mirror of
https://github.com/ansible-collections/kubernetes.core.git
synced 2026-03-26 21:33:02 +00:00
b066a2dda3
* Cleanup gha * test by removing matrix excludes * Rename sanity tests * trigger integration tests * Fix ansible-lint workflow * Fix concurrency * Add ansible-lint config * Add ansible-lint config * Fix integration and lint issues * integration wf * fix yamllint issues * fix yamllint issues * update readme and add ignore-2.16.txt * fix ansible-doc * Add version * Use /dev/random to generate random data The GHA environment has difficultly generating entropy. Trying to read from /dev/urandom just blocks forever. We don't care if the random data is cryptographically secure; it's just garbage data for the test. Read from /dev/random, instead. This is only used during the k8s_copy test target. This also removes the custom test module that was being used to generate the files. It's not worth maintaining this for two task that can be replaced with some simple command/shell tasks. * Fix saniry errors * test github_action fix * Address review comments * Remove default types * review comments * isort fixes * remove tags * Add setuptools to venv * Test gh changes * update changelog * update ignore-2.16 * Fix indentation in inventory plugin example * Update .github/workflows/integration-tests.yaml * Update integration-tests.yaml --------- Co-authored-by: Mike Graves <mgraves@redhat.com> Co-authored-by: Bikouo Aubin <79859644+abikouo@users.noreply.github.com>
446 lines
15 KiB
Python
446 lines
15 KiB
Python
# Copyright [2021] [Red Hat, Inc.]
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
|
|
__metaclass__ = type
|
|
|
|
import os
|
|
import tarfile
|
|
from abc import ABCMeta, abstractmethod
|
|
from select import select
|
|
from tempfile import NamedTemporaryFile, TemporaryFile
|
|
|
|
from ansible.module_utils._text import to_native
|
|
|
|
# from ansible_collections.kubernetes.core.plugins.module_utils.ansiblemodule import AnsibleModule
|
|
from ansible_collections.kubernetes.core.plugins.module_utils.k8s.exceptions import (
|
|
CoreException,
|
|
)
|
|
|
|
try:
|
|
from kubernetes.client.api import core_v1_api
|
|
from kubernetes.stream import stream
|
|
from kubernetes.stream.ws_client import (
|
|
ABNF,
|
|
ERROR_CHANNEL,
|
|
STDERR_CHANNEL,
|
|
STDOUT_CHANNEL,
|
|
)
|
|
except ImportError:
|
|
pass
|
|
|
|
try:
|
|
import yaml
|
|
except ImportError:
|
|
# ImportError are managed by the common module already.
|
|
pass
|
|
|
|
|
|
class K8SCopy(metaclass=ABCMeta):
|
|
def __init__(self, module, client):
|
|
self.client = client
|
|
self.module = module
|
|
self.api_instance = core_v1_api.CoreV1Api(client.client)
|
|
|
|
self.local_path = module.params.get("local_path")
|
|
self.name = module.params.get("pod")
|
|
self.namespace = module.params.get("namespace")
|
|
self.remote_path = module.params.get("remote_path")
|
|
self.content = module.params.get("content")
|
|
|
|
self.no_preserve = module.params.get("no_preserve")
|
|
self.container_arg = {}
|
|
if module.params.get("container"):
|
|
self.container_arg["container"] = module.params.get("container")
|
|
self.check_mode = self.module.check_mode
|
|
|
|
def _run_from_pod(self, cmd):
|
|
try:
|
|
resp = stream(
|
|
self.api_instance.connect_get_namespaced_pod_exec,
|
|
self.name,
|
|
self.namespace,
|
|
command=cmd,
|
|
async_req=False,
|
|
stderr=True,
|
|
stdin=False,
|
|
stdout=True,
|
|
tty=False,
|
|
_preload_content=False,
|
|
**self.container_arg,
|
|
)
|
|
|
|
stderr, stdout = [], []
|
|
while resp.is_open():
|
|
resp.update(timeout=1)
|
|
if resp.peek_stdout():
|
|
stdout.extend(resp.read_stdout().rstrip("\n").split("\n"))
|
|
if resp.peek_stderr():
|
|
stderr.extend(resp.read_stderr().rstrip("\n").split("\n"))
|
|
error = resp.read_channel(ERROR_CHANNEL)
|
|
resp.close()
|
|
error = yaml.safe_load(error)
|
|
return error, stdout, stderr
|
|
except Exception as e:
|
|
self.module.fail_json(
|
|
msg="Error while running/parsing from pod {1}/{2} command='{0}' : {3}".format(
|
|
self.namespace, self.name, cmd, to_native(e)
|
|
)
|
|
)
|
|
|
|
def is_directory_path_from_pod(self, file_path, failed_if_not_exists=True):
|
|
# check if file exists
|
|
error, out, err = self._run_from_pod(cmd=["test", "-e", file_path])
|
|
if error.get("status") != "Success":
|
|
if failed_if_not_exists:
|
|
return None, "%s does not exist in remote pod filesystem" % file_path
|
|
return False, None
|
|
error, out, err = self._run_from_pod(cmd=["test", "-d", file_path])
|
|
return error.get("status") == "Success", None
|
|
|
|
@abstractmethod
|
|
def run(self):
|
|
pass
|
|
|
|
|
|
class K8SCopyFromPod(K8SCopy):
|
|
"""
|
|
Copy files/directory from Pod into local filesystem
|
|
"""
|
|
|
|
def __init__(self, module, client):
|
|
super(K8SCopyFromPod, self).__init__(module, client)
|
|
self.is_remote_path_dir = None
|
|
self.files_to_copy = []
|
|
self._shellname = None
|
|
|
|
@property
|
|
def pod_shell(self):
|
|
if self._shellname is None:
|
|
for s in ("/bin/sh", "/bin/bash"):
|
|
error, out, err = self._run_from_pod(s)
|
|
if error.get("status") == "Success":
|
|
self._shellname = s
|
|
break
|
|
return self._shellname
|
|
|
|
def listfiles_with_find(self, path):
|
|
find_cmd = ["find", path, "-type", "f"]
|
|
error, files, err = self._run_from_pod(cmd=find_cmd)
|
|
if error.get("status") != "Success":
|
|
self.module.fail_json(msg=error.get("message"))
|
|
return files
|
|
|
|
def listfile_with_echo(self, path):
|
|
echo_cmd = [
|
|
self.pod_shell,
|
|
"-c",
|
|
"echo {path}/* {path}/.*".format(
|
|
path=path.translate(str.maketrans({" ": r"\ "}))
|
|
),
|
|
]
|
|
error, out, err = self._run_from_pod(cmd=echo_cmd)
|
|
if error.get("status") != "Success":
|
|
self.module.fail_json(msg=error.get("message"))
|
|
|
|
files = []
|
|
if out:
|
|
output = out[0] + " "
|
|
files = [
|
|
os.path.join(path, p[:-1])
|
|
for p in output.split(f"{path}/")
|
|
if p and p[:-1] not in (".", "..")
|
|
]
|
|
|
|
result = []
|
|
for f in files:
|
|
is_dir, err = self.is_directory_path_from_pod(f)
|
|
if err:
|
|
continue
|
|
if not is_dir:
|
|
result.append(f)
|
|
continue
|
|
result += self.listfile_with_echo(f)
|
|
return result
|
|
|
|
def list_remote_files(self):
|
|
"""
|
|
This method will check if the remote path is a dir or file
|
|
if it is a directory the file list will be updated accordingly
|
|
"""
|
|
# check is remote path exists and is a file or directory
|
|
is_dir, error = self.is_directory_path_from_pod(self.remote_path)
|
|
if error:
|
|
self.module.fail_json(msg=error)
|
|
|
|
if not is_dir:
|
|
return [self.remote_path]
|
|
else:
|
|
# find executable to list dir with
|
|
executables = dict(
|
|
find=self.listfiles_with_find,
|
|
echo=self.listfile_with_echo,
|
|
)
|
|
for item in executables:
|
|
error, out, err = self._run_from_pod(item)
|
|
if error.get("status") == "Success":
|
|
return executables.get(item)(self.remote_path)
|
|
|
|
def read(self):
|
|
self.stdout = None
|
|
self.stderr = None
|
|
|
|
if self.response.is_open():
|
|
if not self.response.sock.connected:
|
|
self.response._connected = False
|
|
else:
|
|
ret, out, err = select((self.response.sock.sock,), (), (), 0)
|
|
if ret:
|
|
code, frame = self.response.sock.recv_data_frame(True)
|
|
if code == ABNF.OPCODE_CLOSE:
|
|
self.response._connected = False
|
|
elif (
|
|
code in (ABNF.OPCODE_BINARY, ABNF.OPCODE_TEXT)
|
|
and len(frame.data) > 1
|
|
):
|
|
channel = frame.data[0]
|
|
content = frame.data[1:]
|
|
if content:
|
|
if channel == STDOUT_CHANNEL:
|
|
self.stdout = content
|
|
elif channel == STDERR_CHANNEL:
|
|
self.stderr = content.decode("utf-8", "replace")
|
|
|
|
def copy(self):
|
|
is_remote_path_dir = (
|
|
len(self.files_to_copy) > 1 or self.files_to_copy[0] != self.remote_path
|
|
)
|
|
relpath_start = self.remote_path
|
|
if is_remote_path_dir and os.path.isdir(self.local_path):
|
|
relpath_start = os.path.dirname(self.remote_path)
|
|
|
|
if not self.check_mode:
|
|
for remote_file in self.files_to_copy:
|
|
dest_file = self.local_path
|
|
if is_remote_path_dir:
|
|
dest_file = os.path.join(
|
|
self.local_path,
|
|
os.path.relpath(remote_file, start=relpath_start),
|
|
)
|
|
# create directory to copy file in
|
|
os.makedirs(os.path.dirname(dest_file), exist_ok=True)
|
|
|
|
pod_command = ["cat", remote_file]
|
|
self.response = stream(
|
|
self.api_instance.connect_get_namespaced_pod_exec,
|
|
self.name,
|
|
self.namespace,
|
|
command=pod_command,
|
|
stderr=True,
|
|
stdin=True,
|
|
stdout=True,
|
|
tty=False,
|
|
_preload_content=False,
|
|
**self.container_arg,
|
|
)
|
|
errors = []
|
|
with open(dest_file, "wb") as fh:
|
|
while self.response._connected:
|
|
self.read()
|
|
if self.stdout:
|
|
fh.write(self.stdout)
|
|
if self.stderr:
|
|
errors.append(self.stderr)
|
|
if errors:
|
|
self.module.fail_json(
|
|
msg="Failed to copy file from Pod: {0}".format("".join(errors))
|
|
)
|
|
self.module.exit_json(
|
|
changed=True,
|
|
result="{0} successfully copied locally into {1}".format(
|
|
self.remote_path, self.local_path
|
|
),
|
|
)
|
|
|
|
def run(self):
|
|
self.files_to_copy = self.list_remote_files()
|
|
if self.files_to_copy == []:
|
|
self.module.exit_json(
|
|
changed=False,
|
|
warning="No file found from directory '{0}' into remote Pod.".format(
|
|
self.remote_path
|
|
),
|
|
)
|
|
self.copy()
|
|
|
|
|
|
class K8SCopyToPod(K8SCopy):
|
|
"""
|
|
Copy files/directory from local filesystem into remote Pod
|
|
"""
|
|
|
|
def __init__(self, module, client):
|
|
super(K8SCopyToPod, self).__init__(module, client)
|
|
self.files_to_copy = list()
|
|
|
|
def close_temp_file(self):
|
|
if self.named_temp_file:
|
|
self.named_temp_file.close()
|
|
|
|
def run(self):
|
|
# remove trailing slash from destination path
|
|
dest_file = self.remote_path.rstrip("/")
|
|
src_file = self.local_path
|
|
self.named_temp_file = None
|
|
if self.content:
|
|
self.named_temp_file = NamedTemporaryFile(mode="w")
|
|
self.named_temp_file.write(self.content)
|
|
self.named_temp_file.flush()
|
|
src_file = self.named_temp_file.name
|
|
else:
|
|
if not os.path.exists(self.local_path):
|
|
self.module.fail_json(
|
|
msg="{0} does not exist in local filesystem".format(self.local_path)
|
|
)
|
|
if not os.access(self.local_path, os.R_OK):
|
|
self.module.fail_json(msg="{0} not readable".format(self.local_path))
|
|
|
|
is_dir, err = self.is_directory_path_from_pod(
|
|
self.remote_path, failed_if_not_exists=False
|
|
)
|
|
if err:
|
|
self.module.fail_json(msg=err)
|
|
if is_dir:
|
|
if self.content:
|
|
self.module.fail_json(
|
|
msg="When content is specified, remote path should not be an existing directory"
|
|
)
|
|
else:
|
|
dest_file = os.path.join(dest_file, os.path.basename(src_file))
|
|
|
|
if not self.check_mode:
|
|
if self.no_preserve:
|
|
tar_command = [
|
|
"tar",
|
|
"--no-same-permissions",
|
|
"--no-same-owner",
|
|
"-xmf",
|
|
"-",
|
|
]
|
|
else:
|
|
tar_command = ["tar", "-xmf", "-"]
|
|
|
|
if dest_file.startswith("/"):
|
|
tar_command.extend(["-C", "/"])
|
|
|
|
response = stream(
|
|
self.api_instance.connect_get_namespaced_pod_exec,
|
|
self.name,
|
|
self.namespace,
|
|
command=tar_command,
|
|
stderr=True,
|
|
stdin=True,
|
|
stdout=True,
|
|
tty=False,
|
|
_preload_content=False,
|
|
**self.container_arg,
|
|
)
|
|
with TemporaryFile() as tar_buffer:
|
|
with tarfile.open(fileobj=tar_buffer, mode="w") as tar:
|
|
tar.add(src_file, dest_file)
|
|
tar_buffer.seek(0)
|
|
commands = []
|
|
# push command in chunk mode
|
|
size = 1024 * 1024
|
|
while True:
|
|
data = tar_buffer.read(size)
|
|
if not data:
|
|
break
|
|
commands.append(data)
|
|
|
|
stderr, stdout = [], []
|
|
while response.is_open():
|
|
if response.peek_stdout():
|
|
stdout.append(response.read_stdout().rstrip("\n"))
|
|
if response.peek_stderr():
|
|
stderr.append(response.read_stderr().rstrip("\n"))
|
|
if commands:
|
|
cmd = commands.pop(0)
|
|
response.write_stdin(cmd)
|
|
else:
|
|
break
|
|
response.close()
|
|
if stderr:
|
|
self.close_temp_file()
|
|
self.module.fail_json(
|
|
command=tar_command,
|
|
msg="Failed to copy local file/directory into Pod due to: {0}".format(
|
|
"".join(stderr)
|
|
),
|
|
)
|
|
self.close_temp_file()
|
|
if self.content:
|
|
self.module.exit_json(
|
|
changed=True,
|
|
result="Content successfully copied into {0} on remote Pod".format(
|
|
self.remote_path
|
|
),
|
|
)
|
|
self.module.exit_json(
|
|
changed=True,
|
|
result="{0} successfully copied into remote Pod into {1}".format(
|
|
self.local_path, self.remote_path
|
|
),
|
|
)
|
|
|
|
|
|
def check_pod(svc):
|
|
module = svc.module
|
|
namespace = module.params.get("namespace")
|
|
name = module.params.get("pod")
|
|
container = module.params.get("container")
|
|
|
|
try:
|
|
resource = svc.find_resource("Pod", None, True)
|
|
except CoreException as e:
|
|
module.fail_json(msg=to_native(e))
|
|
|
|
def _fail(exc):
|
|
arg = {}
|
|
if hasattr(exc, "body"):
|
|
msg = (
|
|
"Namespace={0} Kind=Pod Name={1}: Failed requested object: {2}".format(
|
|
namespace, name, exc.body
|
|
)
|
|
)
|
|
else:
|
|
msg = to_native(exc)
|
|
for attr in ["status", "reason"]:
|
|
if hasattr(exc, attr):
|
|
arg[attr] = getattr(exc, attr)
|
|
module.fail_json(msg=msg, **arg)
|
|
|
|
try:
|
|
result = svc.client.get(resource, name=name, namespace=namespace)
|
|
containers = [
|
|
c["name"] for c in result.to_dict()["status"]["containerStatuses"]
|
|
]
|
|
if container and container not in containers:
|
|
module.fail_json(msg="Pod has no container {0}".format(container))
|
|
return containers
|
|
except Exception as exc:
|
|
_fail(exc)
|