picnoir
/
Systemd
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

tmpfiles: add a special return code for syntax failures 

In this way, individual errors in files can be treated differently than a
failure of the whole service.

A test is added to check that the expected value is returned.
Some parts are commented out, because it is not. This will be fixed in
a subsequent commit.
This commit is contained in:
Zbigniew Jędrzejewski-Szmek 2017-11-22 14:13:32 +01:00
parent 1a2d4d7084
commit d9daae55d5
5 changed files with 120 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
man/systemd-tmpfiles.xml
View File

@ -133,11 +133,13 @@
marked with <varname>r</varname> or <varname>R</varname> are marked with <varname>r</varname> or <varname>R</varname> are
removed.</para></listitem> removed.</para></listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><option>--boot</option></term> <term><option>--boot</option></term>
<listitem><para>Also execute lines with an exclamation mark. <listitem><para>Also execute lines with an exclamation mark.
</para></listitem> </para></listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><option>--prefix=<replaceable>path</replaceable></option></term> <term><option>--prefix=<replaceable>path</replaceable></option></term>
<listitem><para>Only apply rules with paths that start with <listitem><para>Only apply rules with paths that start with
@ -191,8 +193,12 @@
<refsect1> <refsect1>
<title>Exit status</title> <title>Exit status</title>
<para>On success, 0 is returned, a non-zero failure code <para>On success, 0 is returned. If the configuration was invalid (invalid syntax, missing
otherwise.</para> arguments, …), so some lines had to be ignored, but no other errors occurred,
<constant>65</constant> is returned (<constant>EX_DATAERR</constant> from
<filename>/usr/include/sysexits.h</filename>). Otherwise, <constant>1</constant> is returned
(<constant>EXIT_FAILURE</constant> from <filename>/usr/include/stdlib.h</filename>).
</para>
</refsect1> </refsect1>
<refsect1> <refsect1>

5
meson.build
View File

@ -2146,6 +2146,11 @@ if conf.get('ENABLE_TMPFILES') == 1
install : true, install : true,
install_dir : rootbindir) install_dir : rootbindir)
public_programs += [exe] public_programs += [exe]
test('test-systemd-tmpfiles',
test_systemd_tmpfiles_py,
args : exe.full_path())
# https://github.com/mesonbuild/meson/issues/2681
endif endif
if conf.get('ENABLE_HWDB') == 1 if conf.get('ENABLE_HWDB') == 1

4
src/test/meson.build
View File

@ -54,6 +54,10 @@ test_dlopen_c = files('test-dlopen.c')
############################################################ ############################################################
test_systemd_tmpfiles_py = find_program('test-systemd-tmpfiles.py')
############################################################
tests += [ tests += [
[['src/test/test-device-nodes.c'], [['src/test/test-device-nodes.c'],
[], [],

51
src/test/test-systemd-tmpfiles.py Executable file
View File

@ -0,0 +1,51 @@
#!/usr/bin/env python3
# SPDX-License-Identifier: LGPL-2.1+
#
# This file is part of systemd.
#
# systemd is free software; you can redistribute it and/or modify it
# under the terms of the GNU Lesser General Public License as published by
# the Free Software Foundation; either version 2.1 of the License, or
# (at your option) any later version.
import sys
import subprocess
EX_DATAERR = 65 # from sysexits.h
exe = sys.argv[1]
def test_invalid_line(line):
print('Running {} on {!r}'.format(exe, line))
c = subprocess.run([exe, '--create', '-'],
input=line, stdout=subprocess.PIPE, universal_newlines=True)
assert c.returncode == EX_DATAERR, c
if __name__ == '__main__':
test_invalid_line('asdfa')
test_invalid_line('f "open quote')
test_invalid_line('f closed quote""')
test_invalid_line('Y /unknown/letter')
test_invalid_line('w non/absolute/path')
test_invalid_line('s') # s is for short
test_invalid_line('f!! /too/many/bangs')
test_invalid_line('f++ /too/many/plusses')
test_invalid_line('f+!+ /too/many/plusses')
test_invalid_line('f!+! /too/many/bangs')
#test_invalid_line('w /unresolved/argument - - - - "%Y"')
#test_invalid_line('w /unresolved/argument/sandwich - - - - "%v%Y%v"')
#test_invalid_line('w /unresolved/filename/%Y - - - - "whatever"')
#test_invalid_line('w /unresolved/filename/sandwich/%v%Y%v - - - - "whatever"')
test_invalid_line('w - - - - - "no file specfied"')
test_invalid_line('C - - - - - "no file specfied"')
test_invalid_line('C non/absolute/path - - - - -')
test_invalid_line('b - - - - - -')
test_invalid_line('b 1234 - - - - -')
test_invalid_line('c - - - - - -')
test_invalid_line('c 1234 - - - - -')
test_invalid_line('t - - -')
test_invalid_line('T - - -')
test_invalid_line('a - - -')
test_invalid_line('A - - -')
test_invalid_line('h - - -')
test_invalid_line('H - - -')

66
src/tmpfiles/tmpfiles.c
View File

@ -33,6 +33,7 @@
#include <string.h> #include <string.h>
#include <sys/stat.h> #include <sys/stat.h>
#include <sys/xattr.h> #include <sys/xattr.h>
#include <sysexits.h>
#include <time.h> #include <time.h>
#include <unistd.h> #include <unistd.h>
@ -1841,7 +1842,7 @@ static int specifier_expansion_from_arg(Item *i) {
return 0; return 0;
} }
static int parse_line(const char *fname, unsigned line, const char *buffer) { static int parse_line(const char *fname, unsigned line, const char *buffer, bool *invalid_config) {
_cleanup_free_ char *action = NULL, *mode = NULL, *user = NULL, *group = NULL, *age = NULL, *path = NULL; _cleanup_free_ char *action = NULL, *mode = NULL, *user = NULL, *group = NULL, *age = NULL, *path = NULL;
_cleanup_(item_free_contents) Item i = {}; _cleanup_(item_free_contents) Item i = {};
@ -1865,9 +1866,14 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
&group, &group,
&age, &age,
NULL); NULL);
if (r < 0) if (r < 0) {
if (r == -EINVAL) /* invalid quoting and such */
*invalid_config = true;
return log_error_errno(r, "[%s:%u] Failed to parse line: %m", fname, line); return log_error_errno(r, "[%s:%u] Failed to parse line: %m", fname, line);
}
else if (r < 2) { else if (r < 2) {
*invalid_config = true;
log_error("[%s:%u] Syntax error.", fname, line); log_error("[%s:%u] Syntax error.", fname, line);
return -EIO; return -EIO;
} }
@ -1879,6 +1885,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
} }
if (isempty(action)) { if (isempty(action)) {
*invalid_config = true;
log_error("[%s:%u] Command too short '%s'.", fname, line, action); log_error("[%s:%u] Command too short '%s'.", fname, line, action);
return -EINVAL; return -EINVAL;
} }
@ -1889,6 +1896,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
else if (action[pos] == '+' && !force) else if (action[pos] == '+' && !force)
force = true; force = true;
else { else {
*invalid_config = true;
log_error("[%s:%u] Unknown modifiers in command '%s'", log_error("[%s:%u] Unknown modifiers in command '%s'",
fname, line, action); fname, line, action);
return -EINVAL; return -EINVAL;
@ -1907,8 +1915,11 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
r = specifier_printf(path, specifier_table, NULL, &i.path); r = specifier_printf(path, specifier_table, NULL, &i.path);
if (r == -ENOKEY) if (r == -ENOKEY)
return log_unresolvable_specifier(fname, line); return log_unresolvable_specifier(fname, line);
if (r < 0) if (r < 0) {
/* ENOMEM is the only return value left after ENOKEY,
* so *invalid_config should not be set. */
return log_error_errno(r, "[%s:%u] Failed to replace specifiers: %s", fname, line, path); return log_error_errno(r, "[%s:%u] Failed to replace specifiers: %s", fname, line, path);
}
switch (i.type) { switch (i.type) {
@ -1945,6 +1956,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
case WRITE_FILE: case WRITE_FILE:
if (!i.argument) { if (!i.argument) {
*invalid_config = true;
log_error("[%s:%u] Write file requires argument.", fname, line); log_error("[%s:%u] Write file requires argument.", fname, line);
return -EBADMSG; return -EBADMSG;
} }
@ -1956,6 +1968,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
if (!i.argument) if (!i.argument)
return log_oom(); return log_oom();
} else if (!path_is_absolute(i.argument)) { } else if (!path_is_absolute(i.argument)) {
*invalid_config = true;
log_error("[%s:%u] Source path is not absolute.", fname, line); log_error("[%s:%u] Source path is not absolute.", fname, line);
return -EBADMSG; return -EBADMSG;
} }
@ -1968,11 +1981,13 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
unsigned major, minor; unsigned major, minor;
if (!i.argument) { if (!i.argument) {
*invalid_config = true;
log_error("[%s:%u] Device file requires argument.", fname, line); log_error("[%s:%u] Device file requires argument.", fname, line);
return -EBADMSG; return -EBADMSG;
} }
if (sscanf(i.argument, "%u:%u", &major, &minor) != 2) { if (sscanf(i.argument, "%u:%u", &major, &minor) != 2) {
*invalid_config = true;
log_error("[%s:%u] Can't parse device file major/minor '%s'.", fname, line, i.argument); log_error("[%s:%u] Can't parse device file major/minor '%s'.", fname, line, i.argument);
return -EBADMSG; return -EBADMSG;
} }
@ -1984,6 +1999,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
case SET_XATTR: case SET_XATTR:
case RECURSIVE_SET_XATTR: case RECURSIVE_SET_XATTR:
if (!i.argument) { if (!i.argument) {
*invalid_config = true;
log_error("[%s:%u] Set extended attribute requires argument.", fname, line); log_error("[%s:%u] Set extended attribute requires argument.", fname, line);
return -EBADMSG; return -EBADMSG;
} }
@ -1995,6 +2011,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
case SET_ACL: case SET_ACL:
case RECURSIVE_SET_ACL: case RECURSIVE_SET_ACL:
if (!i.argument) { if (!i.argument) {
*invalid_config = true;
log_error("[%s:%u] Set ACLs requires argument.", fname, line); log_error("[%s:%u] Set ACLs requires argument.", fname, line);
return -EBADMSG; return -EBADMSG;
} }
@ -2006,21 +2023,26 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
case SET_ATTRIBUTE: case SET_ATTRIBUTE:
case RECURSIVE_SET_ATTRIBUTE: case RECURSIVE_SET_ATTRIBUTE:
if (!i.argument) { if (!i.argument) {
*invalid_config = true;
log_error("[%s:%u] Set file attribute requires argument.", fname, line); log_error("[%s:%u] Set file attribute requires argument.", fname, line);
return -EBADMSG; return -EBADMSG;
} }
r = parse_attribute_from_arg(&i); r = parse_attribute_from_arg(&i);
if (r == -EINVAL)
*invalid_config = true;
if (r < 0) if (r < 0)
return r; return r;
break; break;
default: default:
log_error("[%s:%u] Unknown command type '%c'.", fname, line, (char) i.type); log_error("[%s:%u] Unknown command type '%c'.", fname, line, (char) i.type);
*invalid_config = true;
return -EBADMSG; return -EBADMSG;
} }
if (!path_is_absolute(i.path)) { if (!path_is_absolute(i.path)) {
log_error("[%s:%u] Path '%s' not absolute.", fname, line, i.path); log_error("[%s:%u] Path '%s' not absolute.", fname, line, i.path);
*invalid_config = true;
return -EBADMSG; return -EBADMSG;
} }
@ -2052,8 +2074,8 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
r = get_user_creds(&u, &i.uid, NULL, NULL, NULL); r = get_user_creds(&u, &i.uid, NULL, NULL, NULL);
if (r < 0) { if (r < 0) {
log_error("[%s:%u] Unknown user '%s'.", fname, line, user); *invalid_config = true;
return r; return log_error_errno(r, "[%s:%u] Unknown user '%s'.", fname, line, user);
} }
i.uid_set = true; i.uid_set = true;
@ -2064,6 +2086,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
r = get_group_creds(&g, &i.gid); r = get_group_creds(&g, &i.gid);
if (r < 0) { if (r < 0) {
*invalid_config = true;
log_error("[%s:%u] Unknown group '%s'.", fname, line, group); log_error("[%s:%u] Unknown group '%s'.", fname, line, group);
return r; return r;
} }
@ -2081,6 +2104,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
} }
if (parse_mode(mm, &m) < 0) { if (parse_mode(mm, &m) < 0) {
*invalid_config = true;
log_error("[%s:%u] Invalid mode '%s'.", fname, line, mode); log_error("[%s:%u] Invalid mode '%s'.", fname, line, mode);
return -EBADMSG; return -EBADMSG;
} }
@ -2099,6 +2123,7 @@ static int parse_line(const char *fname, unsigned line, const char *buffer) {
} }
if (parse_sec(a, &i.age) < 0) { if (parse_sec(a, &i.age) < 0) {
*invalid_config = true;
log_error("[%s:%u] Invalid age '%s'.", fname, line, age); log_error("[%s:%u] Invalid age '%s'.", fname, line, age);
return -EBADMSG; return -EBADMSG;
} }
@ -2149,8 +2174,8 @@ static void help(void) {
" --boot Execute actions only safe at boot\n" " --boot Execute actions only safe at boot\n"
" --prefix=PATH Only apply rules with the specified prefix\n" " --prefix=PATH Only apply rules with the specified prefix\n"
" --exclude-prefix=PATH Ignore rules with the specified prefix\n" " --exclude-prefix=PATH Ignore rules with the specified prefix\n"
" --root=PATH Operate on an alternate filesystem root\n", " --root=PATH Operate on an alternate filesystem root\n"
program_invocation_short_name); , program_invocation_short_name);
} }
static int parse_argv(int argc, char *argv[]) { static int parse_argv(int argc, char *argv[]) {
@ -2242,7 +2267,7 @@ static int parse_argv(int argc, char *argv[]) {
return 1; return 1;
} }
static int read_config_file(const char *fn, bool ignore_enoent) { static int read_config_file(const char *fn, bool ignore_enoent, bool *invalid_config) {
_cleanup_fclose_ FILE *_f = NULL; _cleanup_fclose_ FILE *_f = NULL;
FILE *f; FILE *f;
char line[LINE_MAX]; char line[LINE_MAX];
@ -2274,6 +2299,7 @@ static int read_config_file(const char *fn, bool ignore_enoent) {
FOREACH_LINE(line, f, break) { FOREACH_LINE(line, f, break) {
char *l; char *l;
int k; int k;
bool invalid_line = false;
v++; v++;
@ -2281,9 +2307,15 @@ static int read_config_file(const char *fn, bool ignore_enoent) {
if (IN_SET(*l, 0, '#')) if (IN_SET(*l, 0, '#'))
continue; continue;
k = parse_line(fn, v, l); k = parse_line(fn, v, l, &invalid_line);
if (k < 0 && r == 0) if (k < 0) {
r = k; if (invalid_line)
/* Allow reporting with a special code if the caller requested this */
*invalid_config = true;
else if (r == 0)
/* The first error becomes our return value */
r = k;
}
} }
/* we have to determine age parameter for each entry of type X */ /* we have to determine age parameter for each entry of type X */
@ -2327,6 +2359,7 @@ int main(int argc, char *argv[]) {
int r, k; int r, k;
ItemArray *a; ItemArray *a;
Iterator iterator; Iterator iterator;
bool invalid_config = false;
r = parse_argv(argc, argv); r = parse_argv(argc, argv);
if (r <= 0) if (r <= 0)
@ -2354,7 +2387,7 @@ int main(int argc, char *argv[]) {
int j; int j;
for (j = optind; j < argc; j++) { for (j = optind; j < argc; j++) {
k = read_config_file(argv[j], false); k = read_config_file(argv[j], false, &invalid_config);
if (k < 0 && r == 0) if (k < 0 && r == 0)
r = k; r = k;
} }
@ -2370,7 +2403,7 @@ int main(int argc, char *argv[]) {
} }
STRV_FOREACH(f, files) { STRV_FOREACH(f, files) {
k = read_config_file(*f, true); k = read_config_file(*f, true, &invalid_config);
if (k < 0 && r == 0) if (k < 0 && r == 0)
r = k; r = k;
} }
@ -2404,5 +2437,10 @@ finish:
mac_selinux_finish(); mac_selinux_finish();
return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS; if (r < 0)
return EXIT_FAILURE;
else if (invalid_config)
return EX_DATAERR;
else
return EXIT_SUCCESS;
} }