2022-09-26 15:52:31 +02:00
/ *
Copyright ( c ) Edgeless Systems GmbH
SPDX - License - Identifier : AGPL - 3.0 - only
* /
package terraform
import (
2022-11-14 19:15:10 +01:00
"bytes"
2022-09-26 15:52:31 +02:00
"embed"
"errors"
2023-05-22 13:31:20 +02:00
"fmt"
2022-09-26 15:52:31 +02:00
"io/fs"
2023-05-30 12:02:43 +02:00
slashpath "path"
2022-11-14 18:18:58 +01:00
"path/filepath"
2022-09-26 15:52:31 +02:00
"strings"
"github.com/edgelesssys/constellation/v2/internal/file"
"github.com/spf13/afero"
)
2022-11-16 16:33:51 +01:00
// ErrTerraformWorkspaceDifferentFiles is returned when a re-used existing Terraform workspace has different files than the ones to be extracted (e.g. due to a version mix-up or incomplete writes).
var ErrTerraformWorkspaceDifferentFiles = errors . New ( "creating cluster: trying to overwrite an existing Terraform file with a different version" )
2022-09-26 15:52:31 +02:00
//go:embed terraform/*
2022-10-25 10:10:46 +02:00
//go:embed terraform/*/.terraform.lock.hcl
2023-09-14 11:51:20 +02:00
//go:embed terraform/iam/*/.terraform.lock.hcl
2022-09-26 15:52:31 +02:00
var terraformFS embed . FS
2023-09-14 11:51:20 +02:00
const (
noOverwrites overwritePolicy = iota
allowOverwrites
)
type overwritePolicy int
2022-09-26 15:52:31 +02:00
// prepareWorkspace loads the embedded Terraform files,
// and writes them into the workspace.
2023-05-22 13:31:20 +02:00
func prepareWorkspace ( rootDir string , fileHandler file . Handler , workingDir string ) error {
2023-09-14 11:51:20 +02:00
return terraformCopier ( fileHandler , rootDir , workingDir , noOverwrites )
2023-05-22 13:31:20 +02:00
}
2023-09-14 11:51:20 +02:00
// prepareUpgradeWorkspace backs up the old Terraform workspace from workingDir, and
// copies the embedded Terraform files into workingDir.
func prepareUpgradeWorkspace ( rootDir string , fileHandler file . Handler , workingDir , backupDir string ) error {
2023-05-22 13:31:20 +02:00
// backup old workspace
if err := fileHandler . CopyDir (
2023-09-14 11:51:20 +02:00
workingDir ,
2023-06-21 09:22:32 +02:00
backupDir ,
2023-05-22 13:31:20 +02:00
) ; err != nil {
return fmt . Errorf ( "backing up old workspace: %w" , err )
}
2023-09-14 11:51:20 +02:00
return terraformCopier ( fileHandler , rootDir , workingDir , allowOverwrites )
2023-05-22 13:31:20 +02:00
}
// terraformCopier copies the embedded Terraform files into the workspace.
2023-09-14 11:51:20 +02:00
// allowOverwrites allows overwriting existing files in the workspace.
func terraformCopier ( fileHandler file . Handler , rootDir , workingDir string , overwritePolicy overwritePolicy ) error {
2023-05-30 12:02:43 +02:00
goEmbedRootDir := filepath . ToSlash ( rootDir )
return fs . WalkDir ( terraformFS , goEmbedRootDir , func ( path string , d fs . DirEntry , err error ) error {
2022-09-26 15:52:31 +02:00
if err != nil {
return err
}
if d . IsDir ( ) {
return nil
}
2023-05-30 12:02:43 +02:00
goEmbedPath := filepath . ToSlash ( path )
content , err := terraformFS . ReadFile ( goEmbedPath )
2022-09-26 15:52:31 +02:00
if err != nil {
return err
}
2023-05-30 12:02:43 +02:00
// normalize
fileName := strings . Replace ( slashpath . Join ( workingDir , path ) , goEmbedRootDir + "/" , "" , 1 )
2023-09-14 11:51:20 +02:00
opts := [ ] file . Option {
file . OptMkdirAll ,
}
if overwritePolicy == allowOverwrites {
opts = append ( opts , file . OptOverwrite )
}
if err := fileHandler . Write ( fileName , content , opts ... ) ; errors . Is ( err , afero . ErrFileExists ) {
// If a file already exists and overwritePolicy is set to noOverwrites,
// check if it is identical. If yes, continue and don't write anything to disk.
2022-11-14 19:15:10 +01:00
// If no, don't overwrite it and instead throw an error. The affected file could be from a different version,
// provider, corrupted or manually modified in general.
existingFileContent , err := fileHandler . Read ( fileName )
if err != nil {
return err
}
if ! bytes . Equal ( content , existingFileContent ) {
2022-11-16 16:33:51 +01:00
return ErrTerraformWorkspaceDifferentFiles
2022-11-14 19:15:10 +01:00
}
return nil
} else if err != nil {
return err
}
return nil
2022-09-26 15:52:31 +02:00
} )
}
2022-11-14 18:18:58 +01:00
func cleanUpWorkspace ( fileHandler file . Handler , workingDir string ) error {
return ignoreFileNotFoundErr ( fileHandler . RemoveAll ( workingDir ) )
2022-09-26 15:52:31 +02:00
}
// ignoreFileNotFoundErr ignores the error if it is a file not found error.
func ignoreFileNotFoundErr ( err error ) error {
if errors . Is ( err , afero . ErrFileNotFound ) {
return nil
}
return err
}