Open
Description
Hello,
with help of this library i've created simple script to validate conf files:
import addonfactory_splunk_conf_parser_lib as conf_parser
import os
import argparse
def check_syntax(filename):
parser = conf_parser.TABConfigParser()
try:
with open(filename, 'r') as f:
parser.read_file(f)
print(f"Syntax of the file '{filename}' is correct.")
except conf_parser.Error as e: # Catching all configparser errors with a generic class
print(f"Syntax error in file '{filename}': {e}")
except FileNotFoundError:
print(f"File '{filename}' not found.")
except Exception as e:
print(f"An unexpected error occurred in file '{filename}': {e}")
def scan_directory_for_conf_files(directory):
for root, dirs, files in os.walk(directory):
for file in files:
if file.endswith('.conf'):
file_path = os.path.join(root, file)
check_syntax(file_path)
if __name__ == "__main__":
parser = argparse.ArgumentParser(description='Syntax checker for .conf files.')
parser.add_argument('dir_path', type=str, help='Path to direcory to scan')
args = parser.parse_args()
# Determine the operation to perform
if args.dir_path:
scan_directory_for_conf_files(args.dir_path)
else:
directory_to_scan = input("Enter the directory path to scan for .conf files: ")
scan_directory_for_conf_files(directory_to_scan)
and in that script when file has syntax error - it thinks that all good.
example:
as you see, empty space is there, but it should be wiped.
and it passes wrong multine search:
Metadata
Metadata
Assignees
Labels
No labels
Type
Projects
Milestone
Relationships
Development
No branches or pull requests
Participants
Activity
artemrys commentedon Apr 18, 2024
@yaroslav-nakonechnikov I think it's an expected behavior for this particular library. I believe it does not check for incorrect SPL syntax in values.
You might try using
btoolto check for syntax errors in.conffiles.yaroslav-nakonechnikov commentedon Apr 18, 2024
btool is too heavy to run. and it also skips a lot of syntax issues.
also noticed: when it parses, it also trims lines. Which is fine, if there will be need to store file.
artemrys commentedon Apr 23, 2024
do you mind sharing an example of such behavior?
I can ask around but I never saw a library/tool to parse and validate .conf files.
yaroslav-nakonechnikov commentedon Aug 19, 2024
sorry for late response.
example is quite easy: conf file is being created locally, without splunk installed.
and installing btool - means to install splunk.
as well for ci pipelines, using splunk is heavy and consumes resources (time, cpu, storage, network)
and moreover - splunk containers are not consistent. we were trying to use as recent versions as possible, but from version to version - it breaks. Never was related to btool tool, but still not comfortable to see how new version breaks working setup.
yaroslav-nakonechnikov commentedon Oct 16, 2024
so, i managed to run btool without splunk itself... binary looks working, but still - it has too many dependencies like SPLUNK_HOME just to start.
then i had to copy libraries from $SPLUNK_HOME/lib, or do symlinks... but something, which took additional effort. I believe in some OSes it would be possible to install needed ones from official repos. In ubuntu 24.04 it wasn't possible for some.
and then i put file in $SPLUNK_HOME/etc/system/local/savedsearches.conf
where i have issues with syntax - and it failes to detect:
so, still, library does it better even in current version.
artemrys commentedon Oct 18, 2024
thanks @yaroslav-nakonechnikov, your points are valid.
I did some homework and I see that VSCode extension for Splunk (https://github.com/splunk/vscode-extension-splunk) offers some syntax highlighting and linting capabilities, let us explore it next week. There are also some other extensions that offer similar functionality.
If that would be easy to incorporate into this library (or maybe another one) - I think we can go with it.