Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[release-1.26] "FATA [0000] permission denied" when /var is mounted noexec #7501

Closed
brandond opened this issue May 9, 2023 · 1 comment
Closed

[release-1.26] "FATA [0000] permission denied" when /var is mounted noexec #7501

brandond opened this issue May 9, 2023 · 1 comment
Assignees
@brandond @fmoral2
Milestone
v1.26.5+k3s1

Comments

@brandond
Copy link
Member

brandond commented May 9, 2023

@brandond brandond added this to the v1.26.5+k3s1 milestone May 9, 2023
@brandond brandond self-assigned this May 9, 2023
@brandond brandond mentioned this issue May 10, 2023
Merged
@brandond brandond moved this from New to Peer Review in K3s Development May 10, 2023
@brandond brandond moved this from Peer Review to To Test in K3s Development May 11, 2023
@fmoral2
Copy link
Contributor

fmoral2 commented May 15, 2023

Validated on Version:

- k3s version v1.26.5+k3s-ad41fb8c -commit id = 8312c171b203c67256e8a0feae2d5036ee64e1b6

Environment Details

Infrastructure
Cloud EC2 instance

Node(s) CPU architecture, OS, and Version:
PRETTY_NAME="SUSE Linux Enterprise Server 15 SP4"

Cluster Configuration:
1 node

Config.yaml:

cat /etc/rancher/k3s/config,yaml
write-kubeconfig-mode: 644
token: test

Steps to validate the fix

  1. Add a tmpfs mount to /var in fstab with noexec
  2. reboot server
  3. Try to install k3s server
  4. Check the logs for the new error msg

Validation Results:

###########    Issue     ###########


v1.24.13+k3s-280e058f (280e058f)


~$ k3s --version

k3s version v1.26.5+k3s1

$ sudo vi /etc/fstab
tmpfs                   /var                tmpfs   defaults,nodev,nosuid,noexec        0 0

$ sudo reboot


$ curl https://get.k3s.io | INSTALL_K3S_COMMIT=8312c171b203c67256e8a0feae2d5036ee64e1b6  sh -s - server --cluster-init --token secret --prefer-bundled-bin --write-kubeconfig-mode=644

time="2023-05-15T20:28:23Z" level=fatal msg="exec /var/lib/rancher/k3s/data/3a5a046ca7504505788f8ab75ca8189219b088c6700b1e19a7aa5e755eb5bde9/bin/k3s-server failed: permission denied"

@fmoral2 fmoral2 closed this as completed May 15, 2023
@github-project-automation github-project-automation bot moved this from To Test to Done Issue in K3s Development May 15, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@brandond brandond

@fmoral2 fmoral2

Labels
None yet
Projects
K3s Development
Archived in project
Milestone
v1.26.5+k3s1
Development

No branches or pull requests
2 participants
@brandond @fmoral2