resilien
/
terraform
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
terraform/builtin/provisioners/chef/resource_provisioner.go

583 lines
16 KiB
Go
Raw Normal View History

Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
package chef
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
import (
"bytes"
"encoding/json"
"errors"
"fmt"
"io"
"log"
"os"
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
"path"
Small update/fix to properly clean ANSI going to the logfile...
2015-05-08 14:52:25 +02:00
"regexp"
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
"strings"
"text/template"
"time"
"github.com/hashicorp/terraform/communicator"
"github.com/hashicorp/terraform/communicator/remote"
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
"github.com/hashicorp/terraform/helper/pathorcontents"
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
"github.com/hashicorp/terraform/terraform"
Improve the decoding logic to prevent parameter not found errors We need to decode both the Raw config and the parsed Config to make sure all set keys are visible. Otherwise keys that will need to be interpolated later, will be missing causing the validation to fail.
2015-06-03 14:45:30 +02:00
"github.com/mitchellh/go-homedir"
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
"github.com/mitchellh/go-linereader"
"github.com/mitchellh/mapstructure"
)
const (
Fix issue #4881 This fixes issue #4881 by adding an option to fetch the Chef SSL certificates.
2016-02-04 15:31:24 +01:00
clienrb = "client.rb"
defaultEnv = "_default"
firstBoot = "first-boot.json"
logfileDir = "logfiles"
linuxChefCmd = "chef-client"
linuxKnifeCmd = "knife"
linuxConfDir = "/etc/chef"
secretKey = "encrypted_data_bag_secret"
validationKey = "validation.pem"
windowsChefCmd = "cmd /c chef-client"
windowsKnifeCmd = "cmd /c knife"
windowsConfDir = "C:/chef"
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
)
const clientConf = `
log_location STDOUT
chef_server_url "{{ .ServerURL }}"
validation_client_name "{{ .ValidationClientName }}"
node_name "{{ .NodeName }}"
Added Policyfile support to the Chef provisioner This Adds three new arguments `use_policyfile`, `policy_group` and `policy_name` to the Chef provisioner. If `use_policyfile` == true, then the other arguments are required.
2015-09-26 01:56:24 +02:00
{{ if .UsePolicyfile }}
use_policyfile true
policy_group "{{ .PolicyGroup }}"
policy_name "{{ .PolicyName }}"
{{ end }}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
{{ if .HTTPProxy }}
http_proxy "{{ .HTTPProxy }}"
ENV['http_proxy'] = "{{ .HTTPProxy }}"
ENV['HTTP_PROXY'] = "{{ .HTTPProxy }}"
{{ end }}
{{ if .HTTPSProxy }}
https_proxy "{{ .HTTPSProxy }}"
ENV['https_proxy'] = "{{ .HTTPSProxy }}"
ENV['HTTPS_PROXY'] = "{{ .HTTPSProxy }}"
{{ end }}
Add ENV['no_proxy'] to chef provisioner
2016-01-13 15:51:08 +01:00
{{ if .NOProxy }}
no_proxy "{{ join .NOProxy "," }}"
ENV['no_proxy'] = "{{ join .NOProxy "," }}"
{{ end }}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
{{ if .SSLVerifyMode }}ssl_verify_mode {{ .SSLVerifyMode }}{{ end }}
enable reporting flag
2016-01-07 18:13:30 +01:00
modified to have less code and not to verify incoming string
2016-01-08 20:00:11 +01:00
{{ if .DisableReporting }}enable_reporting false{{ end }}
Add the option to add arbitrary `client.rb` options Fixes #3630
2016-01-09 00:42:02 +01:00
{{ if .ClientOptions }}{{ join .ClientOptions "\n" }}{{ end }}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
`
// Provisioner represents a specificly configured chef provisioner
type Provisioner struct {
Fix issue #4881 This fixes issue #4881 by adding an option to fetch the Chef SSL certificates.
2016-02-04 15:31:24 +01:00
Attributes interface{} `mapstructure:"attributes"`
Add `attributes_json` param for consistency Add `attributes_json` param for both consistency and easier management of deprecating the old `attributes` param.
2016-02-09 11:11:46 +01:00
AttributesJSON string `mapstructure:"attributes_json"`
Fix issue #4881 This fixes issue #4881 by adding an option to fetch the Chef SSL certificates.
2016-02-04 15:31:24 +01:00
ClientOptions []string `mapstructure:"client_options"`
DisableReporting bool `mapstructure:"disable_reporting"`
Environment string `mapstructure:"environment"`
FetchChefCertificates bool `mapstructure:"fetch_chef_certificates"`
LogToFile bool `mapstructure:"log_to_file"`
UsePolicyfile bool `mapstructure:"use_policyfile"`
PolicyGroup string `mapstructure:"policy_group"`
PolicyName string `mapstructure:"policy_name"`
HTTPProxy string `mapstructure:"http_proxy"`
HTTPSProxy string `mapstructure:"https_proxy"`
NOProxy []string `mapstructure:"no_proxy"`
NodeName string `mapstructure:"node_name"`
OhaiHints []string `mapstructure:"ohai_hints"`
OSType string `mapstructure:"os_type"`
PreventSudo bool `mapstructure:"prevent_sudo"`
RunList []string `mapstructure:"run_list"`
SecretKey string `mapstructure:"secret_key"`
ServerURL string `mapstructure:"server_url"`
SkipInstall bool `mapstructure:"skip_install"`
SSLVerifyMode string `mapstructure:"ssl_verify_mode"`
ValidationClientName string `mapstructure:"validation_client_name"`
ValidationKey string `mapstructure:"validation_key"`
Version string `mapstructure:"version"`
installChefClient func(terraform.UIOutput, communicator.Communicator) error
createConfigFiles func(terraform.UIOutput, communicator.Communicator) error
fetchChefCertificates func(terraform.UIOutput, communicator.Communicator) error
runChefClient func(terraform.UIOutput, communicator.Communicator) error
useSudo bool
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
// Deprecated Fields
SecretKeyPath string `mapstructure:"secret_key_path"`
ValidationKeyPath string `mapstructure:"validation_key_path"`
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
// ResourceProvisioner represents a generic chef provisioner
type ResourceProvisioner struct{}
// Apply executes the file provisioner
func (r *ResourceProvisioner) Apply(
o terraform.UIOutput,
s *terraform.InstanceState,
c *terraform.ResourceConfig) error {
// Decode the raw config for this provisioner
p, err := r.decodeConfig(c)
if err != nil {
return err
}
Add an option to specifically specify the target OS Before this option (`os_type`) the provisioner would use the connection type to determine the targeted OS. When not supplying a value for `os_type`, it will fall back to the old behaviour, so this is full BC.
2015-06-25 14:29:48 +02:00
if p.OSType == "" {
switch s.Ephemeral.ConnInfo["type"] {
case "ssh", "": // The default connection type is ssh, so if the type is empty assume ssh
p.OSType = "linux"
case "winrm":
p.OSType = "windows"
default:
return fmt.Errorf("Unsupported connection type: %s", s.Ephemeral.ConnInfo["type"])
}
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
// Set some values based on the targeted OS
Add an option to specifically specify the target OS Before this option (`os_type`) the provisioner would use the connection type to determine the targeted OS. When not supplying a value for `os_type`, it will fall back to the old behaviour, so this is full BC.
2015-06-25 14:29:48 +02:00
switch p.OSType {
case "linux":
p.installChefClient = p.linuxInstallChefClient
p.createConfigFiles = p.linuxCreateConfigFiles
Fix issue #4881 This fixes issue #4881 by adding an option to fetch the Chef SSL certificates.
2016-02-04 15:31:24 +01:00
p.fetchChefCertificates = p.fetchChefCertificatesFunc(linuxChefCmd, linuxConfDir)
Fixes #2676 by prefixing all Windows commands By prefixing them with `cmd /c` it will work with both `winner` and `ssh` connection types. This PR also reverts some bad stringer changes made in PR #2673
2015-07-10 12:56:27 +02:00
p.runChefClient = p.runChefClientFunc(linuxChefCmd, linuxConfDir)
Tweaking a few minor things according to the feedback on GH
2015-05-12 10:37:38 +02:00
p.useSudo = !p.PreventSudo && s.Ephemeral.ConnInfo["user"] != "root"
Add an option to specifically specify the target OS Before this option (`os_type`) the provisioner would use the connection type to determine the targeted OS. When not supplying a value for `os_type`, it will fall back to the old behaviour, so this is full BC.
2015-06-25 14:29:48 +02:00
case "windows":
p.installChefClient = p.windowsInstallChefClient
p.createConfigFiles = p.windowsCreateConfigFiles
Fix issue #4881 This fixes issue #4881 by adding an option to fetch the Chef SSL certificates.
2016-02-04 15:31:24 +01:00
p.fetchChefCertificates = p.fetchChefCertificatesFunc(windowsChefCmd, windowsConfDir)
Fixes #2676 by prefixing all Windows commands By prefixing them with `cmd /c` it will work with both `winner` and `ssh` connection types. This PR also reverts some bad stringer changes made in PR #2673
2015-07-10 12:56:27 +02:00
p.runChefClient = p.runChefClientFunc(windowsChefCmd, windowsConfDir)
Tweaking a few minor things according to the feedback on GH
2015-05-12 10:37:38 +02:00
p.useSudo = false
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
default:
Add an option to specifically specify the target OS Before this option (`os_type`) the provisioner would use the connection type to determine the targeted OS. When not supplying a value for `os_type`, it will fall back to the old behaviour, so this is full BC.
2015-06-25 14:29:48 +02:00
return fmt.Errorf("Unsupported os type: %s", p.OSType)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
// Get a new communicator
comm, err := communicator.New(s)
if err != nil {
return err
}
// Wait and retry until we establish the connection
err = retryFunc(comm.Timeout(), func() error {
err := comm.Connect(o)
return err
})
if err != nil {
return err
}
defer comm.Disconnect()
if !p.SkipInstall {
if err := p.installChefClient(o, comm); err != nil {
return err
}
}
o.Output("Creating configuration files...")
if err := p.createConfigFiles(o, comm); err != nil {
return err
}
Fix issue #4881 This fixes issue #4881 by adding an option to fetch the Chef SSL certificates.
2016-02-04 15:31:24 +01:00
if p.FetchChefCertificates {
o.Output("Fetch Chef certificates...")
if err := p.fetchChefCertificates(o, comm); err != nil {
return err
}
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
o.Output("Starting initial Chef-Client run...")
if err := p.runChefClient(o, comm); err != nil {
return err
}
return nil
}
// Validate checks if the required arguments are configured
func (r *ResourceProvisioner) Validate(c *terraform.ResourceConfig) (ws []string, es []error) {
p, err := r.decodeConfig(c)
if err != nil {
es = append(es, err)
return ws, es
}
if p.NodeName == "" {
es = append(es, fmt.Errorf("Key not found: node_name"))
}
[chef provisioning] When use_policyfile is given, the run list is not used, so don't require it
2015-10-14 20:05:38 +02:00
if !p.UsePolicyfile && p.RunList == nil {
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
es = append(es, fmt.Errorf("Key not found: run_list"))
}
if p.ServerURL == "" {
es = append(es, fmt.Errorf("Key not found: server_url"))
}
if p.ValidationClientName == "" {
es = append(es, fmt.Errorf("Key not found: validation_client_name"))
}
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
if p.ValidationKey == "" && p.ValidationKeyPath == "" {
es = append(es, fmt.Errorf(
"One of validation_key or the deprecated validation_key_path must be provided"))
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
Added Policyfile support to the Chef provisioner This Adds three new arguments `use_policyfile`, `policy_group` and `policy_name` to the Chef provisioner. If `use_policyfile` == true, then the other arguments are required.
2015-09-26 01:56:24 +02:00
if p.UsePolicyfile && p.PolicyName == "" {
es = append(es, fmt.Errorf("Policyfile enabled but key not found: policy_name"))
}
if p.UsePolicyfile && p.PolicyGroup == "" {
es = append(es, fmt.Errorf("Policyfile enabled but key not found: policy_group"))
}
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
if p.ValidationKeyPath != "" {
ws = append(ws, "validation_key_path is deprecated, please use "+
"validation_key instead and load the key contents via file()")
}
if p.SecretKeyPath != "" {
ws = append(ws, "secret_key_path is deprecated, please use "+
"secret_key instead and load the key contents via file()")
}
Add `attributes_json` param for consistency Add `attributes_json` param for both consistency and easier management of deprecating the old `attributes` param.
2016-02-09 11:11:46 +01:00
if _, ok := c.Config["attributes"]; ok {
ws = append(ws, "using map style attribute values is deprecated, "+
" please use a single raw JSON string instead")
Make the Chef `attributes` param also accept a raw JSON string See the updated docs for more details and examples, but in short this enables the `attributes` param from the Chef provisioner to accept a raw JSON string. Fixes #3074 Fixes #3572
2016-01-29 18:41:14 +01:00
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
return ws, es
}
func (r *ResourceProvisioner) decodeConfig(c *terraform.ResourceConfig) (*Provisioner, error) {
p := new(Provisioner)
decConf := &mapstructure.DecoderConfig{
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
ErrorUnused: true,
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
WeaklyTypedInput: true,
Result: p,
}
dec, err := mapstructure.NewDecoder(decConf)
if err != nil {
return nil, err
}
Fixes issue #2872 Still not a 100% fix, but that would require some more hacking in core TF. If time permits I’ll have a look at that later on… But for now this is a good fix to be able to close #2872
2015-08-21 17:26:32 +02:00
// We need to merge both configs into a single map first. Order is
// important as we need to make sure interpolated values are used
// over raw values. This makes sure that all values are there even
// if some still need to be interpolated later on. Without this
// the validation will fail when using a variable for a required
// parameter (the node_name for example).
m := make(map[string]interface{})
for k, v := range c.Raw {
m[k] = v
}
for k, v := range c.Config {
m[k] = v
Improve the decoding logic to prevent parameter not found errors We need to decode both the Raw config and the parsed Config to make sure all set keys are visible. Otherwise keys that will need to be interpolated later, will be missing causing the validation to fail.
2015-06-03 14:45:30 +02:00
}
Fixes issue #2872 Still not a 100% fix, but that would require some more hacking in core TF. If time permits I’ll have a look at that later on… But for now this is a good fix to be able to close #2872
2015-08-21 17:26:32 +02:00
if err := dec.Decode(m); err != nil {
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
return nil, err
}
if p.Environment == "" {
Small textual update...
2015-05-08 23:27:12 +02:00
p.Environment = defaultEnv
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
Add an `ohai_hints` option to upload hint files This option takes a list of hints that will be uploaded to the new node before starting the initial Chef run.
2015-06-25 15:48:54 +02:00
for i, hint := range p.OhaiHints {
hintPath, err := homedir.Expand(hint)
if err != nil {
return nil, fmt.Errorf("Error expanding the path %s: %v", hint, err)
}
p.OhaiHints[i] = hintPath
}
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
if p.ValidationKey == "" && p.ValidationKeyPath != "" {
p.ValidationKey = p.ValidationKeyPath
correct space, fix reading of file
2015-07-09 02:06:37 +02:00
}
Tweaking the tests
2015-07-09 21:29:27 +02:00
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
if p.SecretKey == "" && p.SecretKeyPath != "" {
p.SecretKey = p.SecretKeyPath
ran gofmt removed required, added IF
2015-07-09 15:05:12 +02:00
}
Tweaking the tests
2015-07-09 21:29:27 +02:00
Fix interpolation in the Chef provisioner Turns out to be a pretty obvious bug with a simple fix…
2015-06-01 15:29:43 +02:00
if attrs, ok := c.Config["attributes"]; ok {
Add `attributes_json` param for consistency Add `attributes_json` param for both consistency and easier management of deprecating the old `attributes` param.
2016-02-09 11:11:46 +01:00
p.Attributes, err = rawToJSON(attrs)
if err != nil {
return nil, fmt.Errorf("Error parsing the attributes: %v", err)
}
}
if attrs, ok := c.Config["attributes_json"]; ok {
var m map[string]interface{}
if err := json.Unmarshal([]byte(attrs.(string)), &m); err != nil {
return nil, fmt.Errorf("Error parsing the attributes: %v", err)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
Add `attributes_json` param for consistency Add `attributes_json` param for both consistency and easier management of deprecating the old `attributes` param.
2016-02-09 11:11:46 +01:00
p.Attributes = m
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
return p, nil
}
func rawToJSON(raw interface{}) (interface{}, error) {
switch s := raw.(type) {
case []map[string]interface{}:
if len(s) != 1 {
return nil, errors.New("unexpected input while parsing raw config to JSON")
}
var err error
for k, v := range s[0] {
s[0][k], err = rawToJSON(v)
if err != nil {
return nil, err
}
}
return s[0], nil
default:
Make the Chef `attributes` param also accept a raw JSON string See the updated docs for more details and examples, but in short this enables the `attributes` param from the Chef provisioner to accept a raw JSON string. Fixes #3074 Fixes #3572
2016-01-29 18:41:14 +01:00
return s, nil
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
}
// retryFunc is used to retry a function for a given duration
func retryFunc(timeout time.Duration, f func() error) error {
finish := time.After(timeout)
for {
err := f()
if err == nil {
return nil
}
log.Printf("Retryable error: %v", err)
select {
case <-finish:
return err
case <-time.After(3 * time.Second):
}
}
}
Fix issue #4881 This fixes issue #4881 by adding an option to fetch the Chef SSL certificates.
2016-02-04 15:31:24 +01:00
func (p *Provisioner) fetchChefCertificatesFunc(
knifeCmd string,
confDir string) func(terraform.UIOutput, communicator.Communicator) error {
return func(o terraform.UIOutput, comm communicator.Communicator) error {
clientrb := path.Join(confDir, clienrb)
cmd := fmt.Sprintf("%s ssl fetch -c %s", knifeCmd, clientrb)
return p.runCommand(o, comm, cmd)
}
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
func (p *Provisioner) runChefClientFunc(
Fixes #2676 by prefixing all Windows commands By prefixing them with `cmd /c` it will work with both `winner` and `ssh` connection types. This PR also reverts some bad stringer changes made in PR #2673
2015-07-10 12:56:27 +02:00
chefCmd string,
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
confDir string) func(terraform.UIOutput, communicator.Communicator) error {
return func(o terraform.UIOutput, comm communicator.Communicator) error {
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
fb := path.Join(confDir, firstBoot)
Added Policyfile support to the Chef provisioner This Adds three new arguments `use_policyfile`, `policy_group` and `policy_name` to the Chef provisioner. If `use_policyfile` == true, then the other arguments are required.
2015-09-26 01:56:24 +02:00
var cmd string
// Policyfiles do not support chef environments, so don't pass the `-E` flag.
if p.UsePolicyfile {
cmd = fmt.Sprintf("%s -j %q", chefCmd, fb)
} else {
cmd = fmt.Sprintf("%s -j %q -E %q", chefCmd, fb, p.Environment)
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
if p.LogToFile {
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
if err := os.MkdirAll(logfileDir, 0755); err != nil {
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
return fmt.Errorf("Error creating logfile directory %s: %v", logfileDir, err)
}
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
logFile := path.Join(logfileDir, p.NodeName)
f, err := os.Create(path.Join(logFile))
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
if err != nil {
return fmt.Errorf("Error creating logfile %s: %v", logFile, err)
}
f.Close()
o.Output("Writing Chef Client output to " + logFile)
o = p
}
return p.runCommand(o, comm, cmd)
}
}
// Output implementation of terraform.UIOutput interface
func (p *Provisioner) Output(output string) {
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
logFile := path.Join(logfileDir, p.NodeName)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
f, err := os.OpenFile(logFile, os.O_APPEND|os.O_WRONLY, 0666)
if err != nil {
log.Printf("Error creating logfile %s: %v", logFile, err)
return
}
defer f.Close()
Small update/fix to properly clean ANSI going to the logfile...
2015-05-08 14:52:25 +02:00
// These steps are needed to remove any ANSI escape codes used to colorize
// the output and to make sure we have proper line endings before writing
// the string to the logfile.
re := regexp.MustCompile(`\x1b\[[0-9;]+m`)
output = re.ReplaceAllString(output, "")
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
output = strings.Replace(output, "\r", "\n", -1)
Small update/fix to properly clean ANSI going to the logfile...
2015-05-08 14:52:25 +02:00
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
if _, err := f.WriteString(output); err != nil {
log.Printf("Error writing output to logfile %s: %v", logFile, err)
}
if err := f.Sync(); err != nil {
log.Printf("Error saving logfile %s to disk: %v", logFile, err)
}
}
func (p *Provisioner) deployConfigFiles(
o terraform.UIOutput,
comm communicator.Communicator,
confDir string) error {
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
contents, _, err := pathorcontents.Read(p.ValidationKey)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
if err != nil {
return err
}
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
f := strings.NewReader(contents)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
// Copy the validation key to the new instance
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
if err := comm.Upload(path.Join(confDir, validationKey), f); err != nil {
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
return fmt.Errorf("Uploading %s failed: %v", validationKey, err)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
if p.SecretKey != "" {
contents, _, err := pathorcontents.Read(p.SecretKey)
ran gofmt removed required, added IF
2015-07-09 15:05:12 +02:00
if err != nil {
return err
}
chef: read key contents instead of paths Builds on the work of #3846, shifting the Chef provisioner's configuration options from `secret_key_path` and `validation_key_path` over to `secret_key` and `validation_key`.
2015-11-12 22:17:51 +01:00
s := strings.NewReader(contents)
ran gofmt removed required, added IF
2015-07-09 15:05:12 +02:00
// Copy the secret key to the new instance
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
if err := comm.Upload(path.Join(confDir, secretKey), s); err != nil {
ran gofmt removed required, added IF
2015-07-09 15:05:12 +02:00
return fmt.Errorf("Uploading %s failed: %v", secretKey, err)
}
add chef secret key
2015-07-08 20:43:37 +02:00
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
// Make strings.Join available for use within the template
funcMap := template.FuncMap{
"join": strings.Join,
}
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
// Create a new template and parse the client config into it
t := template.Must(template.New(clienrb).Funcs(funcMap).Parse(clientConf))
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
var buf bytes.Buffer
err = t.Execute(&buf, p)
if err != nil {
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
return fmt.Errorf("Error executing %s template: %s", clienrb, err)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
// Copy the client config to the new instance
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
if err := comm.Upload(path.Join(confDir, clienrb), &buf); err != nil {
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
return fmt.Errorf("Uploading %s failed: %v", clienrb, err)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
// Create a map with first boot settings
fb := make(map[string]interface{})
if p.Attributes != nil {
fb = p.Attributes.(map[string]interface{})
}
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
// Check if the run_list was also in the attributes and if so log a warning
// that it will be overwritten with the value of the run_list argument.
if _, found := fb["run_list"]; found {
log.Printf("[WARNING] Found a 'run_list' specified in the configured attributes! " +
"This value will be overwritten by the value of the `run_list` argument!")
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
// Add the initial runlist to the first boot settings
Added Policyfile support to the Chef provisioner This Adds three new arguments `use_policyfile`, `policy_group` and `policy_name` to the Chef provisioner. If `use_policyfile` == true, then the other arguments are required.
2015-09-26 01:56:24 +02:00
if !p.UsePolicyfile {
fb["run_list"] = p.RunList
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
// Marshal the first boot settings to JSON
d, err := json.Marshal(fb)
if err != nil {
return fmt.Errorf("Failed to create %s data: %s", firstBoot, err)
}
// Copy the first-boot.json to the new instance
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
if err := comm.Upload(path.Join(confDir, firstBoot), bytes.NewReader(d)); err != nil {
Refactored quite a few things after review... Also renamed the provisioner to just `chef` as it’s out intention to end up with one provisioner for all types of `chef` clients.
2015-05-08 23:25:24 +02:00
return fmt.Errorf("Uploading %s failed: %v", firstBoot, err)
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
}
return nil
}
Add an `ohai_hints` option to upload hint files This option takes a list of hints that will be uploaded to the new node before starting the initial Chef run.
2015-06-25 15:48:54 +02:00
func (p *Provisioner) deployOhaiHints(
o terraform.UIOutput,
comm communicator.Communicator,
hintDir string) error {
for _, hint := range p.OhaiHints {
// Open the hint file
f, err := os.Open(hint)
if err != nil {
return err
}
defer f.Close()
// Copy the hint to the new instance
Revert changing `path.Join()` to `filepath.Join()` (PR #3896) PR #3896 added support for passing keys by content, but in this same PR all references to `path.Join()` where changed to `filepath.join()`. There is however a significant difference between these two calls and using the latter one now causes issues when running the Chef provisioner on Windows (see issue #4039).
2015-11-24 14:40:46 +01:00
if err := comm.Upload(path.Join(hintDir, path.Base(hint)), f); err != nil {
return fmt.Errorf("Uploading %s failed: %v", path.Base(hint), err)
Add an `ohai_hints` option to upload hint files This option takes a list of hints that will be uploaded to the new node before starting the initial Chef run.
2015-06-25 15:48:54 +02:00
}
}
return nil
}
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
// runCommand is used to run already prepared commands
func (p *Provisioner) runCommand(
o terraform.UIOutput,
comm communicator.Communicator,
command string) error {
var err error
// Unless prevented, prefix the command with sudo
Tweaking a few minor things according to the feedback on GH
2015-05-12 10:37:38 +02:00
if p.useSudo {
This commit adds a Chef Client provisioner The commit is pretty complete and has a tested/working provisioner for both SSH and WinRM. There are a few tests, but we maybe need another few to have better coverage. Docs are also included…
2015-05-08 13:45:31 +02:00
command = "sudo " + command
}
outR, outW := io.Pipe()
errR, errW := io.Pipe()
outDoneCh := make(chan struct{})
errDoneCh := make(chan struct{})
go p.copyOutput(o, outR, outDoneCh)
go p.copyOutput(o, errR, errDoneCh)
cmd := &remote.Cmd{
Command: command,
Stdout: outW,
Stderr: errW,
}
if err := comm.Start(cmd); err != nil {
return fmt.Errorf("Error executing command %q: %v", cmd.Command, err)
}
cmd.Wait()
if cmd.ExitStatus != 0 {
err = fmt.Errorf(
"Command %q exited with non-zero exit status: %d", cmd.Command, cmd.ExitStatus)
}
// Wait for output to clean up
outW.Close()
errW.Close()
<-outDoneCh
<-errDoneCh
// If we have an error, return it out now that we've cleaned up
if err != nil {
return err
}
return nil
}
func (p *Provisioner) copyOutput(o terraform.UIOutput, r io.Reader, doneCh chan<- struct{}) {
defer close(doneCh)
lr := linereader.New(r)
for line := range lr.Ch {
o.Output(line)
}
}