-
Notifications
You must be signed in to change notification settings - Fork 5.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
salt-master startup error when not root and files in /etc/salt/minion.d are listable but not readable #29831
Comments
Using 2015.8.3:
|
I can't attach the trace output as a file, so let's include some of it here:
|
@dr4Ke, thanks for the report. |
There should be no need to load grains into a master process. This is expensive and time-consuming. Additionally, it attempts to parse the minion config file which should never be necessary for a master. Closes saltstack#29831
OK, let's see if #30068 does the trick here. |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. If this issue is closed prematurely, please leave a comment and we will gladly reopen the issue. |
@dr4Ke Closing this since very old, and does not have current template tracking metrics. |
@dmurphy18 there already is a new issue: #62428 It is better to keep the oldest version of the issue as the working copy, so information does not get lost and you get a true picture of how long it has been a problem. Especially when they were closed by stale-bot simply because it took the core team too long to get around to them. |
@OrangeDog Normally I would agree with you, but going through cleaning up some of these languishing old issues, Python 2.6 and 2.7. Things have moved on and best to get fresh results with Python 3. And @barneysowood PR should fix the associated issue which should be available very soon. |
I'm using
salt-master
as an unprivileged usersalt
. The salt-minion is running asroot
, or any user besidesalt
.When the
/etc/salt/minion.d
is readable for anyone, but files in it are not readable by usersalt
, the salt-master fails to start with access denied errors:The
salt-master
should ignore theminion.d
directory, imo.A workaround is to deny access to that directory to everyone beside the owner, so that the
salt-master
user can't see these files it can't read.The text was updated successfully, but these errors were encountered: