test: check validity of systemd service files

This spots errors like what commit a531458456 ('cloud-setup: fix placement of directives in the systemd unit') fixes. This is what a failure would look like: 5/74 check-nm-cloud-setup.service FAIL 0.05s exit status 1 >>> ... /bin/bash src/tests/check-systemd-service.sh build/src/nm-cloud-setup/nm-cloud-setup.service ―――――――――――――――――――――― ✀ ――――――――――――――――――――――― build/src/nm-cloud-setup/nm-cloud-setup.service:19: Unknown key 'StartLimitIntervalSec' in section [Service], ignoring. https://issues.redhat.com/browse/RHEL-56860 https://issues.redhat.com/browse/RHEL-49694
2025-12-29 08:00:18 +01:00 · 2024-10-04 21:30:49 +02:00 · 2024-10-04 21:30:49 +02:00 · 39c7d5b0ae
commit 39c7d5b0ae
parent bb6881f88c
3 changed files with 34 additions and 6 deletions
--- a/data/meson.build
+++ b/data/meson.build
@ -9,19 +9,25 @@ configure_file(

 if install_systemdunitdir
  services = [
-    'NetworkManager-dispatcher.service.in',
-    'NetworkManager.service.in',
-    'nm-priv-helper.service.in',
-    'NetworkManager-wait-online.service.in',
+    'NetworkManager-dispatcher.service',
+    'NetworkManager.service',
+    'nm-priv-helper.service',
+    'NetworkManager-wait-online.service',
  ]

  foreach service: services
    configure_file(
-      input: service,
-      output: '@BASENAME@',
+      input: service + '.in',
+      output: service,
      install_dir: systemd_systemdsystemunitdir,
      configuration: data_conf,
    )
+
+    test(
+      'check-' + service,
+      find_program(join_paths(source_root, 'src/tests/check-systemd-unit.sh')),
+      args: [ join_paths(meson.current_build_dir(), service) ],
+    )
  endforeach

  if enable_ovs
--- a/src/nm-cloud-setup/meson.build
+++ b/src/nm-cloud-setup/meson.build
@ -9,6 +9,12 @@ if install_systemdunitdir
    configuration: data_conf,
  )

+  test(
+    'check-nm-cloud-setup.service',
+    find_program(join_paths(source_root, 'src/tests/check-systemd-unit.sh')),
+    args: [ join_paths(meson.current_build_dir(), 'nm-cloud-setup.service') ],
+  )
+
  install_data(
    'nm-cloud-setup.timer',
    install_dir: systemd_systemdsystemunitdir,
--- a/src/tests/check-systemd-unit.sh
+++ b/src/tests/check-systemd-unit.sh
@ -0,0 +1,16 @@
+#!/bin/bash
+# SPDX-License-Identifier: LGPL-2.1-or-later
+
+set -e
+set -o pipefail
+
+# We're using "security" as opposed to "verify" because (as of 2024)
+# the latter doesn't support --offline runs.
+#
+# The point is that if anything appears before the security report
+# header, there's an error or a warning while parsing the unit file.
+env -i systemd-analyze --offline=true security "$1" 2>&1 |awk '
+	/NAME.*DESCRIPTION.*EXPOSURE/ {suppress=1}
+	{if (!suppress) {print; failed++}}
+	END {exit failed}
+'