Hi - I have an odd message in my launcher logs (using the github kolide). Anyone have an idea of what might be causing this? Even just a point in the right direction would be fantastic.

{
  "caller": "query_target.go:75",
  "err": "fetching target memberships: rpc error: code = Unknown desc = OK: HTTP status code 200; transport: received the unexpected content-type \"text/html; charset=utf-8\"",
  "msg": "updating kolide_target_membership data",
  "severity": "error",
  "ts": "2020-01-28T18:28:29.977507Z"
}

kolide_target_membership

is a feature related an earlier version of our SaaS. It’s a debug level warning. I think it should be supressed in current launcher versions.

interesting. i’ve recently rebuilt launcher from the .11.6 tag

Hrm. Clearly not supressed then.

yeah, I just have IT admins complaining (especially on windows) that fills up the event logs

Interesting. https://github.com/kolide/launcher/pull/416/files was supposed to move that to debug

looks like it did not, then

I think it did, but that the error is coming back somewhat differently, so the

if

isn’t firing

you know, I can follow go, but haven't taken the time to really learn. it would be garbage 🙂 I will poke around and perhaps file an issue for someone else to do a more proper PR

I’ll see if I can find time. It shouldn’t be hard to replicate

yeah, it’s on my mac as well. What I posed is from my mac. It’s just easier to ignore on the mac.

Nah. mac is enough. Lemme see if I can re-produce quickly

thx

A quick test case here, does not reproduce this error.

crazy. ok, let me recompile launcher and build a binary and see what happens. Very odd.

And, as I look at your error more… You’re getting html back on an GRPC stream:

desc = OK: HTTP status code 200; transport: received the unexpected content-type \"text/html

oh, everything works

Still… It seems like you’re getting an grpc connection to an http endpoint.

it’s behind nginx acting as a proxy to restrict access to the admin interface.

I’m not really sure how nginx handles this. but I strongly suspect it’s doing something weird. I know there’s been conversation about how to do load balancing and endpoint restrictions, but there are some gotchas/

yeah, I will probably move to something else (maybe traefik?) or just like you say, native AWS ALB

I don’t run fleet, nor have I tried to run grpc stuff in AWS. But I know I’ve seen it discussed here in #kolide

thanks! big big help

np!

thanks btw - just got a chance to really look, and found where I was proxying that grpc endpoint as http/1 and not grpc. all fixed.

Nice! Glad it worked out.

my memory is really foggy on this, but I had found a few endpoints, the ones relevant here are

/kolide.agent.Api

and

kolide.launcher.QueryTarget