Page MenuHomePhabricator
Create Task
Maniphest T254480

Shell/Python/other scripts should not be generated by ERB files; dynamic parts should be a simple ERB config file
Closed, ResolvedPublic
Actions

Description

We have many scripts that are defined as ERB templates.

We often make simple errors when editing them, as there's no tooling for dealing with such a format -- and in fact it's quite hard to write tooling for such, given the format of Puppet catalogs (which elides which template file produced a given generated file).

Instead, let's forbid scripts being generated from templates. (And also set up shellcheck for .sh files.)

original/deprecated follows

Ideally CI would automatically expand the templates as best it could*, and then run all the 'usual' checks we'd run for such a language. However, there's several tricky parts of doing that. Having a way to specify (in a puppet spec test?) to run shell/Python checks on a template given certain inputs might be more achievable.

We could also make this a wrapper around PCC for manual testing of a few key scripts, to start with, if that was easier. Here's a v0 proof of concept that, given PCC output to expand the templates, yoinks the script out of the post-change catalog and runs it through shellcheck (which identifies an issue that caused problems when the patch was merged):

% curl -s https://puppet-compiler.wmflabs.org/compiler1003/22927/puppetmaster1002.eqiad.wmnet/change.puppetmaster1002.eqiad.wmnet.pson \
    | jq -r '.resources[] | select(.title == "/usr/local/bin/puppet-merge") | .parameters.content' \
    | shellcheck -

In - line 181:
if [ $LABS_PRIVATE -eq 1 -a ${LABS_EXIT} -ne 99]; then
^-- SC1009: The mentioned syntax error was in this if expression.
   ^-- SC1073: Couldn't parse this test expression. Fix to allow more checks.
                                                ^-- SC1020: You need a space before the ].
                                                ^-- SC1072: Missing space before ]. Fix any mentioned problems and try again.

from T277892

During Python 3 porting, I discovered a few Python 2 scripts that are erb files which get their configurations filled in through puppet. This makes them difficult to test and
maintain, so we should consider not doing that if possible.

The scripts are these:

modules/profile/templates/hadoop/net-topology.py.erb
modules/profile/templates/hive/client/beeline_wrapper.py.erb

modules/beta/templates/wmf-beta-autoupdate.py.erb also need updating, but is scheduled for removal. See: https://gerrit.wikimedia.org/r/c/operations/puppet/+/753787

Details

SubjectRepoBranchLines +/-
C:bigtop::hadoop switch to new topology script.operations/puppetproduction+12 -7
C:bigtop::hadoop move net-topology.py to files.operations/puppetproduction+73 -0
C:bigtop::hadoop Fix script pathoperations/puppetproduction+1 -1
C:bigtop::hadoop ensure net-topology script is installed.operations/puppetproduction+6 -5
C:beta:autoupdate Move wmf-beta-autoupdate to files.operations/puppetproduction+222 -0
P:hive::client move beeline script to files.operations/puppetproduction+76 -19
alytics::refinery::job: build simple script inline in puppetoperations/puppetproduction+10 -3
phabricator: don't create chk_phuser shell script from erboperations/puppetproduction+18 -20
rsync: fix quickdatacopy sync scriptoperations/puppetproduction+3 -2
trafficserver::instance: move single line scripts inlineoperations/puppetproduction+1 -6
varnish::logging: move default definitions inlineoperations/puppetproduction+1 -4
CI: add some shell scripts to test the new shellcheck CI checkoperations/puppetproduction+0 -2
puppet-merge: split dynamic values out of puppet-merge scriptoperations/puppetproduction+36 -19
CI: add CI to check shell scriptsoperations/puppetproduction+43 -2
dumps: fix shellcheck issuesoperations/puppetproduction+55 -50
Example: build script in line in puppetoperations/puppetproduction+7 -13
rsync: move oneline script inlineoperations/puppetproduction+13 -5
aptrepo: build single line shell script inlineoperations/puppetproduction+5 -4
profile::icinga: move single line scripts in lineoperations/puppetproduction+12 -11
phabricator: move template to file as no dynamic valuesoperations/puppetproduction+1 -1
phabricator: move template to file as no dynamic valuesoperations/puppetproduction+1 -1
puppetmaster::gitclone: build single line script inlineoperations/puppetproduction+5 -3
icinga: convert sync_icinga_state.sh.erb to file with configoperations/puppetproduction+16 -4
httpbb: convert an .erb.sh script to inline contentoperations/puppetproduction+3 -5
jjb: Upgrade puppet jobs to new shellcheck versionintegration/configmaster+2 -2
docker: use more recent shellcheckintegration/configmaster+10 -0
puppet-merge: fix shellcheck issuesoperations/puppetproduction+37 -37
phabricator: convert 2 scripts created from erb to files with config filesoperations/puppetproduction+61 -39
prometheus: fix shellcheck issues in prometheus-local-crontabs.shoperations/puppetproduction+1 -1
osm: fix shellcheck issuesoperations/puppetproduction+6 -3
jjb: update puppet.git container for shellcheckintegration/configmaster+2 -2
operations-puppet: add shellcheck to docker imageintegration/configmaster+8 -1
statistics: fix shelcheck issues in hardsyncoperations/puppetproduction+22 -17
confluent: fix shellcheck issuesoperations/puppetproduction+24 -23
misc: fix minor shellcheck issues in a few scriptsoperations/puppetproduction+3 -2
mailmain: fix shellcheck issues remove_from_private.shoperations/puppetproduction+14 -14
planet: fix shellcheck issues in check_httpsoperations/puppetproduction+7 -7
Show related patches Customize query in gerrit

Related Objects
Search...

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
hashar added projects: Continuous-Integration-Config, Release-Engineering-Team (CI & Testing services).Jun 5 2020, 4:13 PM
hashar moved this task from Backlog to Repo setup on the Continuous-Integration-Config board.
gerritbot added a comment.Jun 5 2020, 4:19 PM

Change 602732 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] puppet-merge: split dynamic values out of puppet-merge script

https://gerrit.wikimedia.org/r/602732

gerritbot added a comment.Jun 5 2020, 4:44 PM

Change 602738 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] puppet-merge: fix shellcheck issues

https://gerrit.wikimedia.org/r/602738

Volans added a comment.Jun 5 2020, 7:46 PM

Sorry I'm late to this party, just noticed the task. I actually think that this is the wrong approach. We should not have executables that are ERB templates for anything more complex than 10 lines IMHO.
Those should be static scripts that parse a configuration file, and only the configuration file should be templated with ERB.

My 2 cents.

CDanis added a comment.Jun 5 2020, 7:49 PM

@Volans

In T254480#6196820, @jbond wrote:

Another option is we could just ban templated scripts and add CI to reject any erb file with a shebang in it. This would mean updating any current templated scripts to read a new templated config. i.e. move all the dynamic bits to a template

John has since gone on to implement this for puppet-merge (patches still pending) and I agree it's probably the right approach.

CDanis renamed this task from automated linting/analysis/other CI of Python/shell scripts generated by ERB to Shell/Python/other scripts should not be generated by ERB files; dynamic parts should be a simple ERB config file.Jun 5 2020, 8:01 PM
CDanis updated the task description. (Show Details)
Volans added a comment.Jun 5 2020, 8:12 PM

@CDanis yeah, sorry I noticed that after replying.
Totally agree with this approach, would be nice to have the CI check but we have a bunch of few liners that would become just more complex and probably not gaining a lot, see for example the first part of this list:

$ for file in $(find . -not -path "./.bundle/*" -name "*.erb"); do if grep -q '^#!\/' "$file"; then wc -l "$file"; fi; done | sort -n
       1 ./modules/profile/templates/analytics/refinery/job/refinery-download-project-namespace-map.sh.erb
       2 ./modules/httpbb/templates/httpbb.sh.erb
       2 ./modules/puppetmaster/templates/git/private/pre-commit.erb
       3 ./modules/aptrepo/templates/log.erb
       3 ./modules/profile/templates/icinga/icinga-downtime-absent.sh.erb
       3 ./modules/varnish/templates/varnishmtail.default.erb
       4 ./modules/phabricator/templates/deployment/phab_deploy_promote.erb
       4 ./modules/rsync/templates/quickdatacopy.erb
       5 ./modules/phabricator/templates/deployment/phab_deploy_rollback.erb
       5 ./modules/trafficserver/templates/ats_instance_restart.sh.erb
       6 ./modules/fastnetmon/templates/fastnetmon_notify.sh.erb
       7 ./modules/conftool/templates/conftool-merge.erb
       7 ./modules/profile/templates/ncredir/ncredirlog.sh.erb
       7 ./modules/profile/templates/trafficserver/atslog.sh.erb
       8 ./modules/conftool/templates/safe-depool.erb
       8 ./modules/conftool/templates/safe-pool.erb
       8 ./modules/profile/templates/prometheus/node-directory-size.erb
       8 ./modules/profile/templates/trafficserver/update-ocsp-trafficserver-hook.erb
       8 ./modules/vagrant/templates/mwvagrant.erb
       8 ./modules/vagrant/templates/start-mwvagrant.sh.erb
       9 ./modules/conftool/templates/safe-restart.erb
       9 ./modules/service/templates/check-service.erb
      10 ./modules/role/templates/mariadb/backups/dumps-otrs.sh.erb
      11 ./modules/base/templates/initramfs_sleep.erb
      11 ./modules/cfssl/templates/initca.sh.erb
      11 ./modules/dumps/templates/web/fetches/analytics/job/rsync_script.sh.erb
      11 ./modules/snapshot/templates/set_dump_dirs.sh.erb
      11 ./modules/vagrant/templates/labs-vagrant.erb
      12 ./modules/phabricator/templates/vcs/phabricator-ssh-hook.sh.erb
      12 ./modules/profile/templates/presto/presto_client_ssl_kerberos.erb
      13 ./modules/monitoring/templates/check_dir-not-bad-owner.erb
      13 ./modules/profile/templates/analytics/refinery/job/refinery-drop-mediawiki-xmldumps-pages_meta_history.sh.erb
      13 ./modules/profile/templates/analytics/refinery/job/refinery-eventlogging-saltrotate.erb
      13 ./modules/profile/templates/analytics/refinery/job/refinery-import-mediawiki-dumps.sh.erb
      13 ./modules/profile/templates/kerberos/replicate_krb_database.erb
      13 ./modules/service/templates/node/tail-log.erb
      14 ./modules/package_builder/templates/D05localsources.erb
      14 ./modules/profile/templates/analytics/refinery/job/refinery-sqoop-whole-mediawiki.sh.erb
      15 ./modules/service/templates/node/apply-config.sh.erb
      16 ./modules/package_builder/templates/D01security.erb
      16 ./modules/profile/templates/analytics/search/airflow/airflow-clean-log-dirs.erb
      16 ./modules/profile/templates/analytics/search/airflow/airflow.sh.erb
      18 ./modules/cescout/templates/metadb-configure.sh.erb
      19 ./modules/conftool/templates/initialize.sh.erb
      20 ./modules/profile/templates/analytics/refinery/job/refinery-sqoop-mediawiki-production.sh.erb
      20 ./modules/profile/templates/icinga/inactive.motd.erb
      21 ./modules/openstack/templates/initscripts/nova-fullstack.erb
      21 ./modules/package_builder/templates/D02archive.erb
      21 ./modules/profile/templates/analytics/refinery/job/refinery-sqoop-mediawiki.sh.erb
      21 ./modules/profile/templates/analytics/refinery/job/spark_job.sh.erb
      21 ./modules/puppetmaster/templates/git-master-postcommit.erb
      22 ./modules/docker/templates/images/build-base-images.erb
      22 ./modules/package_builder/templates/D01apt.wikimedia.org.erb
      22 ./modules/profile/templates/analytics/refinery/job/refinery-import-wikidata-dumps.sh.erb
      22 ./modules/profile/templates/analytics/refinery/job/refinery-sqoop-mediawiki-private.sh.erb
      22 ./modules/profile/templates/debmonitor/server/run_django_command.sh.erb
      22 ./modules/role/templates/icinga/sync_icinga_state.sh.erb
      22 ./modules/tilerator/templates/notify-tilerator.erb
      23 ./modules/profile/templates/kerberos/kadminserver/inactive.motd.erb
      23 ./modules/profile/templates/mediawiki/maintenance/inactive.motd.erb
      23 ./modules/role/templates/deployment/inactive.motd.erb
      24 ./modules/package_builder/templates/D02backports.erb
      24 ./modules/statistics/templates/published-sync.sh.erb
      26 ./modules/profile/templates/install_server/inactive.motd.erb
      26 ./modules/role/templates/releases/rsync_source_warning.motd.erb
      28 ./modules/profile/templates/hadoop/net-topology.py.erb
      28 ./modules/rsync/templates/quickdatacopy-ssl-wrapper.erb
      30 ./modules/osm/templates/import_waterlines.erb
      33 ./modules/monitoring/templates/check_git-needs-merge.erb
      33 ./modules/profile/templates/calico/build-calico.sh.erb
      33 ./modules/role/templates/bastionhost/inactive.motd.erb
      34 ./modules/base/templates/check_eth.erb
      36 ./modules/docker/templates/images/build-alpine.erb
      39 ./modules/phabricator/templates/deployment/phab_deploy_finalize.erb
      44 ./modules/osm/templates/replicate-osm.erb
      46 ./modules/profile/templates/wmcs/dologmsg.erb
      47 ./modules/base/templates/puppet-run.erb
      49 ./modules/openstack/templates/bootstrap/glance/glance_seed.sh.erb
      60 ./modules/httpbb/templates/deploy_apache_change.sh.erb
      61 ./modules/backup/templates/mysql-predump.erb
      65 ./modules/profile/templates/hive/client/beeline_wrapper.py.erb
      68 ./modules/profile/templates/icinga/icinga-downtime.sh.erb
      69 ./modules/bacula/templates/bpipe-mysql-db.erb
      73 ./modules/haproxy/templates/check_haproxy.erb
      78 ./modules/profile/templates/wmcs/nfs/nfs-manage.sh.erb
      91 ./modules/cescout/templates/metadb_s3_tarx.erb
      98 ./modules/profile/templates/initscripts/mariadb/misc/eventlogging/eventlogging_sync.sysvinit.erb
     102 ./modules/spamassassin/templates/sa-update-cron.erb
     109 ./modules/cdh/templates/spark/spark-env.sh.erb
     148 ./modules/beta/templates/wmf-beta-autoupdate.py.erb
     149 ./modules/labstore/templates/tc-setup.sh.erb
     157 ./modules/service/templates/deployment_script.sh.erb
     202 ./modules/puppetmaster/templates/puppet-merge.erb
     221 ./modules/openstack/templates/queens/nova/placement/nova-placement-api.erb
     221 ./modules/openstack/templates/rocky/nova/placement/nova-placement-api.erb
     260 ./modules/phabricator/templates/community_metrics.sh.erb
     328 ./modules/phabricator/templates/project_changes.sh.erb
     446 ./modules/mariadb/templates/mariadb.server.erb
ArielGlenn added a comment.Jun 5 2020, 8:22 PM

I agree. Example: the first attempt at ./modules/dumps/templates/web/fetches/analytics/job/rsync_script.sh.erb was here https://gerrit.wikimedia.org/r/#/c/operations/puppet/+/594773/2/modules/dumps/manifests/web/fetches/analytics/job.pp so you can see why erb was the natural approach in the end. Another file in there (modules/snapshot/templates/set_dump_dirs.sh.erb) literally just sets some vars to be picked up by the 'real' shell scripts that use it; I favour allowing scripts like these and strongly encouraging folks with long scripts as erb files to refactor them accordingly.

jbond added a comment.Jun 5 2020, 8:38 PM
In T254480#6197931, @Volans wrote:

@CDanis yeah, sorry I noticed that after replying.
Totally agree with this approach, would be nice to have the CI check but we have a bunch of few liners that would become just more complex and probably not gaining a lot, see for example the first part of this list:

for scripts that are just one line i think it reasonable to just build the content in puppet, this is a bit of a cheat but for simple one liners i think its a fine compromise. I took a quick look through the files other then the oneliners, some of them don't actually need to be templates as there is no erb and a few others look like they are already config files so we could possibly just remove the shebang . however there are of course some that may be a bit awkward to fit into this model. Perhaps we should just whitelist them. It would at least mean going forward we don't have more violations added.

Ill have a closer look next week and see if how much we can reduce that list with quick wins.

gerritbot added a comment.Jun 5 2020, 9:02 PM

Change 602771 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] Example: build script in line in puppet

https://gerrit.wikimedia.org/r/602771

jbond added a comment.EditedJun 5 2020, 9:05 PM
In T254480#6197961, @ArielGlenn wrote:

I agree. Example: the first attempt at ./modules/dumps/templates/web/fetches/analytics/job/rsync_script.sh.erb was here https://gerrit.wikimedia.org/r/#/c/operations/puppet/+/594773/2/modules/dumps/manifests/web/fetches/analytics/job.pp so you can see why erb was the natural approach in the end. Another file in there (modules/snapshot/templates/set_dump_dirs.sh.erb) literally just sets some vars to be picked up by the 'real' shell scripts that use it; I favour allowing scripts like these and strongly encouraging folks with long scripts as erb files to refactor them accordingly.

sorry i missed this before i responded. I took a look at this script and Created a CR to show how it may look building the script in puppet. like i said its a bit of a cheat but tbh for simple things like this i prefer to see them inline in the puppet manifest instead of having to open a new file. that said i suspect many may disagree

ArielGlenn added a comment.Jun 5 2020, 9:17 PM

@jbond I added the author of the one patch as a reviewer for their thoughts, since likely analytics folks will wind up maintaining that particular bit.

gerritbot added a comment.Jun 6 2020, 1:36 AM

Change 602647 merged by Ryan Kemper:
[operations/puppet@production] osm: fix shellcheck issues

https://gerrit.wikimedia.org/r/602647

gerritbot added a comment.Jun 8 2020, 6:45 AM

Change 603175 had a related patch set uploaded (by Hashar; owner: Hashar):
[integration/config@master] docker: use more recent shellcheck

https://gerrit.wikimedia.org/r/603175

hashar added a comment.Jun 8 2020, 6:52 AM

The CI container is build using Buster which comes with shellcheck 0.5.0 from May 2018. I have proposed a change to borrow the package from buster-backports and get 0.7.1 instead. https://gerrit.wikimedia.org/r/#/c/integration/config/+/603175

Notably because it adds new checks and it also has two interesting options which we might want to use:

  • --severity for filtering by minimum severity. So that potentially we can make the task fail on error but just report on warnings/info etc.
  • --wiki-link-count for showing wiki links . Grants us detailed information
gerritbot added a comment.Jun 8 2020, 8:32 AM

Change 603364 had a related patch set uploaded (by Dzahn; owner: Dzahn):
[operations/puppet@production] phabricator: convert 2 scripts created from erb to files with config files

https://gerrit.wikimedia.org/r/603364

jbond added a comment.Jun 8 2020, 9:45 AM
In T254480#6198075, @ArielGlenn wrote:

@jbond I added the author of the one patch as a reviewer for their thoughts, since likely analytics folks will wind up maintaining that particular bit.

great thanks

gerritbot added a comment.Jun 8 2020, 10:12 AM

Change 602649 merged by Jbond:
[operations/puppet@production] prometheus: fix shellcheck issues in prometheus-local-crontabs.sh

https://gerrit.wikimedia.org/r/602649

gerritbot added a comment.Jun 8 2020, 12:01 PM

Change 603364 merged by Dzahn:
[operations/puppet@production] phabricator: convert 2 scripts created from erb to files with config files

https://gerrit.wikimedia.org/r/603364

gerritbot added a comment.Jun 8 2020, 2:01 PM

Change 602732 merged by Jbond:
[operations/puppet@production] puppet-merge: split dynamic values out of puppet-merge script

https://gerrit.wikimedia.org/r/602732

gerritbot added a comment.Jun 8 2020, 2:01 PM

Change 602738 merged by Jbond:
[operations/puppet@production] puppet-merge: fix shellcheck issues

https://gerrit.wikimedia.org/r/602738

gerritbot added a comment.Jun 8 2020, 2:37 PM

Change 603490 had a related patch set uploaded (by Dzahn; owner: Dzahn):
[operations/puppet@production] httpbb: convert an .erb.sh script to inline content

https://gerrit.wikimedia.org/r/603490

gerritbot added a comment.Jun 8 2020, 2:46 PM

Change 603492 had a related patch set uploaded (by Dzahn; owner: Dzahn):
[operations/puppet@production] icinga: convert sync_icinga_state.sh.erb to file with config

https://gerrit.wikimedia.org/r/603492

gerritbot added a comment.Jun 8 2020, 5:50 PM

Change 603175 merged by jenkins-bot:
[integration/config@master] docker: use more recent shellcheck

https://gerrit.wikimedia.org/r/603175

Stashbot added a comment.Jun 8 2020, 5:55 PM

Mentioned in SAL (#wikimedia-releng) [2020-06-08T17:55:39Z] <James_F> Docker: Publishing operations-puppet image, now with upgraded shellcheck T254480

gerritbot added a comment.Jun 8 2020, 6:14 PM

Change 603563 had a related patch set uploaded (by Jforrester; owner: Jforrester):
[integration/config@master] jjb: Upgrade puppet jobs to new shellcheck version

https://gerrit.wikimedia.org/r/603563

gerritbot added a comment.Jun 8 2020, 6:20 PM

Change 603563 merged by jenkins-bot:
[integration/config@master] jjb: Upgrade puppet jobs to new shellcheck version

https://gerrit.wikimedia.org/r/603563

gerritbot added a comment.Jun 9 2020, 7:16 AM

Change 603490 merged by Dzahn:
[operations/puppet@production] httpbb: convert an .erb.sh script to inline content

https://gerrit.wikimedia.org/r/603490

gerritbot added a comment.Jun 11 2020, 1:30 PM

Change 603492 merged by Dzahn:
[operations/puppet@production] icinga: convert sync_icinga_state.sh.erb to file with config

https://gerrit.wikimedia.org/r/603492

gerritbot added a comment.Jun 12 2020, 3:31 PM

Change 605261 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] alytics::refinery::job: build simple script inline in puppet

https://gerrit.wikimedia.org/r/605261

gerritbot added a comment.Jun 12 2020, 3:39 PM

Change 605262 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] puppetmaster::gitclone: build single line script inline

https://gerrit.wikimedia.org/r/605262

gerritbot added a comment.Jun 12 2020, 3:47 PM

Change 605262 merged by Jbond:
[operations/puppet@production] puppetmaster::gitclone: build single line script inline

https://gerrit.wikimedia.org/r/605262

gerritbot added a comment.Jun 12 2020, 4:01 PM

Change 605267 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] aptrepo: build single line shell script inline

https://gerrit.wikimedia.org/r/605267

gerritbot added a comment.Jun 12 2020, 4:12 PM

Change 605271 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] profile::icinga: move single line scripts in line

https://gerrit.wikimedia.org/r/605271

gerritbot added a comment.Jun 12 2020, 4:20 PM

Change 605272 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] varnish::logging: move default definitions inline

https://gerrit.wikimedia.org/r/605272

gerritbot added a comment.Jun 12 2020, 4:24 PM

Change 605274 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] phabricator: move template to file as no dynamic values

https://gerrit.wikimedia.org/r/605274

gerritbot added a comment.Jun 12 2020, 4:26 PM

Change 605274 merged by Jbond:
[operations/puppet@production] phabricator: move template to file as no dynamic values

https://gerrit.wikimedia.org/r/605274

gerritbot added a comment.Jun 12 2020, 4:34 PM

Change 605275 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] rsync: move oneline script inline

https://gerrit.wikimedia.org/r/605275

gerritbot added a comment.Jun 12 2020, 4:37 PM

Change 605276 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] phabricator: move template to file as no dynamic values

https://gerrit.wikimedia.org/r/605276

gerritbot added a comment.Jun 12 2020, 4:41 PM

Change 605279 had a related patch set uploaded (by Jbond; owner: John Bond):
[operations/puppet@production] trafficserver::instance: move single line scripts inline

https://gerrit.wikimedia.org/r/605279

gerritbot added a comment.Jun 12 2020, 4:41 PM

Change 605276 merged by Jbond:
[operations/puppet@production] phabricator: move template to file as no dynamic values

https://gerrit.wikimedia.org/r/605276

gerritbot added a comment.Jun 15 2020, 9:00 AM

Change 605271 merged by Jbond:
[operations/puppet@production] profile::icinga: move single line scripts in line

https://gerrit.wikimedia.org/r/605271

gerritbot added a comment.Jun 15 2020, 9:01 AM

Change 605267 merged by Jbond:
[operations/puppet@production] aptrepo: build single line shell script inline

https://gerrit.wikimedia.org/r/605267

gerritbot added a comment.Jun 16 2020, 8:40 AM

Change 605275 merged by Jbond:
[operations/puppet@production] rsync: move oneline script inline

https://gerrit.wikimedia.org/r/605275

gerritbot added a comment.Jun 16 2020, 8:48 AM

Change 602771 merged by Jbond:
[operations/puppet@production] Example: build script in line in puppet

https://gerrit.wikimedia.org/r/602771

gerritbot added a comment.Jun 26 2020, 10:35 AM

Change 602645 merged by ArielGlenn:
[operations/puppet@production] dumps: fix shellcheck issues

https://gerrit.wikimedia.org/r/602645

gerritbot added a comment.Jun 29 2020, 9:10 AM

Change 602693 merged by Jbond:
[operations/puppet@production] CI: add CI to check shell scripts

https://gerrit.wikimedia.org/r/c/operations/puppet/ /602693

gerritbot added a comment.Jul 7 2020, 10:29 AM

Change 602694 abandoned by Jbond:
[operations/puppet@production] CI: add some shell scripts to test the new shellcheck CI check

Reason:

https://gerrit.wikimedia.org/r/602694

gerritbot added a comment.Jul 21 2020, 2:22 PM

Change 605272 merged by Jbond:
[operations/puppet@production] varnish::logging: move default definitions inline

https://gerrit.wikimedia.org/r/605272

gerritbot added a comment.Jul 21 2020, 2:23 PM

Change 605279 merged by Jbond:
[operations/puppet@production] trafficserver::instance: move single line scripts inline

https://gerrit.wikimedia.org/r/605279

gerritbot added a comment.Jul 22 2020, 8:31 AM

Change 615413 had a related patch set uploaded (by Filippo Giunchedi; owner: Filippo Giunchedi):
[operations/puppet@production] rsync: fix quickdatacopy sync script

https://gerrit.wikimedia.org/r/615413

gerritbot added a comment.Jul 22 2020, 8:44 AM

Change 615413 merged by Filippo Giunchedi:
[operations/puppet@production] rsync: fix quickdatacopy sync script

https://gerrit.wikimedia.org/r/615413

hashar mentioned this in T259586: Add CI to mediawiki/tools/train-dev.Aug 4 2020, 7:25 AM
Dzahn mentioned this in T200984: Stop introducing new code expanded from erb templates.Oct 3 2020, 12:07 AM
gerritbot added a comment.Oct 3 2020, 1:15 AM

Change 630257 had a related patch set uploaded (by Dzahn; owner: Dzahn):
[operations/puppet@production] phabricator: don't create chk_phuser shell script from erb (WIP)

https://gerrit.wikimedia.org/r/630257

gerritbot added a comment.Oct 3 2020, 1:42 AM

Change 630257 merged by Dzahn:
[operations/puppet@production] phabricator: don't create chk_phuser shell script from erb

https://gerrit.wikimedia.org/r/630257

gerritbot added a comment.Nov 20 2020, 1:18 PM

Change 605261 merged by Jbond:
[operations/puppet@production] alytics::refinery::job: build simple script inline in puppet

https://gerrit.wikimedia.org/r/605261

crusnov subscribed.Feb 5 2021, 4:44 PM
crusnov added a comment.Feb 5 2021, 4:46 PM

I'm scoping part of the broader python3 porting to get rid of .py.erb files also since they break all the tools I'm using to semi-automate parts of the process. :)

jbond merged a task: T277892: Convert .py.erb files to files with configurations.Mar 22 2021, 11:30 AM
jbond updated the task description. (Show Details)
jbond added subscribers: RhinosF1, Ottomata, elukey, MoritzMuehlenhoff.
crusnov added a parent task: T247364: Forward port Python2 files to Python3 in Puppet Repository.Mar 31 2021, 3:09 PM
thcipriani edited projects, added Release-Engineering-Team (thcipriani-workboard-fiddling); removed Release-Engineering-Team (CI & Testing services).Apr 20 2021, 1:03 AM
thcipriani moved this task from thcipriani-workboard-fiddling to Seen (ARCHIVE) on the Release-Engineering-Team board.Apr 20 2021, 1:05 AM
thcipriani edited projects, added Release-Engineering-Team; removed Release-Engineering-Team (thcipriani-workboard-fiddling).
thcipriani edited projects, added Release-Engineering-Team (Seen); removed Release-Engineering-Team.Apr 20 2021, 3:23 PM
jbond moved this task from Unsorted 💣 to Friday tasks on the User-jbond board.May 27 2021, 4:50 PM
hashar removed projects: Release-Engineering-Team (Seen), Continuous-Integration-Config, Patch-For-Review.Jun 4 2021, 10:13 AM

Dropping releng/CI, doesn't seem we have anything to do to complete the resolution of this task. It seems decoupling code and configuration can be achieved entirely in the Puppet repo without further tweaking in CI config/jobs.

Aklapper added a project: Infrastructure-Foundations.Jun 21 2021, 8:59 PM
jbond added a parent task: T294906: Puppet Improvements.Nov 3 2021, 11:50 AM
Volans mentioned this in T211750: Introduce Python code formatters usage.Apr 14 2022, 10:40 PM
hashar unsubscribed.Apr 20 2022, 10:22 AM
gerritbot added a comment.Jun 12 2023, 8:23 AM

Change 929156 had a related patch set uploaded (by Slyngshede; author: Slyngshede):

[operations/puppet@production] P:hive::client move beeline script to files.

https://gerrit.wikimedia.org/r/929156

gerritbot added a project: Patch-For-Review.Jun 12 2023, 8:23 AM
gerritbot added a comment.Jun 13 2023, 9:20 AM

Change 929643 had a related patch set uploaded (by Slyngshede; author: Slyngshede):

[operations/puppet@production] C:bigtop::hadoop move net-topology.py to files.

https://gerrit.wikimedia.org/r/929643

gerritbot added a comment.Jun 20 2023, 7:00 AM

Change 931499 had a related patch set uploaded (by Slyngshede; author: Slyngshede):

[operations/puppet@production] C:beta:autoupdate Move wmf-beta-autoupdate to files.

https://gerrit.wikimedia.org/r/931499

SLyngshede-WMF subscribed.Jun 20 2023, 7:34 AM

I've added patches for the remaining three Python scripts, one of which may just need to be deleted. All have been updated to have a configuration file, and to Python 3.

SLyngshede-WMF claimed this task.Jun 20 2023, 7:34 AM
SLyngshede-WMF updated the task description. (Show Details)Jul 4 2023, 10:23 AM
gerritbot added a comment.Jul 4 2023, 10:24 AM

Change 929156 merged by Slyngshede:

[operations/puppet@production] P:hive::client move beeline script to files.

https://gerrit.wikimedia.org/r/929156

gerritbot added a comment.Jul 4 2023, 10:24 AM

Change 931499 abandoned by Slyngshede:

[operations/puppet@production] C:beta:autoupdate Move wmf-beta-autoupdate to files.

Reason:

https://gerrit.wikimedia.org/r/931499

Dzahn unsubscribed.Jul 5 2023, 5:40 PM
jbond edited projects, added Puppet CI; removed User-jbond, Puppet.Jul 17 2023, 3:55 PM
gerritbot added a comment.Aug 24 2023, 7:51 AM

Change 929643 merged by Slyngshede:

[operations/puppet@production] C:bigtop::hadoop move net-topology.py to files.

https://gerrit.wikimedia.org/r/929643

SLyngshede-WMF added a comment.Aug 24 2023, 8:00 AM

The new version of the script have been deployed, but not yet configured in Hadoop.

gerritbot added a comment.Aug 24 2023, 8:17 AM

Change 952112 had a related patch set uploaded (by Slyngshede; author: Slyngshede):

[operations/puppet@production] C:bigtop::hadoop ensure net-topology script is installed.

https://gerrit.wikimedia.org/r/952112

gerritbot added a comment.Aug 24 2023, 8:26 AM

Change 952112 merged by Slyngshede:

[operations/puppet@production] C:bigtop::hadoop ensure net-topology script is installed.

https://gerrit.wikimedia.org/r/952112

gerritbot added a comment.Aug 24 2023, 9:03 AM

Change 952125 had a related patch set uploaded (by Slyngshede; author: Slyngshede):

[operations/puppet@production] C:bigtop::hadoop Fix script path

https://gerrit.wikimedia.org/r/952125

gerritbot added a comment.Aug 24 2023, 9:07 AM

Change 952125 merged by Slyngshede:

[operations/puppet@production] C:bigtop::hadoop Fix script path

https://gerrit.wikimedia.org/r/952125

gerritbot added a comment.Jan 9 2024, 9:47 AM

Change 954911 had a related patch set uploaded (by Stevemunene; author: Slyngshede):

[operations/puppet@production] C:bigtop::hadoop switch to new topology script.

https://gerrit.wikimedia.org/r/954911

gerritbot added a comment.Jan 9 2024, 11:40 AM

Change 954911 merged by Stevemunene:

[operations/puppet@production] C:bigtop::hadoop switch to new topology script.

https://gerrit.wikimedia.org/r/954911

Stashbot added a comment.Jan 9 2024, 12:57 PM

Mentioned in SAL (#wikimedia-analytics) [2024-01-09T12:57:42Z] <stevemunene> roll restart analytics hadoop masters to pickup new net_topology script and new JRE T254480

SLyngshede-WMF closed this task as Resolved.Jan 23 2024, 2:33 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL