16c22e9b1a
Running a unknown command (which is mentioned in the filter but not available on the filesystem) leads currently to an exception. Make sure that the return codes for both, daemon and non-daemon mode are equal when running the same command. Also add functional tests for this case. Change-Id: I20004c3c370d004b5b76f4c8f8ab167d0949fabf Closes-Bug: #1632768
168 lines
6.2 KiB
Python
168 lines
6.2 KiB
Python
# Copyright (c) 2014 Mirantis Inc.
|
|
# All Rights Reserved.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
from __future__ import print_function
|
|
|
|
import functools
|
|
import logging
|
|
from multiprocessing import managers
|
|
import os
|
|
import shutil
|
|
import signal
|
|
import six
|
|
import stat
|
|
import sys
|
|
import tempfile
|
|
import threading
|
|
|
|
from oslo_rootwrap import cmd
|
|
from oslo_rootwrap import jsonrpc
|
|
from oslo_rootwrap import subprocess
|
|
from oslo_rootwrap import wrapper
|
|
|
|
LOG = logging.getLogger(__name__)
|
|
|
|
# Since multiprocessing supports only pickle and xmlrpclib for serialization of
|
|
# RPC requests and responses, we declare another 'jsonrpc' serializer
|
|
|
|
managers.listener_client['jsonrpc'] = jsonrpc.JsonListener, jsonrpc.JsonClient
|
|
|
|
|
|
class RootwrapClass(object):
|
|
def __init__(self, config, filters):
|
|
self.config = config
|
|
self.filters = filters
|
|
|
|
def run_one_command(self, userargs, stdin=None):
|
|
try:
|
|
obj = wrapper.start_subprocess(
|
|
self.filters, userargs,
|
|
exec_dirs=self.config.exec_dirs,
|
|
log=self.config.use_syslog,
|
|
close_fds=True,
|
|
stdin=subprocess.PIPE,
|
|
stdout=subprocess.PIPE,
|
|
stderr=subprocess.PIPE)
|
|
except wrapper.FilterMatchNotExecutable:
|
|
LOG.warning("Executable not found for: %s",
|
|
' '.join(userargs))
|
|
return cmd.RC_NOEXECFOUND, "", ""
|
|
|
|
except wrapper.NoFilterMatched:
|
|
LOG.warning("Unauthorized command: %s (no filter matched)",
|
|
' '.join(userargs))
|
|
return cmd.RC_UNAUTHORIZED, "", ""
|
|
|
|
if six.PY3 and stdin is not None:
|
|
stdin = os.fsencode(stdin)
|
|
out, err = obj.communicate(stdin)
|
|
if six.PY3:
|
|
out = os.fsdecode(out)
|
|
err = os.fsdecode(err)
|
|
return obj.returncode, out, err
|
|
|
|
def shutdown(self):
|
|
# Suicide to force break of the main thread
|
|
os.kill(os.getpid(), signal.SIGINT)
|
|
|
|
|
|
def get_manager_class(config=None, filters=None):
|
|
class RootwrapManager(managers.BaseManager):
|
|
def __init__(self, address=None, authkey=None):
|
|
# Force jsonrpc because neither pickle nor xmlrpclib is secure
|
|
super(RootwrapManager, self).__init__(address, authkey,
|
|
serializer='jsonrpc')
|
|
|
|
if config is not None:
|
|
partial_class = functools.partial(RootwrapClass, config, filters)
|
|
RootwrapManager.register('rootwrap', partial_class)
|
|
else:
|
|
RootwrapManager.register('rootwrap')
|
|
|
|
return RootwrapManager
|
|
|
|
|
|
def daemon_start(config, filters):
|
|
temp_dir = tempfile.mkdtemp(prefix='rootwrap-')
|
|
LOG.debug("Created temporary directory %s", temp_dir)
|
|
try:
|
|
# allow everybody to find the socket
|
|
rwxr_xr_x = (stat.S_IRWXU |
|
|
stat.S_IRGRP | stat.S_IXGRP |
|
|
stat.S_IROTH | stat.S_IXOTH)
|
|
os.chmod(temp_dir, rwxr_xr_x)
|
|
socket_path = os.path.join(temp_dir, "rootwrap.sock")
|
|
LOG.debug("Will listen on socket %s", socket_path)
|
|
manager_cls = get_manager_class(config, filters)
|
|
manager = manager_cls(address=socket_path)
|
|
server = manager.get_server()
|
|
try:
|
|
# allow everybody to connect to the socket
|
|
rw_rw_rw_ = (stat.S_IRUSR | stat.S_IWUSR |
|
|
stat.S_IRGRP | stat.S_IWGRP |
|
|
stat.S_IROTH | stat.S_IWOTH)
|
|
os.chmod(socket_path, rw_rw_rw_)
|
|
try:
|
|
# In Python 3 we have to use buffer to push in bytes directly
|
|
stdout = sys.stdout.buffer
|
|
except AttributeError:
|
|
stdout = sys.stdout
|
|
stdout.write(socket_path.encode('utf-8'))
|
|
stdout.write(b'\n')
|
|
stdout.write(bytes(server.authkey))
|
|
sys.stdin.close()
|
|
sys.stdout.close()
|
|
sys.stderr.close()
|
|
# Gracefully shutdown on INT or TERM signals
|
|
stop = functools.partial(daemon_stop, server)
|
|
signal.signal(signal.SIGTERM, stop)
|
|
signal.signal(signal.SIGINT, stop)
|
|
LOG.info("Starting rootwrap daemon main loop")
|
|
server.serve_forever()
|
|
finally:
|
|
conn = server.listener
|
|
# This will break accept() loop with EOFError if it was not in the
|
|
# main thread (as in Python 3.x)
|
|
conn.close()
|
|
# Closing all currently connected client sockets for reading to
|
|
# break worker threads blocked on recv()
|
|
for cl_conn in conn.get_accepted():
|
|
try:
|
|
cl_conn.half_close()
|
|
except Exception:
|
|
# Most likely the socket have already been closed
|
|
LOG.debug("Failed to close connection")
|
|
LOG.info("Waiting for all client threads to finish.")
|
|
for thread in threading.enumerate():
|
|
if thread.daemon:
|
|
LOG.debug("Joining thread %s", thread)
|
|
thread.join()
|
|
finally:
|
|
LOG.debug("Removing temporary directory %s", temp_dir)
|
|
shutil.rmtree(temp_dir)
|
|
|
|
|
|
def daemon_stop(server, signal, frame):
|
|
LOG.info("Got signal %s. Shutting down server", signal)
|
|
# Signals are caught in the main thread which means this handler will run
|
|
# in the middle of serve_forever() loop. It will catch this exception and
|
|
# properly return. Since all threads created by server_forever are
|
|
# daemonic, we need to join them afterwards. In Python 3 we can just hit
|
|
# stop_event instead.
|
|
try:
|
|
server.stop_event.set()
|
|
except AttributeError:
|
|
raise KeyboardInterrupt
|