tries to use doas for no reason
fenio opened this issue · 3 comments
I think it has started with 0.17 or maybe with subsequent release:
❯ ~/homelab k0sctl apply --config k0sctl.yaml
⠀⣿⣿⡇⠀⠀⢀⣴⣾⣿⠟⠁⢸⣿⣿⣿⣿⣿⣿⣿⡿⠛⠁⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀█████████ █████████ ███
⠀⣿⣿⡇⣠⣶⣿⡿⠋⠀⠀⠀⢸⣿⡇⠀⠀⠀⣠⠀⠀⢀⣠⡆⢸⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀███ ███ ███
⠀⣿⣿⣿⣿⣟⠋⠀⠀⠀⠀⠀⢸⣿⡇⠀⢰⣾⣿⠀⠀⣿⣿⡇⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀███ ███ ███
⠀⣿⣿⡏⠻⣿⣷⣤⡀⠀⠀⠀⠸⠛⠁⠀⠸⠋⠁⠀⠀⣿⣿⡇⠈⠉⠉⠉⠉⠉⠉⠉⠉⢹⣿⣿⠀███ ███ ███
⠀⣿⣿⡇⠀⠀⠙⢿⣿⣦⣀⠀⠀⠀⣠⣶⣶⣶⣶⣶⣶⣿⣿⡇⢰⣶⣶⣶⣶⣶⣶⣶⣶⣾⣿⣿⠀█████████ ███ ██████████
k0sctl v0.17.2 Copyright 2023, k0sctl authors.
Anonymized telemetry of usage will be sent to the authors.
By continuing to use k0sctl you agree to these terms:
https://k0sproject.io/licenses/eula
INFO ==> Running phase: Connect to hosts
INFO [ssh] 10.10.20.99:22: connected
INFO [ssh] 10.10.20.102:22: connected
ERRO [ssh] 10.10.20.103:22: bash: line 1: doas: command not found
INFO [ssh] 10.10.20.101:22: connected
INFO [ssh] 10.10.20.103:22: connected
It's pretty weird cause it's trying to use it only on one worker while all of them are exactly the same since they are provisioned from the exact same configuration:
apiVersion: k0sctl.k0sproject.io/v1beta1
kind: Cluster
metadata:
name: lab
spec:
hosts:
- ssh:
address: 10.10.20.99
user: root
port: 22
keyPath: ~/.ssh/id_rsa
role: controller
installFlags:
- --disable-components=metrics-server
- --enable-metrics-scraper
- ssh:
address: 10.10.20.101
user: root
port: 22
keyPath: ~/.ssh/id_rsa
role: worker
- ssh:
address: 10.10.20.102
user: root
port: 22
keyPath: ~/.ssh/id_rsa
role: worker
- ssh:
address: 10.10.20.103
user: root
port: 22
keyPath: ~/.ssh/id_rsa
role: worker
```
With reset it's even more weird...
❯ ~/homelab k0sctl reset --config k0sctl.yaml
k0sctl v0.17.2 Copyright 2023, k0sctl authors.
Anonymized telemetry of usage will be sent to the authors.
By continuing to use k0sctl you agree to these terms:
https://k0sproject.io/licenses/eula
? Going to reset all of the hosts, which will destroy all configuration and data, Are you sure? Yes
INFO ==> Running phase: Connect to hosts
ERRO [ssh] 10.10.20.99:22: bash: line 1: sudo: command not found
ERRO [ssh] 10.10.20.99:22: bash: line 1: doas: command not found
INFO [ssh] 10.10.20.99:22: connected
INFO [ssh] 10.10.20.103:22: connected
INFO [ssh] 10.10.20.102:22: connected
ERRO [ssh] 10.10.20.101:22: bash: line 1: doas: command not found
INFO [ssh] 10.10.20.101:22: connected
Does it randomly try to get root while being run as root?
Another try with reinstalled systems
[☸ lab:] [ main]
❯ ~/homelab k0sctl apply --config k0sctl.yaml
⠀⣿⣿⡇⠀⠀⢀⣴⣾⣿⠟⠁⢸⣿⣿⣿⣿⣿⣿⣿⡿⠛⠁⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀█████████ █████████ ███
⠀⣿⣿⡇⣠⣶⣿⡿⠋⠀⠀⠀⢸⣿⡇⠀⠀⠀⣠⠀⠀⢀⣠⡆⢸⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀███ ███ ███
⠀⣿⣿⣿⣿⣟⠋⠀⠀⠀⠀⠀⢸⣿⡇⠀⢰⣾⣿⠀⠀⣿⣿⡇⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀███ ███ ███
⠀⣿⣿⡏⠻⣿⣷⣤⡀⠀⠀⠀⠸⠛⠁⠀⠸⠋⠁⠀⠀⣿⣿⡇⠈⠉⠉⠉⠉⠉⠉⠉⠉⢹⣿⣿⠀███ ███ ███
⠀⣿⣿⡇⠀⠀⠙⢿⣿⣦⣀⠀⠀⠀⣠⣶⣶⣶⣶⣶⣶⣿⣿⡇⢰⣶⣶⣶⣶⣶⣶⣶⣶⣾⣿⣿⠀█████████ ███ ██████████
k0sctl v0.17.2 Copyright 2023, k0sctl authors.
Anonymized telemetry of usage will be sent to the authors.
By continuing to use k0sctl you agree to these terms:
https://k0sproject.io/licenses/eula
INFO ==> Running phase: Connect to hosts
ERRO [ssh] 10.10.20.103:22: bash: line 1: sudo: command not found
ERRO [ssh] 10.10.20.103:22: bash: line 1: doas: command not found
INFO [ssh] 10.10.20.103:22: connected
ERRO [ssh] 10.10.20.99:22: bash: line 1: doas: command not found
INFO [ssh] 10.10.20.99:22: connected
INFO [ssh] 10.10.20.102:22: connected
INFO [ssh] 10.10.20.101:22: connected
It definitely looks like it's random...
It is indeed random, go randomizes the order when iterating over map[string]string which is done when trying to find a suitable sudo method. It should decide to not use any of them when it notices you're uid 0.
The error logging was turned on where it shouldn't have, which just made this visible.