Validate configuration before reloading crowdsec in the cron #2831
Comments
|
@blotus: Thanks for opening an issue, it is currently awaiting triage. In the meantime, you can:
DetailsI am a bot created to help the crowdsecurity developers manage community feedback and contributions. You can check out my manifest file to understand my behavior and what I can do. If you want to use this for your project, you can check out the BirthdayResearch/oss-governance-bot repository. |
|
@blotus: There are no 'kind' label on this issue. You need a 'kind' label to start the triage process.
DetailsI am a bot created to help the crowdsecurity developers manage community feedback and contributions. You can check out my manifest file to understand my behavior and what I can do. If you want to use this for your project, you can check out the BirthdayResearch/oss-governance-bot repository. |
|
This should be done in systemd (ExecReload) so we're sure there is a trace in the logs, no? cron output often goes to /dev/null |
|
The problem is discussed in systemd/systemd#2175 I see the solution would be
or (untested) simply provide multiple ExecReload directives which are executed sequentially until one of them fails. but from what I read in the above issue, shouldn't we also notify systemd of reload, stop etcetera? Currently we only notify it of a successful start. https://github.com/coreos/go-systemd/blob/main/daemon/sdnotify.go Edit: and a watchdog? |
The cron installed by default will reload crowdsec automatically if the hub was updated, but it won't check if the configuration is valid first.
This can lead to an outage if any part of the configuration is invalid.
The text was updated successfully, but these errors were encountered: