-
Notifications
You must be signed in to change notification settings - Fork 547
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[sos] Add 'upload' component to upload existing reports and files #3746
Open
jcastill
wants to merge
1
commit into
sosreport:main
Choose a base branch
from
jcastill:jcastillo-add-upload-subsystem
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
+1,594
−913
Open
Changes from all commits
Commits
File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,151 @@ | ||
.TH UPLOAD 1 "December 2024" | ||
|
||
.SH NAME | ||
sos_upload \- Upload files like previously generated sos reports or logs to a policy specific location | ||
.SH SYNOPSIS | ||
.B sos upload FILE [options] | ||
[--case-id id]\fR | ||
[--upload-url url]\fR | ||
[--upload-user user]\fR | ||
[--upload-pass pass]\fR | ||
[--upload-directory dir]\fR | ||
[--upload-method]\fR | ||
[--upload-no-ssl-verify]\fR | ||
[--upload-protocol protocol]\fR | ||
[--upload-target target]\fR | ||
[--upload-s3-endpoint endpoint]\fR | ||
[--upload-s3-region region]\fR | ||
[--upload-s3-bucket bucket]\fR | ||
[--upload-s3-access-key key]\fR | ||
[--upload-s3-secret-key key]\fR | ||
[--upload-s3-object-prefix prefix]\fR | ||
|
||
.PP | ||
.SH DESCRIPTION | ||
upload is an sos subcommand to upload sos reports, | ||
logs, vmcores, or other files to a policy defined | ||
remote location, or a user defined one. | ||
.SH REQUIRED ARGUMENTS | ||
.B FILE | ||
.TP | ||
The path to the archive that is to be uploaded. | ||
.SH OPTIONS | ||
.TP | ||
.B \--case-id NUMBER | ||
Specify a case identifier to associate with the archive. | ||
Identifiers may include alphanumeric characters, commas and periods ('.'). | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Is it worth saying here that this is RH only? |
||
.TP | ||
.B \--upload-url URL | ||
If a vendor does not provide a default upload location, or if you would like to upload | ||
the archive to a different location, specify the address here. | ||
|
||
An upload protocol MUST be specified in this URL. Currently uploading is supported | ||
for HTTPS, SFTP, and FTP protocols. | ||
|
||
If your destination server listens on a non-standard port, specify the listening | ||
port in the URL. | ||
.TP | ||
.B \-\-upload-user USER | ||
If a vendor does not provide a default user for uploading, specify the username here. | ||
|
||
If --batch is used and this option is omitted, no username will | ||
be collected and thus uploads will fail if no vendor default is set. | ||
|
||
You also have the option of providing this value via the SOSUPLOADUSER environment | ||
variable. If this variable is set, then no username prompt will occur and --batch | ||
may be used provided all other required values (case number, upload password) | ||
are provided. | ||
.TP | ||
.B \-\-upload-pass PASS | ||
Specify the password to use for authentication with the destination server. | ||
|
||
If this option is omitted and upload is requested, you will be prompted for one. | ||
|
||
If --batch is used, this prompt will not occur, so any uploads are likely to fail unless | ||
this option is used. | ||
|
||
Note that this will result in the plaintext string appearing in `ps` output that may | ||
be collected by sos and be in the archive. If a password must be provided by you | ||
for uploading, it is strongly recommended to not use --batch and enter the password | ||
when prompted rather than using this option. | ||
jcastill marked this conversation as resolved.
Show resolved
Hide resolved
|
||
|
||
You also have the option of providing this value via the SOSUPLOADPASSWORD environment | ||
variable. If this variable is set, then no password prompt will occur and --batch may | ||
be used provided all other required values (case number, upload user) are provided. | ||
.TP | ||
.B \--upload-directory DIR | ||
Specify a directory to upload to, if one is not specified by a vendor default location | ||
or if your destination server does not allow writes to '/'. | ||
.TP | ||
.B \--upload-method METHOD | ||
Specify the HTTP method to use for uploading to the provided --upload-url. Valid | ||
values are 'auto' (default), 'put', or 'post'. The use of 'auto' will default to | ||
the method required by the policy-default upload location, if one exists. | ||
|
||
This option has no effect on upload protocols other than HTTPS. | ||
.TP | ||
.B \--upload-no-ssl-verify | ||
Disable SSL verification for HTTPS uploads. This may be used to allow uploading | ||
to locations that have self-signed certificates, or certificates that are otherwise | ||
untrusted by the local system. | ||
|
||
Default behavior is to perform SSL verification against all upload locations. | ||
.TP | ||
.B \--upload-protocol PROTO | ||
Manually specify the protocol to use for uploading to the target \fBupload-url\fR. | ||
|
||
Normally this is determined via the upload address, assuming that the protocol is part | ||
of the address provided, e.g. 'https://example.com'. By using this option, sos will skip | ||
the protocol check and use the method defined for the specified PROTO. | ||
|
||
For RHEL systems, setting this option to \fBsftp\fR will skip the initial attempt to | ||
upload to the Red Hat Customer Portal, and only attempt an upload to Red Hat's SFTP server, | ||
which is typically used as a fallback target. | ||
|
||
Valid values for PROTO are: 'auto' (default), 'https', 'ftp', 'sftp', 's3'. | ||
|
||
.TP | ||
.B \--upload-target TARGET | ||
Manually specify the upload target to use for uploading. Possible targets | ||
are: RHELUpload, UbuntuUpload, local. | ||
sos to upload a file to a vendor-specific location explicitly. | ||
If this option is not called, sos will try to determine the local target | ||
and use it for uploads. | ||
|
||
.TP | ||
.B \---upload-s3-endpoint ENDPOINT | ||
Endpoint to upload to for S3 bucket | ||
|
||
.TP | ||
.B \---upload-s3-region REGION | ||
Region to upload to for S3 bucket | ||
|
||
.TP | ||
.B \---upload-s3-bucket BUCKET | ||
Name of the S3 bucket to upload to | ||
|
||
.TP | ||
.B \---upload-s3-access-key KEY | ||
Access key for the S3 bucket | ||
|
||
.TP | ||
.B \- --upload-s3-secret-key KEY | ||
Secret key for the S3 bucket | ||
|
||
.TP | ||
.B \- --upload-s3-object-prefix PREFIX | ||
Prefix for the S3 object/key | ||
|
||
.SH SEE ALSO | ||
.BR sos (1) | ||
.BR sos-report (1) | ||
.BR sos-clean (1) | ||
.BR sos.conf (5) | ||
.BR sos-collect (1) | ||
|
||
.SH MAINTAINER | ||
.nf | ||
Maintained on GitHub at https://github.com/sosreport/sos | ||
.fi | ||
.SH AUTHORS & CONTRIBUTORS | ||
See \fBAUTHORS\fR file in the package documentation. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@jcastill Could the
--upload-protocol s3
flags be included in this work? Unfortunately, it contains unique flags that made S3 easier to implement at the time.The existing flags and how the provided values were used were not well aligned for S3, even though valid for FTP, HTTP, etc. protocols. I didn't want to cause any breakage for existing upload protocols while trying to make them work for all protocols, so S3 ended up with unique flags.
I planned to attempt a refactor at some point (sos v5?) where the original protocols and s3 overlap. For example, allowing synonymous flags:
--upload-user
~--upload-s3-access-key
--upload-pass
~--upload-s3-secret-key
--upload-directory
~--upload-s3-object-prefix
--upload-url
~--upload-s3-endpoint
However, I haven't been able to dedicate the time yet.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, I'll make sure I include them in the next iteration of this PR.
Let me know if I can help. My original idea was to have this PR as a starting point and then move stuff out of the generic policy and the OS-specific ones in a second PR, but that was rejected, so I'm working on the full change now. As soon as I finish with that, we can start working on the refactor of S3 it that's OK with you. In fact we need to do some work with S3 uploads for the RH customer portal, so we could do both things in parallel.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
When you have a branch published for public view and somewhat functional let me know. I'll branch off of it and start migrating the s3 portions in then submit a PR targeting your branch for you to review.
As for the s3 refactoring, we can look into it and I'd be more than happy to try and make some time. I believe a few lend themselves easily, or at least I don't immediately recall any issues with using them, like URL, user, and password. One I do recall bringing up some questions is the
--upload-directory
. For example, should this be only the prefixes inside the bucket? Or should it split the directory like{bucket}/{prefix}
on only the first slash? There may have been others, but I would have to review theLinuxPolicy.get_upload_xxxx()
functions and internalself._vars
again.Without some "group think" I decided not to implement something I (or others) may have been unhappy with later but stuck with unless making breaking changes.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There may be less to refactor than I first thought as I haven't reviewed the code in almost a year. I guess ended up implementing some of it already. Hope I'm still happy with my choices after a year 😄
sos/sos/policies/distros/__init__.py
Lines 615 to 629 in 2aa4fcf