transport: error while dialing: dial unix /tmp/plugin1193340813: connect: no such file or directory #220
Comments
|
@jtabbert Thanks for the report. The Artifactory plugin code doesn't use the My guess is that Oracle plugin is a database plugin whereas Artifactory one is a secrets plugin, and perhaps Vault treats them differently. Have you tried setting a different tmp dir using the |
|
Hi Alex, Thanks for your response RE: plugin_tmpdir Hashi documentation for this setting indicate “If not set, Vault will use the system's default directory for temporary files. Generally not necessary unless you are using containerized plugins and Vault does not share a temporary folder with other processes, such as if using systemd's PrivateTmp setting.” In our case we are using PrivateTmp=yes in systemd unit file. We have not attempted to use another tmp dir using this configuration setting RE: tmp directory is not used by Artifactory plugin code Using lsof we can see that vault process has created the /tmp/plugin2262638940 file in systemd private tmp and not the plugin binary itself. We have engaged HashiCorp Support to further discuss regarding plugin architecture and UNIX socket files for inter-process communications. Are you able to shed any light here from your experience? I can imagine in your environment this tmp file is created similarly However, please note that lsof for the artifactory-secrets-plugin process did indicate an open tmp file, Vault Operational logs also indicate this tmp file was created, however this file could not be located on the system. So I am unclear about the statement that plugin does not use tmp directory at all Thanks and regards, |
@jtabbert By that I mean the code isn't directly using the temp directory for files, streams, etc. It is possible that the Vault SDK utilizes the temp directory when the plugin uses its functionality. My guess would be something like logging which needs to be sent back to the Vault process in order to be consolidated with other Vault and plugin logs. I'm interested in Vault response, so if you can please keep me informed. Thanks! |
Describe the bug
transport: error while dialing: dial unix /tmp/plugin1193340813: connect: no such file or directoryIn our environment, we have implemented JFrog Artifactory Secrets Engine v1.5.0
We have followed the usual approach to install plugin binary on the filesystem, register the plugin using Vault CLI, mount the engine and configure. Plugin was working well for some time.
After an unknown amount of time (3 weeks? 2 months?) we experienced issue interacting with the mount:
Restarting the Vault service resolved the issue
We have confirmed that there is no process which cleans the PrivateTmp dir, RHEL 8 OS specifically excludes PrivateTmp directories and no external process is cleaning this dir.
We were not able to identify any issue by review Vault operational or audit logs or OS logs (dmesg/journalctl)
To Reproduce
Steps to reproduce the behavior:
This has been a challenging error to reproduce. This error has occurred in 2 dev environments, and also UAT environment.
The internal investigation has shown that this error is specific to the JFrog Artifactory secrets engine. The Vault Oracle custom plugin is not experiencing this error and has been operating normally.
It's our understanding that if the /tmp directory contents are deleted it would cause this error, but as stated above this appears to not be the case as the Oracle plugin is working without issue.
This issue is preventing the secrets engine from being used in production
We will continue to determine steps to reproduce.
Requirements for and issue
curlit at$host/artifactory/api/system/versionExpected behavior
Vault Artifactory plugin continues to operate & communicate with Vault process
Screenshots
n/a
Desktop (please complete the following information):
n/a
Smartphone (please complete the following information):
n/a
Additional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: