Skip to content

Commit

Permalink
ci: Verify go generated files are up to date
Browse files Browse the repository at this point in the history
  • Loading branch information
mmlb committed May 10, 2024
1 parent 1948ac0 commit fc1a921
Show file tree
Hide file tree
Showing 5 changed files with 119 additions and 9 deletions.
5 changes: 5 additions & 0 deletions .github/workflows/push-pr-lint.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,11 @@ jobs:
- name: Run golangci-lint
run: make golangci-lint

- name: Check go generated files
run: |
go install golang.org/x/tools/cmd/stringer@v0.21.0
make check-go-generated
- name: Run go tests
run: make go-test

Expand Down
2 changes: 1 addition & 1 deletion utils/fake_executor.go
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,7 @@ func (e *FakeExecute) Exec(_ context.Context) (*Result, error) {
}

e.Stdout = b
case "sanitize":
case "format", "sanitize":
dev := e.Args[len(e.Args)-1]
f, err := os.OpenFile(dev, os.O_WRONLY, 0)
if err != nil {
Expand Down
59 changes: 56 additions & 3 deletions utils/nvme.go
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,7 @@ var (
errSanicapNODMMASReserved = errors.New("sanicap nodmmas reserved bits set, not sure what to do with them")
errWipeUnsupported = errors.New("device does not support any wipe method")
errSanitizeInvalidAction = errors.New("invalid sanitize action")
errFormatInvalidSetting = errors.New("invalid format setting")
)

type Nvme struct {
Expand Down Expand Up @@ -279,6 +280,16 @@ const (
CryptoErase
)

//go:generate stringer -type SecureEraseSetting
type SecureEraseSetting uint8

const (
None SecureEraseSetting = iota
UserDataErase
CryptographicErase
Reserved
)

// WipeDisk implements DiskWiper by running nvme sanitize
func (n *Nvme) WipeDisk(ctx context.Context, logger *logrus.Logger, device string) error {
caps, err := n.DriveCapabilities(ctx, device)
Expand All @@ -291,16 +302,19 @@ func (n *Nvme) WipeDisk(ctx context.Context, logger *logrus.Logger, device strin
func (n *Nvme) wipe(ctx context.Context, logger *logrus.Logger, device string, caps []*common.Capability) error {
var ber bool
var cer bool
var cese bool
for _, cap := range caps {
switch cap.Name {
case "ber":
ber = cap.Enabled
case "cer":
cer = cap.Enabled
case "cese":
cese = cap.Enabled
}
}

if !ber && !cer {
if !ber && !cer && !cese {
return errWipeUnsupported
}

Expand All @@ -313,10 +327,28 @@ func (n *Nvme) wipe(ctx context.Context, logger *logrus.Logger, device string, c
}
l.WithError(err).Info("failed")
}
if ber {
l := logger.WithField("method", "sanitize").WithField("action", BlockErase)
l.Info("trying wipe")
err := n.Sanitize(ctx, device, BlockErase)
if err == nil {
return nil
}
l.WithError(err).Info("failed")
}
if cese {
l := logger.WithField("method", "format").WithField("setting", CryptographicErase)
l.Info("trying wipe")
err := n.Format(ctx, device, CryptographicErase)
if err == nil {
return nil
}
l.WithError(err).Info("failed")
}

l := logger.WithField("method", "sanitize").WithField("action", BlockErase)
l := logger.WithField("method", "format").WithField("setting", CryptographicErase)
l.Info("trying wipe")
err := n.Sanitize(ctx, device, BlockErase)
err := n.Format(ctx, device, UserDataErase)
if err == nil {
return nil
}
Expand Down Expand Up @@ -372,6 +404,27 @@ func (n *Nvme) Sanitize(ctx context.Context, device string, sanact SanitizeActio
return verify()
}

func (n *Nvme) Format(ctx context.Context, device string, ses SecureEraseSetting) error {
switch ses { // nolint:exhaustive
case UserDataErase, CryptographicErase:
default:
return fmt.Errorf("%w: %v", errFormatInvalidSetting, ses)
}

verify, err := ApplyWatermarks(device)
if err != nil {
return err
}

n.Executor.SetArgs("format", "--ses="+strconv.Itoa(int(ses)), device)
_, err = n.Executor.Exec(ctx)
if err != nil {
return err
}

return verify()
}

// NewFakeNvme returns a mock nvme collector that returns mock data for use in tests.
func NewFakeNvme() *Nvme {
return &Nvme{
Expand Down
36 changes: 31 additions & 5 deletions utils/nvme_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -194,22 +194,48 @@ func Test_NvmeSanitize(t *testing.T) {
}
}

func Test_NvmeFormat(t *testing.T) {
for action := range Reserved {
t.Run(action.String(), func(t *testing.T) {
n := NewFakeNvme()
dev := fakeNVMEDevice(t)
err := n.Format(context.Background(), dev, action)

switch action { // nolint:exhaustive
case UserDataErase, CryptographicErase:
require.NoError(t, err)
e, ok := n.Executor.(*FakeExecute)
require.True(t, ok)
require.Equal(t, []string{"format", "--ses=" + strconv.Itoa(int(action)), dev}, e.Args)
default:
require.Error(t, err)
require.ErrorIs(t, err, errFormatInvalidSetting)
}
})
}
}

func Test_NvmeWipe(t *testing.T) {
tests := []struct {
caps map[string]bool
args []string
}{
{caps: map[string]bool{"ber": false, "cer": false}},
{caps: map[string]bool{"ber": false, "cer": true}, args: []string{"sanitize", "--sanact=4"}},
{caps: map[string]bool{"ber": true, "cer": false}, args: []string{"sanitize", "--sanact=2"}},
{caps: map[string]bool{"ber": true, "cer": true}, args: []string{"sanitize", "--sanact=4"}},
{caps: map[string]bool{"ber": false, "cer": false, "cese": false}},
{caps: map[string]bool{"ber": false, "cer": false, "cese": true}, args: []string{"format", "--ses=2"}},
{caps: map[string]bool{"ber": false, "cer": true, "cese": false}, args: []string{"sanitize", "--sanact=4"}},
{caps: map[string]bool{"ber": false, "cer": true, "cese": true}, args: []string{"sanitize", "--sanact=4"}},
{caps: map[string]bool{"ber": true, "cer": false, "cese": false}, args: []string{"sanitize", "--sanact=2"}},
{caps: map[string]bool{"ber": true, "cer": false, "cese": true}, args: []string{"sanitize", "--sanact=2"}},
{caps: map[string]bool{"ber": true, "cer": true, "cese": false}, args: []string{"sanitize", "--sanact=4"}},
{caps: map[string]bool{"ber": true, "cer": true, "cese": true}, args: []string{"sanitize", "--sanact=4"}},
}
for _, test := range tests {
name := fmt.Sprintf("ber=%v,cer=%v", test.caps["ber"], test.caps["cer"])
name := fmt.Sprintf("ber=%v,cer=%v,cese=%v", test.caps["ber"], test.caps["cer"], test.caps["cese"])
t.Run(name, func(t *testing.T) {
caps := []*common.Capability{
{Name: "ber", Enabled: test.caps["ber"]},
{Name: "cer", Enabled: test.caps["cer"]},
{Name: "cese", Enabled: test.caps["cese"]},
}
n := NewFakeNvme()
dev := fakeNVMEDevice(t)
Expand Down
26 changes: 26 additions & 0 deletions utils/secureerasesetting_string.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit fc1a921

Please sign in to comment.