1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
|
;;; Consfigurator -- Lisp declarative configuration management system
;;; Copyright (C) 2020-2021 Sean Whitton <spwhitton@spwhitton.name>
;;; This file is free software; you can redistribute it and/or modify
;;; it under the terms of the GNU General Public License as published by
;;; the Free Software Foundation; either version 3, or (at your option)
;;; any later version.
;;; This file is distributed in the hope that it will be useful,
;;; but WITHOUT ANY WARRANTY; without even the implied warranty of
;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
;;; GNU General Public License for more details.
;;; You should have received a copy of the GNU General Public License
;;; along with this program. If not, see <http://www.gnu.org/licenses/>.
(in-package :consfigurator.property.file)
(named-readtables:in-readtable :consfigurator)
(defun map-file-lines (file function)
"Apply FUNCTION to the lines of FILE. Safe to use in a :POSIX property.
For efficiency, a :LISP property might want to use streams, but there's no
point in doing that here because WRITEFILE is synchronous."
(let* ((orig-lines (and (remote-exists-p file) (lines (readfile file))))
(new-lines (funcall function orig-lines)))
(if (equal orig-lines new-lines)
:no-change
(writefile file (unlines new-lines)))))
(defprop has-content :posix (path content &key (mode nil mode-supplied-p))
"Ensure there is a file at PATH whose content is CONTENT.
CONTENT can be a list of lines or a single string."
(declare (indent 1))
(:desc (declare (ignore content mode mode-supplied-p))
#?"${path} has defined content")
(:apply (apply #'maybe-writefile-string
path
(etypecase content
(cons (unlines content))
(string (format nil "~A~&" content)))
(and mode-supplied-p `(:mode ,mode)))))
(defprop contains-lines :posix (path &rest lines)
"Ensure there is a file at PATH containing each of LINES once."
(:apply
(let ((new-lines (copy-list (ensure-cons lines)))
(existing-lines (and (remote-exists-p path)
(lines (readfile path)))))
(dolist (existing-line existing-lines)
(deletef new-lines existing-line :test #'string=))
(if new-lines
(writefile path (unlines (nconc existing-lines new-lines)))
:no-change))))
(defprop lacks-lines :posix (path &rest lines)
"If there is a file at PATH, ensure it does not contain any of LINES."
(:apply
(map-file-lines
path
(curry #'remove-if (lambda (l) (member l lines :test #'string=))))))
(defprop has-mode :posix (path mode)
"Ensure that a file has a particular numeric mode."
(:desc (format nil "~A has mode ~O" path mode))
(:apply
(with-change-if-changes-file (path)
(mrun (format nil "chmod ~O ~A" mode path)))))
(defprop has-ownership :posix (path &key user group)
"Ensure that a file has particular ownership and group ownership."
(:desc (format nil "~A has~:[~; owner ~:*~A~]~:[~;~2:*~:[~;,~] group ~A~]"
path user group))
(:hostattrs
(unless (or user group)
(inapplicable-property "Not enough arguments.")))
(:apply
(with-change-if-changes-file (path)
(if user
(mrun "chown" "-h" (format nil "~A~:[~;:~:*~A~]" user group) path)
(mrun "chgrp" "-h" group path)))))
(defprop does-not-exist :posix (&rest paths)
"Ensure that files do not exist."
(:desc (if (cdr paths)
#?"@{paths} do not exist"
#?"${(car paths)} does not exist"))
(:check (not (apply #'remote-exists-p paths)))
(:apply (mrun "rm" "-f" paths)))
(defprop directory-does-not-exist :posix (&rest directories)
"Recursively ensure that DIRECTORIES do not exist."
(:desc (if (cdr directories)
#?"@{directories} do not exist"
#?"${(car directories)} does not exist"))
(:check (not (apply #'remote-exists-p directories)))
(:apply
(if (test (format nil "~{( -e ~A -a ! -d ~:*~A )~^ -o ~}" directories))
(failed-change "At least one of ~S exists and is not a directory."
directories)
(apply #'delete-remote-trees directories))))
(defprop data-uploaded :posix (iden1 iden2 destination)
(:hostattrs
(declare (ignore destination))
(require-data iden1 iden2))
(:apply
(containing-directory-exists destination)
(maybe-writefile-data destination iden1 iden2)))
(defprop host-data-uploaded :posix (destination)
(:hostattrs
(require-data (get-hostname) destination))
(:apply
(data-uploaded (get-hostname) destination destination)))
(defprop secret-uploaded :posix (iden1 iden2 destination)
(:hostattrs
(declare (ignore destination))
(require-data iden1 iden2))
(:apply
(containing-directory-exists destination)
(maybe-writefile-data destination iden1 iden2 :mode #o600)))
(defprop host-secret-uploaded :posix
(destination &aux (destination (unix-namestring destination)))
(:hostattrs
(require-data (get-hostname) destination))
(:apply
(secret-uploaded (get-hostname) destination destination)))
(defproplist data-cache-purged :posix ()
"Ensure that any prerequisite data cached in the remote home directory is removed."
(:desc "Consfigurator data cache cleaned")
(directory-does-not-exist (get-remote-data-cache-dir)))
(defprop regex-replaced-lines :posix (file regex replace)
"Like s/REGEX/REPLACE/ on the lines of FILE.
Uses CL-PPCRE:REGEX-REPLACE, which see for the syntax of REPLACE."
(:apply
(map-file-lines
file
(lambda (lines)
(mapcar (lambda (line) (re:regex-replace regex line replace)) lines)))))
(defprop directory-exists :posix (dir)
"Ensure that a directory and its parents exists."
(:desc (strcat (unix-namestring dir) " exists"))
(:apply
(mrun "mkdir" "-p" dir)
;; assume it was already there
:no-change))
(defprop containing-directory-exists :posix (file)
"Ensure that a file's directory and the latter's parents exist."
(:desc #?"Directory containing ${file} exists")
(:apply
(if (pathname-name file)
(let ((parent (unix-namestring (pathname-directory-pathname file))))
(when (plusp (length parent))
(mrun "mkdir" "-p" parent)))
(mrun "mkdir" "-p" (pathname-parent-directory-pathname file)))
;; likewise assume it was already there
:no-change))
;; readlink(1) is not POSIX
(defun remote-link-target (symlink)
(loop with s = (stripln (run :env '(:LC_ALL "C") "ls" "-ld" symlink))
with found = 0
for i from 0 below (length s)
when (char= (elt s i) #\Space)
do (incf found)
when (>= found 9)
return (subseq s (+ (length symlink) i 5))))
(defprop symlinked :posix (&key from to)
"Ensure FROM is a symlink to TO. Symbolic links are overwritten; it is an
error if FROM is another kind of file, except when unapplying."
(:desc #?"Symlinked ${from} -> ${to}")
(:apply
(unless (and from to)
(simple-program-error
"FILE:SYMLINKED: need both :FROM and :TO arguments."))
(when (pathnamep to)
(setq to (unix-namestring to)))
(let* ((link (test "-L" from))
(exists (remote-exists-p from)))
(when (and exists (not link))
(failed-change "~A exists but is not a symbolic link." from))
(if (and link (string= (remote-link-target from) to))
:no-change
(mrun "ln" "-sf" to from))))
(:unapply
(declare (ignore to))
(if (test "-L" from)
(mrun "rm" from)
:no-change)))
(defprop is-copy-of :posix (dest source)
"Ensure that DEST is a copy of SOURCE. SOURCE may be a regular file or a
symbolic link, in which case the target of the link will be copied."
(:desc #?"${dest} is copy of ${source}")
(:check
(and (test "-f" dest)
(zerop (mrun :for-exit "cmp" "-s" dest source))))
(:apply
(with-remote-temporary-file
(temp :directory (pathname-directory-pathname dest))
(mrun "cp" "-L" "--preserve=all" source temp)
(mrun "mv" temp dest))))
�
;;;; Config files
;; all our actual uses of this so far could avoid traversing the lines of the
;; file more than once if this function instead applied MAP to each line and
;; then just transformed it back right away, but in the future we might want
;; to write functions which operate on the whole set of lines at once
(defun config-file-map
(&key (parse-comment "#") (new-comment "# ")
(parse-section (constantly nil)) (new-section #'identity)
parse-kv new-kv map)
"Return a function suitable for passing to FILE:MAP-FILE-LINES, to modify
the lines of a config file using MAP. MAP is a function from a list of config
file lines to a list of config file lines, except that lines which set values
in the original file will be replaced by lists of the form (COMMENTED SECTION
KEY VALUE), where
- COMMENTED is a boolean indicating whether the line was commented
- SECTION is the section of the config file in which the line appears
and KEY and VALUE are the key and value. MAP may return lists of this form
and they will be converted back into strings.
Other arguments:
- PARSE-COMMENT is a CL-PPCRE regular expression which, when matched at the
beginning of a line, indicates a comment. It is assumed that it can be
repeated and may be followed by whitespace.
- NEW-COMMENT is a string to be prepended to lines to comment them out.
- PARSE-SECTION is a function which returns the name of the section if passed
a line which begins a section of the config file, or nil if the line does
not start a section. It can also be a CL-PPCRE regexp, which should extract
the section name as the first capture group. Lines will be passed to this
function (or matched against this regexp) uncommented.
- NEW-SECTION is a function which takes a section name and returns a line
(without trailing newline) beginning a new section with that name.
- PARSE-KV is a function which returns as a cons the key and value set by a
line of the config file, or nil if the line is something else. It can also
be a CL-PPCRE regexp, which should extract the key and value as the first
and second capture groups, respectively. Lines will be passed to this
function (or matched against this regexp) uncommented.
- NEW-KV is a function of two arguments, a key and a value, which returns an
uncommented line setting the key and value."
(unless (functionp parse-section)
(let ((orig parse-section))
(setq parse-section (lambda (line)
(multiple-value-bind (match groups)
(re:scan-to-strings orig line)
(when match (elt groups 0)))))))
(unless (functionp parse-kv)
(let ((orig parse-kv))
(setq parse-kv (lambda (line)
(multiple-value-bind (match groups)
(re:scan-to-strings orig line)
(and match (cons (elt groups 0) (elt groups 1))))))))
(flet ((uncomment (line)
(multiple-value-list
(re:regex-replace #?/^(?:${parse-comment})+\s*/ line ""))))
(lambda (lines)
(let* ((unmapped
(loop with current-section
for line in lines
for (uncommented commentedp) = (uncomment line)
for (k . v) = (funcall parse-kv uncommented)
for new-section
= (and (not commentedp)
(funcall parse-section uncommented))
do (setq current-section
(or new-section current-section))
if (and k v)
collect (list commentedp current-section k v)
else collect line))
(mapped (funcall map unmapped)))
(loop with current-section
for line in mapped
for line-section = (etypecase line
(cons (cadr line))
(string (funcall parse-section line)))
if (and (listp line)
line-section
(not (string= line-section current-section)))
collect ""
and collect (funcall new-section line-section)
and do (setq current-section line-section)
else if (and (stringp line)
line-section
(not (string= line-section current-section)))
do (setq current-section line-section)
if (listp line)
collect (with-output-to-string (s)
(destructuring-bind (commentedp sec k v) line
(declare (ignore sec))
(when commentedp (princ new-comment s))
(princ (funcall new-kv k v) s)))
else collect line)))))
(defun simple-conf-update (file pairs &rest args)
(let ((keys (make-hash-table :test #'equal)))
(loop for (k v) on pairs by #'cddr
unless (stringp v)
do (simple-program-error
"Values passed are not all strings, or list is not even")
do (setf (gethash k keys) v))
(map-file-lines
file (apply
#'config-file-map
:map
(lambda (lines)
(let ((new-lines
(loop for line in lines
for key = (and (listp line) (caddr line))
for val = (and (listp line) (gethash key keys))
if (eql val :done)
collect (list* t nil (cddr line))
else if val
collect (list nil nil key val)
and do (setf (gethash key keys) :done)
else collect line)))
(loop for k being the hash-keys in keys using (hash-value v)
unless (eql v :done)
collect (list nil nil k v) into accum
finally (return (nconc new-lines accum)))))
args))))
(defprop contains-conf-space :posix (file &rest pairs)
"Where FILE is a config file in which keys and values are separated by spaces
and there are no sections, and PAIRS is a list of even length of alternating
keys and values, set each of these keys and values in FILE.
If there are any other lines which set values for the same keys, they will be
commented out; the first commented or uncommented line for each key will be
uncommented and used to set the value, if it exists."
(:desc (format nil "~A has ~{\"~A ~A\"~^, ~}" file pairs))
(:apply (simple-conf-update file pairs
:parse-kv #?/^(\S+)\s+(.+)/
:new-kv (lambda (k v) #?"${k} ${v}"))))
(defprop contains-conf-tab :posix (file &rest pairs)
"Like FILE:CONTAINS-CONF-SPACE, but separate keys and values with a tab rather
than a space when updating lines."
(:desc (format nil "~A has ~{\"~A ~A\"~^, ~}" file pairs))
(:apply (simple-conf-update file pairs
:parse-kv #?/^(\S+)\s+(.+)/
:new-kv (lambda (k v) #?"${k} ${v}"))))
(defprop contains-conf-equals :posix (file &rest pairs)
"Where FILE is a config file in which keys and values are separated by \" = \"
and there are no sections, and PAIRS is a list of even length of alternating
keys and values, set each of these keys and values in FILE.
If there are any other lines which set values for the same keys, they will be
commented out; the first commented or uncommented line for each key will be
uncommented and used to set the value, if it exists."
(:desc (format nil "~A has ~{~A = ~A~^, ~}" file pairs))
(:apply (simple-conf-update file pairs
:parse-kv #?/^(\S+) = (.+)/
:new-kv (lambda (k v) #?"${k} = ${v}"))))
(defprop contains-conf-shell :posix (file &rest pairs)
"Where FILE is a shell config file, like those in /etc/default, and PAIRS is a
list of even length of alternating keys and values, set each of these keys and
values in FILE.
If there are any other lines which set values for the same keys, they will be
commented out; the first commented or uncommented line for each key will be
uncommented and used to set the value, if it exists."
(:desc (format nil "~A has ~{~A=~S~^, ~}" file pairs))
(:apply (simple-conf-update file (loop for (k v) on pairs by #'cddr
collect k
collect (escape-sh-token v))
;; include quoting as part of the value so we
;; don't end up substituting double quotation
;; marks for single, or similar
:parse-kv #?/^(\S+)\s?=\s?(.*)/
:new-kv (lambda (k v) #?"${k}=${v}"))))
(defprop contains-ini-settings :posix (file &rest triples)
"Where FILE is an INI file, and each of TRIPLES is a list of three elements,
a section name, key and value, set those keys and values in FILE. Keys
containing '=' are not supported.
If there are any other lines which set values for the same keys in the same
sections, they will be commented out. The first commented or uncommented line
for each key in its section will be uncommented and used to set the value, if
it exists.
Some normalisation will be performed: whitespace around the '=' will be
removed, and semicolon comment chars will be replaced with '#'."
(:desc (format nil "~A has ~{~{[~A] ~A = ~A~}~^, ~}" file triples))
(:apply
(let ((parse-section #?/^\[(.+)\]$/)
(keys (make-hash-table :test #'equal)))
(loop for (s k v) in triples
do (setf (gethash (cons s k) keys) v))
(map-file-lines
file
(config-file-map
:parse-comment "[#;]"
:parse-section parse-section
:new-section (lambda (s) #?"[${s}]")
:parse-kv #?/^([^=\s]+)\s*=\s*(.*)/
:new-kv (lambda (k v) #?"${k}=${v}")
:map
(lambda (lines)
(let ((new-lines
(loop with current-section
for line in lines
for sec = (etypecase line
(list (cadr line))
(string (re:regex-replace
parse-section line #?/\1/)))
and key = (and (listp line) (caddr line))
for pair = (cons sec key)
for val = (and (listp line) (gethash pair keys))
;; If we've reached a new section insert any
;; remaining pairs in this section, as that's
;; better than inserting a new section with the
;; same name at the end of the file.
if (and sec (not (string= sec current-section)))
nconc (loop for pair being the hash-keys in keys
using (hash-value v)
for (s . k) = pair
when (and (string= current-section s)
(not (eql v :done)))
collect (list nil s k v)
and do (setf (gethash pair keys) :done))
and do (setq current-section sec)
if (eql val :done)
collect (cons t (cdr line))
else if val
collect (list nil sec key val)
and do (setf (gethash pair keys) :done)
else collect line)))
(loop for pair being the hash-keys in keys using (hash-value v)
for (s . k) = pair
unless (eql v :done)
collect (list nil s k v) into accum
finally (return
(nconc new-lines
(sort accum #'string< :key #'cadr)))))))))))
(defun update-unix-table (file source target entries &key (no-source "none"))
"Ensure that the UNIX table at FILE (e.g. /etc/fstab) contains each of
ENTRIES, using a simple merge procedure: existing lines of the file with the
same value for the TARGETth field are updated to match the corresponding
members of ENTRIES, except that if the SOURCEth field of the existing entry is
not NO-SOURCE and the corresponding member of ENTRIES is STRING= to either
NO-SOURCE or \"PLACEHOLDER\", use the existing field value."
(let ((unknown (list no-source "PLACEHOLDER"))
(pending (make-hash-table :test #'equal)))
(dolist (entry entries)
(setf (gethash (nth target (words entry)) pending) entry))
(map-file-lines
file
(lambda (lines)
(loop for line in lines
for line-fields = (words line)
for line-source = (nth source line-fields)
and line-target = (nth target line-fields)
for entry = (when-let* ((entry (gethash line-target pending))
(fields (words entry)))
(when (and (member (nth source fields)
unknown :test #'string=)
(not (string= line-source no-source)))
(setf (nth source fields) line-source))
(format nil "~{~A~^ ~}" fields))
if entry
collect it into accum and do (remhash line-target pending)
else collect line into accum
finally (return (nconc accum (hash-table-values pending))))))))
|
