# # Author:: Adam Jacob () # Author:: Christopher Walters () # Copyright:: Copyright (c) Chef Software Inc. # License:: Apache License, Version 2.0 # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # require_relative "mixin/from_file" require_relative "mixin/convert_to_class_name" require_relative "mixin/enforce_ownership_and_permissions" require_relative "mixin/why_run" require_relative "mixin/shell_out" require_relative "mixin/provides" require_relative "dsl/recipe" require_relative "platform/service_helpers" require_relative "node_map" require "forwardable" unless defined?(Forwardable) class Chef class Provider attr_accessor :new_resource attr_accessor :current_resource attr_accessor :after_resource attr_accessor :run_context attr_reader :logger include Chef::Mixin::WhyRun extend Chef::Mixin::Provides extend Forwardable include Chef::DSL::Recipe # the class only gets the Universal DSL (no resource_collection at class parsing time) extend Chef::DSL::Universal # supports the given resource and action (late binding) def self.supports?(resource, action) true end # Defines an action method on the provider, running the block to compile the # resources, converging them, and then checking if any were updated (and # updating new-resource if so) # # @since 13.0 # @param name [String, Symbol] Name of the action to define. # @param description [String] description of the action # @param block [Proc] Body of the action. # # @return [void] def self.action(name, description: nil, &block) action_descriptions[name.to_sym] = description unless description.nil? # We need the block directly in a method so that `return` works. define_method("compile_action_#{name}", &block) class_eval <<-EOM def action_#{name} compile_and_converge_action { compile_action_#{name} } end EOM end # Return the hash of action descriptions defined for # the provider class. # # @return [Hash] hash of [Symbol] => [String] containing # any provided action descriptions. def self.action_descriptions @action_descriptions ||= {} end # Retrieve the description for a provider's action, if # any description has been included in the definition. # # @param action [Symbol,String] the action name # @return [String] the description of the action provided, or nil if no description # was defined def self.action_description(action) description = action_descriptions[action.to_sym] if description.nil? && superclass.respond_to?(:action_description) description = superclass.action_description(action) end description end # Deprecation stub for the old use_inline_resources mode. # # @return [void] def self.use_inline_resources # Uncomment this in Chef 13.6. # Chef.deprecated(:use_inline_resources, "The use_inline_resources mode is no longer optional and the line enabling it can be removed") end # Use a partial code fragment. This can be used for code sharing between multiple resources. # # Do not wrap the code fragment in a class or module. It also does not support the use of super # to subclass any methods defined in the fragment, the methods will just be overwritten. # # @param partial [String] the code fragment to eval against the class # def self.use(partial) dirname = ::File.dirname(partial) basename = ::File.basename(partial, ".rb") basename = basename[1..] if basename.start_with?("_") class_eval IO.read(::File.expand_path("#{dirname}/_#{basename}.rb", ::File.dirname(caller_locations.first.path))) end # delegate to the resource # def_delegators :@new_resource, :property_is_set? # @todo this should be a reader, and the action should be passed in the # constructor; however, many/most subclasses override the constructor so # changing the arity would be a breaking change. Change this at the next # major release attr_accessor :action def initialize(new_resource, run_context) @new_resource = new_resource @action = action @current_resource = nil @after_resource = nil @run_context = run_context @converge_actions = nil @logger = if run_context run_context.logger.with_child({ resource: new_resource.name, cookbook: cookbook_name, recipe: recipe_name }) else Chef::Log.with_child({ resource: new_resource.name, cookbook: cookbook_name, recipe: recipe_name }) end @recipe_name = nil @cookbook_name = nil self.class.include_resource_dsl_module(new_resource) end # has why-run mode been enabled? # # @return [Boolean] def whyrun_mode? Chef::Config[:why_run] end # as of Chef 13 we enable why-run by default and require resources to override this to set false. # We're keeping this method to prevent breaking the cookbook world for no real gain on our part. # # @return [Boolean] def whyrun_supported? true end def node run_context && run_context.node end # Used by providers supporting embedded recipes def resource_collection run_context && run_context.resource_collection end def cookbook_name new_resource.cookbook_name end def recipe_name new_resource.recipe_name end # hook that subclasses can use to do lazy validation for where properties aren't flexible enough def check_resource_semantics!; end # a simple placeholder method that will be called / raise if a resource tries to # use current_resource without defining a load_current_resource method. def load_current_resource raise Chef::Exceptions::Override, "You must override load_current_resource in #{self}" end def define_resource_requirements; end def cleanup_after_converge; end def load_after_resource # This is a backwards compatible hack, custom resources properly wire up a new after_resource # via load_current_value. It is acceptable for old style resources that cannot be easily made # into custom resources to override this method and provide a proper after_resource. @after_resource = @new_resource end # the :nothing action which is available on all resources by default def action_nothing logger.trace("Doing nothing for #{@new_resource}") true end def events run_context.events end def validate_required_properties! # all we do is run through all the required properties for this action and vivify them new_resource.class.properties.each { |name, property| property.required?(action) && property.get(new_resource) } end def run_action(action = nil) @action = action unless action.nil? # hook that subclasses can use to do lazy validation for where properties aren't flexible enough check_resource_semantics! # force the validation of required properties validate_required_properties! # user-defined LWRPs may include unsafe load_current_resource methods that cannot be run in whyrun mode if whyrun_mode? && !whyrun_supported? events.resource_current_state_load_bypassed(@new_resource, @action, @current_resource) else load_current_resource events.resource_current_state_loaded(@new_resource, @action, @current_resource) end define_resource_requirements process_resource_requirements # user-defined providers including LWRPs may # not include whyrun support - if they don't support it # we can't execute any actions while we're running in # whyrun mode. Instead we 'fake' whyrun by documenting that # we can't execute the action. # in non-whyrun mode, this will still cause the action to be # executed normally. if whyrun_mode? && (!whyrun_supported? || requirements.action_blocked?(@action)) events.resource_bypassed(@new_resource, @action, self) else send("action_#{@action}") end set_updated_status cleanup_after_converge load_after_resource events.resource_after_state_loaded(@new_resource, @action, @after_resource) end def process_resource_requirements requirements.run(:all_actions) unless @action == :nothing requirements.run(@action) end def resource_updated? !converge_actions.empty? || @new_resource.updated_by_last_action? end def set_updated_status if !resource_updated? events.resource_up_to_date(@new_resource, @action) else events.resource_updated(@new_resource, @action) new_resource.updated_by_last_action(true) end end def requirements @requirements ||= ResourceRequirements.new(@new_resource, run_context, action || new_resource.action) end def description(description = "NOT_PASSED") if description != "NOT_PASSED" @description = description end @description end def introduced(introduced = "NOT_PASSED") if introduced != "NOT_PASSED" @introduced = introduced end @introduced end def converge_by(descriptions, &block) converge_actions.add_action(descriptions, &block) end # Create a child run_context, compile the block, and converge it. # # @api private def compile_and_converge_action(&block) old_run_context = run_context @run_context = run_context.create_child @run_context.resource_collection.unified_mode = new_resource.class.unified_mode runner = Chef::Runner.new(@run_context) return_value = instance_eval(&block) runner.converge return_value ensure if run_context.resource_collection.any?(&:updated?) new_resource.updated_by_last_action(true) end @run_context = old_run_context end # # Handle patchy convergence safely. # # - Does *not* call the block if the current_resource's properties match # the properties the user specified on the resource. # - Calls the block if current_resource does not exist # - Calls the block if the user has specified any properties in the resource # whose values are *different* from current_resource. # - Does *not* call the block if why-run is enabled (just prints out text). # - Prints out automatic green text saying what properties have changed. # # @param properties An optional list of property names (symbols). If not # specified, `new_resource.class.state_properties` will be used. # @param converge_block The block to do the converging in. # # @return [Boolean] whether the block was executed. # def converge_if_changed(*properties, &converge_block) unless converge_block raise ArgumentError, "converge_if_changed must be passed a block!" end properties = if properties.empty? new_resource.class.state_properties else properties.map { |property| new_resource.class.properties[property] } end if current_resource # Collect the list of modified properties specified_properties = properties.select { |property| property.is_set?(new_resource) || property.has_default? } specified_properties = specified_properties.map(&:name).map(&:to_sym) modified = specified_properties.select { |p| new_resource.send(p) != current_resource.send(p) } if modified.empty? properties_str = if new_resource.sensitive specified_properties.join(", ") else specified_properties.map do |property| "#{property}=" << if new_resource.class.properties[property].sensitive? "(suppressed sensitive property)" else new_resource.send(property).inspect end end.join(", ") end logger.debug("Skipping update of #{new_resource}: has not changed any of the specified properties #{properties_str}.") return false end # Print the pretty green text and run the block property_size = modified.map(&:size).max modified.map! do |p| properties_str = if new_resource.sensitive || new_resource.class.properties[p].sensitive? "(suppressed sensitive property)" else "#{new_resource.send(p).inspect} (was #{current_resource.send(p).inspect})" end " set #{p.to_s.ljust(property_size)} to #{properties_str}" end converge_by([ "update #{current_resource.identity}" ] + modified, &converge_block) else # The resource doesn't exist. Mark that we are *creating* this, and # write down any properties we are setting. property_size = properties.map(&:name).map(&:to_sym).map(&:size).max created = properties.map do |property| default = " (default value)" unless property.is_set?(new_resource) properties_str = if new_resource.sensitive || property.sensitive? "(suppressed sensitive property)" else new_resource.send(property.name.to_sym).inspect end " set #{property.name.to_sym.to_s.ljust(property_size)} to #{properties_str}#{default}" end converge_by([ "create #{new_resource.identity}" ] + created, &converge_block) end true end def self.provides(short_name, opts = {}, &block) Chef.provider_handler_map.set(short_name, self, **opts, &block) end def self.provides?(node, resource) Chef::ProviderResolver.new(node, resource, :nothing).provided_by?(self) end # # Include attributes, public and protected methods from this Resource in # the provider. # # If this is set to true, delegate methods are included in the provider so # that you can call (for example) `attrname` and it will call # `new_resource.attrname`. # # The actual include does not happen until the first time the Provider # is instantiated (so that we don't have to worry about load order issues). # # @param include_resource_dsl [Boolean] Whether to include resource DSL or # not (defaults to `false`). # def self.include_resource_dsl? false end # Create the resource DSL module that forwards resource methods to new_resource # # @api private def self.include_resource_dsl_module(resource) if include_resource_dsl? && !defined?(@included_resource_dsl_module) provider_class = self @included_resource_dsl_module = Module.new do extend Forwardable define_singleton_method(:to_s) { "forwarder module for #{provider_class}" } define_singleton_method(:inspect) { to_s } # this magic, stated simply, is that any instance method declared directly on # the resource we are building, will be accessible from the action_class(provider) # instance. methods declared on Chef::Resource and properties are not inherited. dsl_methods = resource.class.public_instance_methods + resource.class.protected_instance_methods - provider_class.instance_methods - resource.class.properties.keys - resource.class.properties.keys.map { |k| "#{k}=".to_sym } - Chef::Resource.instance_methods def_delegators(:new_resource, *dsl_methods) end include @included_resource_dsl_module end end protected # stores all actions that have been converged # # @return [ConvergeActions] def converge_actions @converge_actions ||= ConvergeActions.new(@new_resource, run_context, @action) end def recipe_eval(&block) # This block has new resource definitions within it, which # essentially makes it an in-line Chef run. Save our current # run_context and create one anew, so the new Chef run only # executes the embedded resources. # # TODO: timh,cw: 2010-5-14: This means that the resources within # this block cannot interact with resources outside, e.g., # manipulating notifies. converge_by("evaluate block and run any associated actions") do saved_run_context = run_context begin @run_context = run_context.create_child instance_eval(&block) Chef::Runner.new(run_context).converge ensure @run_context = saved_run_context end end end end end # Requiring things at the bottom breaks cycles require_relative "chef_class" require_relative "resource_collection" require_relative "runner"