puppetlabs-stdlib/lib/puppet/parser/functions/validate_absolute_path.rb

module Puppet::Parser::Functions
  newfunction(:validate_absolute_path, :doc => <<-'ENDHEREDOC') do |args|
    Validate the string represents an absolute path in the filesystem.  This function works
    for windows and unix style paths.

    The following values will pass:

        $my_path = "C:/Program Files (x86)/Puppet Labs/Puppet"
        validate_absolute_path($my_path)
        $my_path2 = "/var/lib/puppet"
        validate_absolute_path($my_path2)


    The following values will fail, causing compilation to abort:

        validate_absolute_path(true)
        validate_absolute_path([ 'var/lib/puppet', '/var/foo' ])
        validate_absolute_path([ '/var/lib/puppet', 'var/foo' ])
        $undefined = undef
        validate_absolute_path($undefined)

    ENDHEREDOC

    require 'puppet/util'

    unless args.length > 0 then
      raise Puppet::ParseError, ("validate_absolute_path(): wrong number of arguments (#{args.length}; must be > 0)")
    end

    args.each do |arg|
      # This logic was borrowed from
      # [lib/puppet/file_serving/base.rb](https://github.com/puppetlabs/puppet/blob/master/lib/puppet/file_serving/base.rb)

      # Puppet 2.7 and beyond will have Puppet::Util.absolute_path?  Fall back to a back-ported implementation otherwise.
      if Puppet::Util.respond_to?(:absolute_path?) then
        unless Puppet::Util.absolute_path?(arg, :posix) or Puppet::Util.absolute_path?(arg, :windows)
          raise Puppet::ParseError, ("#{arg.inspect} is not an absolute path.")
        end
      else
        # This code back-ported from 2.7.x's lib/puppet/util.rb Puppet::Util.absolute_path?
        # Determine in a platform-specific way whether a path is absolute. This
        # defaults to the local platform if none is specified.
        # Escape once for the string literal, and once for the regex.
        slash = '[\\\\/]'
        name = '[^\\\\/]+'
        regexes = {
          :windows => %r!^(([A-Z]:#{slash})|(#{slash}#{slash}#{name}#{slash}#{name})|(#{slash}#{slash}\?#{slash}#{name}))!i,
          :posix   => %r!^/!,
        }

        rval = (!!(arg =~ regexes[:posix])) || (!!(arg =~ regexes[:windows]))
        rval or raise Puppet::ParseError, ("#{arg.inspect} is not an absolute path.")
      end
    end
  end
end
(#12357) Add validate_absolute_path() function This patch adds a new function to validate if a string is an absolute filesystem path or not. The intent of this is to make this functionality generic and reusable. Josh left a comment in another pull request I had: If node_installdir or $node_vardir is not defined, then we should raise an error, otherwise we may create a scheduled task to an untrusted directory. One solution to this comment is to validate the Puppet variable is an absolute path. Examples of this function look like: function_validate_absolute_path Using Puppet::Parser::Scope.new Garbage inputs validate_absolute_path(nil) should fail validate_absolute_path([nil]) should fail validate_absolute_path({"foo"=>"bar"}) should fail validate_absolute_path({}) should fail validate_absolute_path("") should fail relative paths validate_absolute_path("relative1") should fail validate_absolute_path(".") should fail validate_absolute_path("..") should fail validate_absolute_path("./foo") should fail validate_absolute_path("../foo") should fail validate_absolute_path("etc/puppetlabs/puppet") should fail validate_absolute_path("opt/puppet/bin") should fail absolute paths validate_absolute_path("C:/") should not fail validate_absolute_path("C:\\") should not fail validate_absolute_path("C:\\WINDOWS\\System32") should not fail validate_absolute_path("C:/windows/system32") should not fail validate_absolute_path("X:/foo/bar") should not fail validate_absolute_path("X:\\foo\\bar") should not fail validate_absolute_path("/var/tmp") should not fail validate_absolute_path("/var/lib/puppet") should not fail validate_absolute_path("/var/opt/../lib/puppet") should not fail validate_absolute_path("C:\\Program Files (x86)\\Puppet Labs\\Puppet Enterprise") should not fail validate_absolute_path("C:/Program Files (x86)/Puppet Labs/Puppet Enterprise") should not fail Finished in 0.05637 seconds 23 examples, 0 failures 2012-03-07 20:52:30 +01:00			`module Puppet::Parser::Functions`
			`newfunction(:validate_absolute_path, :doc => <<-'ENDHEREDOC') do \|args\|`
			`Validate the string represents an absolute path in the filesystem. This function works`
			`for windows and unix style paths.`

			`The following values will pass:`

			`$my_path = "C:/Program Files (x86)/Puppet Labs/Puppet"`
			`validate_absolute_path($my_path)`
			`$my_path2 = "/var/lib/puppet"`
			`validate_absolute_path($my_path2)`


			`The following values will fail, causing compilation to abort:`

			`validate_absolute_path(true)`
			`validate_absolute_path([ 'var/lib/puppet', '/var/foo' ])`
			`validate_absolute_path([ '/var/lib/puppet', 'var/foo' ])`
			`$undefined = undef`
			`validate_absolute_path($undefined)`

			`ENDHEREDOC`

			`require 'puppet/util'`

			`unless args.length > 0 then`
			`raise Puppet::ParseError, ("validate_absolute_path(): wrong number of arguments (#{args.length}; must be > 0)")`
			`end`

			`args.each do \|arg\|`
			`# This logic was borrowed from`
			`# [lib/puppet/file_serving/base.rb](https://github.com/puppetlabs/puppet/blob/master/lib/puppet/file_serving/base.rb)`
(#12357) Fix broken compatibility with Puppet 2.6 Without this patch, the previous change set to the validate_absolute_path() parser function contains Puppet 2.6 incompatible changes. stdlib 2.x is compatible with Puppet 2.6. These changes are a problem because we cannot introduce backwards incompatible changes in a minor release. This patch fixes the problem by back porting the implementation of the `Puppet::Util.absolute_path?` from 2.7.x to the function block itself. The function block tests to see if `Puppet::Util.absolute_path?` will respond and if not, falls back to the inline back ported implementation. The spec tests have been updated to simulate the behavior of Puppet 2.6 even when running with Puppet 2.7. 2012-03-12 23:53:02 +01:00
			`# Puppet 2.7 and beyond will have Puppet::Util.absolute_path? Fall back to a back-ported implementation otherwise.`
			`if Puppet::Util.respond_to?(:absolute_path?) then`
			`unless Puppet::Util.absolute_path?(arg, :posix) or Puppet::Util.absolute_path?(arg, :windows)`
			`raise Puppet::ParseError, ("#{arg.inspect} is not an absolute path.")`
			`end`
			`else`
			`# This code back-ported from 2.7.x's lib/puppet/util.rb Puppet::Util.absolute_path?`
			`# Determine in a platform-specific way whether a path is absolute. This`
			`# defaults to the local platform if none is specified.`
			`# Escape once for the string literal, and once for the regex.`
			`slash = '[\\\\/]'`
			`name = '[^\\\\/]+'`
			`regexes = {`
			`:windows => %r!^(([A-Z]:#{slash})\|(#{slash}#{slash}#{name}#{slash}#{name})\|(#{slash}#{slash}\?#{slash}#{name}))!i,`
			`:posix => %r!^/!,`
			`}`

			`rval = (!!(arg =~ regexes[:posix])) \|\| (!!(arg =~ regexes[:windows]))`
			`rval or raise Puppet::ParseError, ("#{arg.inspect} is not an absolute path.")`
(#12357) Add validate_absolute_path() function This patch adds a new function to validate if a string is an absolute filesystem path or not. The intent of this is to make this functionality generic and reusable. Josh left a comment in another pull request I had: If node_installdir or $node_vardir is not defined, then we should raise an error, otherwise we may create a scheduled task to an untrusted directory. One solution to this comment is to validate the Puppet variable is an absolute path. Examples of this function look like: function_validate_absolute_path Using Puppet::Parser::Scope.new Garbage inputs validate_absolute_path(nil) should fail validate_absolute_path([nil]) should fail validate_absolute_path({"foo"=>"bar"}) should fail validate_absolute_path({}) should fail validate_absolute_path("") should fail relative paths validate_absolute_path("relative1") should fail validate_absolute_path(".") should fail validate_absolute_path("..") should fail validate_absolute_path("./foo") should fail validate_absolute_path("../foo") should fail validate_absolute_path("etc/puppetlabs/puppet") should fail validate_absolute_path("opt/puppet/bin") should fail absolute paths validate_absolute_path("C:/") should not fail validate_absolute_path("C:\\") should not fail validate_absolute_path("C:\\WINDOWS\\System32") should not fail validate_absolute_path("C:/windows/system32") should not fail validate_absolute_path("X:/foo/bar") should not fail validate_absolute_path("X:\\foo\\bar") should not fail validate_absolute_path("/var/tmp") should not fail validate_absolute_path("/var/lib/puppet") should not fail validate_absolute_path("/var/opt/../lib/puppet") should not fail validate_absolute_path("C:\\Program Files (x86)\\Puppet Labs\\Puppet Enterprise") should not fail validate_absolute_path("C:/Program Files (x86)/Puppet Labs/Puppet Enterprise") should not fail Finished in 0.05637 seconds 23 examples, 0 failures 2012-03-07 20:52:30 +01:00			`end`
			`end`
			`end`
			`end`