#!/usr/bin/python # -*- coding: utf-8 -*- # (c) 2017, Thomas Caravia # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) from __future__ import absolute_import, division, print_function __metaclass__ = type ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ['preview'], 'supported_by': 'community'} DOCUMENTATION = ''' --- module: nosh author: - "Thomas Caravia" version_added: "2.5" short_description: Manage services with nosh description: - Control running and enabled state for system-wide or user services. - BSD and Linux systems are supported. options: name: required: true description: - Name of the service to manage. state: required: false choices: [ started, stopped, reset, restarted, reloaded ] description: - C(started)/C(stopped) are idempotent actions that will not run commands unless necessary. C(restarted) will always bounce the service. C(reloaded) will send a SIGHUP or start the service. C(reset) will start or stop the service according to whether it is enabled or not. enabled: required: false type: bool description: - Enable or disable the service, independently of C(*.preset) file preference or running state. Mutually exclusive with I(preset). Will take effect prior to I(state=reset). preset: required: false type: bool description: - Enable or disable the service according to local preferences in *.preset files. Mutually exclusive with I(enabled). Only has an effect if set to true. Will take effect prior to I(state=reset). user: required: false default: 'no' type: bool description: - Run system-control talking to the calling user's service manager, rather than the system-wide service manager. requirements: - A system with an active nosh service manager, see Notes for further information. notes: - Information on the nosh utilities suite may be found at U(https://jdebp.eu/Softwares/nosh/). ''' EXAMPLES = ''' - name: start dnscache if not running nosh: name=dnscache state=started - name: stop mpd, if running nosh: name=mpd state=stopped - name: restart unbound or start it if not already running nosh: name: unbound state: restarted - name: reload fail2ban or start it if not already running nosh: name: fail2ban state: reloaded - name: disable nsd nosh: name=nsd enabled=no - name: for package installers, set nginx running state according to local enable settings, preset and reset nosh: name=nginx preset=True state=reset - name: reboot the host if nosh is the system manager, would need a "wait_for*" task at least, not recommended as-is nosh: name=reboot state=started - name: using conditionals with the module facts tasks: - name: obtain information on tinydns service nosh: name=tinydns register: result - name: fail if service not loaded fail: msg="The {{ result.name }} service is not loaded" when: not result.status - name: fail if service is running fail: msg="The {{ result.name }} service is running" when: result.status and result.status['DaemontoolsEncoreState'] == "running" ''' RETURN = ''' name: description: name used to find the service returned: success type: string sample: "sshd" service_path: description: resolved path for the service returned: success type: string sample: "/var/sv/sshd" enabled: description: whether the service is enabled at system bootstrap returned: success type: boolean sample: True preset: description: whether the enabled status reflects the one set in the relevant C(*.preset) file returned: success type: boolean sample: False state: description: service process run state, C(None) if the service is not loaded and will not be started returned: if state option is used type: string sample: "reloaded" status: description: a dictionary with the key=value pairs returned by `system-control show-json` or C(None) if the service is not loaded returned: success type: complex contains: { "After": [ "/etc/service-bundles/targets/basic", "../sshdgenkeys", "log" ], "Before": [ "/etc/service-bundles/targets/shutdown" ], "Conflicts": [], "DaemontoolsEncoreState": "running", "DaemontoolsState": "up", "Enabled": true, "LogService": "../cyclog@sshd", "MainPID": 661, "Paused": false, "ReadyAfterRun": false, "RemainAfterExit": false, "Required-By": [], "RestartExitStatusCode": 0, "RestartExitStatusNumber": 0, "RestartTimestamp": 4611686019935648081, "RestartUTCTimestamp": 1508260140, "RunExitStatusCode": 0, "RunExitStatusNumber": 0, "RunTimestamp": 4611686019935648081, "RunUTCTimestamp": 1508260140, "StartExitStatusCode": 1, "StartExitStatusNumber": 0, "StartTimestamp": 4611686019935648081, "StartUTCTimestamp": 1508260140, "StopExitStatusCode": 0, "StopExitStatusNumber": 0, "StopTimestamp": 4611686019935648081, "StopUTCTimestamp": 1508260140, "Stopped-By": [ "/etc/service-bundles/targets/shutdown" ], "Timestamp": 4611686019935648081, "UTCTimestamp": 1508260140, "Want": "nothing", "Wanted-By": [ "/etc/service-bundles/targets/server", "/etc/service-bundles/targets/sockets" ], "Wants": [ "/etc/service-bundles/targets/basic", "../sshdgenkeys" ] } user: description: whether the user-level service manager is called returned: success type: boolean sample: False ''' import json from ansible.module_utils.basic import AnsibleModule from ansible.module_utils.service import fail_if_missing from ansible.module_utils._text import to_native def run_sys_ctl(module, args): sys_ctl = [module.get_bin_path('system-control', required=True)] if module.params['user']: sys_ctl = sys_ctl + ['--user'] return module.run_command(sys_ctl + args) def get_service_path(module, service): (rc, out, err) = run_sys_ctl(module, ['find', service]) # fail if service not found if rc != 0: fail_if_missing(module, False, service, msg='host') else: return to_native(out).strip() def service_is_enabled(module, service_path): (rc, out, err) = run_sys_ctl(module, ['is-enabled', service_path]) return rc == 0 def service_is_preset_enabled(module, service_path): (rc, out, err) = run_sys_ctl(module, ['preset', '--dry-run', service_path]) return to_native(out).strip().startswith("enable") def service_is_loaded(module, service_path): (rc, out, err) = run_sys_ctl(module, ['is-loaded', service_path]) return rc == 0 def get_service_status(module, service_path): (rc, out, err) = run_sys_ctl(module, ['show-json', service_path]) # will fail if not service is not loaded if err is not None and err: module.fail_json(msg=err) else: json_out = json.loads(to_native(out).strip()) status = json_out[service_path] # descend past service path header return status def service_is_running(service_status): return service_status['DaemontoolsEncoreState'] in set(['starting', 'started', 'running']) def handle_enabled(module, result, service_path): """Enable or disable a service as needed. - 'preset' will set the enabled state according to available preset file settings. - 'enabled' will set the enabled state explicitly, independently of preset settings. These options are set to "mutually exclusive" but the explicit 'enabled' option will have priority if the check is bypassed. """ # computed prior in control flow preset = result['preset'] enabled = result['enabled'] # preset, effect only if option set to true (no reverse preset) if module.params['preset']: action = 'preset' # run preset if needed if preset != module.params['preset']: result['changed'] = True if not module.check_mode: (rc, out, err) = run_sys_ctl(module, [action, service_path]) if rc != 0: module.fail_json(msg="Unable to %s service %s: %s" % (action, service_path, out + err)) result['preset'] = not preset result['enabled'] = not enabled # enabled/disabled state if module.params['enabled'] is not None: if module.params['enabled']: action = 'enable' else: action = 'disable' # change enable/disable if needed if enabled != module.params['enabled']: result['changed'] = True if not module.check_mode: (rc, out, err) = run_sys_ctl(module, [action, service_path]) if rc != 0: module.fail_json(msg="Unable to %s service %s: %s" % (action, service_path, out + err)) result['enabled'] = not enabled result['preset'] = not preset def handle_state(module, result, service_path): """Set service running state as needed. Takes into account the fact that a service may not be loaded (no supervise directory) in which case it is 'stopped' as far as the service manager is concerned. No status information can be obtained and the service can only be 'started'. """ # default to desired state, no action result['state'] = module.params['state'] state = module.params['state'] action = None # computed prior in control flow, possibly modified by handle_enabled() enabled = result['enabled'] # service not loaded -> not started by manager, no status information if not service_is_loaded(module, service_path): if state in ['started', 'restarted', 'reloaded']: action = 'start' result['state'] = 'started' elif state == 'reset': if enabled: action = 'start' result['state'] = 'started' else: result['state'] = None else: result['state'] = None # service is loaded else: # get status information result['status'] = get_service_status(module, service_path) running = service_is_running(result['status']) if state == 'started': if not running: action = 'start' elif state == 'stopped': if running: action = 'stop' # reset = start/stop according to enabled status elif state == 'reset': if enabled is not running: if running: action = 'stop' result['state'] = 'stopped' else: action = 'start' result['state'] = 'started' # start if not running, 'service' module constraint elif state == 'restarted': if not running: action = 'start' result['state'] = 'started' else: action = 'condrestart' # start if not running, 'service' module constraint elif state == 'reloaded': if not running: action = 'start' result['state'] = 'started' else: action = 'hangup' # change state as needed if action: result['changed'] = True if not module.check_mode: (rc, out, err) = run_sys_ctl(module, [action, service_path]) if rc != 0: module.fail_json(msg="Unable to %s service %s: %s" % (action, service_path, err)) # =========================================== # Main control flow def main(): module = AnsibleModule( argument_spec=dict( name=dict(required=True), state=dict(choices=['started', 'stopped', 'reset', 'restarted', 'reloaded'], type='str'), enabled=dict(type='bool'), preset=dict(type='bool'), user=dict(type='bool', default=False), ), supports_check_mode=True, mutually_exclusive=[['enabled', 'preset']], ) service = module.params['name'] rc = 0 out = err = '' result = { 'name': service, 'changed': False, 'status': None, } # check service can be found (or fail) and get path service_path = get_service_path(module, service) # get preliminary service facts result['service_path'] = service_path result['user'] = module.params['user'] result['enabled'] = service_is_enabled(module, service_path) result['preset'] = result['enabled'] is service_is_preset_enabled(module, service_path) # set enabled state, service need not be loaded if module.params['enabled'] is not None or module.params['preset']: handle_enabled(module, result, service_path) # set service running state if module.params['state'] is not None: handle_state(module, result, service_path) # get final service status if possible if service_is_loaded(module, service_path): result['status'] = get_service_status(module, service_path) module.exit_json(**result) if __name__ == '__main__': main()