Merge pull request #548 from buchdag/cow

buchdag · web-flow · commit 4febd32f9311 · 2019-06-09T14:44:00.000+02:00
Use cp+rm / sed+cp+rm instead of mv / sed -i on location configuration
diff --git a/app/functions.sh b/app/functions.sh
@@ -25,25 +25,34 @@ fi
 
 function add_location_configuration {
     local domain="${1:-}"
+    # If no domain was passed or if the domain has no custom conf, use default instead
     [[ -z "$domain" || ! -f "${VHOST_DIR}/${domain}" ]] && domain=default
-    [[ -f "${VHOST_DIR}/${domain}" && \
-       -n $(sed -n "/$START_HEADER/,/$END_HEADER/p" "${VHOST_DIR}/${domain}") ]] && return 0
-    echo "$START_HEADER" > "${VHOST_DIR}/${domain}".new
-    cat /app/nginx_location.conf >> "${VHOST_DIR}/${domain}".new
-    echo "$END_HEADER" >> "${VHOST_DIR}/${domain}".new
-    [[ -f "${VHOST_DIR}/${domain}" ]] && cat "${VHOST_DIR}/${domain}" >> "${VHOST_DIR}/${domain}".new
-    mv -f "${VHOST_DIR}/${domain}".new "${VHOST_DIR}/${domain}"
-    return 1
+
+    if [[ -f "${VHOST_DIR}/${domain}" && -n $(sed -n "/$START_HEADER/,/$END_HEADER/p" "${VHOST_DIR}/${domain}") ]]; then
+        # If the config file exist and already have the location configuration, end with exit code 0
+        return 0
+    else
+        # Else write the location configuration to a temp file ...
+        echo "$START_HEADER" > "${VHOST_DIR}/${domain}".new
+        cat /app/nginx_location.conf >> "${VHOST_DIR}/${domain}".new
+        echo "$END_HEADER" >> "${VHOST_DIR}/${domain}".new
+        # ... append the existing file content to the temp one ...
+        [[ -f "${VHOST_DIR}/${domain}" ]] && cat "${VHOST_DIR}/${domain}" >> "${VHOST_DIR}/${domain}".new
+        # ... and copy the temp file to the old one (if the destination file is bind mounted, you can't change
+        # its inode from within the container, so mv won't work and cp has to be used), then remove the temp file.
+        cp -f "${VHOST_DIR}/${domain}".new "${VHOST_DIR}/${domain}" && rm -f "${VHOST_DIR}/${domain}".new
+        return 1
+    fi
 }
 
 function remove_all_location_configurations {
-    local old_shopt_options=$(shopt -p) # Backup shopt options
-    shopt -s nullglob
     for file in "${VHOST_DIR}"/*; do
-        [[ -n $(sed -n "/$START_HEADER/,/$END_HEADER/p" "$file") ]] && \
-         sed -i "/$START_HEADER/,/$END_HEADER/d" "$file"
+        [[ -e "$file" ]] || continue
+        if [[ -n $(sed -n "/$START_HEADER/,/$END_HEADER/p" "$file") ]]; then
+            sed "/$START_HEADER/,/$END_HEADER/d" "$file" > "$file".new
+            cp -f "$file".new "$file" && rm -f "$file".new
+        fi
     done
-    eval "$old_shopt_options" # Restore shopt options
 }
 
 function check_cert_min_validity {
diff --git a/test/config.sh b/test/config.sh
@@ -8,6 +8,7 @@ testAlias+=(
 imageTests+=(
 	[le-companion]='
 	docker_api
+	location_config
 	default_cert
 	certs_single
 	certs_san
diff --git a/test/tests/location_config/expected-std-out.txt b/test/tests/location_config/expected-std-out.txt
@@ -0,0 +1 @@
+Started letsencrypt container for test location_config
diff --git a/test/tests/location_config/run.sh b/test/tests/location_config/run.sh
@@ -0,0 +1,139 @@
+#!/bin/bash
+
+## Test for automatic location configuration.
+
+# Set variables
+test_comment='### This is a test comment'
+vhost_path='/etc/nginx/vhost.d'
+
+# Create custom location configuration file to be bind mounted
+location_file="${TRAVIS_BUILD_DIR}/test/tests/location_config/le2.wtf"
+echo "$test_comment" > "$location_file"
+
+# Create le1.wtf configuration file from inside the nginx container
+docker exec "$NGINX_CONTAINER_NAME" sh -c "echo '### This is a test comment' > /etc/nginx/vhost.d/le1.wtf"
+
+# Zero the default configuration file.
+docker exec "$NGINX_CONTAINER_NAME" sh -c "echo '' > /etc/nginx/vhost.d/default"
+
+if [[ -z $TRAVIS_CI ]]; then
+  le_container_name="$(basename ${0%/*})_$(date "+%Y-%m-%d_%H.%M.%S")"
+else
+  le_container_name="$(basename ${0%/*})"
+fi
+run_le_container "${1:?}" "$le_container_name" "--volume $location_file:$vhost_path/le2.wtf"
+
+# Create the $domains array from comma separated domains in TEST_DOMAINS.
+IFS=',' read -r -a domains <<< "$TEST_DOMAINS"
+
+# Cleanup function with EXIT trap
+function cleanup {
+  # Cleanup the files created by this run of the test to avoid foiling following test(s).
+  docker exec "$le_container_name" bash -c 'rm -rf /etc/nginx/vhost.d/le1.wtf'
+  # Stop the LE container
+  docker stop "$le_container_name" > /dev/null
+}
+trap cleanup EXIT
+
+# Check if the ACME location configuration was correctly applied (ie only once) to the target file
+function check_location {
+  local container="${1:?}"
+  local path="${2:?}"
+  local start_comment='## Start of configuration add by letsencrypt container'
+  local end_comment='## End of configuration add by letsencrypt container'
+
+  if [[ "$(docker exec "$container" grep -c "$start_comment" "$path")" != 1 ]]; then
+    return 1
+  elif [[ "$(docker exec "$container" grep -c "$end_comment" "$path")" != 1 ]]; then
+    return 1
+  else
+    return 0
+  fi
+}
+
+# default configuration file should be empty
+config_path="$vhost_path/default"
+if docker exec "$le_container_name" [ ! -s "$config_path" ]; then
+  echo "$config_path should be empty at container startup:"
+  docker exec "$le_container_name" cat "$config_path"
+fi
+
+# le1.wtf and le2.wtf configuration files should only contains the test comment
+for domain in "${domains[@]:0:2}"; do
+  config_path="$vhost_path/$domain"
+  if check_location "$le_container_name" "$config_path"; then
+    echo "Unexpected location configuration on $config_path at container startup:"
+    docker exec "$le_container_name" cat "$config_path"
+  elif ! docker exec "$le_container_name" grep -q "$test_comment" "$config_path"; then
+    echo "$config_path should have test comment at container startup:"
+    docker exec "$le_container_name" cat "$config_path"
+  fi
+done
+
+# le3.wtf configuration file should not exist
+config_path="$vhost_path/${domains[2]}"
+if docker exec "$le_container_name" [ -e "$config_path" ]; then
+  echo "$config_path should not exist at container startup :"
+  docker exec "$le_container_name" ls -lh "$config_path"
+  docker exec "$le_container_name" cat "$config_path"
+fi
+
+# Add default location configuration then check
+config_path="$vhost_path/default"
+docker exec "$le_container_name" bash -c 'source /app/functions.sh; add_location_configuration'
+if ! check_location "$le_container_name" "$config_path" ; then
+  echo "Unexpected location configuration on $config_path after call to add_location_configuration:"
+  docker exec "$le_container_name" cat "$config_path"
+fi
+
+# Add le1.wtf and le2.wtf location configurations then check
+for domain in "${domains[@]:0:2}"; do
+  config_path="$vhost_path/$domain"
+  docker exec "$le_container_name" bash -c "source /app/functions.sh; add_location_configuration $domain"
+  if ! check_location "$le_container_name" "$config_path" ; then
+    echo "Unexpected location configuration on $config_path after call to add_location_configuration $domain:"
+    docker exec "$le_container_name" cat "$config_path"
+  elif ! docker exec "$le_container_name" grep -q "$test_comment" "$config_path"; then
+    echo "$config_path should still have test comment after call to add_location_configuration $domain:"
+    docker exec "$le_container_name" cat "$config_path"
+  fi
+done
+
+# Remove all location configurations
+docker exec "$le_container_name" bash -c "source /app/functions.sh; remove_all_location_configurations"
+
+# default configuration file should be empty again
+config_path="$vhost_path/default"
+if docker exec "$le_container_name" [ ! -s "$config_path" ]; then
+  echo "$config_path should be empty after call to remove_all_location_configurations:"
+  docker exec "$le_container_name" cat "$config_path"
+fi
+
+# le1.wtf and le2.wtf configuration files should have reverted to only containing the test comment
+for domain in "${domains[@]:0:2}"; do
+  config_path="$vhost_path/$domain"
+  if check_location "$le_container_name" "$config_path"; then
+    echo "Unexpected location configuration on $config_path after call to remove_all_location_configurations:"
+    docker exec "$le_container_name" cat "$config_path"
+  elif ! docker exec "$le_container_name" grep -q "$test_comment" "$config_path"; then
+    echo "$config_path should still have test comment after call to remove_all_location_configurations:"
+    docker exec "$le_container_name" cat "$config_path"
+  fi
+done
+
+# Trying to add location configuration to non existing le3.wtf should only configure default
+docker exec "$le_container_name" bash -c "source /app/functions.sh; add_location_configuration ${domains[2]}"
+
+config_path="$vhost_path/${domains[2]}"
+if docker exec "$le_container_name" [ -e "$config_path" ]; then
+  echo "$config_path should not exist after call to add_location_configuration ${domains[2]}:"
+  docker exec "$le_container_name" ls -lh "$config_path"
+  docker exec "$le_container_name" cat "$config_path"
+fi
+
+config_path="$vhost_path/default"
+docker exec "$le_container_name" bash -c 'source /app/functions.sh; add_location_configuration'
+if ! check_location "$le_container_name" "$config_path" ; then
+  echo "Unexpected location configuration on $config_path after call to remove_all_location_configurations ${domains[2]}:"
+  docker exec "$le_container_name" cat "$config_path"
+fi

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+Started letsencrypt container for test location_config`