Add source IP for connection in multiplexer error logging #8049

pschisa · 2021-08-24T20:27:10Z

What

The request is to add the source IP and port for the connection causing the issue in the following error message so that the source of the error message can be identified and resolved. Otherwise, the logs are spammed full of these messages and it is very difficult to track down the source to stop them.

Failed to retrieve client pool. Client cluster cluster-name, target cluster cluster-name2, error:
ERROR REPORT:
Original Error: *trace.NotFoundError key "/authorities/host/cluster-name" is not found
Stack Trace:
  /go/src/github.com/gravitational/teleport/lib/backend/memory/memory.go:186 github.com/gravitational/teleport/lib/backend/memory.(*Memory).Get
  /go/src/github.com/gravitational/teleport/lib/backend/report.go:161 github.com/gravitational/teleport/lib/backend.(*Reporter).Get
  /go/src/github.com/gravitational/teleport/lib/backend/wrap.go:89 github.com/gravitational/teleport/lib/backend.(*Wrapper).Get
  /go/src/github.com/gravitational/teleport/lib/services/local/trust.go:207 github.com/gravitational/teleport/lib/services/local.(*CA).GetCertAuthority
  /go/src/github.com/gravitational/teleport/lib/cache/cache.go:942 github.com/gravitational/teleport/lib/cache.(*Cache).GetCertAuthority
  /go/src/github.com/gravitational/teleport/lib/auth/middleware.go:571 github.com/gravitational/teleport/lib/auth.ClientCertPool
  /go/src/github.com/gravitational/teleport/lib/auth/middleware.go:265 github.com/gravitational/teleport/lib/auth.(*TLSServer).GetConfigForClient
  /opt/go/src/crypto/tls/handshake_server.go:141 crypto/tls.(*Conn).readClientHello
  /opt/go/src/crypto/tls/handshake_server.go:40 crypto/tls.(*Conn).serverHandshake
  /opt/go/src/crypto/tls/conn.go:1362 crypto/tls.(*Conn).Handshake
  /go/src/github.com/gravitational/teleport/lib/multiplexer/tls.go:144 github.com/gravitational/teleport/lib/multiplexer.(*TLSListener).detectAndForward
  /opt/go/src/runtime/asm_amd64.s:1374 runtime.goexit
User Message: key "/authorities/host/cluster-name" is not found.

The text was updated successfully, but these errors were encountered:

pschisa · 2021-11-02T14:59:54Z

It would be nice if other multiplexer errors also included source IP. For example, the following error would be much easier to hunt down if the source IP:port of the connection was listed

WARN [MXTLS:1]   Handshake failed. error:[remote error: tls: bad certificate] multiplexer/tls.go:146

pschisa added feature-request Used for new features in Teleport, improvements to current should be #enhancements ux c-aw Internal Customer Reference labels Aug 24, 2021

russjones added the A0 label Aug 25, 2021

pschisa added the c-m Internal Customer Reference label Nov 2, 2021

pschisa changed the title ~~Add source IP for connection in key "/authorities/host/cluster-name" is not found logging~~ Add source IP for connection in multiplexer error logging Nov 2, 2021

pschisa added the c-af Internal Customer Reference label Nov 2, 2021

AntonAM mentioned this issue Sep 28, 2023

Add connection information to multiplexer logs so it's easier to investigate #32712

Merged

AntonAM closed this as completed in #32712 Sep 28, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add source IP for connection in multiplexer error logging #8049

Add source IP for connection in multiplexer error logging #8049

pschisa commented Aug 24, 2021

pschisa commented Nov 2, 2021

Add source IP for connection in multiplexer error logging #8049

Add source IP for connection in multiplexer error logging #8049

Comments

pschisa commented Aug 24, 2021

What

pschisa commented Nov 2, 2021