ROS Resources: Documentation | Support | Discussion Forum | Index | Service Status | ros @ Robotics Stack Exchange
Ask Your Question
2

ros2: start node with sudo rights

asked 2021-01-19 09:10:56 -0600

urczf gravatar image

updated 2021-01-19 10:21:19 -0600

Hi,

as I have some nodes on a Raspi requiring access to the hardware, some of my nodes need to be started with sudo rights.

The easiest, but imho undesirable solution, is to open a shell with sudo -s and afterwards start the node. However, this is not really user-friendly. Is there a better solution for that? As mentioned in this post, launch-prefix may be used. However, this is a solution for ROS1. I gave it a try, and this results in errors. If I set the launch-prefix to either sudo or sudo -E, the following error occurs:

[INFO] [launch]: Default logging verbosity is set to INFO
[INFO] [led_strip_node-1]: process started with pid [20011]                                                          
[led_strip_node-1] Traceback (most recent call last):
[led_strip_node-1]   File "/home/pi/vehicle_workspace/install/vehicle_hardware/lib/vehicle_hardware/led_strip_node", line 33, in <module>
[led_strip_node-1]     sys.exit(load_entry_point('vehicle-hardware', 'console_scripts', 'led_strip_node')())         
[led_strip_node-1]   File "/home/pi/vehicle_workspace/install/vehicle_hardware/lib/vehicle_hardware/led_strip_node", line 22, in importlib_load_entry_point
[led_strip_node-1]     for entry_point in distribution(dist_name).entry_points                                       
[led_strip_node-1]   File "/home/pi/vehicle_workspace/env/lib/python3.7/site-packages/importlib_metadata/__init__.py", line 549, in distribution
[led_strip_node-1]     return Distribution.from_name(distribution_name)                                              
[led_strip_node-1]   File "/home/pi/vehicle_workspace/env/lib/python3.7/site-packages/importlib_metadata/__init__.py", line 206, in from_name
[led_strip_node-1]     raise PackageNotFoundError(name)
[led_strip_node-1] importlib_metadata.PackageNotFoundError: vehicle-hardware                                         
[ERROR] [led_strip_node-1]: process has died [pid 20011, exit code 1, cmd 'sudo -E /home/pi/vehicle_workspace/install/vehicle_hardware/lib/vehicle_hardware/led_strip_node --ros-args'].

Thanks in advance! urczf

edit retag flag offensive close merge delete

Comments

Wouldn't the 'best' solution be to make sure the user starting the ROS nodes has the access rights, instead of starting a whole node with root privileges?

What about writing a udev rule which allows a certain group read/write access? And then make your $USER a member of that group.

That's a very common approach which completely removes the need for running ROS nodes as root (which from a security perspective is not a very nice thing to do).

gvdhoorn gravatar image gvdhoorn  ( 2021-01-19 11:33:09 -0600 )edit

The questen is why do you need root rights, because it is not windows so you could solfe the problem buy adding you user to some groups.

duck-development gravatar image duck-development  ( 2021-01-19 12:50:14 -0600 )edit

Isn't this exactly what I wrote in my comment?

gvdhoorn gravatar image gvdhoorn  ( 2021-01-19 13:09:46 -0600 )edit

We need to access /dev/mem which is not possible with udev rules. By adding $USER to the root group would imply that by default I have always su rights, which is not what I want.

urczf gravatar image urczf  ( 2021-01-20 10:12:18 -0600 )edit

Are these GPIOs you're trying to access? I remember similar questions but in a ROS 1 context and I believe the solution was to use /dev/gpiomem instead of /dev/mem directly.

As to your issue: it's likely the environment of your process is getting sanatised, leading to the PYTHONPATH no longer containing the required packages.

gvdhoorn gravatar image gvdhoorn  ( 2021-01-20 10:36:34 -0600 )edit
add a comment

1 Answer

Sort by ยป oldest newest most voted
0

answered 2022-04-18 12:10:10 -0600

francisc0garcia gravatar image

Hi there,

This launch config works for my use case (Raspberry Pi 4 - ROS2 Galactic - run node as root with access to GPIO). You might need to add your user to /etc/sudoers to skip password prompt. 

from launch import LaunchDescription
from launch_ros.actions import Node

def generate_launch_description():
    return LaunchDescription([
        Node(
            package='my_package',
            executable='my_node',
            namespace="",
            name='my_node',
            # Launch the node with root access (GPIO) in a shell
            prefix=["sudo -E env \"PYTHONPATH=$PYTHONPATH\" \"LD_LIBRARY_PATH=$LD_LIBRARY_PATH\" \"PATH=$PATH\" \"USER=$USER\"  bash -c "],
            shell=True,
        ),
    ])
edit flag offensive delete link more
add a comment

Question Tools

2 followers

subscribe to rss feed

Stats

Asked: 2021-01-19 09:10:56 -0600

Seen: 3,888 times

Last updated: Apr 18 '22

Related questions

Can I call one .launch file from another .launch file?

Spawn and kill nodes from nodes/smach

Debug output within a launch file

How do I run .launch files?

combining launch files doesn't give same behavior: order / timing of ik solver

Multiple Kinects - 2nd openni_node never publishes anything

launch a node within another node

openni camera launch multikinect

What is the manifest.xml convention for dependencies of launch files?

roslaunch ocl deployer node does not recognize '-s foo.ops --'

ROS Answers is licensed under Creative Commons Attribution 3.0 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2