Public bug reported: The current versions of sosreport (3.9 on Bionic and 4.0 on Focal) do not appear to support passing the --upload-url to a non-Canonical URL, for example a LAN-side host to collect those sosreports.
sudo sosreport --batch -o pci --upload --upload- url=https://10.0.1.112/sos/ This results in the error of: Your sosreport has been generated and saved in: /tmp/sosreport-autosos-2020-10-27-chnzdgv.tar.xz Size 7.04KiB Owner root md5 3095adb8d50728e477ee2fecd056296f Please send this file to your support representative. Upload attempt failed: No upload destination provided by policy or by --upload-url Additionally, when configuring a reproducer (nginx configured with SSL + PUT support), sosreport appears to ignore that endpoint, and fails with: Upload attempt failed: No upload destination provided by policy or by --upload-url Updating the `/usr/lib/python3/dist-packages/sos/policies/ubuntu.py` file to hard-code the internal, self-signed SSL URI (_upload_url), produces the following error when attempted: Upload attempt failed: HTTPSConnectionPool(host='10.0.1.112', port=443): Max retries exceeded with url: /sosreport-autosos- focal-2020-10-27-ocmbmws.tar.xz (Caused by SSLError(SSLError("bad handss_process_server_certificate', 'certificate verify failed')])"))) There does not appear to be a way to tell sosreport to ignore a self- signed certificate, or ignore verification of that certificate, even when it's correctly imported into /usr/local/share/ca-certificates/ and added to the client cert chain. There is a temporary workaround, using curl to directly push that file to the nginx endpoint, using: sudo curl -k -T sosreport-autosos-focal-2020-10-27-tugrwdk.tar.xz https://10.0.1.112/ But sosreport itself, does not appear to support custom URLs, nor self- signed certificates. ** Affects: sosreport (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1901786 Title: upload options do not support local SSL urls nor self-signed certificates To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sosreport/+bug/1901786/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
