cmueller/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

caution tape on makedirs_safe (#55241)

Browse source 
* removed usages in winrm/psrp to be consistent with other connection plugins
This commit is contained in:
Matt Davis 2019-04-24 08:37:34 -07:00 committed by Brian Coca
parent 3f0900f504
commit e38881410f
4 changed files with 13 additions and 11 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
lib/ansible/plugins/connection/__init__.py
View file

@ -207,7 +207,7 @@ class ConnectionBase(AnsiblePlugin):
@ensure_connect @ensure_connect
@abstractmethod @abstractmethod
def fetch_file(self, in_path, out_path): def fetch_file(self, in_path, out_path):
"""Fetch a file from remote to local""" """Fetch a file from remote to local; callers are expected to have pre-created the directory chain for out_path"""
pass pass
@abstractmethod @abstractmethod

6
lib/ansible/plugins/connection/psrp.py
View file

@ -277,7 +277,6 @@ from ansible.plugins.connection import ConnectionBase
from ansible.plugins.shell.powershell import _common_args from ansible.plugins.shell.powershell import _common_args
from ansible.utils.display import Display from ansible.utils.display import Display
from ansible.utils.hashing import secure_hash from ansible.utils.hashing import secure_hash
from ansible.utils.path import makedirs_safe
HAS_PYPSRP = True HAS_PYPSRP = True
PYPSRP_IMP_ERR = None PYPSRP_IMP_ERR = None
@ -540,12 +539,11 @@ if ($bytes_read -gt 0) {
raise AnsibleError("failed to setup file stream for fetch '%s': %s" raise AnsibleError("failed to setup file stream for fetch '%s': %s"
% (out_path, to_native(stderr))) % (out_path, to_native(stderr)))
elif stdout.strip() == '[DIR]': elif stdout.strip() == '[DIR]':
# in_path was a dir so we need to create the dir locally # to be consistent with other connection plugins, we assume the caller has created the target dir
makedirs_safe(out_path)
return return
b_out_path = to_bytes(out_path, errors='surrogate_or_strict') b_out_path = to_bytes(out_path, errors='surrogate_or_strict')
makedirs_safe(os.path.dirname(b_out_path)) # to be consistent with other connection plugins, we assume the caller has created the target dir
offset = 0 offset = 0
with open(b_out_path, 'wb') as out_file: with open(b_out_path, 'wb') as out_file:
while True: while True:

4
lib/ansible/plugins/connection/winrm.py
View file

@ -123,7 +123,6 @@ from ansible.module_utils.six import binary_type, PY3
from ansible.plugins.connection import ConnectionBase from ansible.plugins.connection import ConnectionBase
from ansible.plugins.shell.powershell import _parse_clixml from ansible.plugins.shell.powershell import _parse_clixml
from ansible.utils.hashing import secure_hash from ansible.utils.hashing import secure_hash
from ansible.utils.path import makedirs_safe
from ansible.utils.display import Display from ansible.utils.display import Display
# getargspec is deprecated in favour of getfullargspec in Python 3 but # getargspec is deprecated in favour of getfullargspec in Python 3 but
@ -623,9 +622,9 @@ class Connection(ConnectionBase):
super(Connection, self).fetch_file(in_path, out_path) super(Connection, self).fetch_file(in_path, out_path)
in_path = self._shell._unquote(in_path) in_path = self._shell._unquote(in_path)
out_path = out_path.replace('\\', '/') out_path = out_path.replace('\\', '/')
# consistent with other connection plugins, we assume the caller has created the target dir
display.vvv('FETCH "%s" TO "%s"' % (in_path, out_path), host=self._winrm_host) display.vvv('FETCH "%s" TO "%s"' % (in_path, out_path), host=self._winrm_host)
buffer_size = 2**19 # 0.5MB chunks buffer_size = 2**19 # 0.5MB chunks
makedirs_safe(os.path.dirname(out_path))
out_file = None out_file = None
try: try:
offset = 0 offset = 0
@ -668,7 +667,6 @@ class Connection(ConnectionBase):
else: else:
data = base64.b64decode(result.std_out.strip()) data = base64.b64decode(result.std_out.strip())
if data is None: if data is None:
makedirs_safe(out_path)
break break
else: else:
if not out_file: if not out_file:

12
lib/ansible/utils/path.py
View file

@ -60,11 +60,17 @@ def unfrackpath(path, follow=True, basedir=None):
def makedirs_safe(path, mode=None): def makedirs_safe(path, mode=None):
'''Safe way to create dirs in muliprocess/thread environments. '''
A *potentially insecure* way to ensure the existence of a directory chain. The "safe" in this function's name
refers only to its ability to ignore `EEXIST` in the case of multiple callers operating on the same part of
the directory chain. This function is not safe to use under world-writable locations when the first level of the
path to be created contains a predictable component. Always create a randomly-named element first if there is any
chance the parent directory might be world-writable (eg, /tmp) to prevent symlink hijacking and potential
disclosure or modification of sensitive file contents.
:arg path: A byte or text string representing a directory to be created :arg path: A byte or text string representing a directory chain to be created
:kwarg mode: If given, the mode to set the directory to :kwarg mode: If given, the mode to set the directory to
:raises AnsibleError: If the directory cannot be created and does not already exists. :raises AnsibleError: If the directory cannot be created and does not already exist.
:raises UnicodeDecodeError: if the path is not decodable in the utf-8 encoding. :raises UnicodeDecodeError: if the path is not decodable in the utf-8 encoding.
''' '''