e9cd4: lighthttpd: don't remove environment vars.Jan 25 2024, 3:40 PM
CodeReviewBot added a comment.Jan 26 2024, 3:18 PM

dcaro merged https://gitlab.wikimedia.org/repos/cloud/toolforge/tools-webservice/-/merge_requests/20

lighthttpd: don't remove envvars

Maintenance_bot removed a project: Patch-For-Review.Jan 26 2024, 3:30 PM
CodeReviewBot added a project: Patch-For-Review.Jan 30 2024, 12:32 PM

dcaro opened https://gitlab.wikimedia.org/repos/cloud/toolforge/tools-webservice/-/merge_requests/21

update build scripts

dcaro moved this task from In Review to In Progress on the Toolforge (Toolforge iteration 04) board.Jan 30 2024, 12:39 PM
Stashbot added a comment.Jan 30 2024, 12:39 PM

Mentioned in SAL (#wikimedia-cloud) [2024-01-30T12:39:20Z] <dcaro> rebuilding all the toolforge images (T354320)

CodeReviewBot added a comment.Jan 30 2024, 1:40 PM

dcaro opened https://gitlab.wikimedia.org/repos/cloud/toolforge/tools-webservice/-/merge_requests/22

d/changelog: bump to 0.103.1

CodeReviewBot added a comment.Jan 30 2024, 3:08 PM

dcaro merged https://gitlab.wikimedia.org/repos/cloud/toolforge/tools-webservice/-/merge_requests/22

d/changelog: bump to 0.103.1

dcaro added a comment.Jan 31 2024, 9:27 AM

This should be sorted out already, did a test in tools to verify:

tools.jupytest@tools-sgebastion-10:~$ cat public_html/test.php 
<?php
echo "PHP: -- ".getenv("TOOL_TOOLSDB_USER")."\n";
?>


tools.jupytest@tools-sgebastion-10:~$ curl --silent https://jupytest.toolforge.org/test.php
PHP: -- s55672
dcaro closed this task as Resolved.Jan 31 2024, 9:27 AM
dcaro moved this task from In Progress to Done on the Toolforge (Toolforge iteration 04) board.
dcaro mentioned this in T356377: [toolforge] simplify calling the different toolforge apis from within the containers.Feb 2 2024, 9:07 AM
CodeReviewBot added a comment.Feb 28 2024, 10:52 AM

dcaro opened https://gitlab.wikimedia.org/repos/cloud/toolforge/tools-webservice/-/merge_requests/25

d/changelog: bump to 0.103.2

CodeReviewBot added a comment.Feb 28 2024, 12:03 PM

dcaro merged https://gitlab.wikimedia.org/repos/cloud/toolforge/tools-webservice/-/merge_requests/25

d/changelog: bump to 0.103.2

CodeReviewBot added a comment.Feb 29 2024, 1:50 PM

dcaro opened https://gitlab.wikimedia.org/repos/cloud/toolforge/tools-webservice/-/merge_requests/27

d/changelog: bump to 0.103.3

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits