community.general/lib/ansible/plugins/action/fetch.py

# (c) 2012-2014, Michael DeHaan <michael.dehaan@gmail.com>
#
# This file is part of Ansible
#
# Ansible is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# Ansible is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with Ansible.  If not, see <http://www.gnu.org/licenses/>.
from __future__ import (absolute_import, division, print_function)
__metaclass__ = type

import os
import pwd
import random
import traceback
import tempfile
import base64

from ansible import constants as C
from ansible.errors import *
from ansible.plugins.action import ActionBase
from ansible.utils.boolean import boolean
from ansible.utils.hashing import checksum, checksum_s, md5, secure_hash
from ansible.utils.path import makedirs_safe

class ActionModule(ActionBase):

    def run(self, tmp=None, task_vars=dict()):
        ''' handler for fetch operations '''

        if self._connection_info.check_mode:
            return dict(skipped=True, msg='check mode not (yet) supported for this module')

        source            = self._task.args.get('src', None)
        dest              = self._task.args.get('dest', None)
        flat              = boolean(self._task.args.get('flat'))
        fail_on_missing   = boolean(self._task.args.get('fail_on_missing'))
        validate_checksum = boolean(self._task.args.get('validate_checksum', self._task.args.get('validate_md5')))

        if 'validate_md5' in self._task.args and 'validate_checksum' in self._task.args:
            return dict(failed=True, msg="validate_checksum and validate_md5 cannot both be specified")

        if source is None or dest is None:
            return dict(failed=True, msg="src and dest are required")

        source = self._connection._shell.join_path(source)
        source = self._remote_expand_user(source, tmp)

        # calculate checksum for the remote file
        remote_checksum = self._remote_checksum(tmp, source)

        # use slurp if sudo and permissions are lacking
        remote_data = None
        if remote_checksum in ('1', '2') or self._connection_info.become:
            slurpres = self._execute_module(module_name='slurp', module_args=dict(src=source), task_vars=task_vars, tmp=tmp)
            if slurpres.get('rc') == 0:
                if slurpres['encoding'] == 'base64':
                    remote_data = base64.b64decode(slurpres['content'])
                if remote_data is not None:
                    remote_checksum = checksum_s(remote_data)
                # the source path may have been expanded on the
                # target system, so we compare it here and use the
                # expanded version if it's different
                remote_source = slurpres.get('source')
                if remote_source and remote_source != source:
                    source = remote_source
            else:
                # FIXME: should raise an error here? the old code did nothing
                pass

        # calculate the destination name
        if os.path.sep not in self._connection._shell.join_path('a', ''):
            source_local = source.replace('\\', '/')
        else:
            source_local = source

        dest = os.path.expanduser(dest)
        if flat:
            if dest.endswith(os.sep):
                # if the path ends with "/", we'll use the source filename as the
                # destination filename
                base = os.path.basename(source_local)
                dest = os.path.join(dest, base)
            if not dest.startswith("/"):
                # if dest does not start with "/", we'll assume a relative path
                dest = self._loader.path_dwim(dest)
        else:
            # files are saved in dest dir, with a subdir for each host, then the filename
            if 'inventory_hostname' in task_vars:
                target_name = task_vars['inventory_hostname']
            else:
                target_name = self._connection_info.remote_addr
            dest = "%s/%s/%s" % (self._loader.path_dwim(dest), target_name, source_local)

        dest = dest.replace("//","/")

        if remote_checksum in ('0', '1', '2', '3', '4'):
            # these don't fail because you may want to transfer a log file that possibly MAY exist
            # but keep going to fetch other log files
            if remote_checksum == '0':
                result = dict(msg="unable to calculate the checksum of the remote file", file=source, changed=False)
            elif remote_checksum == '1':
                if fail_on_missing:
                    result = dict(failed=True, msg="the remote file does not exist", file=source)
                else:
                    result = dict(msg="the remote file does not exist, not transferring, ignored", file=source, changed=False)
            elif remote_checksum == '2':
                result = dict(msg="no read permission on remote file, not transferring, ignored", file=source, changed=False)
            elif remote_checksum == '3':
                result = dict(msg="remote file is a directory, fetch cannot work on directories", file=source, changed=False)
            elif remote_checksum == '4':
                result = dict(msg="python isn't present on the system.  Unable to compute checksum", file=source, changed=False)
            return result

        # calculate checksum for the local file
        local_checksum = checksum(dest)

        if remote_checksum != local_checksum:
            # create the containing directories, if needed
            makedirs_safe(os.path.dirname(dest))

            # fetch the file and check for changes
            if remote_data is None:
                self._connection.fetch_file(source, dest)
            else:
                f = open(dest, 'w')
                f.write(remote_data)
                f.close()
            new_checksum = secure_hash(dest)
            # For backwards compatibility.  We'll return None on FIPS enabled
            # systems
            try:
                new_md5 = md5(dest)
            except ValueError:
                new_md5 = None

            if validate_checksum and new_checksum != remote_checksum:
                return dict(failed=True, md5sum=new_md5, msg="checksum mismatch", file=source, dest=dest, remote_md5sum=None, checksum=new_checksum, remote_checksum=remote_checksum)
            return dict(changed=True, md5sum=new_md5, dest=dest, remote_md5sum=None, checksum=new_checksum, remote_checksum=remote_checksum)
        else:
            # For backwards compatibility.  We'll return None on FIPS enabled
            # systems
            try:
                local_md5 = md5(dest)
            except ValueError:
                local_md5 = None

            return dict(changed=False, md5sum=local_md5, file=source, dest=dest, checksum=local_checksum)
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00			`# (c) 2012-2014, Michael DeHaan <michael.dehaan@gmail.com>`
			`#`
			`# This file is part of Ansible`
			`#`
			`# Ansible is free software: you can redistribute it and/or modify`
			`# it under the terms of the GNU General Public License as published by`
			`# the Free Software Foundation, either version 3 of the License, or`
			`# (at your option) any later version.`
			`#`
			`# Ansible is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with Ansible. If not, see <http://www.gnu.org/licenses/>.`
Import futures including print 2015-04-13 20:28:01 +00:00			`from __future__ import (absolute_import, division, print_function)`
			`__metaclass__ = type`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00
			`import os`
			`import pwd`
			`import random`
			`import traceback`
			`import tempfile`
			`import base64`

			`from ansible import constants as C`
			`from ansible.errors import *`
			`from ansible.plugins.action import ActionBase`
			`from ansible.utils.boolean import boolean`
			`from ansible.utils.hashing import checksum, checksum_s, md5, secure_hash`
created makedirs_safe function for use in cases of multiprocess should fix #11126 and most race conditions 2015-06-02 15:41:30 +00:00			`from ansible.utils.path import makedirs_safe`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00
			`class ActionModule(ActionBase):`

			`def run(self, tmp=None, task_vars=dict()):`
			`''' handler for fetch operations '''`

Fixing up some check-mode stuff 2015-07-01 19:10:25 +00:00			`if self._connection_info.check_mode:`
			`return dict(skipped=True, msg='check mode not (yet) supported for this module')`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00
			`source = self._task.args.get('src', None)`
			`dest = self._task.args.get('dest', None)`
			`flat = boolean(self._task.args.get('flat'))`
			`fail_on_missing = boolean(self._task.args.get('fail_on_missing'))`
			`validate_checksum = boolean(self._task.args.get('validate_checksum', self._task.args.get('validate_md5')))`

			`if 'validate_md5' in self._task.args and 'validate_checksum' in self._task.args:`
			`return dict(failed=True, msg="validate_checksum and validate_md5 cannot both be specified")`

			`if source is None or dest is None:`
			`return dict(failed=True, msg="src and dest are required")`

Fix "AttributeError: 'ActionModule' object has no attribute '_shell'" '_shell' was removed with commit 2a5fbd85700b719df9c2af22f0ccc61633ee4ac6 2015-07-01 15:15:40 +00:00			`source = self._connection._shell.join_path(source)`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00			`source = self._remote_expand_user(source, tmp)`

			`# calculate checksum for the remote file`
			`remote_checksum = self._remote_checksum(tmp, source)`

			`# use slurp if sudo and permissions are lacking`
			`remote_data = None`
Making blocks support become, and cleaning up sudo/su references 2015-03-17 15:35:24 +00:00			`if remote_checksum in ('1', '2') or self._connection_info.become:`
Fixing ansible_*_interpreter use Fixes ansible/ansible-modules-core#1459 2015-06-04 19:43:07 +00:00			`slurpres = self._execute_module(module_name='slurp', module_args=dict(src=source), task_vars=task_vars, tmp=tmp)`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00			`if slurpres.get('rc') == 0:`
			`if slurpres['encoding'] == 'base64':`
			`remote_data = base64.b64decode(slurpres['content'])`
			`if remote_data is not None:`
			`remote_checksum = checksum_s(remote_data)`
			`# the source path may have been expanded on the`
			`# target system, so we compare it here and use the`
			`# expanded version if it's different`
			`remote_source = slurpres.get('source')`
			`if remote_source and remote_source != source:`
			`source = remote_source`
			`else:`
			`# FIXME: should raise an error here? the old code did nothing`
			`pass`

			`# calculate the destination name`
Fix "AttributeError: 'ActionModule' object has no attribute '_shell'" '_shell' was removed with commit 2a5fbd85700b719df9c2af22f0ccc61633ee4ac6 2015-07-01 15:15:40 +00:00			`if os.path.sep not in self._connection._shell.join_path('a', ''):`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00			`source_local = source.replace('\\', '/')`
			`else:`
			`source_local = source`

			`dest = os.path.expanduser(dest)`
			`if flat:`
switched to use cross platform os.sep, added diff output to copy 2015-04-03 13:20:19 +00:00			`if dest.endswith(os.sep):`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00			`# if the path ends with "/", we'll use the source filename as the`
			`# destination filename`
			`base = os.path.basename(source_local)`
			`dest = os.path.join(dest, base)`
			`if not dest.startswith("/"):`
			`# if dest does not start with "/", we'll assume a relative path`
			`dest = self._loader.path_dwim(dest)`
			`else:`
			`# files are saved in dest dir, with a subdir for each host, then the filename`
Fix fetch action plugin in v2 to use the inventory_hostname in the dest dir Fixes #10736 2015-04-20 16:15:31 +00:00			`if 'inventory_hostname' in task_vars:`
			`target_name = task_vars['inventory_hostname']`
			`else:`
			`target_name = self._connection_info.remote_addr`
			`dest = "%s/%s/%s" % (self._loader.path_dwim(dest), target_name, source_local)`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00
			`dest = dest.replace("//","/")`

			`if remote_checksum in ('0', '1', '2', '3', '4'):`
			`# these don't fail because you may want to transfer a log file that possibly MAY exist`
			`# but keep going to fetch other log files`
			`if remote_checksum == '0':`
			`result = dict(msg="unable to calculate the checksum of the remote file", file=source, changed=False)`
			`elif remote_checksum == '1':`
			`if fail_on_missing:`
			`result = dict(failed=True, msg="the remote file does not exist", file=source)`
			`else:`
			`result = dict(msg="the remote file does not exist, not transferring, ignored", file=source, changed=False)`
			`elif remote_checksum == '2':`
			`result = dict(msg="no read permission on remote file, not transferring, ignored", file=source, changed=False)`
			`elif remote_checksum == '3':`
			`result = dict(msg="remote file is a directory, fetch cannot work on directories", file=source, changed=False)`
			`elif remote_checksum == '4':`
			`result = dict(msg="python isn't present on the system. Unable to compute checksum", file=source, changed=False)`
			`return result`

			`# calculate checksum for the local file`
			`local_checksum = checksum(dest)`

			`if remote_checksum != local_checksum:`
			`# create the containing directories, if needed`
created makedirs_safe function for use in cases of multiprocess should fix #11126 and most race conditions 2015-06-02 15:41:30 +00:00			`makedirs_safe(os.path.dirname(dest))`
Moving more action plugins over and fixing some bugs with role loading 2015-01-02 13:51:15 +00:00
			`# fetch the file and check for changes`
			`if remote_data is None:`
			`self._connection.fetch_file(source, dest)`
			`else:`
			`f = open(dest, 'w')`
			`f.write(remote_data)`
			`f.close()`
			`new_checksum = secure_hash(dest)`
			`# For backwards compatibility. We'll return None on FIPS enabled`
			`# systems`
			`try:`
			`new_md5 = md5(dest)`
			`except ValueError:`
			`new_md5 = None`

			`if validate_checksum and new_checksum != remote_checksum:`
			`return dict(failed=True, md5sum=new_md5, msg="checksum mismatch", file=source, dest=dest, remote_md5sum=None, checksum=new_checksum, remote_checksum=remote_checksum)`
			`return dict(changed=True, md5sum=new_md5, dest=dest, remote_md5sum=None, checksum=new_checksum, remote_checksum=remote_checksum)`
			`else:`
			`# For backwards compatibility. We'll return None on FIPS enabled`
			`# systems`
			`try:`
			`local_md5 = md5(dest)`
			`except ValueError:`
			`local_md5 = None`

			`return dict(changed=False, md5sum=local_md5, file=source, dest=dest, checksum=local_checksum)`