From ee80a97d5cc2fd4f8779dbfedeb8fc8c47941812 Mon Sep 17 00:00:00 2001
From: Daniel Black <daniel@mariadb.org>
Date: Mon, 2 Sep 2024 12:40:28 +1000
Subject: [PATCH] healthcheck correct connect result
Based on user reports, a `connect` test can observer a non-"Can't
connect" error message.
Because this passes other tests, like innodb_initialized might
succeeded.
The final test -z "$connect_s" is also true, leaving the user
with an incorrect test result.
Maybe the healthcheck cnf hasn't been created yet?
Either way, ruggardise the final test to ensure a healthy connect
test occured.
Narrow down the scope of healthcheck --connect failures
to the mariadb client errors "Can't connect".
May as well look at same @skip-networking system variable
on TCP just in case.
28000 errors, per
https://mariadb.com/kb/en/mariadb-error-code-reference/ are client
errors after a connection, indicating that the start of a tcp
connection occured.
Closes #610
---
10.11-ubi/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
10.11/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
10.5/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
10.6-ubi/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
10.6/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
11.1/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
11.2/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
11.4-ubi/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
11.4/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
11.5/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
main-ubi/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
main/healthcheck.sh | 49 ++++++++++++++++++++++++++--------------
13 files changed, 416 insertions(+), 221 deletions(-)
diff --git a/10.11-ubi/healthcheck.sh b/10.11-ubi/healthcheck.sh
index 37227ed..c0fb93b 100755
--- a/10.11-ubi/healthcheck.sh
+++ b/10.11-ubi/healthcheck.sh
@@ -65,24 +65,39 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -365,8 +380,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/10.11/healthcheck.sh b/10.11/healthcheck.sh
index 37227ed..c0fb93b 100755
--- a/10.11/healthcheck.sh
+++ b/10.11/healthcheck.sh
@@ -65,24 +65,39 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -365,8 +380,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/10.5/healthcheck.sh b/10.5/healthcheck.sh
index 17528ce..d925ed5 100755
--- a/10.5/healthcheck.sh
+++ b/10.5/healthcheck.sh
@@ -65,24 +65,39 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mysql ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -365,8 +380,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/10.6-ubi/healthcheck.sh b/10.6-ubi/healthcheck.sh
index 37227ed..c0fb93b 100755
--- a/10.6-ubi/healthcheck.sh
+++ b/10.6-ubi/healthcheck.sh
@@ -65,24 +65,39 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -365,8 +380,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/10.6/healthcheck.sh b/10.6/healthcheck.sh
index 37227ed..c0fb93b 100755
--- a/10.6/healthcheck.sh
+++ b/10.6/healthcheck.sh
@@ -65,24 +65,39 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -365,8 +380,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/11.1/healthcheck.sh b/11.1/healthcheck.sh
index b8909c7..4cee59c 100755
--- a/11.1/healthcheck.sh
+++ b/11.1/healthcheck.sh
@@ -65,24 +65,39 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -365,8 +380,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/11.2/healthcheck.sh b/11.2/healthcheck.sh
index b8909c7..4cee59c 100755
--- a/11.2/healthcheck.sh
+++ b/11.2/healthcheck.sh
@@ -65,24 +65,39 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -365,8 +380,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/11.4-ubi/healthcheck.sh b/11.4-ubi/healthcheck.sh
index c5dcbd3..ad0b17f 100755
--- a/11.4-ubi/healthcheck.sh
+++ b/11.4-ubi/healthcheck.sh
@@ -66,25 +66,40 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
--skip-ssl --skip-ssl-verify-server-cert \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -367,8 +382,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/11.4/healthcheck.sh b/11.4/healthcheck.sh
index c5dcbd3..ad0b17f 100755
--- a/11.4/healthcheck.sh
+++ b/11.4/healthcheck.sh
@@ -66,25 +66,40 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
--skip-ssl --skip-ssl-verify-server-cert \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -367,8 +382,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/11.5/healthcheck.sh b/11.5/healthcheck.sh
index c5dcbd3..ad0b17f 100755
--- a/11.5/healthcheck.sh
+++ b/11.5/healthcheck.sh
@@ -66,25 +66,40 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
--skip-ssl --skip-ssl-verify-server-cert \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -367,8 +382,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/healthcheck.sh b/healthcheck.sh
index c5dcbd3..ad0b17f 100755
--- a/healthcheck.sh
+++ b/healthcheck.sh
@@ -66,25 +66,40 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
--skip-ssl --skip-ssl-verify-server-cert \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -367,8 +382,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/main-ubi/healthcheck.sh b/main-ubi/healthcheck.sh
index c5dcbd3..ad0b17f 100755
--- a/main-ubi/healthcheck.sh
+++ b/main-ubi/healthcheck.sh
@@ -66,25 +66,40 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
--skip-ssl --skip-ssl-verify-server-cert \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -367,8 +382,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
diff --git a/main/healthcheck.sh b/main/healthcheck.sh
index c5dcbd3..ad0b17f 100755
--- a/main/healthcheck.sh
+++ b/main/healthcheck.sh
@@ -66,25 +66,40 @@ connect()
return "$s";
;;
esac
- # falling back to this if there wasn't a connection answer.
- set +e +o pipefail
- # (on second extra_file)
- # shellcheck disable=SC2086
- mariadb ${nodefaults:+--no-defaults} \
+ # falling back to tcp if there wasn't a connection answer.
+ s=$(mariadb ${nodefaults:+--no-defaults} \
${def['file']:+--defaults-file=${def['file']}} \
${def['extra_file']:+--defaults-extra-file=${def['extra_file']}} \
${def['group_suffix']:+--defaults-group-suffix=${def['group_suffix']}} \
--skip-ssl --skip-ssl-verify-server-cert \
- -h localhost --protocol tcp -e 'select 1' 2>&1 \
- | grep -qF "Can't connect"
- local ret=${PIPESTATUS[1]}
- set -eo pipefail
- if (( "$ret" == 0 )); then
- # grep Matched "Can't connect" so we fail
- connect_s=1
- else
- connect_s=0
- fi
+ -h localhost --protocol tcp \
+ --skip-column-names --batch --skip-print-query-on-error \
+ -e 'select @@skip_networking' 2>&1)
+
+ case "$s" in
+ 1) # skip-networking=1 (no network)
+ ;&
+ ERROR\ 2002\ \(HY000\):*)
+ # cannot connect
+ connect_s=1
+ ;;
+ 0) # skip-networking=0
+ ;&
+ ERROR\ 1820\ \(HY000\)*) # password expire
+ ;&
+ ERROR\ 4151\ \(HY000\):*) # account locked
+ ;&
+ ERROR\ 1226\ \(42000\)*) # resource limit exceeded
+ ;&
+ ERROR\ 1[0-9][0-9][0-9]\ \(28000\):*)
+ # grep access denied and other 28000 client errors - we did connect
+ connect_s=0
+ ;;
+ *)
+ >&2 echo "Unknown error $s"
+ connect_s=1
+ ;;
+ esac
return $connect_s
}
@@ -367,8 +382,8 @@ while [ $# -gt 0 ]; do
fi
shift
done
-if [ -z "$connect_s" ]; then
- # we didn't do a connnect test, so the current success status is suspicious
+if [ "$connect_s" != "0" ]; then
+ # we didn't pass a connnect test, so the current success status is suspicious
# return what connect thinks.
connect
exit $?
--
GitLab