mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

prevent numcopies or mincopies being configured to 0

Browse source 
Ignore annex.numcopies set to 0 in gitattributes or git config, or by
git-annex numcopies or by --numcopies, since that configuration would make
git-annex easily lose data. Same for mincopies.

This is a continuation of the work to make data only be able to be lost
when --force is used. It earlier led to the --trust option being disabled,
and similar reasoning applies here.

Most numcopies configs had docs that strongly discouraged setting it to 0
anyway. And I can't imagine a use case for setting to 0. Not that there
might not be one, but it's just so far from the intended use case of
git-annex, of managing and storing your data, that it does not seem like
it makes sense to cater to such a hypothetical use case, where any
git-annex drop can lose your data at any time.

Using a smart constructor makes sure every place avoids 0. Note that this
does mean that NumCopies is for the configured desired values, and not the
actual existing number of copies, which of course can be 0. The name
configuredNumCopies is used to make that clear.

Sponsored-by: Brock Spratlen on Patreon
This commit is contained in:
Joey Hess 2022-03-28 15:19:52 -04:00
parent fdcb14d475
commit d266a41f8d
No known key found for this signature in database
GPG key ID: DB12DB0FF05F8F38
16 changed files with 59 additions and 47 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
Annex/Drop.hs
View file

@ -70,10 +70,10 @@ handleDropsFrom locs rs reason fromhere key afile si preverified runner = do
- will surely fail. - will surely fail.
-} -}
checkcopies (have, numcopies, mincopies, _untrusted) Nothing = checkcopies (have, numcopies, mincopies, _untrusted) Nothing =
NumCopies have > numcopies && MinCopies have > mincopies have > fromNumCopies numcopies && have > fromMinCopies mincopies
checkcopies (have, numcopies, mincopies, untrusted) (Just u) checkcopies (have, numcopies, mincopies, untrusted) (Just u)
| S.member u untrusted = NumCopies have >= numcopies && MinCopies have >= mincopies | S.member u untrusted = have >= fromNumCopies numcopies && have >= fromMinCopies mincopies
| otherwise = NumCopies have > numcopies && MinCopies have > mincopies | otherwise = have > fromNumCopies numcopies && have > fromMinCopies mincopies
decrcopies (have, numcopies, mincopies, untrusted) Nothing = decrcopies (have, numcopies, mincopies, untrusted) Nothing =
(have - 1, numcopies, mincopies, untrusted) (have - 1, numcopies, mincopies, untrusted)

12
Annex/NumCopies.hs
View file

@ -43,10 +43,10 @@ import qualified Control.Monad.Catch as M
import Data.Typeable import Data.Typeable
defaultNumCopies :: NumCopies defaultNumCopies :: NumCopies
defaultNumCopies = NumCopies 1 defaultNumCopies = configuredNumCopies 1
defaultMinCopies :: MinCopies defaultMinCopies :: MinCopies
defaultMinCopies = MinCopies 1 defaultMinCopies = configuredMinCopies 1
fromSourcesOr :: v -> [Annex (Maybe v)] -> Annex v fromSourcesOr :: v -> [Annex (Maybe v)] -> Annex v
fromSourcesOr v = fromMaybe v <$$> getM id fromSourcesOr v = fromMaybe v <$$> getM id
@ -178,8 +178,8 @@ getNumMinCopiesAttr :: RawFilePath -> Annex (Maybe NumCopies, Maybe MinCopies)
getNumMinCopiesAttr file = getNumMinCopiesAttr file =
checkAttrs ["annex.numcopies", "annex.mincopies"] file >>= \case checkAttrs ["annex.numcopies", "annex.mincopies"] file >>= \case
(n:m:[]) -> return (n:m:[]) -> return
( NumCopies <$> readish n ( configuredNumCopies <$> readish n
, MinCopies <$> readish m , configuredMinCopies <$> readish m
) )
_ -> error "internal" _ -> error "internal"
@ -197,8 +197,8 @@ numCopiesCheck file key vs = do
numCopiesCheck' :: RawFilePath -> (Int -> Int -> v) -> [UUID] -> Annex v numCopiesCheck' :: RawFilePath -> (Int -> Int -> v) -> [UUID] -> Annex v
numCopiesCheck' file vs have = do numCopiesCheck' file vs have = do
NumCopies needed <- fst <$> getFileNumMinCopies file needed <- fst <$> getFileNumMinCopies file
return $ length have `vs` needed return $ length have `vs` fromNumCopies needed
data UnVerifiedCopy = UnVerifiedRemote Remote | UnVerifiedHere data UnVerifiedCopy = UnVerifiedRemote Remote | UnVerifiedHere
deriving (Ord, Eq) deriving (Ord, Eq)

2
Assistant/WebApp/Configurators/Preferences.hs
View file

@ -85,7 +85,7 @@ getPrefs = PrefsForm
storePrefs :: PrefsForm -> Annex () storePrefs :: PrefsForm -> Annex ()
storePrefs p = do storePrefs p = do
setConfig (annexConfig "diskreserve") (T.unpack $ diskReserve p) setConfig (annexConfig "diskreserve") (T.unpack $ diskReserve p)
setGlobalNumCopies (NumCopies $ numCopies p) setGlobalNumCopies (configuredNumCopies $ numCopies p)
unsetConfig (annexConfig "numcopies") -- deprecated unsetConfig (annexConfig "numcopies") -- deprecated
setConfig (annexConfig "autoupgrade") (fromAutoUpgrade $ autoUpgrade p) setConfig (annexConfig "autoupgrade") (fromAutoUpgrade $ autoUpgrade p)
unlessM ((==) <$> pure (autoStart p) <*> inAutoStartFile) $ do unlessM ((==) <$> pure (autoStart p) <*> inAutoStartFile) $ do

9
CHANGELOG
View file

@ -1,3 +1,12 @@
git-annex (10.20220323) UNRELEASED; urgency=medium
* Ignore annex.numcopies set to 0 in gitattributes or git config,
or by git-annex numcopies or by --numcopies, since that
configuration would make git-annex easily lose data.
Same for mincopies.
-- Joey Hess <id@joeyh.name> Mon, 28 Mar 2022 14:46:10 -0400
git-annex (10.20220322) upstream; urgency=medium git-annex (10.20220322) upstream; urgency=medium
* Directory special remotes with importtree=yes have changed to once more * Directory special remotes with importtree=yes have changed to once more

4
CmdLine/GitAnnex/Options.hs
View file

@ -100,8 +100,8 @@ gitAnnexGlobalOptions = commonGlobalOptions ++
) )
] ]
where where
setnumcopies n = Annex.changeState $ \s -> s { Annex.forcenumcopies = Just $ NumCopies n } setnumcopies n = Annex.changeState $ \s -> s { Annex.forcenumcopies = Just $ configuredNumCopies n }
setmincopies n = Annex.changeState $ \s -> s { Annex.forcemincopies = Just $ MinCopies n } setmincopies n = Annex.changeState $ \s -> s { Annex.forcemincopies = Just $ configuredMinCopies n }
setuseragent v = Annex.changeState $ \s -> s { Annex.useragent = Just v } setuseragent v = Annex.changeState $ \s -> s { Annex.useragent = Just v }
setgitconfig v = Annex.addGitConfigOverride v setgitconfig v = Annex.addGitConfigOverride v
setdesktopnotify v = Annex.changeState $ \s -> s { Annex.desktopnotify = Annex.desktopnotify s <> v } setdesktopnotify v = Annex.changeState $ \s -> s { Annex.desktopnotify = Annex.desktopnotify s <> v }

2
Command/Drop.hs
View file

@ -252,7 +252,7 @@ checkDropAuto automode mremote afile key a =
uuid <- getUUID uuid <- getUUID
let remoteuuid = fromMaybe uuid $ Remote.uuid <$> mremote let remoteuuid = fromMaybe uuid $ Remote.uuid <$> mremote
locs' <- trustExclude UnTrusted $ filter (/= remoteuuid) locs locs' <- trustExclude UnTrusted $ filter (/= remoteuuid) locs
if NumCopies (length locs') >= numcopies if length locs' >= fromNumCopies numcopies
then a numcopies mincopies then a numcopies mincopies
else stop else stop
| otherwise = a numcopies mincopies | otherwise = a numcopies mincopies

14
Command/Fsck.hs
View file

@ -517,8 +517,8 @@ checkKeyNumCopies key afile numcopies = do
locs <- loggedLocations key locs <- loggedLocations key
(untrustedlocations, otherlocations) <- trustPartition UnTrusted locs (untrustedlocations, otherlocations) <- trustPartition UnTrusted locs
(deadlocations, safelocations) <- trustPartition DeadTrusted otherlocations (deadlocations, safelocations) <- trustPartition DeadTrusted otherlocations
let present = NumCopies (length safelocations) let present = length safelocations
if present < numcopies if present < fromNumCopies numcopies
then ifM (pure (not hasafile) <&&> checkDead key) then ifM (pure (not hasafile) <&&> checkDead key)
( do ( do
showLongNote $ "This key is dead, skipping." showLongNote $ "This key is dead, skipping."
@ -527,21 +527,21 @@ checkKeyNumCopies key afile numcopies = do
untrusted <- Remote.prettyPrintUUIDs "untrusted" untrustedlocations untrusted <- Remote.prettyPrintUUIDs "untrusted" untrustedlocations
dead <- Remote.prettyPrintUUIDs "dead" deadlocations dead <- Remote.prettyPrintUUIDs "dead" deadlocations
warning $ missingNote desc present numcopies untrusted dead warning $ missingNote desc present numcopies untrusted dead
when (fromNumCopies present == 0 && not hasafile) $ when (present == 0 && not hasafile) $
showLongNote "(Avoid this check by running: git annex dead --key )" showLongNote "(Avoid this check by running: git annex dead --key )"
return False return False
) )
else return True else return True
missingNote :: String -> NumCopies -> NumCopies -> String -> String -> String missingNote :: String -> Int -> NumCopies -> String -> String -> String
missingNote file (NumCopies 0) _ [] dead = missingNote file 0 _ [] dead =
"** No known copies exist of " ++ file ++ honorDead dead "** No known copies exist of " ++ file ++ honorDead dead
missingNote file (NumCopies 0) _ untrusted dead = missingNote file 0 _ untrusted dead =
"Only these untrusted locations may have copies of " ++ file ++ "Only these untrusted locations may have copies of " ++ file ++
"\n" ++ untrusted ++ "\n" ++ untrusted ++
"Back it up to trusted locations with git-annex copy." ++ honorDead dead "Back it up to trusted locations with git-annex copy." ++ honorDead dead
missingNote file present needed [] _ = missingNote file present needed [] _ =
"Only " ++ show (fromNumCopies present) ++ " of " ++ show (fromNumCopies needed) ++ "Only " ++ show present ++ " of " ++ show (fromNumCopies needed) ++
" trustworthy copies exist of " ++ file ++ " trustworthy copies exist of " ++ file ++
"\nBack it up with git-annex copy." "\nBack it up with git-annex copy."
missingNote file present needed untrusted dead = missingNote file present needed untrusted dead =

2
Command/MinCopies.hs
View file

@ -32,7 +32,7 @@ startGet = startingCustomOutput (ActionItemOther Nothing) $ next $ do
startSet :: Int -> CommandStart startSet :: Int -> CommandStart
startSet n = startingUsualMessages "mincopies" ai si $ do startSet n = startingUsualMessages "mincopies" ai si $ do
setGlobalMinCopies $ MinCopies n setGlobalMinCopies $ configuredMinCopies n
next $ return True next $ return True
where where
ai = ActionItemOther (Just $ show n) ai = ActionItemOther (Just $ show n)

10
Command/NumCopies.hs
View file

@ -8,7 +8,6 @@
module Command.NumCopies where module Command.NumCopies where
import Command import Command
import qualified Annex
import Annex.NumCopies import Annex.NumCopies
cmd :: Command cmd :: Command
@ -28,11 +27,8 @@ start' setting _ startset [s] = case readish s of
Nothing -> giveup $ "Bad number: " ++ s Nothing -> giveup $ "Bad number: " ++ s
Just n Just n
| n > 0 -> startset n | n > 0 -> startset n
| n == 0 -> ifM (Annex.getState Annex.force) | n == 0 -> giveup $ "Cannot set " ++ setting ++ " to 0."
( startset n | otherwise -> giveup $ setting ++ " cannot be negative!"
, giveup $ "Setting " ++ setting ++ " to 0 is very unsafe. You will lose data! If you really want to do that, specify --force."
)
| otherwise -> giveup "Number cannot be negative!"
start' _ _ _ _ = giveup "Specify a single number." start' _ _ _ _ = giveup "Specify a single number."
startGet :: CommandStart startGet :: CommandStart
@ -50,7 +46,7 @@ startGet = startingCustomOutput (ActionItemOther Nothing) $ next $ do
startSet :: Int -> CommandStart startSet :: Int -> CommandStart
startSet n = startingUsualMessages "numcopies" ai si $ do startSet n = startingUsualMessages "numcopies" ai si $ do
setGlobalNumCopies $ NumCopies n setGlobalNumCopies $ configuredNumCopies n
next $ return True next $ return True
where where
ai = ActionItemOther (Just $ show n) ai = ActionItemOther (Just $ show n)

2
Command/Vicfg.hs
View file

@ -315,7 +315,7 @@ parseCfg defcfg = go [] defcfg . lines
in Right $ cfg { cfgGlobalConfigs = m } in Right $ cfg { cfgGlobalConfigs = m }
| setting == "numcopies" = case readish val of | setting == "numcopies" = case readish val of
Nothing -> Left "parse error (expected an integer)" Nothing -> Left "parse error (expected an integer)"
Just n -> Right $ cfg { cfgNumCopies = Just (NumCopies n) } Just n -> Right $ cfg { cfgNumCopies = Just (configuredNumCopies n) }
| otherwise = badval "setting" setting | otherwise = badval "setting" setting
where where
u = toUUID f u = toUUID f

4
Limit.hs
View file

@ -397,7 +397,7 @@ limitLackingCopies approx want = case readish want of
Nothing -> Left "bad value for number of lacking copies" Nothing -> Left "bad value for number of lacking copies"
where where
go mi needed notpresent key = do go mi needed notpresent key = do
NumCopies numcopies <- if approx numcopies <- if approx
then approxNumCopies then approxNumCopies
else case mi of else case mi of
MatchingFile fi -> getGlobalFileNumCopies $ MatchingFile fi -> getGlobalFileNumCopies $
@ -406,7 +406,7 @@ limitLackingCopies approx want = case readish want of
MatchingUserInfo {} -> approxNumCopies MatchingUserInfo {} -> approxNumCopies
us <- filter (`S.notMember` notpresent) us <- filter (`S.notMember` notpresent)
<$> (trustExclude UnTrusted =<< Remote.keyLocations key) <$> (trustExclude UnTrusted =<< Remote.keyLocations key)
return $ numcopies - length us >= needed return $ fromNumCopies numcopies - length us >= needed
approxNumCopies = fromMaybe defaultNumCopies <$> getGlobalNumCopies approxNumCopies = fromMaybe defaultNumCopies <$> getGlobalNumCopies
{- Match keys that are unused. {- Match keys that are unused.

8
Logs/NumCopies.hs
View file

@ -24,12 +24,12 @@ import Logs
import Logs.SingleValue import Logs.SingleValue
instance SingleValueSerializable NumCopies where instance SingleValueSerializable NumCopies where
serialize (NumCopies n) = encodeBS (show n) serialize = encodeBS . show . fromNumCopies
deserialize = NumCopies <$$> readish . decodeBS deserialize = configuredNumCopies <$$> readish . decodeBS
instance SingleValueSerializable MinCopies where instance SingleValueSerializable MinCopies where
serialize (MinCopies n) = encodeBS (show n) serialize = encodeBS . show . fromMinCopies
deserialize = MinCopies <$$> readish . decodeBS deserialize = configuredMinCopies <$$> readish . decodeBS
setGlobalNumCopies :: NumCopies -> Annex () setGlobalNumCopies :: NumCopies -> Annex ()
setGlobalNumCopies new = do setGlobalNumCopies new = do

3
Types/GitConfig.hs
View file

@ -148,7 +148,8 @@ extractGitConfig :: ConfigSource -> Git.Repo -> GitConfig
extractGitConfig configsource r = GitConfig extractGitConfig configsource r = GitConfig
{ annexVersion = RepoVersion <$> getmayberead (annexConfig "version") { annexVersion = RepoVersion <$> getmayberead (annexConfig "version")
, annexUUID = hereuuid , annexUUID = hereuuid
, annexNumCopies = NumCopies <$> getmayberead (annexConfig "numcopies") , annexNumCopies = configuredNumCopies
<$> getmayberead (annexConfig "numcopies")
, annexDiskReserve = fromMaybe onemegabyte $ , annexDiskReserve = fromMaybe onemegabyte $
readSize dataUnits =<< getmaybe (annexConfig "diskreserve") readSize dataUnits =<< getmaybe (annexConfig "diskreserve")
, annexDirect = getbool (annexConfig "direct") False , annexDirect = getbool (annexConfig "direct") False

20
Types/NumCopies.hs
View file

@ -1,14 +1,16 @@
{- git-annex numcopies types {- git-annex numcopies types
- -
- Copyright 2014-2021 Joey Hess <id@joeyh.name> - Copyright 2014-2022 Joey Hess <id@joeyh.name>
- -
- Licensed under the GNU AGPL version 3 or higher. - Licensed under the GNU AGPL version 3 or higher.
-} -}
module Types.NumCopies ( module Types.NumCopies (
NumCopies(..), NumCopies,
configuredNumCopies,
fromNumCopies, fromNumCopies,
MinCopies(..), MinCopies,
configuredMinCopies,
fromMinCopies, fromMinCopies,
VerifiedCopy(..), VerifiedCopy(..),
checkVerifiedCopy, checkVerifiedCopy,
@ -38,12 +40,24 @@ import Control.Monad
newtype NumCopies = NumCopies Int newtype NumCopies = NumCopies Int
deriving (Ord, Eq, Show) deriving (Ord, Eq, Show)
-- Smart constructor; prevent configuring numcopies to 0 which would
-- cause data loss.
configuredNumCopies :: Int -> NumCopies
configuredNumCopies n
| n > 0 = NumCopies n
| otherwise = NumCopies 1
fromNumCopies :: NumCopies -> Int fromNumCopies :: NumCopies -> Int
fromNumCopies (NumCopies n) = n fromNumCopies (NumCopies n) = n
newtype MinCopies = MinCopies Int newtype MinCopies = MinCopies Int
deriving (Ord, Eq, Show) deriving (Ord, Eq, Show)
configuredMinCopies :: Int -> MinCopies
configuredMinCopies n
| n > 0 = MinCopies n
| otherwise = MinCopies 1
fromMinCopies :: MinCopies -> Int fromMinCopies :: MinCopies -> Int
fromMinCopies (MinCopies n) = n fromMinCopies (MinCopies n) = n

4
doc/git-annex-common-options.mdwn
View file

@ -59,14 +59,10 @@ Most of these options are accepted by all git-annex commands.
Overrides the numcopies setting. Overrides the numcopies setting.
Note that setting numcopies to 0 is very unsafe.
* `--mincopies=n` * `--mincopies=n`
Overrides the mincopies setting. Overrides the mincopies setting.
Note that setting mincopies to 0 is very unsafe.
* `--time-limit=time` * `--time-limit=time`
Limits how long a git-annex command runs. The time can be something Limits how long a git-annex command runs. The time can be something

4
doc/git-annex.mdwn
View file

@ -932,8 +932,6 @@ repository, using [[git-annex-config]]. See its man page for a list.)
never been configured, and when there's no annex.numcopies setting in the never been configured, and when there's no annex.numcopies setting in the
.gitattributes file. .gitattributes file.
Note that setting numcopies to 0 is very unsafe.
* `annex.genmetadata` * `annex.genmetadata`
Set this to `true` to make git-annex automatically generate some metadata Set this to `true` to make git-annex automatically generate some metadata
@ -1881,8 +1879,6 @@ for flac files:
*.wav annex.numcopies=2 *.wav annex.numcopies=2
*.flac annex.numcopies=3 *.flac annex.numcopies=3
Note that setting numcopies or mincopies to 0 is very unsafe.
These settings are honored by git-annex whenever it's operating on a These settings are honored by git-annex whenever it's operating on a
matching file. However, when using --all, --unused, or --key to specify matching file. However, when using --all, --unused, or --key to specify
keys to operate on, git-annex is operating on keys and not files, so will keys to operate on, git-annex is operating on keys and not files, so will