Merge pull request #3731 from balena-os/soft-watchdog

add initial disk watchdog recipes and sources

Author: flowzone-app[bot]

meta-balena-common/recipes-core/packagegroups/packagegroup-resin.bb

@@ -33,4 +33,5 @@ RDEPENDS:${PN} += " \
     systemd-zram-swap \
     ${@bb.utils.contains('BALENA_STORAGE', 'aufs', 'aufs-util-auplink', '', d)} \
     ${BALENA_SUPERVISOR} \
+    disk-watchdog \
     "

meta-balena-common/recipes-core/systemd/disk-watchdog.bb

@@ -0,0 +1,50 @@
+SUMMARY = "Disk watchdog service for monitoring disk health"
+DESCRIPTION = "A watchdog service that monitors disk health"
+LICENSE = "Apache-2.0"
+LIC_FILES_CHKSUM = "file://${BALENA_COREBASE}/COPYING.Apache-2.0;md5=89aea4e17d99a7cacdbeed46a0096b10"
+
+SRC_URI = "git://github.com/balena-os/disk-watchdogd.git;branch=master;protocol=https"
+SRCREV = "1060e49da45d9bfda3047856d66bdc7c6b8c1911"
+
+SRC_URI += "file://disk-watchdogd.service \
+            file://disk-watchdog-boot-history.service \
+            file://disk-watchdog-boot-history"
+
+S = "${WORKDIR}/git"
+
+WD_TEST_FILE ?= "${bindir}/disk-watchdogd"
+DISK_WD_BOOT_DIR ?= "/mnt/state/disk-watchdog"
+
+DEPENDS += "systemd"
+RDEPENDS:${PN} += "systemd"
+RDEPENDS:${PN} += "os-helpers-fs bash"
+
+do_compile() {
+    oe_runmake all
+}
+
+inherit systemd
+
+SYSTEMD_SERVICE:${PN} = "disk-watchdogd.service disk-watchdog-boot-history.service"
+SYSTEMD_AUTO_ENABLE = "enable"
+
+do_install() {
+    install -d ${D}${bindir}
+    install -m 0755 disk-watchdogd ${D}${bindir}/
+
+    # Substitute paths in service file
+    sed -i -e 's|@DAEMON_PATH@|/usr/bin/disk-watchdogd|g' \
+           -e 's|@WD_TEST_FILE@|${WD_TEST_FILE}|g' \
+           -e 's|@OS_HELPERS_FS@|${libexecdir}/os-helpers-fs|g' \
+           -e 's|@DISK_WD_BOOT_DIR@|${DISK_WD_BOOT_DIR}|g' \
+           ${WORKDIR}/disk-watchdogd.service
+
+    # Substitute paths in boot history script
+    sed -i -e 's|@DISK_WD_BOOT_DIR@|${DISK_WD_BOOT_DIR}|g' \
+           ${WORKDIR}/disk-watchdog-boot-history
+
+    install -d ${D}${systemd_unitdir}/system
+    install -m 0644 ${WORKDIR}/disk-watchdogd.service ${D}${systemd_unitdir}/system/
+    install -m 0644 ${WORKDIR}/disk-watchdog-boot-history.service ${D}${systemd_unitdir}/system/
+    install -m 0755 ${WORKDIR}/disk-watchdog-boot-history ${D}${bindir}/
+}

meta-balena-common/recipes-core/systemd/disk-watchdog/disk-watchdog-boot-history

@@ -0,0 +1,67 @@
+#!/bin/bash
+
+# Disk watchdog boot history updater
+# This script runs once per boot to update the boot timestamp history
+
+TIME_WINDOW=600  # 10 minutes
+MAX_BOOTS=3
+
+# Read boot history, one timestamp per line
+read_boot_history() {
+    local boot_file="@DISK_WD_BOOT_DIR@/boot-history"
+    if [[ -f "$boot_file" ]]; then
+        cat "$boot_file"
+    fi
+}
+
+# Write boot history, one timestamp per line
+write_boot_history() {
+    local timestamps="$1"
+    local boot_file="@DISK_WD_BOOT_DIR@/boot-history"
+    mkdir -p "$(dirname "$boot_file")" 2>/dev/null || true
+    echo "$timestamps" > "$boot_file" 2>/dev/null || true
+}
+
+# Disable the watchdog service by creating the disable file
+disable_watchdog_service() {
+    mkdir -p @DISK_WD_BOOT_DIR@ 2>/dev/null || true
+    touch @DISK_WD_BOOT_DIR@/disabled 2>/dev/null || true
+}
+
+# Update boot history with current boot timestamp
+update_boot_history() {
+    local current_time=$(date +%s)
+    local filtered_history=""
+
+    echo "Boot history updater: Processing boot at timestamp $current_time"
+
+    # Process existing boots, keeping only recent ones
+    while IFS= read -r timestamp; do
+        if [[ -n "$timestamp" && $((current_time - timestamp)) -lt $TIME_WINDOW ]]; then
+            filtered_history="${filtered_history}${timestamp}"$'\n'
+        fi
+    done < <(read_boot_history)
+
+    # Add current boot timestamp
+    filtered_history="${filtered_history}${current_time}"
+
+    # Write updated history
+    write_boot_history "$filtered_history"
+
+    # Count boots in the updated history
+    local boot_count=$(echo "$filtered_history" | wc -l)
+
+    echo "Boot history updated successfully (boot #$boot_count in last $((TIME_WINDOW/60)) minutes)"
+
+    # Check if we have too many boots
+    if [[ $boot_count -ge $MAX_BOOTS ]]; then
+        echo "Excessive boots detected ($boot_count >= $MAX_BOOTS) - disabling disk watchdog"
+        disable_watchdog_service
+    else
+        echo "Boot count ($boot_count) below threshold ($MAX_BOOTS) - watchdog will be allowed to start"
+    fi
+}
+
+# Main execution
+update_boot_history
+exit 0

meta-balena-common/recipes-core/systemd/disk-watchdog/disk-watchdog-boot-history.service

@@ -0,0 +1,12 @@
+[Unit]
+Description=Disk watchdog boot history updater
+After=local-fs.target
+Before=disk-watchdogd.service
+
+[Service]
+Type=oneshot
+ExecStart=/usr/bin/disk-watchdog-boot-history
+RemainAfterExit=yes
+
+[Install]
+WantedBy=multi-user.target

meta-balena-common/recipes-core/systemd/disk-watchdog/disk-watchdogd.service

@@ -0,0 +1,18 @@
+[Unit]
+Description=Disk watchdog service for monitoring disk health
+After=local-fs.target disk-watchdog-boot-history.service
+Requires=disk-watchdog-boot-history.service
+ConditionPathExists=!@DISK_WD_BOOT_DIR@/disabled
+
+[Service]
+Type=notify
+ExecStart=/bin/sh -c '@DAEMON_PATH@ -v -f @WD_TEST_FILE@ -b $(source @OS_HELPERS_FS@ && get_sector_size /dev/disk/by-state/active)'
+WatchdogSec=30s
+StartLimitInterval=2min
+StartLimitBurst=3
+StartLimitAction=reboot-force
+Restart=on-failure
+RestartSec=5s
+
+[Install]
+WantedBy=multi-user.target

meta-balena-common/recipes-support/os-helpers/os-helpers/os-helpers-fs

@@ -16,6 +16,16 @@ if [ -f "/usr/libexec/os-helpers-logging" ]; then
 . /usr/libexec/os-helpers-logging
 fi
 
+# Get the physical sector size for a device
+# Arguments:
+#   1 - device path (e.g., /dev/sda1, /dev/mmcblk0p1)
+# Returns: sector size in bytes via stdout
+get_sector_size() {
+	local _device="$1"
+
+	lsblk -o NAME,PHY-SEC,TYPE "$_device" 2>/dev/null | awk '$3 == "part" || $3 == "crypt" {print $2}' | head -n1
+}
+
 # Wait for a file to appear with loop count limit.
 # Use-case example: wait for udev to create a filesystem symlink.
 # Arguments:
@@ -536,7 +546,7 @@ estimate_size_in_zram() {
 	SAMPLE_SIZE_BYTES=$(expr 50 \* 1024 \* 1024)
 
 	_dev=$(df "$_file" | awk 'NR==2 {print $1}')
-	_blk_sz=$(lsblk -o NAME,PHY-SEC,TYPE "$_dev" 2>/dev/null | awk '$3 == "part" {print $2}' | head -n1)
+	_blk_sz=$(get_sector_size "$_dev")
 	if [ -z "$_blk_sz" ] || [ "$_blk_sz" -eq 0 ]; then
 		warn "Unable to determine block size, using 512 bytes"
 		_blk_sz=512

tests/suites/os/suite.js

@@ -477,5 +477,6 @@ module.exports = {
 		'./tests/swap',
 		'./tests/internet-sharing',
 		'./tests/safe-reboot',
+		'./tests/disk-watchdog',
 	],
 };

tests/suites/os/tests/disk-watchdog/Dockerfile.template

@@ -0,0 +1,12 @@
+FROM balenalib/%%BALENA_ARCH%%-alpine:3.12-run
+
+RUN apk add device-mapper e2fsprogs bash
+
+COPY create-dm-flakey.sh /usr/bin/create-dm-flakey.sh
+RUN chmod +x /usr/bin/create-dm-flakey.sh
+
+COPY entrypoint.sh /usr/bin/entrypoint.sh
+RUN chmod +x /usr/bin/entrypoint.sh
+
+ENTRYPOINT ["/usr/bin/entrypoint.sh"]
+CMD ["sleep", "infinity"]

tests/suites/os/tests/disk-watchdog/create-dm-flakey.sh

@@ -0,0 +1,108 @@
+#!/usr/bin/env bash
+# Create a dm-flakey device on top of a loop-backed image and mount it.
+# Usage:
+#   create-dm-flakey.sh <mount_point> <image_path> <dm_name>
+#   create-dm-flakey.sh cleanup <mount_point> <image_path> <dm_name>
+# Exit codes:
+#   1: usage
+#   2: image creation failed
+#   3: loop setup failed
+#   4: mkfs failed
+#   5: dmsetup failed
+#   6: mount failed
+#   7: could not determine device size
+
+set -u
+
+die() { echo "ERROR: $2" >&2; cleanup; exit "$1"; }
+
+cleanup() {
+    # Best-effort cleanup
+    set +e
+    if [[ -n ${MOUNT_POINT:-} ]] && mountpoint -q "$MOUNT_POINT"; then
+        umount "$MOUNT_POINT" >/dev/null 2>&1
+    fi
+    if [[ -n ${DM_NAME:-} ]] && dmsetup info "$DM_NAME" >/dev/null 2>&1; then
+        dmsetup remove "$DM_NAME" >/dev/null 2>&1
+    fi
+    # Determine loop device by variable or by image path
+    if [[ -z ${LOOP_DEV:-} ]] && [[ -n ${IMG_PATH:-} ]]; then
+        LOOP_DEV=$(losetup -d "$IMG_PATH" | awk -F: 'NR==1{print $1}')
+    fi
+    if [[ -n ${LOOP_DEV:-} ]] && losetup -a | grep -q "^$LOOP_DEV:"; then
+        losetup -d "$LOOP_DEV" >/dev/null 2>&1
+    fi
+    # Remove backing image if provided
+    if [[ -n ${IMG_PATH:-} && -f "$IMG_PATH" ]]; then
+        rm -f "$IMG_PATH"
+    fi
+    set -e
+}
+
+if [[ $# -lt 3 ]]; then
+    echo "Usage: $0 <mount_point> <image_path> <dm_name> | $0 cleanup <mount_point> <image_path> <dm_name>" >&2
+    exit 1
+fi
+
+if [[ "$1" == "cleanup" ]]; then
+    MOUNT_POINT=$2
+    IMG_PATH=$3
+    DM_NAME=$4
+    cleanup
+    exit 0
+fi
+
+if [[ $# -ne 3 ]]; then
+    echo "Usage: $0 <mount_point> <image_path> <dm_name>" >&2
+    exit 1
+fi
+
+MOUNT_POINT=$1
+IMG_PATH=$2
+DM_NAME=$3
+
+mkdir -p "$MOUNT_POINT" || die 6 "Failed to create mount point $MOUNT_POINT"
+
+# Create image if missing (100 MiB)
+if [[ ! -e "$IMG_PATH" ]]; then
+    if ! dd if=/dev/zero of="$IMG_PATH" bs=1M count=10 status=none; then
+        die 2 "Failed to create image at $IMG_PATH"
+    fi
+fi
+
+# Setup loop device
+LOOP_DEV=$(losetup -f) || die 3 "Failed to get free loop device"
+if ! losetup -P "$LOOP_DEV" "$IMG_PATH"; then
+    die 3 "Failed to attach $IMG_PATH to $LOOP_DEV"
+fi
+
+# Create filesystem on the loop device
+if ! mkfs.ext4 -F "$LOOP_DEV" >/dev/null; then
+    die 4 "mkfs.ext4 failed on $LOOP_DEV"
+fi
+
+if ! mount "$LOOP_DEV" "$MOUNT_POINT"; then
+    die 6 "Failed to mount $LOOP_DEV on $MOUNT_POINT"
+fi
+dd if=/dev/urandom of="$MOUNT_POINT/test.bin" bs=1M count=5 status=none || die 7 "Failed to create test.bin on $MOUNT_POINT"
+if ! umount "$MOUNT_POINT"; then
+    die 6 "Failed to unmount $MOUNT_POINT"
+fi
+
+# Determine size in 512B sectors
+SECTORS=$(blockdev --getsz "$LOOP_DEV" 2>/dev/null) || true
+[[ -n "$SECTORS" && "$SECTORS" =~ ^[0-9]+$ ]] || die 7 "Could not determine size for $LOOP_DEV"
+
+# Create dm-flakey mapping: 1s up / 1s down
+TABLE="0 $SECTORS flakey $LOOP_DEV 0 1 2"
+if ! echo "$TABLE" | dmsetup create "$DM_NAME"; then
+    die 5 "dmsetup create failed for $DM_NAME"
+fi
+
+# Mount the flakey device
+if ! mount "/dev/mapper/$DM_NAME" "$MOUNT_POINT"; then
+    die 6 "Failed to mount /dev/mapper/$DM_NAME on $MOUNT_POINT"
+fi
+
+# Leave devices mounted/active; caller is responsible for teardown.
+exit 0

tests/suites/os/tests/disk-watchdog/disk-watchdog-override.conf

@@ -0,0 +1,5 @@
+[Service]
+ExecStart=
+ExecStart=/bin/sh -c '/usr/bin/disk-watchdogd -v -f /mnt/state/flakey-mount/test.bin -b 512'
+WatchdogSec=
+WatchdogSec=2