Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Revert "daemon: Make binary writing idempotent" #3831

Merged
merged 1 commit into from
Aug 1, 2023
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
58 changes: 22 additions & 36 deletions pkg/daemon/daemon.go
Original file line number Diff line number Diff line change
Expand Up @@ -450,54 +450,40 @@ func ReexecuteForTargetRoot(target string) error {
// Otherwise, we assume that there's no suffixing needed. Hopefully
// by RHEL10 the MCD will have fundamentally changed and we won't be doing the
// chroot() thing anymore.
klog.Infof("not chrooting for source=rhel-%s target=rhel-%s", sourceMajor, targetMajor)
klog.Info("not chrooting for source=rhel-%s target=rhel-%s", sourceMajor, targetMajor)
}
} else {
klog.Info("assuming we can use container binary chroot() to host")
}
sourceBinary := "/usr/bin/machine-config-daemon" + sourceBinarySuffix
src, err := os.Open(sourceBinary)
if err != nil {
return fmt.Errorf("opening %s: %w", sourceBinary, err)
}
defer src.Close()

targetBinBase := "run/bin/machine-config-daemon"
targetBin := filepath.Join(target, targetBinBase)
targetBinDir := filepath.Dir(targetBin)
if _, err := os.Stat(targetBinDir); err != nil {
if err := os.Mkdir(targetBinDir, 0o755); err != nil {
return fmt.Errorf("mkdir %s: %w", targetBinDir, err)
}
}

// Be idempotent
targetBinExist, err := fileExists(targetBin)
f, err := os.Create(targetBin)
if err != nil {
return err
return fmt.Errorf("writing %s: %w", targetBin, err)
}
if !targetBinExist {
sourceBinary := "/usr/bin/machine-config-daemon" + sourceBinarySuffix
src, err := os.Open(sourceBinary)
if err != nil {
return fmt.Errorf("opening %s: %w", sourceBinary, err)
}
defer src.Close()

targetBinDir := filepath.Dir(targetBin)
// Before creating targetBinDir, ensure that it doesn't exist
targetBinDirExist, err := directoryExists(targetBinDir)
if err != nil {
return err
}
if !targetBinDirExist {
if err := os.Mkdir(targetBinDir, 0o755); err != nil {
return fmt.Errorf("mkdir %s: %w", targetBinDir, err)
}
}

f, err := os.Create(targetBin)
if err != nil {
return fmt.Errorf("writing %s: %w", targetBin, err)
}
if _, err := io.Copy(f, src); err != nil {
f.Close()
return fmt.Errorf("writing %s: %w", targetBin, err)
}
if err := f.Chmod(0o755); err != nil {
return err
}
// Must close our writable fd
if _, err := io.Copy(f, src); err != nil {
f.Close()
return fmt.Errorf("writing %s: %w", targetBin, err)
}
if err := f.Chmod(0o755); err != nil {
return err
}
// Must close our writable fd
f.Close()

if err := syscall.Chroot(target); err != nil {
return fmt.Errorf("failed to chroot to %s: %w", target, err)
Expand Down
21 changes: 0 additions & 21 deletions pkg/daemon/update.go
Original file line number Diff line number Diff line change
Expand Up @@ -1666,27 +1666,6 @@ func fileExists(path string) (bool, error) {
return false, fmt.Errorf("cannot stat file: %w", err)
}

// Determines if a directory exists by checking the returned error when we stat the file.
// Also, check that it is a directory.
func directoryExists(path string) (bool, error) {
info, err := os.Stat(path)
// If there is no error, check if it is a directory
if err == nil {
if info.IsDir() {
return true, nil
}
return false, fmt.Errorf("%s exists but it is not a directory", path)
}

// If the error matches fs.ErrNotExist, file definitely does not exist.
if errors.Is(err, fs.ErrNotExist) {
return false, nil
}

// An unexpected error occurred.
return false, fmt.Errorf("cannot stat file: %w", err)
}

// Removes the old SSH key path (/home/core/.ssh/authorized_keys), if found.
func cleanSSHKeyPaths() error {
oldKeyExists, err := fileExists(constants.RHCOS8SSHKeyPath)
Expand Down