Cross-project requests fail intermittently

wh0 · February 21, 2023, 6:24pm

test.sh:

#!/bin/sh -eu

ok=0
fail=0

for i in $(seq 100); do
  if curl -sf 'https://(my other project).glitch.me/' >/dev/null; then
    ok=$((ok + 1))
    printf '.'
  else
    fail=$((fail + 1))
    printf 'x'
  fi
done
printf '\nok=%s fail=%s\n' "$ok" "$fail"

$ ./test.sh 
.............x....x..xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
ok=19 fail=81

with added sleep 1 in the loop

$ ./test.sh 
........x..xxxxxxxxxxxxxx.................x...xxxxxxxxxxxxxxxxxxxx...x.....................xxxxxxxxx
ok=54 fail=46

with added sleep 2 in the loop

$ ./test.sh 
xxxxx.......xxxxxxxxxxxxxxxxxx.........xxxxxxxxxxxxxxxx.x....x.xxxxxxxxxxxxxxxxxxxxx....xxxxxxxxxxxx
ok=26 fail=74

another sample without sleep

$ ./test.sh 
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.......x......x........x
ok=21 fail=79

sample curl -v of a failed request (resolved IP address varies)

*   Trying 34.192.64.223...
* Connected to (my other project).glitch.me (34.192.64.223) port 443 (#0)
* found 129 certificates in /etc/ssl/certs/ca-certificates.crt
* found 518 certificates in /etc/ssl/certs
* ALPN, offering http/1.1
* SSL connection using TLS1.2 / ECDHE_RSA_AES_128_GCM_SHA256
*        server certificate verification OK
*        server certificate status verification SKIPPED
*        common name: glitch.com (matched)
*        server certificate expiration date OK
*        server certificate activation date OK
*        certificate public key: RSA
*        certificate version: #3
*        subject: CN=glitch.com
*        start date: Mon, 02 Jan 2023 00:00:00 GMT
*        expire date: Thu, 01 Feb 2024 23:59:59 GMT
*        issuer: C=US,O=Amazon,OU=Server CA 1B,CN=Amazon
*        compression: NULL
* ALPN, server accepted to use http/1.1
> GET / HTTP/1.1
> Host: (my other project).glitch.me
> User-Agent: curl/7.47.0
> Accept: */*
> 
< HTTP/1.1 403 Forbidden
< Server: awselb/2.0
< Date: Tue, 21 Feb 2023 18:22:09 GMT
< Content-Type: text/html
< Content-Length: 118
< Connection: keep-alive
< 
<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>
* Connection #0 to host (my other project).glitch.me left intact

experiments were a few minutes before this post, requesting project had external IP address 3.90.235.84.

jenn · February 22, 2023, 5:17pm

Hi @wh0 - is this something you’ve been experiencing consistently over the past few days or so and do you continue to have this issue? Let me know and I’ll create a ticket!

wh0 · February 22, 2023, 6:37pm

was happening sunday through monday ish. I just tried again and it’s much better now

$ ./test.sh 
....................................................................................................
ok=100 fail=0

jenn · February 22, 2023, 8:09pm

Glad to hear - I’ll make sure they see this thread anyway, I just don’t think we’ll have answers BUT if it happens again let us know and we’ll have this historical info to work from!

wh0 · February 25, 2023, 7:40pm

this is happening again, although from a different project

requester project external ip 44.203.39.10

$ curl -v https://glitch-hello-website.glitch.me/
*   Trying 52.203.115.64...
* Connected to glitch-hello-website.glitch.me (52.203.115.64) port 443 (#0)
* found 129 certificates in /etc/ssl/certs/ca-certificates.crt
* found 518 certificates in /etc/ssl/certs
* ALPN, offering http/1.1
* SSL connection using TLS1.2 / ECDHE_RSA_AES_128_GCM_SHA256
*        server certificate verification OK
*        server certificate status verification SKIPPED
*        common name: glitch.com (matched)
*        server certificate expiration date OK
*        server certificate activation date OK
*        certificate public key: RSA
*        certificate version: #3
*        subject: CN=glitch.com
*        start date: Wed, 22 Feb 2023 00:00:00 GMT
*        expire date: Thu, 01 Feb 2024 23:59:59 GMT
*        issuer: C=US,O=Amazon,CN=Amazon RSA 2048 M01
*        compression: NULL
* ALPN, server accepted to use http/1.1
> GET / HTTP/1.1
> Host: glitch-hello-website.glitch.me
> User-Agent: curl/7.47.0
> Accept: */*
> 
< HTTP/1.1 403 Forbidden
< Server: awselb/2.0
< Date: Sat, 25 Feb 2023 19:40:02 GMT
< Content-Type: text/html
< Content-Length: 118
< Connection: keep-alive
< 
<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>
* Connection #0 to host glitch-hello-website.glitch.me left intact

wh0 · February 27, 2023, 6:13pm

from a project where the external ip is 44.213.63.90

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
ok=0 fail=100

wh0 · March 15, 2023, 10:53pm

from a project where the external ip is 44.203.39.10

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
ok=0 fail=100