puppet 0.9.2

data/TODO

@@ -0,0 +1,4 @@
+$Id: TODO 576 2005-08-23 16:09:14Z luke $
+
+* Syntax for configuration of types (e.g., search path for Services)
+* Get file parsing working in the language

data/bin/cf2puppet

@@ -0,0 +1,186 @@
+#!/usr/bin/ruby
+
+#
+# = Synopsis
+#
+# Convert cfengine code to puppet code.
+#
+# = Usage
+#
+#   cf2puppet [-h|--help] -o|--out <dir> <cfengine file>
+#
+# = Description
+#
+# This script reads in an entire cfengine configuration set, including
+# importing necessary files, and converts it to a puppet configuration.
+#
+# = Options
+#
+# help::
+#   Print this help message
+#
+# out::
+#   Print this help message
+#
+# = Example
+#
+#   $ puppetdoc > /tmp/reference.rst
+#
+# = Author
+#
+# Luke Kanies
+#
+# = Copyright
+#
+# Copyright (c) 2005 Reductive Labs, LLC
+# Licensed under the GNU Public License
+
+require 'puppet'
+require 'getoptlong'
+
+
+module Cf2Puppet
+    class CfClass < Array
+        attr_accessor :name
+    end
+
+    class CfAction
+        attr_accessor :name, :type
+
+        def []=(param, value)
+            @params[param] = value
+        end
+
+        def initialize
+            @params = {}
+        end
+    end
+
+    class Parser
+        def initialize(file)
+            @file = file
+            @dir = File.dirname(file)
+
+            unless FileTest.exists?(file)
+                $stderr.puts "%s does not exist" % file
+                exit(18)
+            end
+        end
+
+        def parse
+            begin
+                File.open(@file) { |f|
+                    str = f.read
+
+                    # get rid of comments
+                    str.gsub(/#.+\n/)
+                    str.gsub(/^\s*$/, '') # and blank lines
+
+                    while str do
+                        case str
+                        when /\A(\w+):[^:]/n:
+                            action = $1
+                        end
+                    end
+                    f.foreach { |line|
+                        case line.chomp
+                        when /(\w+):\s*\n/:
+                            $action = $1
+                        when /(\w+):\s*\n/:
+                            $action = $1
+                        end
+                    }
+                }
+            rescue Errno::ENOENT => detail
+                $stderr.puts "File %s not found" % file
+                return
+            rescue Errno::EACCES => detail
+                $stderr.puts "Could not open file %s" % file
+                return
+            end
+        end
+
+        module Actions
+            def import
+            end
+        end
+    end
+end
+
+$haveusage = true
+
+begin
+    require 'rdoc/usage'
+rescue LoadError
+    $haveusage = false
+end
+
+result = GetoptLong.new(
+	[ "--help",		"-h",			GetoptLong::NO_ARGUMENT ]
+)
+
+out = nil
+
+begin
+    result.each { |opt,arg|
+        case opt
+        when "--out"
+            out = arg
+        when "--help"
+            if $haveusage
+                RDoc::usage && exit
+            else
+                puts "No help available unless you have RDoc::usage installed"
+                exit
+            end
+        end
+    }
+rescue GetoptLong::InvalidOption => detail
+    $stderr.puts "Try '#{$0} --help'"
+    #if $haveusage
+    #    RDoc::usage_no_exit('usage')
+    #end
+    exit(1)
+end
+
+unless out
+    puts "You must specify an output directory using '-o'."
+    exit(12)
+end
+
+if FileTest.exists?(out)
+    unless FileTest.directory?(out)
+        puts "%s is not a directory" % out
+        exit(14)
+    end
+else
+    basedir = File.dirname(out)
+
+    unless FileTest.directory?(basedir)
+        puts "Parent directory %s does not exist" % basedir
+        exit(16)
+    end
+
+    Dir.mkdir(out)
+end
+
+files = []
+if ARGV.length > 0
+    files += ARGV
+else
+    $stderr.puts "Defaulting to cfagent.conf"
+    files << "/var/cfengine/inputs/cfagent.conf"
+end
+
+$stderr.puts "****WARNING****
+I can absolutely guarantee you that this script will not yet produce
+an exact copy of your cfengine configuration.  You _must_not_ just run
+the generated configuration; check the entire configuration before
+executing.  This is meant as a tool for simplifying migration, not
+entirely performing it.
+****WARNING****"
+
+files.each { |file|
+    handle(file)
+}
+# $Id: cf2puppet 643 2005-09-10 18:47:44Z luke $

data/bin/puppet

@@ -0,0 +1,176 @@
+#!/usr/bin/ruby
+
+#
+# = Synopsis
+#
+# Run a stand-alone +puppet+ script.
+#
+# = Usage
+#
+#   puppet [-h|--help] [-V|--version] [-d|--debug] [-v|--verbose]
+#               [-l|--logfile <file>] [-p|--parse-only] <file>
+#               [-c|--confdir <configuration directory>] [--vardir <var directory>]
+#
+# = Description
+#
+# This is the standalone puppet execution script; use it to execute
+# individual scripts that you write.  If you need to execute site-wide
+# scripts, use +puppetd+ and +puppetmasterd+.
+#
+# = Options
+#
+# confdir::
+#   The configuration root directory, where +puppetmasterd+ defaults to looking
+#   for all of its configuration files.  Defaults to +/etc/puppet+.
+#
+# debug::
+#   Enable full debugging.
+#
+# help::
+#   Print this help message
+#
+# logfile::
+#   Where to send messages.  Choose between syslog, the console, and a log file.
+#   Defaults to sending messages to the console.
+#
+# parse-only::
+#   Just verify syntax, do not apply anything.
+#
+# vardir::
+#   The variable-size directory, used for storing state.  Defaults to
+#   /var/puppet.
+#
+# verbose::
+#   Print extra information.
+#
+# = Example
+#
+#   puppet -l /tmp/script.log script.pp
+#
+# = Author
+#
+# Luke Kanies
+#
+# = Copyright
+#
+# Copyright (c) 2005 Reductive Labs, LLC
+# Licensed under the GNU Public License
+
+require 'puppet'
+require 'puppet/server'
+require 'puppet/client'
+require 'getoptlong'
+
+$haveusage = true
+
+begin
+    require 'rdoc/usage'
+rescue LoadError
+    $haveusage = false
+end
+
+result = GetoptLong.new(
+	[ "--confdir",	"-c",			GetoptLong::REQUIRED_ARGUMENT ],
+    [ "--debug",	"-d",			GetoptLong::NO_ARGUMENT ],
+    [ "--help",		"-h",			GetoptLong::NO_ARGUMENT ],
+    [ "--logdest",	"-l",			GetoptLong::REQUIRED_ARGUMENT ],
+    [ "--verbose",  "-v",			GetoptLong::NO_ARGUMENT ],
+    [ "--noop",     "-n",			GetoptLong::NO_ARGUMENT ],
+    [ "--use-nodes",    			GetoptLong::NO_ARGUMENT ],
+    [ "--parse-only",  "-p",		GetoptLong::NO_ARGUMENT ],
+	[ "--vardir",	    			GetoptLong::REQUIRED_ARGUMENT ],
+    [ "--version",  "-V",           GetoptLong::NO_ARGUMENT ]
+)
+
+debug = false
+verbose = false
+noop = false
+logfile = false
+parseonly = false
+
+master = {
+    :Local => true
+}
+
+Puppet[:logdest] = :console
+
+begin
+    result.each { |opt,arg|
+        case opt
+            when "--confdir"
+                Puppet[:puppetconf] = arg
+            when "--version"
+                puts "%s" % Puppet.version
+                exit
+            when "--help"
+                if $haveusage
+                    RDoc::usage && exit
+                else
+                    puts "No help available unless you have RDoc::usage installed"
+                    exit
+                end
+            when "--noop"
+                Puppet[:noop] = true
+            when "--use-nodes"
+                master[:UseNodes] = true
+            when "--verbose"
+                verbose = true
+            when "--parse-only"
+                parseonly = true
+            when "--debug"
+                debug = true
+            when "--logdest"
+                begin
+                    Puppet[:logdest] = arg
+                rescue => detail
+                    $stderr.puts detail.to_s
+                end
+            when "--vardir"
+                Puppet[:puppetvar] = arg
+        end
+    }
+rescue GetoptLong::InvalidOption => detail
+    $stderr.puts "Try '#{$0} --help'"
+    #if $haveusage
+    #    RDoc::usage(1,'usage')
+    #end
+    exit(1)
+end
+
+if debug
+    Puppet[:loglevel] = :debug
+elsif verbose
+    Puppet[:loglevel] = :info
+end
+
+master[:File] = ARGV.shift
+
+begin
+    server = Puppet::Server::Master.new(master)
+rescue => detail
+    $stderr.puts detail
+    exit(1)
+end
+
+begin
+    client = Puppet::Client::MasterClient.new(
+        :Master => server,
+        :Cache => false
+    )
+rescue => detail
+    $stderr.puts detail
+    exit(1)
+end
+
+
+if parseonly
+    exit(0)
+end
+
+begin
+    client.getconfig
+    client.apply
+rescue => detail
+    Puppet.err detail
+    exit(1)
+end

data/bin/puppetca

@@ -0,0 +1,213 @@
+#!/usr/bin/ruby
+
+#
+# = Synopsis
+#
+# Stand-alone certificate authority.  Capable of generating certificates
+# but mostly meant for signing certificate requests from puppet clients.
+#
+# = Usage
+#
+#   puppetca [-h|--help] [-V|--version] [-d|--debug] [-v|--verbose]
+#               [--cadir <ca directory>] [-g|--generate] [-l|--list]
+#               [-s|--sign] [--ssldir <cert directory>]
+#               [-c|--confdir <configuration directory>]
+#
+# = Description
+#
+# Because the puppetmasterd daemon defaults to not signing client certificate
+# requests, this script is available for signing outstanding requests.  It
+# can be used to list outstanding requests and then either sign them individually
+# or sign all of them.
+#
+# = Options
+#
+# all::
+#   Operate on all outstanding requests.  Only makes sense with '--sign'.
+#
+# cadir::
+#   Where to look for the ca directory.  Defaults to /etc/puppet/ssl/ca.
+#
+# confdir::
+#   The configuration root directory, where +puppetmasterd+ defaults to looking
+#   for all of its configuration files.  Defaults to +/etc/puppet+.
+#
+# debug::
+#   Enable full debugging.
+#
+# generate::
+#   Generate a certificate for a named client.  A certificate/keypair will be
+#   generated for each client named on the command line.
+#
+# help::
+#   Print this help message
+#
+# list::
+#   List outstanding certificate requests.
+#
+# sign::
+#   Sign an outstanding certificate request.  Unless '--all' is specified,
+#   hosts must be listed after all flags.
+#
+# ssldir::
+#   The directory in which to store certificates.  Defaults to /etc/puppet/ssl.
+#
+# verbose::
+#   Enable verbosity.
+#
+# = Example
+#
+#   $ puppetca -l
+#   culain.madstop.com
+#   $ puppetca -s culain.madstop.com
+#
+# = Author
+#
+# Luke Kanies
+#
+# = Copyright
+#
+# Copyright (c) 2005 Reductive Labs, LLC
+# Licensed under the GNU Public License
+
+require 'puppet'
+require 'puppet/sslcertificates'
+require 'getoptlong'
+
+$haveusage = true
+
+begin
+    require 'rdoc/usage'
+rescue LoadError
+    $haveusage = false
+end
+
+result = GetoptLong.new(
+	[ "--all",	    "-a",			GetoptLong::NO_ARGUMENT ],
+	[ "--cadir",	    			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--confdir",	"-c",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--debug",    "-d",			GetoptLong::NO_ARGUMENT ],
+	[ "--generate", "-g",  			GetoptLong::NO_ARGUMENT ],
+	[ "--help",		"-h",			GetoptLong::NO_ARGUMENT ],
+	[ "--list",	    "-l",			GetoptLong::NO_ARGUMENT ],
+	[ "--sign",	    "-s",			GetoptLong::NO_ARGUMENT ],
+	[ "--ssldir",	    			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--verbose",  "-v",			GetoptLong::NO_ARGUMENT ]
+)
+
+mode = nil
+all = false
+generate = nil
+
+begin
+    result.each { |opt,arg|
+        case opt
+            when "--all"
+                all = true
+            when "--cadir"
+                Puppet[:cadir] = arg
+            when "--confdir"
+                Puppet[:puppetconf] = arg
+            when "--debug"
+                Puppet[:loglevel] = :debug
+            when "--generate"
+                generate = arg
+                mode = :generate
+            when "--help"
+                if $haveusage
+                    RDoc::usage && exit
+                else
+                    puts "No help available unless you have RDoc::usage installed"
+                    exit
+                end
+            when "--list"
+                mode = :list
+            when "--sign"
+                mode = :sign
+            when "--ssldir"
+                Puppet[:ssldir] = arg
+            when "--verbose"
+                Puppet[:loglevel] = :info
+        end
+    }
+rescue GetoptLong::InvalidOption => detail
+    $stderr.puts "Try '#{$0} --help'"
+    #if $haveusage
+    #    RDoc::usage_no_exit('usage')
+    #end
+    exit(1)
+end
+
+ca = Puppet::SSLCertificates::CA.new()
+
+unless mode
+    $stderr.puts "You must specify --list or --sign"
+    exit(12)
+end
+
+hosts = ca.list
+unless hosts.length > 0 or mode == :generate
+    Puppet.info "No waiting requests"
+    exit(0)
+end
+
+case mode
+when :list
+    puts hosts.join("\n")
+when :sign
+    unless ARGV.length > 0 or all
+        $stderr.puts(
+            "You must specify to sign all certificates or you must specify hostnames"
+        )
+        exit(24)
+    end
+
+    unless all
+        hosts = hosts.find_all { |host|
+            ARGV.include?(host)
+        }
+    end
+
+    hosts.each { |host|
+        begin
+            csr = ca.getclientcsr(host)
+        rescue => detail
+            $stderr.puts "Could not retrieve request for %s: %s" % [host, detail]
+        end
+
+        begin
+            ca.sign(csr)
+        rescue => detail
+            $stderr.puts "Could not sign request for %s: %s" % [host, detail]
+        end
+
+        begin
+            ca.removeclientcsr(host)
+        rescue => detail
+            $stderr.puts "Could not remove request for %s: %s" % [host, detail]
+        end
+    }
+when :generate
+    # we need to generate a certificate for a host
+    unless ARGV.length > 0
+        $stderr.puts "You must specify hosts to generate certs for"
+        exit(84)
+    end
+    ARGV.each { |host|
+        puts "Generating certificate for %s" % host
+        cert = Puppet::SSLCertificates::Certificate.new(
+            :name => host
+        )
+        cert.mkcsr
+        signedcert, cacert = ca.sign(cert.csr)
+
+        cert.cert = signedcert
+        cert.cacert = cacert
+        cert.write
+    }
+else
+    $stderr.puts "Invalid mode %s" % mode
+    exit(42)
+end
+
+# $Id: puppetca 720 2005-10-21 06:16:43Z luke $