Windows Container support #96
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,2 @@ | ||
| minor_changes: | ||
| - docker connection plugin - added support for Windows containers (https://github.com/ansible-collections/community.docker/pull/96). |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -81,7 +81,9 @@ def __init__(self, play_context, new_stdin, *args, **kwargs): | |
|
|
||
| # Windows uses Powershell modules | ||
| if getattr(self._shell, "_IS_WINDOWS", False): | ||
| self.has_native_async = True | ||
| self.module_implementation_preferences = ('.ps1', '.exe', '') | ||
| self.allow_executable = False | ||
|
|
||
| if 'docker_command' in kwargs: | ||
| self.docker_cmd = kwargs['docker_command'] | ||
|
|
@@ -214,7 +216,11 @@ def exec_command(self, cmd, in_data=None, sudoable=False): | |
| """ Run a command on the docker host """ | ||
| super(Connection, self).exec_command(cmd, in_data=in_data, sudoable=sudoable) | ||
|
|
||
| if getattr(self._shell, "_IS_WINDOWS", False): | ||
| sudoable = False | ||
| local_cmd = self._build_exec_cmd(["cmd", "/c", cmd]) | ||
| else: | ||
| local_cmd = self._build_exec_cmd([self._play_context.executable, '-c', cmd]) | ||
|
|
||
| display.vvv(u"EXEC {0}".format(to_text(local_cmd)), host=self._play_context.remote_addr) | ||
| display.debug("opening command with Popen()") | ||
|
|
@@ -268,6 +274,12 @@ def exec_command(self, cmd, in_data=None, sudoable=False): | |
| display.debug("done communicating") | ||
|
|
||
| display.debug("done with docker.exec_command()") | ||
|
|
||
| # When running on Windows, stderr may contain CLIXML encoded output | ||
| if getattr(self._shell, "_IS_WINDOWS", False) and stderr.startswith(b"#< CLIXML"): | ||
| from ansible.plugins.shell.powershell import _parse_clixml | ||
tmeckel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| stderr = _parse_clixml(stderr) | ||
|
|
||
| return (p.returncode, stdout, stderr) | ||
|
|
||
| def _prefix_login_path(self, remote_path): | ||
|
|
@@ -288,6 +300,16 @@ def _prefix_login_path(self, remote_path): | |
| remote_path = os.path.join(os.path.sep, remote_path) | ||
| return os.path.normpath(remote_path) | ||
|
|
||
| def _escape_win_path(self, path): | ||
| """ converts a Windows path to one that's supported by SFTP and SCP """ | ||
| # If using a root path then we need to start with / | ||
| prefix = "" | ||
| if re.match(r'^\w{1}:', path): | ||
| prefix = "/" | ||
|
|
||
| # Convert all '\' to '/' | ||
| return "%s%s" % (prefix, path.replace("\\", "/")) | ||
|
|
||
| def put_file(self, in_path, out_path): | ||
| """ Transfer a file from local to docker container """ | ||
| super(Connection, self).put_file(in_path, out_path) | ||
|
|
@@ -308,11 +330,32 @@ def put_file(self, in_path, out_path): | |
| count = ' count=0' | ||
| else: | ||
| count = '' | ||
| if getattr(self._shell, "_IS_WINDOWS", False): | ||
| cmd = '''& { $strm = [Console]::OpenStandardInput(1024) | ||
|
There was a problem hiding this comment. If you use There was a problem hiding this comment. There was a problem hiding this comment. I'm not sure what is happening here, the error you've shared is something that is thrown by the bootstrap_wrapper.ps1 which is used when executing a module. The code you have here is for copying a file to the docker container and shouldn't be calling the bootstrap_wrapper code. |
||
| $data = [System.Array]::CreateInstance([byte],1024) | ||
| $fstrm = [IO.File]::OpenWrite(%s) | ||
|
There was a problem hiding this comment. You still need to have more logic to handle here. Right now at a quote glance I could have a path like: Note the use of unicode smart quotes PowerShell (un)helpfully treats a bunch of smart quotes as the same as single quotes so even if you ran There are 2 choices I can see you moving to:
cmd = '''
...
$outPath = [Text.Encoding]::UTF8.GetString([Convert]::FromBase64String('%s'))
...
''' % (to_text(base64.b64encode(to_bytes(out_path, encoding='utf-8'))))
Both options remove the need for `shlex_quote` but I still recommend you normalize the path as you have done today. |
||
| do { | ||
| $read = $strm.Read($data, 0, $data.Length) | ||
| if ($read -gt 0) { | ||
| $fstrm.Write($data, 0, $read) | ||
| } | ||
| } while ($read -gt 0) | ||
| $fstrm.Flush() | ||
| $fstrm.Dispose() | ||
| $strm.Dispose() }''' % (out_path) | ||
| args = self._build_exec_cmd(["cmd", "/c", self._shell._encode_script(cmd, as_list=False, strict_mode=False, preserve_rc=False)]) | ||
tmeckel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| display.debug(u"Command to execute: {0}".format(args)) | ||
| else: | ||
| args = self._build_exec_cmd([self._play_context.executable, "-c", "dd of=%s bs=%s%s" % (out_path, BUFSIZE, count)]) | ||
|
|
||
| args = [to_bytes(i, errors='surrogate_or_strict') for i in args] | ||
| try: | ||
| p = subprocess.Popen( | ||
| args, | ||
| stdin=in_file, | ||
| stdout=subprocess.PIPE, | ||
| stderr=subprocess.PIPE | ||
| ) | ||
| except OSError: | ||
| raise AnsibleError("docker connection requires dd command in the container to put files") | ||
| stdout, stderr = p.communicate() | ||
|
|
||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I might be wrong but I believe using
cmd /chere will mean anyrawtask with the connection plugin will be usingcmdas the shell rather than PowerShell. You may want to change this based on whether theansible_shell_typeis eithercmdorpowershellto allow a user to change this as they desire.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@jborean93 yes this is true. Bit when I change the code as follows I receive a
file not found. So the interpreter (Powershell) cannot be found. So I suspect I didn't grasp what you meant by saying I should utilize theansible_shell_type. Any guidance?There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Do you know what the default shell is for a Windows container, i.e. what runs when you do
docker exec .... Is it cmd or is it powershell.exe, or maybe no shell at all?Basically right now if someone was to do the following
Is that going to be running under cmd or powershell? With the current changes here that will be running as
cmdwhich might not be ideal if someone has setansible_shell_type=powershell. Maybe the desire is to haverawwith this connection plugin independent to the shell plugin used, if that's the case then the PR as it is makes sense. If you wish for this to be dependent on the shell plugin then you will have to hardcodecmd.exe /cwhen using the cmd shell andpowershell.exe -NoProfile -NonInteractive -ExecutionPolicy Bypass -Commandfor the powershell shell.This might be something that @felixfontein may want to comment on.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I don't think I can say something here. I've never used Docker with Windows containers, so I have zero experience what these contain.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I mostly mean more in general, do you expect that
rawshould match theansible_shell_type(powershell or cmd) or should it just be the same thing on the connection plugin?There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Matching
ansible_shell_typewould be nice I guess, though I'm not even sure whether Linux containers fully support that (I've never really looked at shell plugins). I also have no idea how complicated it would be to 'properly' implement this.