You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
Running vault as a user without DBUS_SESSION_BUS_ADDRESS set and no /run/user/<uid>/bus file causes vault to run dbus-launch which launches a persistent dbus-daemon process like this: /usr/bin/dbus-daemon --syslog --fork --print-pid 4 --print-address 6 --session.
A new dbus-daemon will be launched every time vault is run.
The dbus-daemon processes use inotify instances, so if vault is executed enough times (configuration management in our instance) the user running vault will run into the fs.inotify.max_user_instances limit or fd limits causing issues for systemd etc.
To Reproduce
Steps to reproduce the behavior:
Run vault --version with no DBUS_SESSION_BUS_ADDRESS set and no /run/user/<uid>/bus file
See that there is now a new dbus-daemon process running as the user that ran vault.
Expected behavior
There should be no extra processes left running.
Environment:
Vault CLI Version (retrieve with vault version): v1.14.1
Server Operating System/Architecture: Ubuntu 18.04/22.04 amd64
Additional context
This is related to the godbus/dbus issue raised here godbus/dbus#372
Testing this as a workaround does avoid the issue:
The text was updated successfully, but these errors were encountered:
brinnjoyce
changed the title
Running vault v1.14.1 as root launches a forked dbus-daemon
Running vault v1.14.1 without DBUS_SESSION_BUS_ADDRESS set and no /run/user/<uid>/bus launches a persistent dbus-daemon
Aug 25, 2023
Thanks @vegaman for reporting this and providing a workaround.
We ran into this issue too with v1.14.1 and setting the env variable DBUS_SESSION_BUS_ADDRESS=$XDG_RUNTIME_DIR/bus seems to be a proper workaround so far.
Running into this issue on vault version v1.14.3-ent but the workaround did not seem to have any effect, new dbus daemons still seem to be generated each time vault is called.
To be clear, is the workaround just export DBUS_SESSION_BUS_ADDRESS=$XDG_RUNTIME_DIR/bus ?
Also in my environment, XDG_RUNTIME_DIR does not have a value, is that an issue?
Describe the bug
Running
vault
as a user withoutDBUS_SESSION_BUS_ADDRESS
set and no/run/user/<uid>/bus
file causes vault to rundbus-launch
which launches a persistent dbus-daemon process like this:/usr/bin/dbus-daemon --syslog --fork --print-pid 4 --print-address 6 --session
.A new dbus-daemon will be launched every time vault is run.
The dbus-daemon processes use inotify instances, so if vault is executed enough times (configuration management in our instance) the user running vault will run into the
fs.inotify.max_user_instances
limit or fd limits causing issues for systemd etc.To Reproduce
Steps to reproduce the behavior:
vault --version
with noDBUS_SESSION_BUS_ADDRESS
set and no/run/user/<uid>/bus
filedbus-daemon
process running as the user that ran vault.Expected behavior
There should be no extra processes left running.
Environment:
vault version
): v1.14.1Additional context
This is related to the godbus/dbus issue raised here godbus/dbus#372
Testing this as a workaround does avoid the issue:
The text was updated successfully, but these errors were encountered: