Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vaultwarden 1.28.0 released #25

Closed
igogold opened this issue Mar 29, 2023 · 1 comment
Closed

Vaultwarden 1.28.0 released #25

igogold opened this issue Mar 29, 2023 · 1 comment

Comments

@igogold
Copy link
Contributor

igogold commented Mar 29, 2023
edited
Loading

Please update playbook to use a new 1.28.0 release of Vaultwarden server.

Also simple addition of var vaultwarden_version: 1.28.0 doesn't work. mash-vaultwarden.service exits with an error, in the log:

мар 29 10:13:53 mash systemd[1]: Starting Vaultwarden (mash-vaultwarden)...
мар 29 10:13:54 mash mash-vaultwarden[1567406]: 9c9b3eddd1afcd635187f5486762da020d983b1ab0639861726bfd2abc7486e8
мар 29 10:13:54 mash systemd[1]: Started Vaultwarden (mash-vaultwarden).
мар 29 10:13:55 mash mash-vaultwarden[1567491]: /start.sh: exec: line 25: /vaultwarden: Operation not permitted
мар 29 10:13:55 mash systemd[1]: mash-vaultwarden.service: Main process exited, code=exited, status=126/n/a
мар 29 10:13:55 mash systemd[1]: mash-vaultwarden.service: Failed with result 'exit-code'.
мар 29 10:14:25 mash systemd[1]: mash-vaultwarden.service: Scheduled restart job, restart counter is at 1.
мар 29 10:14:25 mash systemd[1]: Stopped Vaultwarden (mash-vaultwarden).

It seems docker --cap-drop=ALL option is the root of this issue. But on 1.27.0 it works well.

After removing --cap-drop=ALL line from service template the container run successfully. This is a workaround, not a fix though.
spantaleev added a commit that referenced this issue Mar 29, 2023
@spantaleev
Upgrade Vaultwarden (v1.27.0-2 -> v1.28.0-0)
daebb69 
Fixes #25
@spantaleev
Copy link
Member

The permission problems are related to dani-garcia/vaultwarden#3386

Our Ansible role includes a workaround which adds the additional NET_BIND_SERVICE capability. When/if the upstream issue gets resolved, we'll be able to drop it.

spantaleev added a commit to mother-of-all-self-hosting/ansible-role-vaultwarden that referenced this issue Apr 3, 2023
@spantaleev
Upgrade (1.28.0 -> 1.28.1) and drop NET_BIND_SERVICE workaround
acbf11e 
Related to:

- mother-of-all-self-hosting/mash-playbook#25
- dani-garcia/vaultwarden#3387
- dani-garcia/vaultwarden#3403
oliverlorenz pushed a commit to oliverlorenz/ansible-role-matterbridge that referenced this issue Jun 21, 2024
@spantaleev
Upgrade (1.27.0 -> 1.28.0)
91d8559 
Fixes mother-of-all-self-hosting/mash-playbook#25
oliverlorenz pushed a commit to oliverlorenz/ansible-role-matterbridge that referenced this issue Jun 21, 2024
@spantaleev
Upgrade (1.28.0 -> 1.28.1) and drop NET_BIND_SERVICE workaround
0637a2a 
Related to:

- mother-of-all-self-hosting/mash-playbook#25
- dani-garcia/vaultwarden#3387
- dani-garcia/vaultwarden#3403
oliverlorenz pushed a commit to oliverlorenz/ansible-role-matterbridge that referenced this issue Jun 21, 2024
@spantaleev
Initial commit
38a2d86 
Fix incorrect tag

Do not mount timezone files

Rocky Linux 9 does not have an `/etc/timezone` file,
which begs the question: why even do this?

Upgrade (1.27.0 -> 1.28.0)

Fixes mother-of-all-self-hosting/mash-playbook#25

Switch from docker.io to ghcr.io

Upgrade (1.28.0 -> 1.28.1) and drop NET_BIND_SERVICE workaround

Related to:

- mother-of-all-self-hosting/mash-playbook#25
- dani-garcia/vaultwarden#3387
- dani-garcia/vaultwarden#3403

Upgrade (1.28.1 -> 1.29.0) and remove dedicated WebSocket port

As per dani-garcia/vaultwarden#3404,
we no longer need a dedicated websocket port.

Upgrade (1.29.0 -> 1.29.1)

Add missing Project source code URL annotation

Upgrade (1.29.1 -> 1.29.2)

Split vaultwarden_container_additional_networks into vaultwarden_container_additional_networks_auto and vaultwarden_container_additional_networks_custom

Add a variable dedicated to the --hostname parameter of the service unit file, default value is vaultwarden_hostname

Simplify labels

Upgrade (1.29.2 -> 1.30.0)

Upgrade (1.30.0 -> 1.30.1)

Stop the container gracefully, instead of outright killing it

Add vaultwarden_systemd_wanted_systemd_services_list and split required services list into multiple vars

Upgrade (1.30.1 -> 1.30.2)

Upgrade (1.30.2 -> 1.30.3)

copied to own repository
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@spantaleev @igogold