Ask Your Question
0

PE-Puppetserver fails to start, permission error on included module script

asked 2016-05-09 21:47:48 -0500

mike.r gravatar image

Seems like weird design,

my PE Puppetserver isnt starting, looking at puppetserver.log, its choking on permissions on some shell scripts inside one of my installed modules.

    at clojure.lang.RestFn.invoke(RestFn.java:512) [puppet-server-release.jar:na]
    at clojure.lang.Var.invoke(Var.java:409) [puppet-server-release.jar:na]
    at clojure.lang.AFn.applyToHelper(AFn.java:178) [puppet-server-release.jar:na]
    at clojure.lang.Var.applyTo(Var.java:700) [puppet-server-release.jar:na]
    at clojure.main.main(main.java:37) [puppet-server-release.jar:na]
**Caused by: java.io.FileNotFoundException: /etc/puppetlabs/code/environments/production/modules/cis/files/linuxcontrols/scripts/f0000.sh (Permission denied)**
    at java.io.FileInputStream.open0(Native Method) ~[na:1.8.0_71]
    at java.io.FileInputStream.open(FileInputStream.java:195) ~[na:1.8.0_71]
    at java.io.FileInputStream.<init>(FileInputStream.java:138) ~[na:1.8.0_71]

the SH script had 750 permission,

-rwxr-x---. 1 root root 264 May 5 13:37 f0000.sh

after changing the perms to 755, the puppetserver had no issues starting.

Is this by design or is this a bug? A faulty or inadequate module file can break PE server from starting up?

my env: puppet master on Centos7, version 4.3.2

 [root@puppetmaster3 ~]# rpm -qa | grep puppet
pe-puppetdb-3.2.4-1.el7.noarch
puppet-agent-1.3.6-1.el7.x86_64
pe-puppet-license-cli-0.1.7.20-1.pe.el7.noarch
pe-puppetserver-2.2.41-1.el7.noarch
pe-puppetdb-termini-3.2.4-1.el7.noarch

pe-puppet-enterprise-release-2015.3.3.0-1.pe.el7.noarch

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2016-05-11 11:38:03 -0500

puppet runs as the user puppet (usually!) - all puppet files should be owned by this user. these files are describing an end state you want systems to be in - within these files you can say runas/owner= etc etc

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2016-05-09 21:47:48 -0500

Seen: 83 times

Last updated: May 11 '16