system/systemd
system/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd synced 2024-07-22 18:55:10 +00:00
Code Issues Actions 7 Packages Projects Releases Wiki Activity
systemd/test/units/TEST-82-SOFTREBOOT.sh

269 lines
12 KiB
Bash
Raw Normal View History

test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
#!/usr/bin/env bash
# SPDX-License-Identifier: LGPL-2.1-or-later
set -ex
set -o pipefail
test: check journal files are not corrupted after soft-reboot
2023-11-26 00:25:22 +00:00
# shellcheck source=test/units/util.sh
. "$(dirname "$0")"/util.sh
test: shutdown the machine on fail after soft-reboot Since the soft-reboot drops the enqueued end.service, we won't shutdown the test VM if the test fails and have to wait for the watchdog to kill us (which may take quite a long time). Let's just forcibly kill the machine instead to save CI resources.
2023-09-29 20:07:12 +00:00
at_exit() {
# Since the soft-reboot drops the enqueued end.service, we won't shutdown
# the test VM if the test fails and have to wait for the watchdog to kill
# us (which may take quite a long time). Let's just forcibly kill the machine
# instead to save CI resources.
if [[ $? -ne 0 ]]; then
echo >&2 "Test failed, shutting down the machine..."
systemctl poweroff -ff
fi
}
trap at_exit EXIT
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
systemd-analyze log-level debug
export SYSTEMD_LOG_LEVEL=debug
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
if [ -f /run/TEST-82-SOFTREBOOT.touch3 ]; then
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
echo "This is the fourth boot!"
systemd-notify --status="Fourth Boot"
core: add counter for soft-reboot iterations Allow to query via D-Bus how many times the current booted system has been soft rebooted
2024-03-27 00:30:45 +00:00
test "$(busctl -j get-property org.freedesktop.systemd1 /org/freedesktop/systemd1 org.freedesktop.systemd1.Manager SoftRebootsCount | jq -r '.data')" -eq 3
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
rm /run/TEST-82-SOFTREBOOT.touch3
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
mount
rmdir /original-root /run/nextroot
# Check that the fdstore entry still exists
test "$LISTEN_FDS" -eq 3
read -r x <&5
test "$x" = "oinkoink"
test: check soft-reboot behavior wrt argv[0][0] == '@'
2023-09-23 16:52:03 +00:00
# Check that the surviving services are still around
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-survive.service)" = "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-survive-argv.service)" = "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-nosurvive-sigterm.service)" != "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-nosurvive.service)" != "active"
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
TEST-82-SOFTREBOOT: test that creds for surviving units are carried over
2024-05-14 11:34:11 +00:00
[[ ! -e /run/credentials/TEST-82-SOFTREBOOT-nosurvive.service ]]
assert_eq "$(cat /run/credentials/TEST-82-SOFTREBOOT-survive-argv.service/preserve)" "yay"
test: sync journal before read Workaround for #32834 and #32890.
2024-05-18 22:12:48 +00:00
# There may be huge amount of pending messages in sockets. Processing them may cause journal rotation and
# removal of old archived journal files. If a journal file is removed during journalctl reading it,
# the command may fail. To mitigate such, sync before reading journals. Workaround for #32834.
journalctl --sync
test: check journal files are not corrupted after soft-reboot
2023-11-26 00:25:22 +00:00
# Check journals
journalctl -o short-monotonic --no-hostname --grep '(will soft-reboot|KILL|corrupt)'
assert_eq "$(journalctl -q -o short-monotonic -u systemd-journald.service --grep 'corrupt')" ""
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# All succeeded, exit cleanly now
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
elif [ -f /run/TEST-82-SOFTREBOOT.touch2 ]; then
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
echo "This is the third boot!"
systemd-notify --status="Third Boot"
core: add counter for soft-reboot iterations Allow to query via D-Bus how many times the current booted system has been soft rebooted
2024-03-27 00:30:45 +00:00
test "$(busctl -j get-property org.freedesktop.systemd1 /org/freedesktop/systemd1 org.freedesktop.systemd1.Manager SoftRebootsCount | jq -r '.data')" -eq 2
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
rm /run/TEST-82-SOFTREBOOT.touch2
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Check that the fdstore entry still exists
test "$LISTEN_FDS" -eq 2
read -r x <&4
test "$x" = "miaumiau"
# Upload another entry
T="/dev/shm/fdstore.$RANDOM"
echo "oinkoink" >"$T"
systemd-notify --fd=3 --pid=parent 3<"$T"
rm "$T"
test: check soft-reboot behavior wrt argv[0][0] == '@'
2023-09-23 16:52:03 +00:00
# Check that the surviving services are still around
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-survive.service)" = "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-survive-argv.service)" = "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-nosurvive-sigterm.service)" != "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-nosurvive.service)" != "active"
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Test that we really are in the new overlayfs root fs
read -r x </lower
test "$x" = "miep"
core: stage /run/host/os-release with a symlink to avoid possible race condition If someone reads /run/host/os-release at the exact same time it is being updated, and it is large enough, they might read a half-written file. This is very unlikely as os-release is typically small and very rarely changes, but it is not impossible. Bind mount a staging directory instead of the file, and symlink the file into into, so that we can do atomic file updates and close this gap. Atomic replacement creates a new inode, so existing bind mounts would continue to see the old file, and only new services would see the new file. The indirection via the directory allows to work around this, as the directory is fixed and never changes so the bind mount is always valid, and its content is shared with all existing services. Fixes https://github.com/systemd/systemd/issues/28794 Follow-up for 3f37a82545d461ab
2023-08-13 21:29:25 +00:00
cmp /etc/os-release /run/systemd/propagate/.os-release-stage/os-release
core: copy the host's os-release for /run/host/os-release Currently for portable services we automatically add a bind mount os-release -> /run/host/os-release. This becomes problematic for the soft-reboot case, as it's likely that portable services will be configured to survive it, and thus would forever keep a reference to the old host's os-release, which would be a problem because it becomes outdated, and also it stops the old rootfs from being garbage collected. Create a copy when the manager starts under /run/systemd/propagate instead, and bind mount that for all services using RootDirectory=/RootImage=, so that on soft-reboot the content gets updated (without creating a new file, so the existing bind mounts will see the new content too). This expands the /run/host/os-release protocol to more services, but I think that's a nice thing to have too. Closes https://github.com/systemd/systemd/issues/28023
2023-07-18 14:44:27 +00:00
grep -q MARKER=1 /etc/os-release
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Switch back to the original root, away from the overlayfs
mount --bind /original-root /run/nextroot
mount
pid1: add SurviveFinalKillSignal= to skip units on final sigterm/sigkill spree Add a new boolean for units, SurviveFinalKillSignal=yes/no. Units that set it will not have their process receive the final sigterm/sigkill in the shutdown phase. This is implemented by checking if a process is part of a cgroup marked with a user.survive_final_kill_signal xattr (or a trusted xattr if we can't set a user one, which were added only in kernel v5.7 and are not supported in CentOS 8).
2023-07-27 22:14:31 +00:00
# Restart the unit that is not supposed to survive
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
systemd-run --collect --service-type=exec --unit=TEST-82-SOFTREBOOT-nosurvive.service sleep infinity
pid1: add SurviveFinalKillSignal= to skip units on final sigterm/sigkill spree Add a new boolean for units, SurviveFinalKillSignal=yes/no. Units that set it will not have their process receive the final sigterm/sigkill in the shutdown phase. This is implemented by checking if a process is part of a cgroup marked with a user.survive_final_kill_signal xattr (or a trusted xattr if we can't set a user one, which were added only in kernel v5.7 and are not supported in CentOS 8).
2023-07-27 22:14:31 +00:00
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Now issue the soft reboot. We should be right back soon.
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
touch /run/TEST-82-SOFTREBOOT.touch3
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
systemctl --no-block soft-reboot
# Now block until the soft-boot killing spree kills us
exec sleep infinity
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
elif [ -f /run/TEST-82-SOFTREBOOT.touch ]; then
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
echo "This is the second boot!"
systemd-notify --status="Second Boot"
core: add counter for soft-reboot iterations Allow to query via D-Bus how many times the current booted system has been soft rebooted
2024-03-27 00:30:45 +00:00
test "$(busctl -j get-property org.freedesktop.systemd1 /org/freedesktop/systemd1 org.freedesktop.systemd1.Manager SoftRebootsCount | jq -r '.data')" -eq 1
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Clean up what we created earlier
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
rm /run/TEST-82-SOFTREBOOT.touch
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Check that the fdstore entry still exists
test "$LISTEN_FDS" -eq 1
read -r x <&3
test "$x" = "wuffwuff"
logind: add PrepareForShutdownWithMetadata signal The existing signal doesn't say which type of shutdown is going to happen. With the introduction of soft-reboot, it is useful to have this information broadcasted, so that clients can choose to do different things based on the reboot type. Add a{sv} as the payload so that more metadata can be added later if needed, without needing to add yet another signal. Send both old and new signal for backward compatibility, and send the new one first so that clients can just wait for the first one on both old and new systems.
2023-08-30 18:51:13 +00:00
# Check that we got a PrepareForShutdownWithMetadata signal with the right type
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
cat /run/TEST-82-SOFTREBOOT.signal
test "$(jq -r '.payload.data[1].type.data' </run/TEST-82-SOFTREBOOT.signal)" = "soft-reboot"
logind: add PrepareForShutdownWithMetadata signal The existing signal doesn't say which type of shutdown is going to happen. With the introduction of soft-reboot, it is useful to have this information broadcasted, so that clients can choose to do different things based on the reboot type. Add a{sv} as the payload so that more metadata can be added later if needed, without needing to add yet another signal. Send both old and new signal for backward compatibility, and send the new one first so that clients can just wait for the first one on both old and new systems.
2023-08-30 18:51:13 +00:00
core: Imply DefaultDependencies=no for credential mounts Currently, on soft-reboot, /run/credentials/@system is unmounted because it has DefaultDependencies=yes and as such will have Conflicts=umount.target and Before=umount.target. Let's make sure credential mounts survive soft-reboot by implying DefaultDependencies=no for credential mounts.
2024-05-14 08:25:33 +00:00
# Check that the system credentials survived the soft reboot.
test "$(systemd-creds cat --system kernelcmdlinecred)" = "uff"
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Upload another entry
T="/dev/shm/fdstore.$RANDOM"
echo "miaumiau" >"$T"
systemd-notify --fd=3 --pid=parent 3<"$T"
rm "$T"
test: check soft-reboot behavior wrt argv[0][0] == '@'
2023-09-23 16:52:03 +00:00
# Check that the surviving services are still around
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-survive.service)" = "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-survive-argv.service)" = "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-nosurvive-sigterm.service)" != "active"
test "$(systemctl show -P ActiveState TEST-82-SOFTREBOOT-nosurvive.service)" != "active"
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# This time we test the /run/nextroot/ root switching logic. (We synthesize a new rootfs from the old via overlayfs)
mkdir -p /run/nextroot /tmp/nextroot-lower /original-root
mount -t tmpfs tmpfs /tmp/nextroot-lower
echo miep >/tmp/nextroot-lower/lower
core: copy the host's os-release for /run/host/os-release Currently for portable services we automatically add a bind mount os-release -> /run/host/os-release. This becomes problematic for the soft-reboot case, as it's likely that portable services will be configured to survive it, and thus would forever keep a reference to the old host's os-release, which would be a problem because it becomes outdated, and also it stops the old rootfs from being garbage collected. Create a copy when the manager starts under /run/systemd/propagate instead, and bind mount that for all services using RootDirectory=/RootImage=, so that on soft-reboot the content gets updated (without creating a new file, so the existing bind mounts will see the new content too). This expands the /run/host/os-release protocol to more services, but I think that's a nice thing to have too. Closes https://github.com/systemd/systemd/issues/28023
2023-07-18 14:44:27 +00:00
# Copy os-release away, so that we can manipulate it and check that it is updated in the propagate
core: copy os-release with COPY_TRUNCATE Otherwise if the os-release file shrinks between updates, there will be a merge of the two. Also remove redundant ENOENT check. Follow-up for 3f37a82545d461ab
2023-08-11 13:42:02 +00:00
# directory across soft reboots. Try to cover corner cases by truncating it.
core: copy the host's os-release for /run/host/os-release Currently for portable services we automatically add a bind mount os-release -> /run/host/os-release. This becomes problematic for the soft-reboot case, as it's likely that portable services will be configured to survive it, and thus would forever keep a reference to the old host's os-release, which would be a problem because it becomes outdated, and also it stops the old rootfs from being garbage collected. Create a copy when the manager starts under /run/systemd/propagate instead, and bind mount that for all services using RootDirectory=/RootImage=, so that on soft-reboot the content gets updated (without creating a new file, so the existing bind mounts will see the new content too). This expands the /run/host/os-release protocol to more services, but I think that's a nice thing to have too. Closes https://github.com/systemd/systemd/issues/28023
2023-07-18 14:44:27 +00:00
mkdir -p /tmp/nextroot-lower/usr/lib
core: copy os-release with COPY_TRUNCATE Otherwise if the os-release file shrinks between updates, there will be a merge of the two. Also remove redundant ENOENT check. Follow-up for 3f37a82545d461ab
2023-08-11 13:42:02 +00:00
grep ID /etc/os-release >/tmp/nextroot-lower/usr/lib/os-release
core: copy the host's os-release for /run/host/os-release Currently for portable services we automatically add a bind mount os-release -> /run/host/os-release. This becomes problematic for the soft-reboot case, as it's likely that portable services will be configured to survive it, and thus would forever keep a reference to the old host's os-release, which would be a problem because it becomes outdated, and also it stops the old rootfs from being garbage collected. Create a copy when the manager starts under /run/systemd/propagate instead, and bind mount that for all services using RootDirectory=/RootImage=, so that on soft-reboot the content gets updated (without creating a new file, so the existing bind mounts will see the new content too). This expands the /run/host/os-release protocol to more services, but I think that's a nice thing to have too. Closes https://github.com/systemd/systemd/issues/28023
2023-07-18 14:44:27 +00:00
echo MARKER=1 >>/tmp/nextroot-lower/usr/lib/os-release
core: stage /run/host/os-release with a symlink to avoid possible race condition If someone reads /run/host/os-release at the exact same time it is being updated, and it is large enough, they might read a half-written file. This is very unlikely as os-release is typically small and very rarely changes, but it is not impossible. Bind mount a staging directory instead of the file, and symlink the file into into, so that we can do atomic file updates and close this gap. Atomic replacement creates a new inode, so existing bind mounts would continue to see the old file, and only new services would see the new file. The indirection via the directory allows to work around this, as the directory is fixed and never changes so the bind mount is always valid, and its content is shared with all existing services. Fixes https://github.com/systemd/systemd/issues/28794 Follow-up for 3f37a82545d461ab
2023-08-13 21:29:25 +00:00
cmp /etc/os-release /run/systemd/propagate/.os-release-stage/os-release
core: copy the host's os-release for /run/host/os-release Currently for portable services we automatically add a bind mount os-release -> /run/host/os-release. This becomes problematic for the soft-reboot case, as it's likely that portable services will be configured to survive it, and thus would forever keep a reference to the old host's os-release, which would be a problem because it becomes outdated, and also it stops the old rootfs from being garbage collected. Create a copy when the manager starts under /run/systemd/propagate instead, and bind mount that for all services using RootDirectory=/RootImage=, so that on soft-reboot the content gets updated (without creating a new file, so the existing bind mounts will see the new content too). This expands the /run/host/os-release protocol to more services, but I think that's a nice thing to have too. Closes https://github.com/systemd/systemd/issues/28023
2023-07-18 14:44:27 +00:00
(! grep -q MARKER=1 /etc/os-release)
mount -t overlay nextroot /run/nextroot -o lowerdir=/tmp/nextroot-lower:/,ro
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Bind our current root into the target so that we later can return to it
mount --bind / /run/nextroot/original-root
pid1: add SurviveFinalKillSignal= to skip units on final sigterm/sigkill spree Add a new boolean for units, SurviveFinalKillSignal=yes/no. Units that set it will not have their process receive the final sigterm/sigkill in the shutdown phase. This is implemented by checking if a process is part of a cgroup marked with a user.survive_final_kill_signal xattr (or a trusted xattr if we can't set a user one, which were added only in kernel v5.7 and are not supported in CentOS 8).
2023-07-27 22:14:31 +00:00
# Restart the unit that is not supposed to survive
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
systemd-run --collect --service-type=exec --unit=TEST-82-SOFTREBOOT-nosurvive.service sleep infinity
pid1: add SurviveFinalKillSignal= to skip units on final sigterm/sigkill spree Add a new boolean for units, SurviveFinalKillSignal=yes/no. Units that set it will not have their process receive the final sigterm/sigkill in the shutdown phase. This is implemented by checking if a process is part of a cgroup marked with a user.survive_final_kill_signal xattr (or a trusted xattr if we can't set a user one, which were added only in kernel v5.7 and are not supported in CentOS 8).
2023-07-27 22:14:31 +00:00
run: fix generated unit name clash after soft-reboot When sd-run connects to D-Bus rather than the private socket, it will generate the transient unit name using the bus ID assigned by the D-Bus broker/daemon. The issue is that this ID is only unique per D-Bus run, if the broker/daemon restarts it starts again from 1, and it's a simple incremental counter for each client. So if a transient unit run-u6.service starts and fails, and it is not collected (default on failure), and the system soft-reboots, any new transient unit might conflict as the counter will restart: Failed to start transient service unit: Unit run-u6.service was already loaded or has a fragment file. Get the soft-reboot counter, and if it's greater than zero, append it to the autogenerated unit name to avoid clashes.
2024-03-27 21:14:15 +00:00
# Now ensure there are no naming clashes and a bunch of transient units all succeed
for _ in $(seq 1 25); do
systemd-run --wait true
done
systemctl: automatically softreboot/kexec if set up on reboot Automatically softreboot if the nextroot has been set up with an OS tree, or automatically kexec if a kernel has been loaded with kexec --load. Add SYSTEMCTL_SKIP_AUTO_KEXEC and SYSTEMCTL_SKIP_AUTO_SOFT_REBOOT to skip the automated switchover.
2023-10-19 12:58:03 +00:00
# Now issue the soft reboot. We should be right back soon. Given /run/nextroot exists, we should
# automatically do a softreboot instead of normal reboot.
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
touch /run/TEST-82-SOFTREBOOT.touch2
systemctl: automatically softreboot/kexec if set up on reboot Automatically softreboot if the nextroot has been set up with an OS tree, or automatically kexec if a kernel has been loaded with kexec --load. Add SYSTEMCTL_SKIP_AUTO_KEXEC and SYSTEMCTL_SKIP_AUTO_SOFT_REBOOT to skip the automated switchover.
2023-10-19 12:58:03 +00:00
systemctl --no-block reboot
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Now block until the soft-boot killing spree kills us
exec sleep infinity
else
# This is the first boot
systemd-notify --status="First Boot"
core: add counter for soft-reboot iterations Allow to query via D-Bus how many times the current booted system has been soft rebooted
2024-03-27 00:30:45 +00:00
test "$(busctl -j get-property org.freedesktop.systemd1 /org/freedesktop/systemd1 org.freedesktop.systemd1.Manager SoftRebootsCount | jq -r '.data')" -eq 0
tree-wide: fix a couple of typos As reported by Fossies.org.
2023-06-15 18:37:55 +00:00
# Let's upload an fd to the fdstore, so that we can verify fdstore passing works correctly
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
T="/dev/shm/fdstore.$RANDOM"
echo "wuffwuff" >"$T"
systemd-notify --fd=3 --pid=parent 3<"$T"
rm "$T"
test: check soft-reboot behavior wrt argv[0][0] == '@'
2023-09-23 16:52:03 +00:00
survive_sigterm="/dev/shm/survive-sigterm-$RANDOM.sh"
cat >"$survive_sigterm" <<EOF
#!/bin/bash
trap "" TERM
systemd-notify --ready
rm "$survive_sigterm"
exec sleep infinity
EOF
chmod +x "$survive_sigterm"
survive_argv="/dev/shm/survive-argv-$RANDOM.sh"
cat >"$survive_argv" <<EOF
#!/bin/bash
systemd-notify --ready
rm "$survive_argv"
exec -a @sleep sleep infinity
EOF
chmod +x "$survive_argv"
# This sets DefaultDependencies=no so that they remain running until the very end, and
# IgnoreOnIsolate=yes so that they aren't stopped via the "testsuite.target" isolation we do on next boot,
# and will be killed by the final sigterm/sigkill spree.
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
systemd-run --collect --service-type=notify -p DefaultDependencies=no -p IgnoreOnIsolate=yes --unit=TEST-82-SOFTREBOOT-nosurvive-sigterm.service "$survive_sigterm"
TEST-82-SOFTREBOOT: test that creds for surviving units are carried over
2024-05-14 11:34:11 +00:00
systemd-run --collect --service-type=exec -p DefaultDependencies=no -p IgnoreOnIsolate=yes -p SetCredential=gone:hoge --unit=TEST-82-SOFTREBOOT-nosurvive.service sleep infinity
test: check soft-reboot behavior wrt argv[0][0] == '@'
2023-09-23 16:52:03 +00:00
core: relax dependency on RootImage= storage from Requires= to Wants= If a unit is running in an image and wants to survive a soft-reboot, then it can't be deactivated by the storage of the image going away. Relax the dependency to a Wants=. Access to the image is not needed when the unit is running anyway, so downgrade to Wants=.
2023-11-27 23:32:31 +00:00
# Ensure that the unit doesn't get deactivated by dependencies on the source file. Given it's a verity
# image that is already open, even if the tmpfs with the image goes away, the file will be pinned by the
# kernel and will keep working.
cp /usr/share/minimal_0.* /tmp/
test: check soft-reboot behavior wrt argv[0][0] == '@'
2023-09-23 16:52:03 +00:00
# Configure these transient units to survive the soft reboot - they will not conflict with shutdown.target
# and it will be ignored on the isolate that happens in the next boot. The first will use argv[0][0] =
# '@', and the second will use SurviveFinalKillSignal=yes. Both should survive.
journald: enable persistent FD Store to fix logging during soft-reboot A unit with StandardOutput=journal (the default) will get its stdout/stderr sockets disconnected when journald stops, as the file descriptors on journald's side are not preserved (it works on restart, as the FD Store keeps them open during restarts). Set FileDescriptorStorePreserve=yes so that the journal FD's stay open during a soft reboot, and applications don't get broken stdout/stderr.
2024-05-31 15:40:12 +00:00
# By writing to stdout, which is connected to the journal, we also ensure logging doesn't break across
# soft reboots due to journald being temporarily stopped.
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
systemd-run --service-type=notify --unit=TEST-82-SOFTREBOOT-survive-argv.service \
test: check soft-reboot behavior wrt argv[0][0] == '@'
2023-09-23 16:52:03 +00:00
--property SurviveFinalKillSignal=no \
--property IgnoreOnIsolate=yes \
--property DefaultDependencies=no \
--property After=basic.target \
--property "Conflicts=reboot.target kexec.target poweroff.target halt.target emergency.target rescue.target" \
--property "Before=reboot.target kexec.target poweroff.target halt.target emergency.target rescue.target" \
TEST-82-SOFTREBOOT: test that creds for surviving units are carried over
2024-05-14 11:34:11 +00:00
--property SetCredential=preserve:yay \
test: check soft-reboot behavior wrt argv[0][0] == '@'
2023-09-23 16:52:03 +00:00
"$survive_argv"
journald: enable persistent FD Store to fix logging during soft-reboot A unit with StandardOutput=journal (the default) will get its stdout/stderr sockets disconnected when journald stops, as the file descriptors on journald's side are not preserved (it works on restart, as the FD Store keeps them open during restarts). Set FileDescriptorStorePreserve=yes so that the journal FD's stay open during a soft reboot, and applications don't get broken stdout/stderr.
2024-05-31 15:40:12 +00:00
# shellcheck disable=SC2016
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
systemd-run --service-type=exec --unit=TEST-82-SOFTREBOOT-survive.service \
core: relax dependency on RootImage= storage from Requires= to Wants= If a unit is running in an image and wants to survive a soft-reboot, then it can't be deactivated by the storage of the image going away. Relax the dependency to a Wants=. Access to the image is not needed when the unit is running anyway, so downgrade to Wants=.
2023-11-27 23:32:31 +00:00
--property TemporaryFileSystem="/run /tmp /var" \
--property RootImage=/tmp/minimal_0.raw \
--property BindReadOnlyPaths=/dev/log \
--property BindReadOnlyPaths=/run/systemd/journal/socket \
--property BindReadOnlyPaths=/run/systemd/journal/stdout \
pid1: add SurviveFinalKillSignal= to skip units on final sigterm/sigkill spree Add a new boolean for units, SurviveFinalKillSignal=yes/no. Units that set it will not have their process receive the final sigterm/sigkill in the shutdown phase. This is implemented by checking if a process is part of a cgroup marked with a user.survive_final_kill_signal xattr (or a trusted xattr if we can't set a user one, which were added only in kernel v5.7 and are not supported in CentOS 8).
2023-07-27 22:14:31 +00:00
--property SurviveFinalKillSignal=yes \
--property IgnoreOnIsolate=yes \
--property DefaultDependencies=no \
--property After=basic.target \
--property "Conflicts=reboot.target kexec.target poweroff.target halt.target emergency.target rescue.target" \
--property "Before=reboot.target kexec.target poweroff.target halt.target emergency.target rescue.target" \
journald: enable persistent FD Store to fix logging during soft-reboot A unit with StandardOutput=journal (the default) will get its stdout/stderr sockets disconnected when journald stops, as the file descriptors on journald's side are not preserved (it works on restart, as the FD Store keeps them open during restarts). Set FileDescriptorStorePreserve=yes so that the journal FD's stay open during a soft reboot, and applications don't get broken stdout/stderr.
2024-05-31 15:40:12 +00:00
bash -c 'count=0; while echo "$count"; do count=$[$count +1]; sleep 1; done'
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
logind: add PrepareForShutdownWithMetadata signal The existing signal doesn't say which type of shutdown is going to happen. With the introduction of soft-reboot, it is useful to have this information broadcasted, so that clients can choose to do different things based on the reboot type. Add a{sv} as the payload so that more metadata can be added later if needed, without needing to add yet another signal. Send both old and new signal for backward compatibility, and send the new one first so that clients can just wait for the first one on both old and new systems.
2023-08-30 18:51:13 +00:00
# Check that we can set up an inhibitor, and that busctl monitor sees the
# PrepareForShutdownWithMetadata signal and that it says 'soft-reboot'.
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
systemd-run --unit busctl.service --service-type=exec --property StandardOutput=file:/run/TEST-82-SOFTREBOOT.signal \
logind: add PrepareForShutdownWithMetadata signal The existing signal doesn't say which type of shutdown is going to happen. With the introduction of soft-reboot, it is useful to have this information broadcasted, so that clients can choose to do different things based on the reboot type. Add a{sv} as the payload so that more metadata can be added later if needed, without needing to add yet another signal. Send both old and new signal for backward compatibility, and send the new one first so that clients can just wait for the first one on both old and new systems.
2023-08-30 18:51:13 +00:00
busctl monitor --json=pretty --match 'sender=org.freedesktop.login1,path=/org/freedesktop/login1,interface=org.freedesktop.login1.Manager,member=PrepareForShutdownWithMetadata,type=signal'
test: use --service-type= instead of -p Type=
2023-10-03 14:38:35 +00:00
systemd-run --unit inhibit.service --service-type=exec \
logind: add PrepareForShutdownWithMetadata signal The existing signal doesn't say which type of shutdown is going to happen. With the introduction of soft-reboot, it is useful to have this information broadcasted, so that clients can choose to do different things based on the reboot type. Add a{sv} as the payload so that more metadata can be added later if needed, without needing to add yet another signal. Send both old and new signal for backward compatibility, and send the new one first so that clients can just wait for the first one on both old and new systems.
2023-08-30 18:51:13 +00:00
systemd-inhibit --what=shutdown --who=test --why=test --mode=delay \
sleep infinity
run: fix generated unit name clash after soft-reboot When sd-run connects to D-Bus rather than the private socket, it will generate the transient unit name using the bus ID assigned by the D-Bus broker/daemon. The issue is that this ID is only unique per D-Bus run, if the broker/daemon restarts it starts again from 1, and it's a simple incremental counter for each client. So if a transient unit run-u6.service starts and fails, and it is not collected (default on failure), and the system soft-reboots, any new transient unit might conflict as the counter will restart: Failed to start transient service unit: Unit run-u6.service was already loaded or has a fragment file. Get the soft-reboot counter, and if it's greater than zero, append it to the autogenerated unit name to avoid clashes.
2024-03-27 21:14:15 +00:00
# Enqueue a bunch of failing units to try and trigger the transient name clash that happens due to D-Bus
# being restarted and the "unique" bus IDs not being unique across restarts
for _ in $(seq 1 25); do
# Use --wait to ensure we connect to the system bus instead of the private bus (otherwise a UUID is
# used instead of the bus ID)
systemd-run --wait false || true
done
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Now issue the soft reboot. We should be right back soon.
test: Rename testsuite-XX units to match test name Having these named differently than the test itself mostly creates unecessary confusion and makes writing logic against the tests harder so let's rename the testsuite-xx units and scripts to just use the test name itself.
2024-05-11 17:17:13 +00:00
touch /run/TEST-82-SOFTREBOOT.touch
logind: add PrepareForShutdownWithMetadata signal The existing signal doesn't say which type of shutdown is going to happen. With the introduction of soft-reboot, it is useful to have this information broadcasted, so that clients can choose to do different things based on the reboot type. Add a{sv} as the payload so that more metadata can be added later if needed, without needing to add yet another signal. Send both old and new signal for backward compatibility, and send the new one first so that clients can just wait for the first one on both old and new systems.
2023-08-30 18:51:13 +00:00
systemctl --no-block --check-inhibitors=yes soft-reboot
test: add integration test for soft reboots incl. fdstore passing
2023-05-03 13:05:12 +00:00
# Now block until the soft-boot killing spree kills us
exec sleep infinity
fi
systemd-analyze log-level info
test: unify /testok & /failed handling And drop it where not necessary.
2023-07-12 13:49:55 +00:00
touch /testok
TEST-82-SOFTREBOOT: Exit with exit status 123 Required to make mkosi consider the test successful.
2024-04-29 14:28:21 +00:00
systemctl --no-block exit 123
Reference in a new issue Copy permalink