# frozen_string_literal: true # # Author:: Tim Dysinger () # Author:: Benjamin Black () # Author:: Christopher Brown () # Copyright:: Copyright (c) Chef Software Inc. # License:: Apache License, Version 2.0 # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. Ohai.plugin(:Eucalyptus) do # eucalyptus metadata service is compatible with the ec2 service calls require_relative "../mixin/ec2_metadata" require_relative "../mixin/http_helper" include Ohai::Mixin::Ec2Metadata include Ohai::Mixin::HttpHelper provides "eucalyptus" depends "network/interfaces" MAC_MATCH = /^[dD]0:0[dD]:/.freeze unless defined?(MAC_MATCH) # returns the mac address from the collection of all address types def get_mac_address(addresses) detected_addresses = addresses.detect { |address, keypair| keypair == { "family" => "lladdr" } } if detected_addresses detected_addresses.first else "" end end # detect if the mac address starts with d0:0d def has_euca_mac? network[:interfaces].each_value do |iface| mac = get_mac_address(iface[:addresses]) if MAC_MATCH.match?(mac) logger.trace("Plugin Eucalyptus: has_euca_mac? == true (#{mac})") return true end end logger.trace("Plugin Eucalyptus: has_euca_mac? == false") false end def looks_like_euca? # Try non-blocking connect so we don't "block" if # the metadata service doesn't respond hint?("eucalyptus") || has_euca_mac? && can_socket_connect?(Ohai::Mixin::Ec2Metadata::EC2_METADATA_ADDR, 80) end collect_data do if looks_like_euca? logger.trace("Plugin Eucalyptus: looks_like_euca? == true") eucalyptus Mash.new fetch_metadata.each do |k, v| # Eucalyptus 3.4+ supports IAM roles and Instance Profiles much like AWS # https://www.eucalyptus.com/blog/2013/10/15/iam-roles-and-instance-profiles-eucalyptus-34 # # fetch_metadata returns IAM security credentials, including the IAM user's # secret access key. We'd rather not have ohai send this information # to the server. # http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AESDG-chapter-instancedata.html#instancedata-data-categories next if k == "iam" && !hint?("iam") eucalyptus[k] = v end eucalyptus[:userdata] = fetch_userdata else logger.trace("Plugin Eucalyptus: looks_like_euca? == false") false end end end