Remove flockfile for tedge_agent before running --init in postint script #1557
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
tedge_agent is supposed to run by the 'tedge' user, therefore, the flockfile is owned by the 'tedge' user. However, due to the directory creation of '/var/tedge', 'tedge_agent --init' must be run as root in the postinst script. If the flockfile owned by 'tedge' user exists, the 'tedge_agent --init' will fail. To fix this issue, the postinst script should remove the flock file if it exists before the initialization. Signed-off-by: Rina Fujino <18257209+rina23q@users.noreply.github.com>
| rm /run/lock/tedge_agent.lock | ||
| fi | ||
| # It must be run as root to create the directory `/var/tedge`. | ||
| tedge_agent --init |
There was a problem hiding this comment.
But then, we will have a lock own by root, preventing the agent to run as tedge. Am I missing something?
There was a problem hiding this comment.
My experiment on my laptop, tedge_agent.lock is gone after tedge_agent --init. However, to keep it safe, I can add the lines to remove /run/lock/tedge_agent.lock after tedge_agent --init.
if [ -f "/run/lock/tedge_agent.lock" ]; then
rm /run/lock/tedge_agent.lock
fiThis was the output when I ran sudo tedge_agent --init.
rina@SAG-CFPPNV2-U:/etc/tedge$ inotifywait -m /run/lock/
Setting up watches.
Watches established.
/run/lock/ CREATE tedge_agent.lock
/run/lock/ OPEN tedge_agent.lock
/run/lock/ CLOSE_WRITE,CLOSE tedge_agent.lock
/run/lock/ DELETE tedge_agent.lock
rina@SAG-CFPPNV2-U:~$ sudo tedge_agent --init
[sudo] password for rina:
2022-11-04T13:18:47.710656337Z INFO flockfile::unix: Lockfile created "/run/lock/tedge_agent.lock"
2022-11-04T13:18:47.710699697Z INFO tedge_agent::agent: tedge_agent starting
2022-11-04T13:18:47.712704417Z INFO sm-agent{config_dir="/etc/tedge"}: tedge_agent::agent: Initializing the tedge agent session
There was a problem hiding this comment.
Okay. It makes sense and it's useless to remove the lock after --init.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Proposed changes
tedge_agent is supposed to run by the
tedgeuser, therefore, the flockfile is owned by thetedgeuser. However, due to the directory creation of/var/tedge,tedge_agent --initmust be run as root in the postinst script. If the flockfile owned bytedgeuser exists, thetedge_agent --initwill fail.To fix this issue, the postinst script should remove the flock file if it exists before the initialization.
Types of changes
Paste Link to the issue
#1551
Checklist
cargo fmtas mentioned in CODING_GUIDELINEScargo clippyas mentioned in CODING_GUIDELINESFurther comments