tasks: Check directly if NetworkManager is running #219
Conversation
| shell: | | ||
| for f in /proc/*/exe; | ||
| do [[ "$(readlink -f "${f}")" == /usr/sbin/NetworkManager ]] && echo nm && break | ||
| done || echo -n initscripts |
There was a problem hiding this comment.
hmm - what about this:
command: systemctl is-enabled NetworkManager.service
that will tell you if the service is enabled. If you want to find out if it is active:
command: systemctl is-active NetworkManager.service
man systemctl
is-active PATTERN...
Check whether any of the specified units are active (i.e. running).
Returns an exit code 0 if at least one is active, or non-zero
otherwise. Unless --quiet is specified, this will also print the
current unit state to standard output.
There was a problem hiding this comment.
This was my initial idea, too, however there is no systemctl on CentOS 6, so it would require more checks...
There was a problem hiding this comment.
Also I tried to avoid too many extra tools to make it work in containers, too. Currently, it only depends on coreutils.
There was a problem hiding this comment.
Note that the approach in timesync also uses systemctl or service ... is it causing real problems? How would starting and enabling the service work in a container that does not have systemctl or service?
There was a problem hiding this comment.
Using systemctl means more complexity:
- If systemctl is not installed -> initscripts
- If systemctl is installeed
2.1. If NetworkManager is running -> nm
2.2 If NetworkManager is not running -> initscripts
The note about avoiding extra dependencies is why I chose that approach instead of using ps or grep etc.
However, it would be great if you describe the problems with the current approach, so we can find a solution for the problem instead of discussing alternative solutions without a clear explanation what problem they solve that the proposed solution does not.
There was a problem hiding this comment.
Are you actually worried about NetworkManager running on EL 6? From 1. it seems that you are not and if this is the case, it simplifies things, because if systemctl is not installed, it will fail, just as in case systemctl is-active is invoked on newer systems with NetworkManager not running.
There was a problem hiding this comment.
Are you actually worried about NetworkManager running on EL 6? From 1. it seems that you are not and if this is the case, it simplifies things, because if
systemctlis not installed, it will fail, just as in casesystemctl is-activeis invoked on newer systems with NetworkManager not running.
No, I don't care about NetworkManager running on EL 6. What is the full pattern with systemctl is-active that you propose, maybe this will clarify things. For, the problem with 1. was that it would fail the command module while 2.2 would report a different return code. But it seems that a different return code fails the module as well.
Something like this seems to work, too. Do you like this better? Do you prefer a construct with failing module that is ignored and then the failure is checked?
ansible -i rhel6, -m shell -a "systemctl is-enabled NetworkManager.service &>/dev/null && echo nm || echo initscripts" all
|
Sorry, I am against reimplementing pieces of Ansible in shell code. If Ansible is broken for Fedora 32, we have to disable it in the CI. |
The module is now broken for the second time since it was being used in this role. Also the timesync role uses a shell module for a similar approach: https://github.com/linux-system-roles/timesync/blob/master/library/timesync_provider.sh
Fedora 32 was released recently, so it is too late to ignore it in the CI. Leaving the role intentionally broken for Fedora users is very bad in my opinion. |
It is primarily the Ansible module that is broken for Fedora users, the role being broken is just a corollary. I filed https://bugzilla.redhat.com/show_bug.cgi?id=1832625 and a PR, which will help everyone, not just the network role users. |
|
If the goal is to check whether NetworkManager is running, isn't a good option to ask NetworkManager directly using dbus, instead of checking the existence of the process or asking the init/service system? |
dbus-send --system --print-reply \
--dest=org.freedesktop.DBus \
/org/freedesktop/DBus \
org.freedesktop.DBus.GetNameOwner \
string:"org.freedesktop.NetworkManager" >/dev/null 2>&1
(from |
This adds a dependency on dbust-tools which is not installed by default and actually seems to be missing as a dependency for network-scripts, too. |
|
Filed a Fedora bug for network-scripts: https://bugzilla.redhat.com/show_bug.cgi?id=1832897 |
|
The problem with |
IMHO, checking for the process is good enough. What's the problem that you see with this check? |
It definitely then warrants a separate discussion on how to prevent it in the future, thanks for bringing it up.
Note that I also advocated using
Simplicity must be in the eye of the beholder, because to me accessing a data structure which already holds the information that we need is much simpler than invoking a complex shell command riddled with implicit implementation assumptions on how things work internally (are you sure that NetworkManager will always be at Concerning more specific problems: how will this work in check mode or how will it avoid reporting changes when the role does not need to make any? What does
It is not just CentOS 6, it it RHEL 6 too, right? Which is years ahead (EUS etc.)
Quite to the contrary, it is too early to add it, since Ansible itself does not seem to have Fedora 32 in their CI, if I understand correctly ansible/ansible#69222 . (There is a nice expressions in French: "aller plus vite que la musique".) [*] while this role supports only distributions where those assumptions may be to some extent warranted, there is interest on extending our roles to support other distributions, so this sets a bad example for others. |
The complexity is in the
Good points, I will take a look into this.
In my opinion, the beat comes from Fedora not from Ansible. So when Fedora is released, the role should be ready instead of starting to develop against it. This is what Fedora Rawhide or Branched are there for.
I am flexible to adjust and adapt when this happens. I do not see a need to adjust to potential requirements that might not be valid anymore when this will happen. |
The service_facts module broke for Fedora 32. Instead of relying on it, just check directly if NetworkManager is running to determine if it is the current provider.
The service_facts module broke for Fedora 32. Instead of relying on it,
just check directly if NetworkManager is running to determine if it is
the current provider.
closes #218