[sled-agent] Ensure Support Bundles datasets are mounted

[smklein]

Related to #7887 - we have seen that datasets nested within
encrypted datasets are not automatically mounted on reboot.

To mitigate this issue: whenever we perform an operation which attempts to read the dataset, ensure
that it is mounted. To do this operation, some minor refactors were made to mounting-related code.

Fixes #7884

[smklein]

It simplifies logic elsewhere if this is "always a path". I went ahead and updated this, since there appear to be no users of "legacy".

[papertigers]

The dataset mounted at "/" will actually show up as a legacy mountpoint, however I did a quick spot check and it doesn't look like we use this anywhere when reading from zfs to get a mountpoint.

[smklein]

This is just to make the code more readable below. Should be the same functionality as before.

[smklein]

We used to return a tuple of bools, I'm just making this explicit for readability.

[smklein]

This is used to access the "parent dataset" on which the "support bundle dataset" gets placed.

E.g., "Look up the crypt/debug dataset by UUIDs".

I'm adding these checks to also validate: ALSO confirm that this dataset is mounted.

This is tested in cannot_create_bundle_on_unmounted_parent

[smklein]

Every spot where we read the mountpoint of the support bundle dataset: Instead, ensure it's actually mounted first.

This is tested in listing_bundles_mounts_them

[smklein]

This technically is not tested - the call to dyn_nested_dataset_ensure above should actually do the mounting, so this call shouldn't actually be necessary. However, I included it here out of consistency with the other two callsites.

(This isn't easy to test; I'd basically need to stop this function from running halfway through. But it seems like a "paranoid check" anyway).

[smklein]

This is tested in getting_bundles_mounts_them.

[papertigers]

The dataset mounted at "/" will actually show up as a legacy mountpoint, however I did a quick spot check and it doesn't look like we use this anywhere when reading from zfs to get a mountpoint.

[papertigers]

Should this be ensure_dataset_mounted()?

[smklein]

No, this is on the creation path. The dataset does not exist yet.

[papertigers]

Ah okay, the "wants_mounting" is a little confusing but I understand now. Maybe add a comment that mentions creating the immutable mountpoint for future mounting.

[smklein]

So, I have a comment on lines 1012 - 1019 which tries to cover this:

        // Non-zoned datasets with an explicit mountpoint and the
        // "canmount=on" property should be mounted within the global zone.
        //
        // We'll ensure they have an empty immutable mountpoint before
        // creating the dataset itself, which will also mount it.
        //
        // Zoned datasets are mounted when their zones are booted, so
        // we don't do this mountpoint manipulation for them.

Do you have recommendations for how to make this more clear? My read of this is that it already does mention "creating the immutable mountpoint for future mounting", in particular:

        // We'll ensure they have an empty immutable mountpoint before
        // creating the dataset itself, which will also mount it.

[smklein]

I guess I can re-shuffle the comment to go alongside the wants_mounting variable.

[papertigers]

Not really necessary and I don't know how much care about this function being async, but you could call illumos_utils::zfs::Zfs::get_value(dataset, "mounted"), which will return a String in the Ok path.

[smklein]

It's a module-local test-only function, I don't have a strong preference tbh. Do you care strongly?

[papertigers]

I don't, feel free to skip it.

[papertigers]

Thanks for adding this test!

[papertigers]

Ah okay, the "wants_mounting" is a little confusing but I understand now. Maybe add a comment that mentions creating the immutable mountpoint for future mounting.

[papertigers]

I don't, feel free to skip it.

[wfchandler]

LGTM, thanks for fixing this!