| blob | 6e5858a6ae8834f9c03c5e72d1490573f1eb47dd |
1 #!@PYTHON@
2 #
3 # CDDL HEADER START
4 #
5 # The contents of this file are subject to the terms of the
6 # Common Development and Distribution License (the "License").
7 # You may not use this file except in compliance with the License.
8 #
9 # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10 # or http://www.opensolaris.org/os/licensing.
11 # See the License for the specific language governing permissions
12 # and limitations under the License.
13 #
14 # When distributing Covered Code, include this CDDL HEADER in each
15 # file and include the License file at usr/src/OPENSOLARIS.LICENSE.
16 # If applicable, add the following below this CDDL HEADER, with the
17 # fields enclosed by brackets "[]" replaced with your own identifying
18 # information: Portions Copyright [yyyy] [name of copyright owner]
19 #
20 # CDDL HEADER END
21 #
23 #
24 # Copyright 2010 Sun Microsystems, Inc. All rights reserved.
25 # Use is subject to license terms.
26 #
28 #
29 # Compare the content generated by a build to a set of manifests
30 # describing how that content is to be delivered.
31 #
34 import getopt
35 import os
36 import stat
37 import sys
43 #
44 # Dictionary used to map action names to output format. Each entry is
45 # indexed by action name, and consists of a list of tuples that map
46 # FileInfo class members to output labels.
47 #
48 OUTPUTMAP = {
54 ],
61 ],
66 ],
70 ],
71 }
73 # Mode checks used to validate safe file and directory permissions
78 """Base class to represent a file.
80 Subclassed according to whether the file represents an actual filesystem
81 object (RealFileInfo) or an IPS manifest action (ActionInfo).
82 """
96 """Return the IPS action name of a FileInfo object.
97 """
110 """Check for and report on unsafe permissions.
112 Returns a potentially empty list of warning strings.
113 """
114 w = []
118 return w
157 return w
160 """Compare two FileInfo objects.
162 Note this is the "not equal" comparison, so a return value of False
163 indicates that the objects are functionally equivalent.
164 """
165 #
166 # Map the objects such that the lhs is always the ActionInfo,
167 # and the rhs is always the RealFileInfo.
168 #
169 # It's only really important that the rhs not be an
170 # ActionInfo; if we're comparing FileInfo the RealFileInfo, it
171 # won't actually matter what we choose.
172 #
174 lhs = self
175 rhs = other
177 lhs = other
178 rhs = self
180 #
181 # Because the manifest may legitimately translate a relative
182 # path from the proto area into a different path on the installed
183 # system, we don't compare paths here. We only expect this comparison
184 # to be invoked on items with identical relative paths in
185 # first place.
186 #
188 #
189 # All comparisons depend on type. For symlink and directory, they
190 # must be the same. For file and hardlink, see below.
191 #
196 return True
198 #
199 # For symlinks, all that's left is the link target.
200 # For mediated symlinks targets can differ.
201 #
205 #
206 # For a directory, it's important that both be directories,
207 # the modes be identical, and the paths are identical. We already
208 # checked all but the modes above.
209 #
210 # If both objects are files, then we're in the same boat.
211 #
215 #
216 # For files or hardlinks:
217 #
218 # Since the key space is different (inodes for real files and
219 # actual link targets for hard links), and since the proto area will
220 # identify all N occurrences as hardlinks, but the manifests as one
221 # file and N-1 hardlinks, we have to compare files to hardlinks.
222 #
224 #
225 # If they're both hardlinks, we just make sure that
226 # the same target path appears in both sets of
227 # possible targets.
228 #
232 #
233 # Otherwise, we have a mix of file and hardlink, so we
234 # need to make sure that the file path appears in the
235 # set of possible target paths for the hardlink.
236 #
237 # We already know that the ActionInfo, if present, is the lhs
238 # operator. So it's the rhs operator that's guaranteed to
239 # have a set of hardpaths.
240 #
244 """Return an action-style representation of a FileInfo object.
246 We don't currently quote items with embedded spaces. If we
247 ever decide to parse this output, we'll want to revisit that.
248 """
250 out = name
255 return out
258 """Return a protolist-style representation of a FileInfo object.
259 """
283 return out
287 """Object to track information about manifest actions.
289 This currently understands file, link, dir, and hardlink actions.
290 """
294 #
295 # Currently, all actions that we support have a "path"
296 # attribute. If that changes, then we'll need to
297 # catch a KeyError from this assignment.
298 #
322 @staticmethod
324 """Indicates whether the specified IPS action time is
325 correctly handled by the ActionInfo constructor.
326 """
331 """This means that the stat.S_IFMT returned something we don't
332 support, ie a pipe or socket. If it's appropriate for such an
333 object to be in the proto area, then the RealFileInfo constructor
334 will need to evolve to support it, or it will need to be in the
335 exception list.
336 """
347 """Object to track important-to-packaging file information.
349 This currently handles regular files, directories, and symbolic links.
351 For multiple RealFileInfo objects with identical hardkeys, there
352 is no way to determine which of the hard links should be
353 delivered as a file, and which as hardlinks.
354 """
363 #
364 # Per stat.py, these cases are mutually exclusive.
365 #
378 #
379 # Instead of reading the group and owner from the proto area after
380 # a non-root build, just drop in dummy values. Since we don't
381 # compare them anywhere, this should allow at least marginally
382 # useful comparisons of protolist-style output.
383 #
387 #
388 # refcount > 1 indicates a hard link
389 #
391 #
392 # This could get ugly if multiple proto areas reside
393 # on different filesystems.
394 #
399 """Meant to be subclassed according to population method.
400 """
406 """Compare two different sets of FileInfo objects.
407 """
443 """This means that the user supplied a file via -l, but at least
444 one line from that file doesn't have the right number of fields to
445 parse as protolist output.
446 """
452 """Describes one or more proto directories as a dictionary of
453 RealFileInfo objects, indexed by relative path.
454 """
457 """Extends the ProtoTree dictionary with RealFileInfo
458 objects describing the proto dir, indexed by relative
459 path.
460 """
461 newentries = {}
474 continue
480 #
481 # Find the sets of paths in this proto dir that are hardlinks
482 # to the same inode.
483 #
484 # It seems wasteful to store this in each FileInfo, but we
485 # otherwise need a linking mechanism. With this information
486 # here, FileInfo object comparison can be self contained.
487 #
488 # We limit this aggregation to a single proto dir, as
489 # represented by newentries. That means we don't need to care
490 # about proto dirs on separate filesystems, or about hardlinks
491 # that cross proto dir boundaries.
492 #
493 hk2path = {}
503 """Read in the specified file, assumed to be the
504 output of protolist.
506 This has been tested minimally, and is potentially useful for
507 comparing across the transition period, but should ultimately
508 go away.
509 """
516 newentries = {}
520 #
521 # Use a FileInfo() object instead of a RealFileInfo()
522 # object because we want to avoid the RealFileInfo
523 # constructor, because there's nothing to actually stat().
524 #
529 continue
545 hk2path = {}
556 """This means that the Manifest.set_content() raised an
557 ActionError. We raise this, instead, to tell us which manifest
558 could not be parsed, rather than what action error we hit.
559 """
570 """Describes one or more directories containing arbitrarily
571 many manifests as a dictionary of ActionInfo objects, indexed
572 by the relative path of the data source within the proto area.
573 That path may or may not be the same as the path attribute of the
574 given action.
575 """
578 """Treats the specified input file as a pkg(5) package
579 manifest, and extends the ManifestTree dictionary with entries
580 for the actions therein.
581 """
590 #
591 # Make sure the manifest is applicable to the user-specified
592 # architecture. Assumption: if variant.arch is not an
593 # attribute of the manifest, then the package should be
594 # installed on all architectures.
595 #
597 return
603 continue
605 #
606 # The dir action is currently fully specified, in that it
607 # lists owner, group, and mode attributes. If that
608 # changes in pkg(5) code, we'll need to revisit either this
609 # code or the ActionInfo() constructor. It's possible
610 # that the pkg(5) system could be extended to provide a
611 # mechanism for specifying directory permissions outside
612 # of the individual manifests that deliver files into
613 # those directories. Doing so at time of manifest
614 # processing would mean that validate_pkg continues to work,
615 # but doing so at time of publication would require updates.
616 #
618 #
619 # See pkgsend(1) for the use of NOHASH for objects with
620 # datastreams. Currently, that means "files," but this
621 # should work for any other such actions.
622 #
628 #
629 # This is the wrong tool in which to enforce consistency
630 # on a set of manifests. So instead of comparing the
631 # different actions with the same "path" attribute, we
632 # use the first one.
633 #
635 continue
637 #
638 # As with the manifest itself, if an action has specified
639 # variant.arch, we look for the target architecture
640 # therein.
641 #
644 #
645 # The name of this method changed in pkg(5) build 150, we need to
646 # work with both sets.
647 #
653 return
662 print w
666 """Walks the specified directory looking for pkg(5) manifests.
667 """
677 """Populates mode, group, and owner for resolved (ie link target
678 is present in the manifest tree) hard links.
679 """
690 """Keep track of an exception list as a set of paths to be excluded
691 from any other lists we build.
692 """
704 """Build a list of all pathnames from the specified file that
705 either apply to all architectures (ie which have no trailing
706 architecture tokens), or to the specified architecture (ie
707 which have the value of the arch arg as a trailing
708 architecture token.)
709 """
724 where input_1 and input_2 may specify proto lists, proto areas,
725 or manifest directories. For proto lists, use one or more
727 -l file
729 arguments. For proto areas, use one or more
731 -p dir
733 arguments. For manifest directories, use one or more
735 -m dir
737 arguments.
739 If -L or -M is specified, then only one input source is allowed, and
740 it should be one or more manifest directories. These two options are
741 mutually exclusive.
743 The -L option is used to generate a proto list to stdout.
745 The -M option is used to check for safe file and directory modes.
746 By default, this causes all mode checks to be performed. Individual
747 mode checks may be turned off using "-X check," where "check" comes
748 from the following set of checks:
750 m check for group or other write permissions
751 w check for user write permissions on files and directories
752 not owned by root
753 s check for group/other read permission on executable files
754 that have setuid/setgid bit(s)
755 o check for files that could be safely owned by root
760 """Try to give the user useful information when they don't get the
761 command syntax right.
762 """
770 """Compares two out of three possible data sources: a proto list, a
771 set of proto areas, and a set of manifests.
772 """
782 exceptionlists = []
784 manifestdirs = []
786 protodirs = []
788 protolists = []
792 trees = []
801 arch = arg