rbcm 0.0.6 → 0.0.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 64d207b634e0ea0dea136b1a4820fa19e33254699e896bc3eebf8a61a4eb1a04
-  data.tar.gz: 36436444ed968488cba4243f18a163b4573453794b1278ff0253b460cb2247ba
+  metadata.gz: a1a68a0e5a325249bc9310561d60a14f4ddd52e741132331efc2f439fdc69975
+  data.tar.gz: d607019aa164ff558f7e61ca5d57689ec28c60b0a4f08ae6219a0b090938fb22
 SHA512:
-  metadata.gz: b470619274cb34f5137ea472ba16f07c2e920cd4795b8ef38a5b9353a20343dd7c71892f38a21f7b0ac3e3f930bcc7836cce9652a765e22c8140775434826c26
-  data.tar.gz: 5e7d084273719ba5b2a25fdc54e295628f8890aab503f200dd00c81793768a17c04ac0976818838ba5bb294a37290bf77c15cf3ae5a840e7bc1043b6fbcddb00
+  metadata.gz: cc259820fea552552fb195d63b1af2159a1a31f31897589da79ad246faa161834b671b38962cf44b762564ca458068dc7cf9557eddbd12e4fdb54b745ac91709
+  data.tar.gz: ef8b76d2063c9ec15df6b1a295c57c2323972e5c5eb0f64539dbc9a0981e0ed62b68221ea73f0b6944419b15fd07d12a4e384dc9bc6ff967c9a2c7e6ae3db2fe

data/app/lib/aescrypt.rb

@@ -0,0 +1,83 @@
+# -*- encoding: utf-8 -*-
+
+# The encrypt_data and decrypt_data methods are Copyright (c) 2007 Brent Sowers
+# and have been included with prior permission.
+#
+# Copyright (c) 2012 Gurpartap Singh
+#
+# MIT License
+#
+# Permission is hereby granted, free of charge, to any person obtaining
+# a copy of this software and associated documentation files (the
+# "Software"), to deal in the Software without restriction, including
+# without limitation the rights to use, copy, modify, merge, publish,
+# distribute, sublicense, and/or sell copies of the Software, and to
+# permit persons to whom the Software is furnished to do so, subject to
+# the following conditions:
+#
+# The above copyright notice and this permission notice shall be
+# included in all copies or substantial portions of the Software.
+#
+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+# EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+# NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+# LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+# OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+# WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+require 'openssl'
+require 'base64'
+
+module AESCrypt
+  def self.encrypt(message, password)
+    Base64.encode64(self.encrypt_data(message.to_s.strip, self.key_digest(password), nil, "AES-256-CBC")).chomp
+  end
+
+  def self.decrypt(message, password)
+    base64_decoded = Base64.decode64(message.to_s.strip)
+    self.decrypt_data(base64_decoded, self.key_digest(password), nil, "AES-256-CBC")
+  end
+
+  def self.key_digest(password)
+    OpenSSL::Digest::SHA256.new(password).digest
+  end
+
+  # Decrypts a block of data (encrypted_data) given an encryption key
+  # and an initialization vector (iv).  Keys, iv's, and the data
+  # returned are all binary strings.  Cipher_type should be
+  # "AES-256-CBC", "AES-256-ECB", or any of the cipher types
+  # supported by OpenSSL.  Pass nil for the iv if the encryption type
+  # doesn't use iv's (like ECB).
+  #:return: => String
+  #:arg: encrypted_data => String
+  #:arg: key => String
+  #:arg: iv => String
+  #:arg: cipher_type => String
+  def self.decrypt_data(encrypted_data, key, iv, cipher_type)
+    aes = OpenSSL::Cipher.new(cipher_type)
+    aes.decrypt
+    aes.key = key
+    aes.iv = iv if iv != nil
+    aes.update(encrypted_data) + aes.final
+  end
+
+  # Encrypts a block of data given an encryption key and an
+  # initialization vector (iv).  Keys, iv's, and the data returned
+  # are all binary strings.  Cipher_type should be "AES-256-CBC",
+  # "AES-256-ECB", or any of the cipher types supported by OpenSSL.
+  # Pass nil for the iv if the encryption type doesn't use iv's (like
+  # ECB).
+  #:return: => String
+  #:arg: data => String
+  #:arg: key => String
+  #:arg: iv => String
+  #:arg: cipher_type => String
+  def self.encrypt_data(data, key, iv, cipher_type)
+    aes = OpenSSL::Cipher.new(cipher_type)
+    aes.encrypt
+    aes.key = key
+    aes.iv = iv if iv != nil
+    aes.update(data) + aes.final
+  end
+end

data/app/lib/lib.rb

@@ -28,7 +28,7 @@ class Array
   end
 end
 
-class Fixnum
+class Integer
   # backport
   unless defined? digits
     def digits

data/app/node/file.rb

@@ -1,4 +1,4 @@
-class Node::File
+class Node::NodeFile
   def initialize path:, filesystem:
     @path       = path
     @filesystem = filesystem

data/app/node/filesystem.rb

@@ -1,4 +1,4 @@
-class Node::Filesystem
+class Node::NodeFilesystem
   def initialize node, overlays: false
     @node = node
     @underlying = overlays
@@ -11,7 +11,7 @@ class Node::Filesystem
     if @underlying
       @files[path] || @underlying[path]
     else
-      @files[path] ||= Node::File.new path: path, filesystem: self
+      @files[path] ||= Node::NodeFile.new path: path, filesystem: self
     end
   end
 end

data/app/node/node.rb

@@ -8,7 +8,7 @@ class Node
     @definitions = []
     @sandbox = Node::Sandbox.new self
     @remote = Node::Remote.new self
-    @files = Node::Filesystem.new self, overlays: @remote.files
+    @files = Node::NodeFilesystem.new self, overlays: @remote.files
     @actions = ActionList.new
     @memberships = []
     @jobs = []

data/app/node/remote.rb

@@ -3,7 +3,7 @@ class Node::Remote
 
   def initialize node
     @host = node.name
-    @files = Node::Filesystem.new node
+    @files = Node::NodeFilesystem.new node
   end
 
   def execute action

data/app/node/sandbox.rb

@@ -113,6 +113,10 @@ class Node::Sandbox
      )
   end
 
+  def decrypt secret
+    AESCrypt.decrypt secret, File.read(File.expand_path("~/.rbcm.secret")).chomp
+  end
+
   # handle getter method calls
   def method_missing name, *named, **ordered, &block
     #log "method #{name} missing on #{@name}"
@@ -171,7 +175,7 @@ class Node::Sandbox
     @cache[:trigger]      << trigger      if trigger
     @cache[:triggered_by] << triggered_by if triggered_by
     @cache[:check]        << check        if check
-    yield if block_given?
+    r = yield if block_given?
     @cache[:source].pop                   if chain
     @cache[:chain].pop                    if chain
     @cache[:tag].pop                      if tag
@@ -179,6 +183,7 @@ class Node::Sandbox
     @cache[:triggered_by].pop             if triggered_by
     @cache[:check].pop                    if check
     @cache[reset]         =  []           if reset
+    r
   end
 
   def __add_capability capability
@@ -191,19 +196,21 @@ class Node::Sandbox
         params = Params.new ordered, named
         @node.jobs.append Node::Job.new @node, capability.name, params
         @node.triggered.append capability.name
-        __cache trigger: params[:trigger],
+        r = __cache trigger: params[:trigger],
               triggered_by: params[:triggered_by],
               chain: capability.name do
           send "__#{__method__}", *params.delete(:trigger, :triggered_by).sendable
         end
         @dependency_cache = [:file]
+        r
       end
     else # capability.type == :final
       define_singleton_method capability.name do
-        __cache chain: __method__ do
+        r = __cache chain: __method__ do
           send "__#{__method__}"
         end
         @dependency_cache = [:file]
+        r
       end
     end
   end

data/app/project/file.rb

@@ -1,6 +1,6 @@
 # extracts capabilities and definitions from project files
 
-class Project::File
+class Project::ProjectFile
   def initialize project_file_path
     @path = project_file_path
     @definitions = []

data/app/project/project.rb

@@ -1,9 +1,13 @@
 class Project
   def initialize path
     @path = path
-    @files = Dir["#{path}/**/*.rb"].collect{ |project_file_path|
-      Project::File.new project_file_path
-    }
+    if File.directory? path
+      @files = Dir["#{path}/**/*.rb"].collect{ |project_file_path|
+        Project::ProjectFile.new project_file_path
+      }
+    else
+      @files = [Project::ProjectFile.new(path)]
+    end
   end
 
   attr_reader :path, :files

data/app/rbcm.rb

@@ -12,7 +12,7 @@ APPDIR = File.expand_path File.dirname(__FILE__)
   "node/template",
   "lib/lib",         "lib/array_hash",
   "lib/options",     "lib/quick_each",
-  "lib/params",
+  "lib/params",      "lib/aescrypt",
   "project/project", "project/definition",
   "project/file",    "project/capability",
   "project/sandbox",
@@ -67,4 +67,19 @@ class RBCM
       node.capabilities.each{|capability| node.sandbox.send "#{capability}!"}
     end
   end
+
+  def check! &block
+    Net::SSH::Multi.start do |session|
+      session.via 'gateway', 'gateway-user'
+      @nodes.each do |name, node|
+        session.group name.to_sym do
+          session.use "root@#{name}"
+        end
+      end
+      actions.checkable.each do |action|
+        session.with(action.node.name.to_sym).exec action.check &block
+      end
+      session.loop
+    end
+  end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rbcm
 version: !ruby/object:Gem::Version
-  version: 0.0.6
+  version: 0.0.7
 platform: ruby
 authors:
 - Martin Wiegand
@@ -64,6 +64,7 @@ files:
 - app/action/file.rb
 - app/action/list.rb
 - app/cli.rb
+- app/lib/aescrypt.rb
 - app/lib/array_hash.rb
 - app/lib/lib.rb
 - app/lib/options.rb