airship/divingbell
Code Issues Proposed changes

perm: Optionally ignore missing files

Browse Source 
The default behavior of divingbell-perm is to fail when trying to assign
permissions to non-existent files.

This change adds an option to values.yaml to skip any missing files and
proceed with the rest of the assignments.

    conf:
      perm:
        ignore_missing: true   # default is false

This may be useful in cases where files will never exist on a node, or
cases where the file does not exist yet, but will exist later. Note that
with this option enabled, a run in which files are skipped is considered
successful, so the rerun_policy and rerun_interval will determine if and
when another attempt will be made.

Change-Id: I15505d6292dda66942c66eea5a4d0666bd6bdfa7
This commit is contained in:
Phil Sphicas 2021-09-07 16:32:41 +00:00
parent c8eba1688c
commit caa7b4e833
3 changed files with 49 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
divingbell/templates/bin/_perm.sh.tpl
View File

@ -46,8 +46,18 @@ add_single_perm(){
local permissions="${4}" local permissions="${4}"
# check if file exists # check if file exists
[ -e $path ] || return 1
# if set -e is set the entire script will exit # if set -e is set the entire script will exit
# unless values has `conf: { perm: { ignore_missing: true } }`
if [ ! -e $path ]; then
local msg="$path does not exist"
if {{ index (index .Values "conf" "perm" | default dict) "ignore_missing" | default false }}; then
log.WARN "${msg}, skipping"
return 0
else
log.ERROR "${msg}"
return 1
fi
fi
# construct backup name # construct backup name
local file_name=$(systemd-escape $path) local file_name=$(systemd-escape $path)

1
divingbell/values.yaml
View File

@ -38,6 +38,7 @@ conf:
# rerun_policy: always # rerun_policy: always
# 86400 = 1 day # 86400 = 1 day
# rerun_interval: 86400 # rerun_interval: 86400
# ignore_missing: false
# paths: # paths:
# - # -
# path: '/boot/System.map-*' # path: '/boot/System.map-*'

37
tools/gate/scripts/020-test-divingbell.sh
View File

@ -770,6 +770,43 @@ test_perm(){
_test_perm_value ${p_test_file1} root shadow 640 _test_perm_value ${p_test_file1} root shadow 640
_test_perm_value ${p_test_file2} ${p_test_file2##*.} ${p_test_file2##*.} 777 _test_perm_value ${p_test_file2} ${p_test_file2##*.} ${p_test_file2##*.} 777
echo "[SUCCESS] Backup test for perm passed successfully" >> "${TEST_RESULTS}" echo "[SUCCESS] Backup test for perm passed successfully" >> "${TEST_RESULTS}"
# Test missing files (default behavior, fail on missing files)
echo "conf:
perm:
paths:
-
path: /does/not/exist
owner: 'root'
group: 'shadow'
permissions: '0640'
-
path: ${p_test_file2}
owner: 'root'
group: 'shadow'
permissions: '0640'" > "${overrides_yaml}"
install_base "--values=${overrides_yaml}"
get_container_status perm ignore_failure
_test_perm_value ${p_test_file2} ${p_test_file2##*.} ${p_test_file2##*.} 777
echo '[SUCCESS] perm test fail on missing files passed successfully' >> "${TEST_RESULTS}"
# Test missing files (ignore_missing=true, continue if files are missing)
echo "conf:
perm:
ignore_missing: true
paths:
-
path: /does/not/exist
owner: 'root'
group: 'shadow'
permissions: '0640'
-
path: ${p_test_file2}
owner: 'root'
group: 'shadow'
permissions: '0640'" > "${overrides_yaml}"
install_base "--values=${overrides_yaml}"
get_container_status perm
_test_perm_value ${p_test_file2} root shadow 640
echo '[SUCCESS] perm test ignore_missing passed successfully' >> "${TEST_RESULTS}"
# Test invalid rerun_interval (too short) # Test invalid rerun_interval (too short)
echo "conf: echo "conf:
perm: perm: