Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

container/commit: Actually return an error code #364

Merged
merged 1 commit into from
Sep 10, 2022
Merged

container/commit: Actually return an error code #364

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
54 changes: 41 additions & 13 deletions lib/src/commit.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,23 +5,25 @@
use crate::container_utils::require_ostree_container;
use anyhow::Context;
use anyhow::Result;
use camino::Utf8Path;
use camino::Utf8PathBuf;
use std::fs;
use std::path::Path;
use tokio::task;

/// Check if there are any files that are not directories and error out if
/// we find any, /var should not contain any files to commit in a container
/// as it is where we expect user data to reside.
fn validate_directories_only(path: &Path, error_count: &mut i32) -> Result<()> {
fn validate_directories_only_recurse(path: &Utf8Path, error_count: &mut i32) -> Result<()> {
let context = || format!("Validating file: {:?}", path);
for entry in fs::read_dir(path).with_context(context)? {
let entry = entry?;
let path = entry.path();
let path: Utf8PathBuf = path.try_into()?;

let metadata = path.symlink_metadata()?;

if metadata.is_dir() {
validate_directories_only(&path, error_count)?;
validate_directories_only_recurse(&path, error_count)?;
} else {
*error_count += 1;
if *error_count < 20 {
Expand All @@ -32,22 +34,48 @@ fn validate_directories_only(path: &Path, error_count: &mut i32) -> Result<()> {
Ok(())
}

fn validate_ostree_compatibility_in(root: &Utf8Path) -> Result<()> {
let var_path = root.join("var");
println!("Checking /var for files");
let mut error_count = 0;
validate_directories_only_recurse(&var_path, &mut error_count)?;
if error_count != 0 {
anyhow::bail!("Found content in {var_path}");
}
Ok(())
}

fn validate_ostree_compatibility() -> Result<()> {
validate_ostree_compatibility_in(Utf8Path::new("/"))
}

/// Entrypoint to the commit procedures, initially we just
/// have one validation but we expect more in the future.
pub(crate) async fn container_commit() -> Result<()> {
require_ostree_container()?;
println!("Checking /var for files");
let var_path = Path::new("/var");

let mut error_count = 0;
task::spawn_blocking(validate_ostree_compatibility).await?
}

task::spawn_blocking(move || -> Result<()> {
validate_directories_only(var_path, &mut error_count)
})
.await??;
#[cfg(test)]
mod tests {
use super::*;

if error_count != 0 {
anyhow::bail!("Found content in /var");
#[test]
fn commit() -> Result<()> {
let td = tempfile::tempdir()?;
let td = td.path();
let td = Utf8Path::from_path(td).unwrap();

let var = td.join("var");

std::fs::create_dir(&var)?;
validate_ostree_compatibility_in(td).unwrap();

std::fs::write(var.join("foo"), "somefile")?;

assert!(validate_ostree_compatibility_in(td).is_err());

Ok(())
}
Ok(())
}