silence yaml.local explicitly in cscli, keep in crowdsec/bouncer logs (#1981)
This commit is contained in:
mmetc
GitHub
parent
c4deaf0994
commit
cd4dabde0e
|
|
@ -54,7 +54,7 @@ func initConfig() {
|
||||||
}
|
}
|
||||||
|
|
||||||
if !inSlice(os.Args[1], NoNeedConfig) {
|
if !inSlice(os.Args[1], NoNeedConfig) {
|
||||||
csConfig, err = csconfig.NewConfig(ConfigFilePath, false, false)
|
csConfig, err = csconfig.NewConfig(ConfigFilePath, false, false, true)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
log.Fatal(err)
|
log.Fatal(err)
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -185,7 +185,7 @@ func newLogLevel(curLevelPtr *log.Level, f *Flags) *log.Level {
|
||||||
default:
|
default:
|
||||||
}
|
}
|
||||||
|
|
||||||
if ret == *curLevelPtr {
|
if curLevelPtr != nil && ret == *curLevelPtr {
|
||||||
// avoid returning a new ptr to the same value
|
// avoid returning a new ptr to the same value
|
||||||
return curLevelPtr
|
return curLevelPtr
|
||||||
}
|
}
|
||||||
|
|
@ -194,6 +194,10 @@ func newLogLevel(curLevelPtr *log.Level, f *Flags) *log.Level {
|
||||||
|
|
||||||
// LoadConfig returns a configuration parsed from configuration file
|
// LoadConfig returns a configuration parsed from configuration file
|
||||||
func LoadConfig(cConfig *csconfig.Config) error {
|
func LoadConfig(cConfig *csconfig.Config) error {
|
||||||
|
if (cConfig.Common == nil || *cConfig.Common == csconfig.CommonCfg{}) {
|
||||||
|
return fmt.Errorf("unable to load configuration: common section is empty")
|
||||||
|
}
|
||||||
|
|
||||||
cConfig.Common.LogLevel = newLogLevel(cConfig.Common.LogLevel, flags)
|
cConfig.Common.LogLevel = newLogLevel(cConfig.Common.LogLevel, flags)
|
||||||
|
|
||||||
if dumpFolder != "" {
|
if dumpFolder != "" {
|
||||||
|
|
|
||||||
|
|
@ -30,7 +30,7 @@ func StartRunSvc() error {
|
||||||
},
|
},
|
||||||
})
|
})
|
||||||
|
|
||||||
cConfig, err = csconfig.NewConfig(flags.ConfigFile, flags.DisableAgent, flags.DisableAPI)
|
cConfig, err = csconfig.NewConfig(flags.ConfigFile, flags.DisableAgent, flags.DisableAPI, false)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -58,7 +58,7 @@ func WindowsRun() error {
|
||||||
err error
|
err error
|
||||||
)
|
)
|
||||||
|
|
||||||
cConfig, err = csconfig.NewConfig(flags.ConfigFile, flags.DisableAgent, flags.DisableAPI)
|
cConfig, err = csconfig.NewConfig(flags.ConfigFile, flags.DisableAgent, flags.DisableAPI, false)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -54,7 +54,7 @@ func reloadHandler(sig os.Signal) (*csconfig.Config, error) {
|
||||||
crowdsecTomb = tomb.Tomb{}
|
crowdsecTomb = tomb.Tomb{}
|
||||||
pluginTomb = tomb.Tomb{}
|
pluginTomb = tomb.Tomb{}
|
||||||
|
|
||||||
cConfig, err := csconfig.NewConfig(flags.ConfigFile, flags.DisableAgent, flags.DisableAPI)
|
cConfig, err := csconfig.NewConfig(flags.ConfigFile, flags.DisableAgent, flags.DisableAPI, false)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, err
|
return nil, err
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -97,7 +97,7 @@ func runService(name string) error {
|
||||||
log.Warnf("Failed to open event log: %s", err)
|
log.Warnf("Failed to open event log: %s", err)
|
||||||
}
|
}
|
||||||
|
|
||||||
cConfig, err := csconfig.NewConfig(flags.ConfigFile, flags.DisableAgent, flags.DisableAPI)
|
cConfig, err := csconfig.NewConfig(flags.ConfigFile, flags.DisableAgent, flags.DisableAPI, false)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -46,8 +46,9 @@ func (c *Config) Dump() error {
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
func NewConfig(configFile string, disableAgent bool, disableAPI bool) (*Config, error) {
|
func NewConfig(configFile string, disableAgent bool, disableAPI bool, quiet bool) (*Config, error) {
|
||||||
patcher := yamlpatch.NewPatcher(configFile, ".local")
|
patcher := yamlpatch.NewPatcher(configFile, ".local")
|
||||||
|
patcher.SetQuiet(quiet)
|
||||||
fcontent, err := patcher.MergedPatchContent()
|
fcontent, err := patcher.MergedPatchContent()
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, err
|
return nil, err
|
||||||
|
|
|
||||||
|
|
@ -10,13 +10,13 @@ import (
|
||||||
)
|
)
|
||||||
|
|
||||||
func TestNormalLoad(t *testing.T) {
|
func TestNormalLoad(t *testing.T) {
|
||||||
_, err := NewConfig("./tests/config.yaml", false, false)
|
_, err := NewConfig("./tests/config.yaml", false, false, false)
|
||||||
require.NoError(t, err)
|
require.NoError(t, err)
|
||||||
|
|
||||||
_, err = NewConfig("./tests/xxx.yaml", false, false)
|
_, err = NewConfig("./tests/xxx.yaml", false, false, false)
|
||||||
assert.EqualError(t, err, "while reading yaml file: open ./tests/xxx.yaml: "+cstest.FileNotFoundMessage)
|
assert.EqualError(t, err, "while reading yaml file: open ./tests/xxx.yaml: "+cstest.FileNotFoundMessage)
|
||||||
|
|
||||||
_, err = NewConfig("./tests/simulation.yaml", false, false)
|
_, err = NewConfig("./tests/simulation.yaml", false, false, false)
|
||||||
assert.EqualError(t, err, "./tests/simulation.yaml: yaml: unmarshal errors:\n line 1: field simulation not found in type csconfig.Config")
|
assert.EqualError(t, err, "./tests/simulation.yaml: yaml: unmarshal errors:\n line 1: field simulation not found in type csconfig.Config")
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -13,15 +13,24 @@ import (
|
||||||
type Patcher struct {
|
type Patcher struct {
|
||||||
BaseFilePath string
|
BaseFilePath string
|
||||||
PatchFilePath string
|
PatchFilePath string
|
||||||
|
quiet bool
|
||||||
}
|
}
|
||||||
|
|
||||||
func NewPatcher(filePath string, suffix string) *Patcher {
|
func NewPatcher(filePath string, suffix string) *Patcher {
|
||||||
return &Patcher{
|
return &Patcher{
|
||||||
BaseFilePath: filePath,
|
BaseFilePath: filePath,
|
||||||
PatchFilePath: filePath + suffix,
|
PatchFilePath: filePath + suffix,
|
||||||
|
quiet: false,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
// SetQuiet sets the quiet flag, which will log as DEBUG_LEVEL instead of INFO
|
||||||
|
func (p *Patcher) SetQuiet(quiet bool) {
|
||||||
|
p.quiet = quiet
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
// read a single YAML file, check for errors (the merge package doesn't) then return the content as bytes.
|
// read a single YAML file, check for errors (the merge package doesn't) then return the content as bytes.
|
||||||
func readYAML(filePath string) ([]byte, error) {
|
func readYAML(filePath string) ([]byte, error) {
|
||||||
var content []byte
|
var content []byte
|
||||||
|
|
@ -55,13 +64,19 @@ func (p *Patcher) MergedPatchContent() ([]byte, error) {
|
||||||
var over []byte
|
var over []byte
|
||||||
|
|
||||||
over, err = readYAML(p.PatchFilePath)
|
over, err = readYAML(p.PatchFilePath)
|
||||||
// optional file, ignore if it does not exist
|
if errors.Is(err, os.ErrNotExist) {
|
||||||
if err != nil && !errors.Is(err, os.ErrNotExist) {
|
return base, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
if err != nil {
|
||||||
return nil, err
|
return nil, err
|
||||||
}
|
}
|
||||||
if err == nil {
|
|
||||||
log.Debugf("Patching yaml: '%s' with '%s'", p.BaseFilePath, p.PatchFilePath)
|
logf := log.Infof
|
||||||
|
if p.quiet {
|
||||||
|
logf = log.Debugf
|
||||||
}
|
}
|
||||||
|
logf("Patching yaml: '%s' with '%s'", p.BaseFilePath, p.PatchFilePath)
|
||||||
|
|
||||||
var patched *bytes.Buffer
|
var patched *bytes.Buffer
|
||||||
|
|
||||||
|
|
@ -138,7 +153,11 @@ func (p *Patcher) PrependedPatchContent() ([]byte, error) {
|
||||||
if err = decodeDocuments(patchFile, &result, true); err != nil {
|
if err = decodeDocuments(patchFile, &result, true); err != nil {
|
||||||
return nil, err
|
return nil, err
|
||||||
}
|
}
|
||||||
log.Infof("Prepending yaml: '%s' with '%s'", p.BaseFilePath, p.PatchFilePath)
|
logf := log.Infof
|
||||||
|
if p.quiet {
|
||||||
|
logf = log.Debugf
|
||||||
|
}
|
||||||
|
logf("Prepending yaml: '%s' with '%s'", p.BaseFilePath, p.PatchFilePath)
|
||||||
}
|
}
|
||||||
|
|
||||||
baseFile, err = os.Open(p.BaseFilePath)
|
baseFile, err = os.Open(p.BaseFilePath)
|
||||||
|
|
|
||||||
|
|
@ -52,10 +52,21 @@ teardown() {
|
||||||
# errors that cause program termination are printed to stderr, not only logs
|
# errors that cause program termination are printed to stderr, not only logs
|
||||||
config_set '.db_config.type="meh"'
|
config_set '.db_config.type="meh"'
|
||||||
run -1 --separate-stderr "${CROWDSEC}"
|
run -1 --separate-stderr "${CROWDSEC}"
|
||||||
refute_output
|
|
||||||
assert_stderr --partial "unable to create database client: unknown database type 'meh'"
|
assert_stderr --partial "unable to create database client: unknown database type 'meh'"
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@test "crowdsec - bad configuration (empty/missing common section)" {
|
||||||
|
config_set '.common={}'
|
||||||
|
run -1 --separate-stderr "${CROWDSEC}"
|
||||||
|
refute_output
|
||||||
|
assert_stderr --partial "unable to load configuration: common section is empty"
|
||||||
|
|
||||||
|
config_set 'del(.common)'
|
||||||
|
run -1 --separate-stderr "${CROWDSEC}"
|
||||||
|
refute_output
|
||||||
|
assert_stderr --partial "unable to load configuration: common section is empty"
|
||||||
|
}
|
||||||
|
|
||||||
@test "CS_LAPI_SECRET not strong enough" {
|
@test "CS_LAPI_SECRET not strong enough" {
|
||||||
CS_LAPI_SECRET=foo run -1 --separate-stderr timeout 2s "${CROWDSEC}"
|
CS_LAPI_SECRET=foo run -1 --separate-stderr timeout 2s "${CROWDSEC}"
|
||||||
assert_stderr --partial "api server init: unable to run local API: controller init: CS_LAPI_SECRET not strong enough"
|
assert_stderr --partial "api server init: unable to run local API: controller init: CS_LAPI_SECRET not strong enough"
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue