Unable to rootwrap kill some processes when running from a virtualenv
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
oslo.rootwrap |
Won't Fix
|
Low
|
Unassigned |
Bug Description
I'm running stable/juno in a virtualenv, and I'm getting errors like this when neutron's l3 agent tries to kill stale metadata agent processes:
/opt/openstack/
This occurs because the absolute path of the python exe in question is /opt/openstack/
Could the filter also check the paths configured in exec_dirs for binaries?
I was able to fix this myself by changing secure_path in the sudoers file:, eg:
Defaults:neutron !requiretty path="/ usr/local/ sbin:/usr/ local/bin: /usr/sbin: /usr/bin: /sbin:/ bin:/opt/ openstack/ venv/neutron/ bin"
Defaults secure_
neutron ALL = (root) NOPASSWD: /opt/openstack/ venv/neutron/ bin/neutron- rootwrap /etc/neutron/ rootwrap. conf *
I will still surprised that exec_dirs wasnt checked though, so I'll leave the bug open even if this is more of a documentation thing.