From mboxrd@z Thu Jan 1 00:00:00 1970 From: Jonatan Schlag To: development@lists.ipfire.org Subject: Re: [PATCH 2/5] functions.network: Add network_zone_exists Date: Mon, 25 Mar 2024 08:46:23 +0100 Message-ID: <2350d396d241a39e6dc1acd142d952bf@ipfire.org> In-Reply-To: <124D11E4-5BDC-4D89-9CA5-5F42FE8E6369@ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============8245851530233792093==" List-Id: --===============8245851530233792093== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Am 2024-03-18 17:27, schrieb Michael Tremer: > Hello, >=20 >> On 16 Mar 2024, at 09:35, Jonatan Schlag =20 >> wrote: >>=20 >> Hi Michael, >>=20 >> Am 2024-03-12 11:32, schrieb Michael Tremer: >>> Hello Jonatan, >>>> On 8 Mar 2024, at 11:14, Jonatan Schlag =20 >>>> wrote: >>>> Hi, >>>> Tl;dr: >>>> It is not sensible to duplicate code in bash and the setup command. >>>> There should be one source for checking a network config. The=20 >>>> minimal >>>> should be done in Bash. If C is the right language to go is another >>>> question. >>> I believe that you will have to duplicate a couple of things quite a=20 >>> bit. We use three different languages to implement the network=20 >>> configuration scripts, the management utility and the web UI. That=20 >>> means: Bash, C, and Perl. >>> If we were going really bug there could be some benefit in writing a=20 >>> single C library with the logic and exposing that to Perl and Bash,=20 >>> but that would be a lot more work that we are willing to invest into=20 >>> this project right now. >>=20 >> Would you still be OK, if I write some port for examples as loadable=20 >> for bash? Or do you want everything in Bash? >=20 > Which parts would that be? I cannot think of anything that would be=20 > better implemented in something else. >=20 > Let me know what you have in mind and we will discuss. >=20 Reusing the function here=20 https://git.ipfire.org/?p=3Dipfire-2.x.git;a=3Dblob;f=3Dsrc/libsmooth/varval.= c;hb=3D08b7500b267a54aa634fb34b67b4dfc0934ae2be#l46=20 and creating a bash loadable so that I can do readkeyvalues FILE ARRAY_NAME and subsequently, access the data like echo ${ARRY_NAME["GREEN_DEV"]} So we stay bug compatible and reusing code which we use already in=20 several other places. >>>> After thought about this whole situation a little bit more, I came=20 >>>> to >>>> the conclusion that we need a better solution here. So what are the >>>> problems with this patch and the current situation: >>> Better solution to what? I am not entirely sure where you are going=20 >>> with all of this. >>=20 >> For reading and checking our network configuration. >=20 > Reading it is not a problem as we have a script for that. We currently do an eval on the file. I would not call this a script. Or=20 am I missing something. >=20 > Checking? I think you need to be a little bit more clear. >=20 Check for correct IP addresses and so on. I would like to avoid that the=20 setup utility lets you save an IP address with the bash script fails on.=20 So, the best way to do this: using the same function to check the=20 network config. >>>> * We need to check for a correct network configuration before we=20 >>>> start >>>> it and when a user edits it. The editing is done via /usr/sbin/setup >>>> which is a C program from 2001. The startup is done via a shell >>>> script. It is a bad idea, as we learned from ipfire-3.x, to have a >>>> duplicated code in two languages. So it is a bad idea two write=20 >>>> shell >>>> functions to check for a valid network config and C functions. There >>>> needs to be one way to check for a valid network config. >>> setup is probably slightly older than 2001 :) >>> As mentioned above, I don=E2=80=99t think this will hurt us too bad here = >>> because the complexity of the network stack in IPFire 2 is=20 >>> substantially smaller than IPFire 3. You will also only copy a very=20 >>> small subnet of the functionality which mainly is reading and writing=20 >>> the configuration. That is all. Depending on how you are splitting=20 >>> it, this could be less than a hand full of functions. That sounds=20 >>> very acceptable to me. >>>> *Nearly everything can be programmed in Bash, but maybe not=20 >>>> everything >>>> should. It may be the better approach to do only the network startup >>>> with as minimal code as possible in Bash (calling ip from something >>>> else with something like system() is a bad idea.) Checking and=20 >>>> parsing >>>> a config file is perhaps better to be done in other languages. After=20 >>>> we >>>> parsed a config file and checked the content for validity, we could, >>>> for example, export the necessary information as environment=20 >>>> variables. >>>> Basically, we do the same thing here, as eval "parses" the config=20 >>>> and >>>> export variables: >>>> https://git.ipfire.org/?p=3Dipfire-2.x.git;a=3Dblob;f=3Dsrc/initscripts/= networking/any;h=3Ddc4796e914536dae03b70390e9447b3bb2bf127b;hb=3Drefs/heads/n= ext#l24 >>> Apart from copying variables back and forth this should not be the=20 >>> worst bit of code we have here. >>=20 >> No, it is not. My point was, more, that I need to redefine which=20 >> CONFIG_TYPE is what. I would like to avoid that. >=20 > I think there is no way to avoid that. >=20 > I believe that there would be a huge benefit from checking the entire=20 > code base for this. We would be able to open a couple of extra doors=20 > for the future this way. Checking the entire code base for what? >=20 >>> Bash is a great language for these things. Can it be done better?=20 >>> Yes, but you are not seriously considering to do a full rewrite of=20 >>> everything in C, are you? >>=20 >> Not a full rewrite. But If I can program a function in C or in Bash=20 >> and maybe reuse some Code of the installer in C, I would like to use=20 >> C. >>=20 >>>> * Bash has somehow limited tooling, for example for testing. There=20 >>>> are >>>> other languages like python and pytest, so we have to write less=20 >>>> code. >>>> It is pointless to write a testing framework for ourselves in Bash. >>> To test a bash function, you need a bash script. There is nothing=20 >>> else required. >>=20 >> Short: No. This is not the way of testing I know and thought about. I=20 >> need at least covering reports. There seem to be some alternatives=20 >> around here: https://github.com/bats-core/bats-core . Still C has more=20 >> of these tools like https://gcc.gnu.org/onlinedocs/gcc/Gcov.html=20 >> because more people use it in bigger project where these tools are=20 >> needed. >>=20 >>>> *This patch duplicates code which is somehow also found here: >>>> https://git.ipfire.org/?p=3Dipfire-2.x.git;a=3Dblob;f=3Dsrc/setup/networ= king.c;h=3D9dd5205e5a1cb60c4a0bb003ec2a8348848822f9;hb=3Drefs/heads/next#l37 >>> This is not a duplicate. This is the only place where the network=20 >>> card assignment happens. >>=20 >> Still, the same code is in bot my bash function and in the c function. >>=20 >>>> So what do I propose. This is a rough sketch, not a detailed plan: >>>> There should be a program which I can call from bash, which: >>> *script >>=20 >> Do you, insist on script? >>=20 >>>> * checks for the validity of the network config >>>> * exports all variables which are valid. >>>> The same config check should be used in the program which users use=20 >>>> to >>>> edit the network settings and in the web interface to change the=20 >>>> zone >>>> settings. The language for this program should not be Bash. What >>>> language should be used largely depends on preferences. I can=20 >>>> program >>>> in C, but I try to avoid it when there is no reason, like=20 >>>> performance. >>>> A program in an interpreter language with enough tests, which are=20 >>>> easy >>>> to write when you only need to mock a config file, is equally=20 >>>> stable. >>>> But before this discussion starts, I would like to gather some=20 >>>> opinions >>>> on the general thoughts a wrote down, here. >>> You want to write shell scripts here. Nothing else, because you will=20 >>> run into new headaches: >>> * You have a lot of shell scripts that execute the boot process, run=20 >>> daemons and what not. You don=E2=80=99t want to touch those, so you will = have=20 >>> to be compatible. >>=20 >> The plan was not to rewrite everything in c. Maybe having something=20 >> like=20 >> https://git.savannah.gnu.org/cgit/bash.git/tree/examples/loadables/csv.c=20 >> to load the file and check it for error. The rest would still be Bash. >=20 > You would have to write a parser that is entirely bug-compatible with=20 > what we are using now. You don=E2=80=99t want to change even the smallest b= it=20 > of the format because you won=E2=80=99t have a unique way across the entire= =20 > distribution. I already have a parser for this format here=20 https://git.ipfire.org/?p=3Dipfire-2.x.git;a=3Dblob;f=3Dsrc/libsmooth/varval.= c;hb=3D08b7500b267a54aa634fb34b67b4dfc0934ae2be#l46 >=20 > If you want to write network code in C send patches for this:=20 > https://git.ipfire.org/?p=3Dnetwork.git;a=3Dsummary No, I am not keen on writing C. It appears to be not avoidable here, but=20 I still don't like it here. But back then C was the way to go. It is not=20 now any more. >=20 >>> * You will have to rewrite all sorts of callback scripts for DHCP and=20 >>> PPP. You don=E2=80=99t want to do that. >> No, I would rather not do that. >>=20 >>> * Shell can be written quickly. >>> * You already have some functionality there which is working=20 >>> perfectly fine. Why would you want to rewrite something that already=20 >>> works so well? >>=20 >>> * I believe that the IPFire 3 code shows that you can write large=20 >>> projects in shell. They work well and shell would cover everything we=20 >>> need in IPFire 2. >>=20 >> I would say after my experience, it proves the opposite. Small parts=20 >> can be perfectly written in shell. Dealing with config files there=20 >> validity and everything else is better done in another language. >=20 > Yes, but not when 100% of the code is already there and it is written=20 > in Bash. You will have to write everything again instead of improving=20 > the 2% that are bothering you right now. >=20 I must say this sentence still confuses me. On the one hand, I try to=20 rewrite small parts, and you answer with the whole script needs a=20 rewrite. Here you seem to more at the line of rewrite as few as=20 possible. Jonatan >>> In order to get to some sort of milestone, I believe that we need to=20 >>> work with what we have and incrementally improve it. If you want to=20 >>> work on a total rewrite, please look at IPFire 3 and not IPFire 2. >>=20 >> That's why I only send 5 patches. Would not say this is a total=20 >> rewrite. Even with C I would create a loadable for zone_exists and the=20 >> rest would be the same. I would only use the same C Code. >>=20 >> Jonatan >>=20 >>> -Michael >>>> Greetings >>>> Jonatan >>>> Am Samstag, dem 02.03.2024 um 12:09 +0100 schrieb Jonatan Schlag: >>>>> As our Network is quite static a case does the trick >>>>> Signed-off-by: Jonatan Schlag >>>>> --- >>>>> src/initscripts/networking/functions.network | 22 >>>>> ++++++++++++++++++++ >>>>> 1 file changed, 22 insertions(+) >>>>> diff --git a/src/initscripts/networking/functions.network >>>>> b/src/initscripts/networking/functions.network >>>>> index dedbb6f7f..ad0d3f36a 100644 >>>>> --- a/src/initscripts/networking/functions.network >>>>> +++ b/src/initscripts/networking/functions.network >>>>> @@ -289,3 +289,25 @@ qmi_assign_address() { >>>>> # Change the MAC address >>>>> ip link set "${intf}" address "${address}" >>>>> } >>>>> + >>>>> +network_zone_exists(){ >>>>> + local zone=3D"${1}" >>>>> + >>>>> + case "${zone}" in >>>>> + "blue") >>>>> + [ "${CONFIG_TYPE}" =3D "3" ] || [ >>>>> "${CONFIG_TYPE}" =3D "4" ] >>>>> + ;; >>>>> + "green") >>>>> + [ -n "${GREEN_DEV}" ] && [ -v "GREEN_DEV" ] >>>>> + ;; >>>>> + "orange") >>>>> + [ "${CONFIG_TYPE}" =3D "2" ] || [ >>>>> "${CONFIG_TYPE}" =3D "4" ] >>>>> + ;; >>>>> + "red") >>>>> + return ${EXIT_TRUE} >>>>> + ;; >>>>> + *) >>>>> + return ${EXIT_FALSE} >>>>> + ;; >>>>> + esac >>>>> +} --===============8245851530233792093==--