Executable vault password file doesnt work
288 views
Skip to first unread message
Ankur Porwal
Jan 6, 2021, 6:59:45 AM1/6/21
to Ansible Project
Hi All,
I hope you all are doing good in these trying times !!
I am working on a POC for using a executable file as my ansible vault password.
So my ansible command to run playbook looks something like this
ansible-playbook srev_user.yml --vault-id /etc/ansible/my-client.py -vvv
and my-client.py script looks like this
import subprocess
cmd = subprocess.Popen(["echo", "abc123"])
cmd.wait()
cmd = subprocess.Popen(["echo", "abc123"])
cmd.wait()
so this script output to "abc123" which is my ansible password.
But this doesnt work and shows bellow error
[WARNING]: Error in vault password file loading (None): Problem running vault password client script /etc/ansible/my-client.py ([Errno 8] Exec
format error). If this is not a script, remove the executable bit from the file.
ERROR! Problem running vault password client script /etc/ansible/my-client.py ([Errno 8] Exec format error). If this is not a script, remove the executable bit from the file.
format error). If this is not a script, remove the executable bit from the file.
ERROR! Problem running vault password client script /etc/ansible/my-client.py ([Errno 8] Exec format error). If this is not a script, remove the executable bit from the file.
Please suggest on the same.
Regards,
Ankur Porwal
Antony Stone
Jan 6, 2021, 7:05:09 AM1/6/21
to ansible...@googlegroups.com
On Wednesday 06 January 2021 at 12:59:45, Ankur Porwal wrote:
> ERROR! Problem running vault password client script
> /etc/ansible/my-client.py ([Errno 8] Exec format error). If this is not a
> script, remove the executable bit from the file.*
> ERROR! Problem running vault password client script
> /etc/ansible/my-client.py ([Errno 8] Exec format error). If this is not a
What are the ownership and permissions on that file?
Antony.
--
Schrödinger's rule of data integrity: the condition of any backup is unknown
until a restore is attempted.
Please reply to the list;
please *don't* CC me.
Felix Fontein
Jan 6, 2021, 7:08:20 AM1/6/21
to ansible...@googlegroups.com
Hi,
> > ERROR! Problem running vault password client script
> > /etc/ansible/my-client.py ([Errno 8] Exec format error). If this is
> > not a script, remove the executable bit from the file.*
>
> What are the ownership and permissions on that file?
from the error message, it looks like it is executable.
Maybe the shebang (https://en.wikipedia.org/wiki/Shebang_(Unix)) is
missing inside the script?
Cheers,
Felix
> > ERROR! Problem running vault password client script
> > /etc/ansible/my-client.py ([Errno 8] Exec format error). If this is
> > not a script, remove the executable bit from the file.*
>
> What are the ownership and permissions on that file?
Maybe the shebang (https://en.wikipedia.org/wiki/Shebang_(Unix)) is
missing inside the script?
Cheers,
Felix
Ankur Porwal
Jan 6, 2021, 7:10:20 AM1/6/21
to Ansible Project
I have provided full permission '777' on the file my-client.py
Antony Stone
Jan 6, 2021, 7:22:42 AM1/6/21
to ansible...@googlegroups.com
On Wednesday 06 January 2021 at 13:10:20, Ankur Porwal wrote:
> On Wednesday, 6 January 2021 at 17:35:09 UTC+5:30 Antony Stone wrote:
> >
> > What are the ownership and permissions on that file?
> On Wednesday, 6 January 2021 at 17:35:09 UTC+5:30 Antony Stone wrote:
> >
> > What are the ownership and permissions on that file?
> I have provided full permission '777' on the file my-client.py
Ugh!
Please change that to 700 and ensure that it is owned by the ansible user.
Also check the shebang line (which wasn't quoted in your original posting) as
suggested by Felix.
Antony.
--
BASIC is to computer languages what Roman numerals are to arithmetic.
Ankur Porwal
Jan 6, 2021, 8:50:51 AM1/6/21
to Ansible Project
Thank you Felix and Antony.
After changing permission and adding shebang it worked.
Regards,
Ankur Porwal
Reply all
Reply to author
Forward
0 new messages