Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

probe #74

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

probe #74

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
cd96194
Check systemd supported options
miekg Jan 23, 2021
c573603
bla
miekg Jan 23, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion internal/provider/pod.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -224,7 +224,7 @@ func (p *p) CreatePod(ctx context.Context, pod *corev1.Pod) error {
}
if len(bindmountsro) > 0 {
romount := strings.Join(bindmountsro, " ")
uf = uf.Insert("Service", "BindReadOnlyPaths", romount)
uf = uf.Insert("Service", Option("BindReadOnlyPaths"), romount)
}

for _, del := range deleteOptions {
Expand Down
39 changes: 39 additions & 0 deletions internal/provider/probe.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,39 @@
package provider

// supportedOptions contains a mappnig for supported systemd options. If an option
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
// supportedOptions contains a mappnig for supported systemd options. If an option
// supportedOptions contains a mapping for supported systemd options. If an option

// is supported the key name will be returned. Unsupported either return an
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
// is supported the key name will be returned. Unsupported either return an
// is supported, the value equals the key, otherwise the value is either an

// empty string (really not supported) or an alternative option that's better
// than nothing at all.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's unclear how it is better than nothing at all. Is the value another option that we know is supported by older systemd versions?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd also add that the actual probing doesn't happen here but, eventually, when ProbeSupportedOptions is called.

var supportedOptions = map[string]string{
"BindReadOnlyPaths": "BindReadOnlyPaths",
}

// ProbeSupportedOptions checks it the options in SupportedOptions are
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
// ProbeSupportedOptions checks it the options in SupportedOptions are
// ProbeSupportedOptions checks if the options in supportedOptions are

// supported by the systemd version running on this system. It will emit Info
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd say warning logs.

// logs for each unsupported option.
func ProbeSupportedOptions() {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Doesn't need to be exported. Or may it does as this is moved into the unit package where other unit stuff is?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Or may it does as this is moved into the unit package where other unit stuff is?

for option := range supportedOptions {
ok := probe(option)
switch option {
case "BindReadOnlyPaths":
if !ok {
supportedOptions[option] = "BindPaths" // drop the RO bit
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This switch may grow a bit. Why not have another map with the alternatives? Eg

alternativeOptions := map[string]string{
    "BindReadOnlyPaths": "BindPaths",
}

for option := range supportedOptions {
    if !probe(option) {
        supportedOptions[option] = alternativeOptions[option]
    }
}

}
}
}
}

// probe probes system to see if option is supported.
func probe(option string) bool {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If this is something you are proposing to have merged without the actual probing (otherwise, it would be a draft PR, right?), please, state very clearly that this is a fake probe, as nothing is actually probed.

return true
}

// Option return the option that is supported by the detected systemd.
func Option(option string) string {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Doesn't need to be exported. Or may it does as this is moved into the unit package where other unit stuff is?

opt, ok := supportedOptions[option]
if !ok {
// not found in map, return option as-is
return option
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Given we know exactly what options are used in systemk, supportedOptions would be complete for the purpose of probing. Why would this be a scenario?

}
return opt
}
8 changes: 8 additions & 0 deletions internal/unit/file.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -84,7 +84,11 @@ func (u *File) String() string {
}

// Insert adds name=value to section and returns a newly parsed pointer to File.
// If name is the empty string this is a noop.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
// If name is the empty string this is a noop.
// If name is an empty string, this is a noop.

func (u *File) Insert(section, name string, value ...string) *File {
if name == "" {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please, add a comment above stating that this is empty only when the option is not supported by the current systemd and no alternative is available.

return u
}
opts := make([]*unit.UnitOption, len(value))
for i := range opts {
opts[i] = &unit.UnitOption{
Expand All @@ -98,7 +102,11 @@ func (u *File) Insert(section, name string, value ...string) *File {
}

// Overwrite overwrites name=value in the section and returns a new File.
// If name is the empty string this is a noop.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
// If name is the empty string this is a noop.
// If name is an empty string, this is a noop.

func (u *File) Overwrite(section, name string, value ...string) *File {
if name == "" {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please, add a comment above stating that this is empty only when the option is not supported by the current systemd and no alternative is available.

return u
}
opts := make([]*unit.UnitOption, len(u.Options))
j := 0
for _, o := range u.Options {
Expand Down