Skip to content

Bugfix 67214 minion swarm #67783

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dnessett wants to merge 6 commits into
base: master
Choose a base branch
from
Open

Bugfix 67214 minion swarm #67783

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
93c03a9
Fix bugs in minionswarm. Updated help with significant enhancements. …
Feb 27, 2025
d63f464
cleaned up some problems with the parser.add_options and added a
Feb 28, 2025
8579bbf
added changelog file
Mar 1, 2025
214cf93
Eliminated some trailing whitespace errors revealed by nox -e lint-tests
Mar 1, 2025
4e58ed6
Pre-commit black and Pre-commit isort fixed problems with tests/minio…
dnessett May 22, 2025
2a0b777
Fix tests/minionswarm.py import + correctness bugs
dwoz Jun 9, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions changelog/67214.fixed.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
Fixed bugs in minionswarm and added ability turn off open-mode.
216 changes: 179 additions & 37 deletions tests/minionswarm.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,7 @@
"""
# pylint: disable=resource-leakage

import getpass
import hashlib
import optparse # pylint: disable=deprecated-module
import os
Expand All @@ -18,10 +19,20 @@
import time
import uuid

import salt
import salt.utils.files
import salt.utils.yaml
import tests.support.runtests
# When this module is executed directly (``python tests/minionswarm.py``)
# the parent of ``tests/`` is not on ``sys.path``, which makes the
# ``from tests.support import runtests`` import below fail. Pre-pend the
# repository root so the script remains runnable without ``PYTHONPATH``
# manipulation. This is a no-op when the module is imported normally
# (e.g. by pytest) because the repository root is already on ``sys.path``.
_REPO_ROOT = os.path.abspath(os.path.join(os.path.dirname(__file__), os.pardir))
if _REPO_ROOT not in sys.path:
sys.path.insert(0, _REPO_ROOT)

import salt # noqa: E402
import salt.utils.files # noqa: E402
import salt.utils.yaml # noqa: E402
from tests.support import runtests # noqa: E402

OSES = [
"Arch",
Expand All @@ -34,25 +45,40 @@
"Solaris",
]
VERS = [
"2014.1.6",
"2014.7.4",
"2015.5.5",
"2015.8.0",
"3006.1",
"3006.5",
"3006.9",
"3007.1",
]


def parse():
"""
Parse the cli options
"""
parser = optparse.OptionParser()
guidance = (
"\n\n To execute salt commands against minionswarm you must include the configuration\n"
" file using the -c option. For commands such as salt, salt-key, salt-cp,\n"
" and salt-run use -c <temp-dir>/master. For example, when using the\n"
" default for --temp-dir, the configuration directory would be\n"
" /tmp/sroot/master. If the master runs on a different machine you\n"
" must execute the command on that machine using the master config file\n"
" there. For the salt-call command, which is a minion side\n"
" command, use -c <tmp-dir>/<name>-<minion number>. For example to\n"
" execute salt-call on the first minion using the default values for\n"
" temp-dir and name use -c /tmp/sroot/minion-0. The commands salt-api,\n"
" salt-cloud, salt-extend, salt-master, salt-minion, salt-proxy,\n"
" salt-ssh, salt-syndic and spm are not supported."
)
usage = "usage: python %prog [options]" + guidance
parser = optparse.OptionParser(usage)
parser.add_option(
"-m",
"--minions",
dest="minions",
default=5,
type="int",
help="The number of minions to make",
help="The number of minions to make (default = 5)",
)
parser.add_option(
"-M",
Expand All @@ -64,19 +90,19 @@ def parse():
parser.add_option(
"--master",
dest="master",
default="salt",
help="The location of the salt master that this swarm will serve",
default="localhost",
help="The location of the salt master that this swarm will serve. (default = localhost) "
"The standard port used by daemon masters is 4506. Masters can be specified using "
"<IP address>:<port>. For example, 192.168.1.2:4506",
)
parser.add_option(
"--name",
"-n",
dest="name",
default="ms",
help=(
"Give the minions an alternative id prefix, this is used "
"when minions from many systems are being aggregated onto "
"a single master"
),
default="minion",
help="Give the minions an alternative id prefix, this is used "
"when minions from many systems are being aggregated onto "
"a single master. (default = minion)",

@bdrx312 bdrx312 Aug 15, 2025

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Don't duplicate a default value in the help text of an OptionParser argument (the same applies to ArgumentParser). Use %default in the help text. With ArgumentParser you can show the defaults for all arguments by setting formatter_class=argparse.ArgumentDefaultsHelpFormatter. I am not sure if OptionParser has similar functionality or not since I haven't really used because ArgumentParser superseded it over a decade ago.

)
parser.add_option(
"--rand-os",
Expand Down Expand Up @@ -111,7 +137,7 @@ def parse():
"--keep-modules",
dest="keep",
default="",
help="A comma delimited list of modules to enable",
help="A comma delimited list of modules to enable. (default = None)",
)
parser.add_option(
"-f",
Expand All @@ -124,26 +150,33 @@ def parse():
parser.add_option(
"--temp-dir",
dest="temp_dir",
default=None,
help="Place temporary files/directories here",
default="/tmp/sroot",
help="Place temporary files/directories here, (default = /tmp/sroot)",
)
parser.add_option(
"--no-clean",
action="store_true",
default=False,
help="Don't cleanup temporary files/directories",
help="Don't cleanup temporary files/directories. "
"If specified, you must manually recursively delete "
"the swarm root (see --temp-dir) before running "
"minionswarm again, e.g., using the default swarm "
"root, rm -fr /tmp/sroot",
)
parser.add_option(
"--root-dir",
dest="root_dir",
default=None,
help="Override the minion root_dir config",
help="Override the minion root_dir config. (default = None)",
)
parser.add_option(
"--transport",
dest="transport",
default="zeromq",
help="Declare which transport to use, default is zeromq",
help="Declare which transport to use, (default = zeromq). Currently, "
"tcp/TLS and ws/TLS are not supported, since they require the "
"establishment of a certificate infrastructure and use of PKI "
"keys managed by that infrastructure.",
)
parser.add_option(
"--start-delay",
Expand All @@ -156,9 +189,22 @@ def parse():
"-c",
"--config-dir",
default="",
help="Pass in a configuration directory containing base configuration.",
help="Pass in a configuration directory containing base configuration. "
"If a configuration directory is specified, at a minimum, it must "
"have a master and minion configuration file and these files "
"must not be empty. For example, each could have a user: <username> "
"entry.",
)
parser.add_option("-u", "--user", default=tests.support.runtests.this_user())
parser.add_option(
"--no-open-mode",
action="store_false",
dest="open_mode",
default=True,
help="Disable open_mode on the Master (require authenticated minion keys). "
"Default leaves open_mode enabled to align this version of minionswarm with "
"the previous version.",
)
parser.add_option("-u", "--user", default=runtests.this_user())

options, _args = parser.parse_args()

Expand Down Expand Up @@ -286,8 +332,11 @@ def start_minions(self):
Iterate over the config files and start up the minions
"""
self.prep_configs()
username = getpass.getuser()
for path in self.confs:
cmd = "salt-minion -c {} --pid-file {}".format(path, f"{path}.pid")
cmd = "salt-minion -c {} --user={} --pid-file {}".format(
path, username, f"{path}.pid"
)
if self.opts["foreground"]:
cmd += " -l debug &"
else:
Expand All @@ -314,7 +363,6 @@ def mkconf(self, idx):
{
"id": minion_id,
"user": self.opts["user"],
"cachedir": os.path.join(dpath, "cache"),
"master": self.opts["master"],
"log_file": os.path.join(dpath, "minion.log"),
"grains": {},
Expand All @@ -329,12 +377,12 @@ def mkconf(self, idx):
minion_pub = os.path.join(self.pki, "minion.pub")
shutil.copy(minion_pem, minion_pkidir)
shutil.copy(minion_pub, minion_pkidir)
data["pki_dir"] = minion_pkidir
data.update({"pki_dir": minion_pkidir})
elif self.opts["transport"] == "tcp":
data["transport"] = "tcp"
data.update({"transport": "tcp"})

if self.opts["root_dir"]:
data["root_dir"] = self.opts["root_dir"]
data.update({"root_dir": self.opts["root_dir"]})

path = os.path.join(dpath, "minion")

Expand All @@ -343,21 +391,64 @@ def mkconf(self, idx):
modpath = os.path.join(os.path.dirname(salt.__file__), "modules")
fn_prefixes = (fn_.partition(".")[0] for fn_ in os.listdir(modpath))
ignore = [fn_prefix for fn_prefix in fn_prefixes if fn_prefix not in keep]
data["disable_modules"] = ignore
data.update({"disable_modules": ignore})

if self.opts["rand_os"]:
data["grains"]["os"] = random.choice(OSES)
if self.opts["rand_ver"]:
data["grains"]["saltversion"] = random.choice(VERS)
if self.opts["rand_machine_id"]:
data["grains"]["machine_id"] = hashlib.md5(minion_id).hexdigest()
try:
minion_id_encode = minion_id.encode(encoding="utf-8", errors="strict")
except UnicodeEncodeError:
print("\n'minion id contains illegal character. Shutting down.")
sys.exit(1)
data["grains"]["machine_id"] = hashlib.md5(minion_id_encode).hexdigest()
if self.opts["rand_uuid"]:
data["grains"]["uuid"] = str(uuid.uuid4())

data = self._update_minion_conf(data)

with salt.utils.files.fopen(path, "w+") as fp_:
salt.utils.yaml.safe_dump(data, fp_)
self.confs.add(dpath)

def _update_minion_conf(self, data): # pylint: disable=W0221
"""
Modify the minion config to contain cachedir and sock_dir definitions. Unless cachedir and sock_dir
are modified as indicated, salt-master will think they are /var/cache/salt and /var/run/salt/master,
respectively, which generally will not exist. Also, specify the extmods directory path and the
pki/minion directory path.
"""

cachdir_path = os.path.join(self.swarm_root, "var/cache/salt/minion")
sock_dir_path = os.path.join(self.swarm_root, "var/run/salt/minion")
extension_modules_dir_path = os.path.join(
self.swarm_root, "var/cache/salt/minion/extmods"
)
pki_dir_path = os.path.join(self.swarm_root, "etc/salt/pki/minion")

try:
os.makedirs(cachdir_path)
except FileExistsError:
# directory already exists
pass
try:
os.makedirs(sock_dir_path)
except FileExistsError:
# directory already exists
pass

data.update(
{
"cachedir": cachdir_path,
"sock_dir": sock_dir_path,
"extension_modules": extension_modules_dir_path,
"pki_dir": pki_dir_path,
}
)
return data

def prep_configs(self):
"""
Prepare the confs set
Expand Down Expand Up @@ -390,9 +481,13 @@ def start(self):

def start_master(self):
"""
Do the master start
Do the master start.. Run the master as the user under which minionswarm runs.
"""
cmd = "salt-master -c {} --pid-file {}".format(self.conf, f"{self.conf}.pid")

username = getpass.getuser()
cmd = "salt-master '--config-dir={}' --user={} --pid-file {}".format(
self.conf, username, f"{self.conf}.pid"
)
if self.opts["foreground"]:
cmd += " -l debug &"
else:
Expand All @@ -401,27 +496,74 @@ def start_master(self):

def mkconf(self): # pylint: disable=W0221
"""
Make a master config and write it'
Make the config file with standard values
"""

data = {}
if self.opts["config_dir"]:
spath = os.path.join(self.opts["config_dir"], "master")
with salt.utils.files.fopen(spath) as conf:
data = salt.utils.yaml.safe_load(conf)
head, tail = os.path.split(self.conf)
if self.opts["transport"] == "tcp":
data.update({"transport": "tcp"})
data.update(
{
"log_file": os.path.join(self.conf, "master.log"),
"open_mode": True, # TODO Pre-seed keys
"pki_dir": os.path.join(head, "pki"),
}
)
data.update({"open_mode": self.opts["open_mode"]})

# TODO Pre-seed keys

os.makedirs(self.conf)
path = os.path.join(self.conf, "master")

data = self._update_master_conf(data)

with salt.utils.files.fopen(path, "w+") as fp_:
salt.utils.yaml.safe_dump(data, fp_)

def _update_master_conf(self, data): # pylint: disable=W0221
"""
Modify the master config to contain cachedir and sock_dir definitions. Unless cachedir and sock_dir
are modified as indicated, salt-master will think they are /var/cache/salt and /var/run/salt/master,
respectively, which generally will not exist.
"""

key_logfile_path = os.path.join(self.swarm_root, "var/log/salt/key")
cachdir_path = os.path.join(self.swarm_root, "var/cache/salt/master")
sock_dir_path = os.path.join(self.swarm_root, "var/run/salt/master")
sqlite_queue_dir_path = os.path.join(self.swarm_root, "var/cache/salt/master")

try:
os.makedirs(cachdir_path)
except FileExistsError:
# directory already exists
pass
try:
os.makedirs(sock_dir_path)
except FileExistsError:
# directory already exists
pass

data.update(
{
"key_logfile": key_logfile_path,
"cachedir": cachdir_path,
"sock_dir": sock_dir_path,
"sqlite_queue_dir": sqlite_queue_dir_path,
}
)

return data

def shutdown(self):
"""
Shutdown master
"""

print("Killing master")
subprocess.call('pkill -KILL -f "python.*salt-master"', shell=True)
print("Master killed")
Expand Down
2 changes: 1 addition & 1 deletion tests/support/runtests.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -50,7 +50,7 @@

import salt.utils.path
import salt.utils.platform
import tests.support.paths as paths
from tests.support import paths

try:
import pwd
Expand Down
Loading