vagrant-lxc-ng/lib/vagrant-lxc/sudo_wrapper.rb

module Vagrant
  module LXC
    class SudoWrapper
      # Include this so we can use `Subprocess` more easily.
      include Vagrant::Util::Retryable

      attr_reader :wrapper_path

      def self.dest_path
        "/usr/local/bin/vagrant-lxc-wrapper"
      end

      def initialize()
        @wrapper_path = Pathname.new(SudoWrapper.dest_path).exist? && SudoWrapper.dest_path || nil
        @logger       = Log4r::Logger.new("vagrant::lxc::sudo_wrapper")
      end

      def run(*command)
        options = command.last.is_a?(Hash) ? command.last : {}

        # Avoid running LXC commands with a restrictive umask.
        # Otherwise disasters occur, like the container root directory
        # having permissions `rwxr-x---` which prevents the `vagrant`
        # user from accessing its own home directory; among other
        # problems, SSH cannot then read `authorized_keys`!
        old_mask = File.umask
        File.umask(old_mask & 022)  # allow all `r` and `x` bits

        begin
          if @wrapper_path && !options[:no_wrapper]
            command.unshift @wrapper_path
            execute *(['sudo'] + command)
          else
            execute *(['sudo', '/usr/bin/env'] + command)
          end
        ensure
          File.umask(old_mask)
        end
      end

      private

      # TODO: Review code below this line, it was pretty much a copy and
      #       paste from VirtualBox base driver and has no tests
      def execute(*command, &block)
        # Get the options hash if it exists
        opts = {}
        opts = command.pop if command.last.is_a?(Hash)

        tries = 0
        tries = 3 if opts[:retryable]

        sleep = opts.fetch(:sleep, 1)

        # Variable to store our execution result
        r = nil

        retryable(:on => LXC::Errors::ExecuteError, :tries => tries, :sleep => sleep) do
          # Execute the command
          r = raw(*command, &block)

          # If the command was a failure, then raise an exception that is
          # nicely handled by Vagrant.
          if r.exit_code != 0
            if @interrupted
              raise LXC::Errors::SubprocessInterruptError, command.inspect
            else
              raise LXC::Errors::ExecuteError,
                command: command.inspect, stderr: r.stderr, stdout: r.stdout, exitcode: r.exit_code
            end
          end
        end

        # Return the output, making sure to replace any Windows-style
        # newlines with Unix-style.
        stdout = r.stdout.gsub("\r\n", "\n")
        if opts[:show_stderr]
          { :stdout => stdout, :stderr => r.stderr.gsub("\r\n", "\n") }
        else
          stdout
        end
      end

      def raw(*command, &block)
        int_callback = lambda do
          @interrupted = true
          @logger.info("Interrupted.")
        end

        # Append in the options for subprocess
        command << { :notify => [:stdout, :stderr] }

        Vagrant::Util::Busy.busy(int_callback) do
          Vagrant::Util::Subprocess.execute(*command, &block)
        end
      end
    end
  end
end
Add support for using a sudo wrapper script Closes #90 2013-07-28 05:17:05 +00:00			`module Vagrant`
			`module LXC`
			`class SudoWrapper`
			# Include this so we can use `Subprocess` more easily.
			`include Vagrant::Util::Retryable`

driver/cli: Deal with namespaces args for lxc-attach when the sudo wrapper script is in place [GH-300] 2014-07-25 00:45:04 +00:00			`attr_reader :wrapper_path`

Refactoring: make SudoWrapper a bit more self-contained By looking at the code, it seems that it was a goal to make the sudo wrapper path configurable through the Vagrantfile, but it wasn't effective and didn't make much sense (that kind of config is a per-host config, not a per-guest one). This caused the cause to be needlessly complex by giving the Provider the responsibility of instanciating the wrapper. This commit gets rid of that. I didn't get rid of `sudo_wrapper` injection in `Driver` and `Driver::CLI` constructors because they're needed for tests. I'm not ready to tackle this yet. 2017-12-13 21:35:16 +00:00			`def self.dest_path`
			`"/usr/local/bin/vagrant-lxc-wrapper"`
			`end`

			`def initialize()`
			`@wrapper_path = Pathname.new(SudoWrapper.dest_path).exist? && SudoWrapper.dest_path \|\| nil`
Fix sudo wrapper logger name 2013-11-06 03:10:40 +00:00			`@logger = Log4r::Logger.new("vagrant::lxc::sudo_wrapper")`
Add support for using a sudo wrapper script Closes #90 2013-07-28 05:17:05 +00:00			`end`

			`def run(*command)`
sudoers command now creates a safe wrapper script. Sudoers now creates a safe wrapper script that performs sanity checks on sudo : * wrapper generated in /usr/local/bin (name includes version to allow multiple wrappers on the same system) * sudoers command now generates a one-line file in /etc/sudoers.d * SudoWrapper use the new wrapper * Removed unused Config#validate method 2014-04-08 17:58:07 +00:00			`options = command.last.is_a?(Hash) ? command.last : {}`
Avoid `Timed out` error when umask is 027 or 077 If LXC commands are run with a restrictive umask like 027 or 077, then the root directory of new containers will lack read `r` and access `x` permission for non-root users. The first failure to result from this during `vagrant up` is that the SSH daemon cannot read the crucial file `/home/vagrant/.ssh/authorized_keys` after it drops privileges to the level of the `vagrant` user. The result is the familiar: ``` default: Warning: Authentication failure. Retrying... default: Warning: Authentication failure. Retrying... Timed out while waiting for the machine to boot. This means that Vagrant was unable to communicate with the guest machine within the configured ("config.vm.boot_timeout" value) time period. ``` So we should make sure that we run all LXC commands with a umask that at least does not prevent group and world `r` and `x` bits from being set in newly created files and directories. 2017-01-29 18:53:09 +00:00
			`# Avoid running LXC commands with a restrictive umask.`
			`# Otherwise disasters occur, like the container root directory`
			# having permissions `rwxr-x---` which prevents the `vagrant`
			`# user from accessing its own home directory; among other`
			# problems, SSH cannot then read `authorized_keys`!
			`old_mask = File.umask`
			File.umask(old_mask & 022) # allow all `r` and `x` bits

			`begin`
			`if @wrapper_path && !options[:no_wrapper]`
			`command.unshift @wrapper_path`
			`execute *(['sudo'] + command)`
			`else`
			`execute *(['sudo', '/usr/bin/env'] + command)`
			`end`
			`ensure`
			`File.umask(old_mask)`
fix sudo wrapper 2015-09-23 18:15:28 +00:00			`end`
Add support for using a sudo wrapper script Closes #90 2013-07-28 05:17:05 +00:00			`end`

			`private`

			`# TODO: Review code below this line, it was pretty much a copy and`
			`# paste from VirtualBox base driver and has no tests`
			`def execute(*command, &block)`
			`# Get the options hash if it exists`
			`opts = {}`
			`opts = command.pop if command.last.is_a?(Hash)`

			`tries = 0`
			`tries = 3 if opts[:retryable]`

			`sleep = opts.fetch(:sleep, 1)`

			`# Variable to store our execution result`
			`r = nil`

			`retryable(:on => LXC::Errors::ExecuteError, :tries => tries, :sleep => sleep) do`
			`# Execute the command`
			`r = raw(*command, &block)`

			`# If the command was a failure, then raise an exception that is`
			`# nicely handled by Vagrant.`
			`if r.exit_code != 0`
			`if @interrupted`
Fix for #336: Subprocessed being interrupted resulted in it looking like those commands were executing successfully but with zero output. Interrupting the sudo prompt would result in any command running in sudo returning nothing and looking like it had succeeded. There was some clean up code in the lxc provider that nuked vagrant container state in the .vagrant directory if it looked like the container no longer existed based on the result of lxc-ls. Interrupting this check resulted in it looking like the container not existing, resulting in the provider code nuking the lxc dir in .vagrant. Voila 2017-08-09 10:31:15 +00:00			`raise LXC::Errors::SubprocessInterruptError, command.inspect`
Add support for using a sudo wrapper script Closes #90 2013-07-28 05:17:05 +00:00			`else`
Show something meaningful to the user in case the container already exists [GH-132] 2014-02-02 21:27:08 +00:00			`raise LXC::Errors::ExecuteError,`
Fix handling of non-fatal lxc-stop return code Fixes #405 2016-02-16 11:13:53 +00:00			`command: command.inspect, stderr: r.stderr, stdout: r.stdout, exitcode: r.exit_code`
Add support for using a sudo wrapper script Closes #90 2013-07-28 05:17:05 +00:00			`end`
			`end`
			`end`

			`# Return the output, making sure to replace any Windows-style`
			`# newlines with Unix-style.`
#157: small refactoring, updated specs 2013-10-11 22:15:12 +00:00			`stdout = r.stdout.gsub("\r\n", "\n")`
#157: Fixed: FetchIpFromDnsmasqLeases returns [] 2013-10-11 21:16:09 +00:00			`if opts[:show_stderr]`
#157: small refactoring, updated specs 2013-10-11 22:15:12 +00:00			`{ :stdout => stdout, :stderr => r.stderr.gsub("\r\n", "\n") }`
#157: Fixed: FetchIpFromDnsmasqLeases returns [] 2013-10-11 21:16:09 +00:00			`else`
#157: small refactoring, updated specs 2013-10-11 22:15:12 +00:00			`stdout`
#157: Fixed: FetchIpFromDnsmasqLeases returns [] 2013-10-11 21:16:09 +00:00			`end`
Add support for using a sudo wrapper script Closes #90 2013-07-28 05:17:05 +00:00			`end`

			`def raw(*command, &block)`
			`int_callback = lambda do`
			`@interrupted = true`
			`@logger.info("Interrupted.")`
			`end`

			`# Append in the options for subprocess`
			`command << { :notify => [:stdout, :stderr] }`

			`Vagrant::Util::Busy.busy(int_callback) do`
			`Vagrant::Util::Subprocess.execute(*command, &block)`
			`end`
			`end`
			`end`
			`end`
			`end`