1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
|
#
# Author:: Adam Jacob (<adam@opscode.com>)
# Copyright:: Copyright (c) 2008 Opscode, Inc.
# License:: Apache License, Version 2.0
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
require 'chef/log'
require 'chef/exceptions'
require 'tmpdir'
require 'fcntl'
require 'etc'
class Chef
module Mixin
module Command
# If command is a block, returns true if the block returns true, false if it returns false.
# ("Only run this resource if the block is true")
#
# If the command is not a block, executes the command. If it returns any status other than
# 0, it returns false (clearly, a 0 status code is true)
#
# === Parameters
# command<Block>, <String>:: A block to check, or a string to execute
#
# === Returns
# true:: Returns true if the block is true, or if the command returns 0
# false:: Returns false if the block is false, or if the command returns a non-zero exit code.
def only_if(command)
if command.kind_of?(Proc)
res = command.call
unless res
return false
end
else
status = popen4(command) { |p, i, o, e| i.close }
if status.exitstatus != 0
return false
end
end
true
end
module_function :only_if
# If command is a block, returns false if the block returns true, true if it returns false.
# ("Do not run this resource if the block is true")
#
# If the command is not a block, executes the command. If it returns a 0 exitstatus, returns false.
# ("Do not run this resource if the command returns 0")
#
# === Parameters
# command<Block>, <String>:: A block to check, or a string to execute
#
# === Returns
# true:: Returns true if the block is false, or if the command returns a non-zero exit status.
# false:: Returns false if the block is true, or if the command returns a 0 exit status.
def not_if(command)
if command.kind_of?(Proc)
res = command.call
if res
return false
end
else
status = popen4(command) { |p, i, o, e| i.close }
if status.exitstatus == 0
return false
end
end
true
end
module_function :not_if
# === Parameters
# args<Hash>: A number of required and optional arguments
# command<String>, <Array>: A complete command with options to execute or a command and options as an Array
# creates<String>: The absolute path to a file that prevents the command from running if it exists
# cwd<String>: Working directory to execute command in, defaults to Dir.tmpdir
# timeout<String>: How many seconds to wait for the command to execute before timing out
# returns<String>: The single exit value command is expected to return, otherwise causes an exception
#
# user<String>: The UID or user name of the user to execute the command as
# group<String>: The GID or group name of the group to execute the command as
# environment<Hash>: Pairs of environment variable names and their values to set before execution
#
# === Returns
# Returns the exit status of args[:command]
def run_command(args={})
command_stdout = nil
command_stderr = nil
if args.has_key?(:creates)
if File.exists?(args[:creates])
Chef::Log.debug("Skipping #{args[:command]} - creates #{args[:creates]} exists.")
return false
end
end
exec_processing_block = lambda do |pid, stdin, stdout, stderr|
stdin.close
stdout_string = stdout.gets(nil)
if stdout_string
command_stdout = stdout_string
Chef::Log.debug("---- Begin #{args[:command]} STDOUT ----")
Chef::Log.debug(stdout_string.strip)
Chef::Log.debug("---- End #{args[:command]} STDOUT ----")
end
stderr_string = stderr.gets(nil)
if stderr_string
command_stderr = stderr_string
Chef::Log.debug("---- Begin #{args[:command]} STDERR ----")
Chef::Log.debug(stderr_string.strip)
Chef::Log.debug("---- End #{args[:command]} STDERR ----")
end
end
args[:cwd] ||= Dir.tmpdir
unless File.directory?(args[:cwd])
raise Chef::Exception::Exec, "#{args[:cwd]} does not exist or is not a directory"
end
status = nil
Dir.chdir(args[:cwd]) do
if args[:timeout]
begin
Timeout.timeout(args[:timeout]) do
status = popen4(args[:command], args, &exec_processing_block)
end
rescue Exception => e
Chef::Log.error("#{args[:command_string]} exceeded timeout #{args[:timeout]}")
raise(e)
end
else
status = popen4(args[:command], args, &exec_processing_block)
end
args[:returns] ||= 0
if status.exitstatus != args[:returns]
# if the log level is not debug, through output of command when we fail
if Chef::Log.logger.level > 0
Chef::Log.fatal("---- Begin #{args[:command]} STDOUT ----")
Chef::Log.fatal(command_stdout)
Chef::Log.fatal("---- End #{args[:command]} STDOUT ----")
Chef::Log.fatal("---- Begin #{args[:command]} STDERR ----")
Chef::Log.fatal(command_stderr)
Chef::Log.fatal("---- End #{args[:command]} STDERR ----")
end
raise Chef::Exception::Exec, "#{args[:command_string]} returned #{status.exitstatus}, expected #{args[:returns]}"
else
Chef::Log.debug("Ran #{args[:command_string]} (#{args[:command]}) returned #{status.exitstatus}")
end
end
status
end
module_function :run_command
# This is taken directly from Ara T Howard's Open4 library, and then
# modified to suit the needs of Chef. Any bugs here are most likely
# my own, and not Ara's.
#
# The original appears in external/open4.rb in it's unmodified form.
#
# Thanks, Ara.
def popen4(cmd, args={}, &b)
args[:user] ||= nil
unless args[:user].kind_of?(Integer)
args[:user] = Etc.getpwnam(args[:user]).uid if args[:user]
end
args[:group] ||= nil
unless args[:group].kind_of?(Integer)
args[:group] = Etc.getgrnam(args[:group]).gid if args[:group]
end
args[:environment] ||= nil
pw, pr, pe, ps = IO.pipe, IO.pipe, IO.pipe, IO.pipe
verbose = $VERBOSE
begin
$VERBOSE = nil
ps.last.fcntl(Fcntl::F_SETFD, Fcntl::FD_CLOEXEC)
cid = fork {
pw.last.close
STDIN.reopen pw.first
pw.first.close
pr.first.close
STDOUT.reopen pr.last
pr.last.close
pe.first.close
STDERR.reopen pe.last
pe.last.close
STDOUT.sync = STDERR.sync = true
if args[:user]
Process.euid = args[:user]
Process.uid = args[:user]
end
if args[:group]
Process.egid = args[:group]
Process.gid = args[:group]
end
if args[:environment]
args[:environment].each do |key,value|
ENV[key] = value
end
end
begin
if cmd.kind_of?(Array)
exec(*cmd)
else
exec(cmd)
end
raise 'forty-two'
rescue Exception => e
Marshal.dump(e, ps.last)
ps.last.flush
end
ps.last.close unless (ps.last.closed?)
exit!
}
ensure
$VERBOSE = verbose
end
[pw.first, pr.last, pe.last, ps.last].each{|fd| fd.close}
begin
e = Marshal.load ps.first
raise(Exception === e ? e : "unknown failure!")
rescue EOFError # If we get an EOF error, then the exec was successful
42
ensure
ps.first.close
end
pw.last.sync = true
pi = [pw.last, pr.first, pe.first]
if b
begin
b[cid, *pi]
Process.waitpid2(cid).last
ensure
pi.each{|fd| fd.close unless fd.closed?}
end
else
[cid, pw.last, pr.first, pe.first]
end
end
module_function :popen4
end
end
end
|
