Bug: Temp PowerShell scripts hardcode to store under %TEMP% instead of using temp_path var location

vlinx commented 5 years ago

Packer version v1.4.0
Host platform Windows 10 Enterprise Version 1809 OS Build 17763.475

Debug log output from PACKER_LOG=1 packer build template.json.


λ set PACKER_LOG=1
λ packer build packer.json
2019/05/13 12:37:00 [INFO] Packer version: 1.4.0
2019/05/13 12:37:00 Packer Target OS/Arch: windows amd64
2019/05/13 12:37:00 Built with Go Version: go1.12
2019/05/13 12:37:00 Detected home directory from env var: C:\Users\VincentL
2019/05/13 12:37:00 Using internal plugin for amazon-instance
2019/05/13 12:37:00 Using internal plugin for hyperv-iso
2019/05/13 12:37:00 Using internal plugin for ncloud
2019/05/13 12:37:00 Using internal plugin for null
2019/05/13 12:37:00 Using internal plugin for parallels-pvm
2019/05/13 12:37:00 Using internal plugin for profitbricks
2019/05/13 12:37:00 Using internal plugin for cloudstack
2019/05/13 12:37:00 Using internal plugin for digitalocean
2019/05/13 12:37:00 Using internal plugin for hyperone
2019/05/13 12:37:00 Using internal plugin for oneandone
2019/05/13 12:37:00 Using internal plugin for oracle-classic
2019/05/13 12:37:00 Using internal plugin for scaleway
2019/05/13 12:37:00 Using internal plugin for openstack
2019/05/13 12:37:00 Using internal plugin for triton
2019/05/13 12:37:00 Using internal plugin for vmware-iso
2019/05/13 12:37:00 Using internal plugin for azure-arm
2019/05/13 12:37:00 Using internal plugin for oracle-oci
2019/05/13 12:37:00 Using internal plugin for qemu
2019/05/13 12:37:00 Using internal plugin for tencentcloud-cvm
2019/05/13 12:37:00 Using internal plugin for alicloud-ecs
2019/05/13 12:37:00 Using internal plugin for parallels-iso
2019/05/13 12:37:00 Using internal plugin for file
2019/05/13 12:37:00 Using internal plugin for lxc
2019/05/13 12:37:00 Using internal plugin for virtualbox-ovf
2019/05/13 12:37:00 Using internal plugin for vmware-vmx
2019/05/13 12:37:00 Using internal plugin for amazon-chroot
2019/05/13 12:37:00 Using internal plugin for amazon-ebs
2019/05/13 12:37:00 Using internal plugin for amazon-ebssurrogate
2019/05/13 12:37:00 Using internal plugin for amazon-ebsvolume
2019/05/13 12:37:00 Using internal plugin for docker
2019/05/13 12:37:00 Using internal plugin for googlecompute
2019/05/13 12:37:00 Using internal plugin for hcloud
2019/05/13 12:37:00 Using internal plugin for hyperv-vmcx
2019/05/13 12:37:00 Using internal plugin for lxd
2019/05/13 12:37:00 Using internal plugin for vagrant
2019/05/13 12:37:00 Using internal plugin for virtualbox-iso
2019/05/13 12:37:00 Using internal plugin for breakpoint
2019/05/13 12:37:00 Using internal plugin for chef-solo
2019/05/13 12:37:00 Using internal plugin for puppet-server
2019/05/13 12:37:00 Using internal plugin for ansible-local
2019/05/13 12:37:00 Using internal plugin for converge
2019/05/13 12:37:00 Using internal plugin for file
2019/05/13 12:37:00 Using internal plugin for inspec
2019/05/13 12:37:00 Using internal plugin for powershell
2019/05/13 12:37:00 Using internal plugin for salt-masterless
2019/05/13 12:37:00 Using internal plugin for sleep
2019/05/13 12:37:00 Using internal plugin for puppet-masterless
2019/05/13 12:37:00 Using internal plugin for shell
2019/05/13 12:37:00 Using internal plugin for shell-local
2019/05/13 12:37:00 Using internal plugin for windows-shell
2019/05/13 12:37:00 Using internal plugin for ansible
2019/05/13 12:37:00 Using internal plugin for chef-client
2019/05/13 12:37:00 Using internal plugin for windows-restart
2019/05/13 12:37:00 Using internal plugin for compress
2019/05/13 12:37:00 Using internal plugin for docker-tag
2019/05/13 12:37:00 Using internal plugin for googlecompute-export
2019/05/13 12:37:00 Using internal plugin for manifest
2019/05/13 12:37:00 Using internal plugin for vagrant
2019/05/13 12:37:00 Using internal plugin for vagrant-cloud
2019/05/13 12:37:00 Using internal plugin for alicloud-import
2019/05/13 12:37:00 Using internal plugin for amazon-import
2019/05/13 12:37:00 Using internal plugin for artifice
2019/05/13 12:37:00 Using internal plugin for digitalocean-import
2019/05/13 12:37:00 Using internal plugin for docker-import
2019/05/13 12:37:00 Using internal plugin for shell-local
2019/05/13 12:37:00 Using internal plugin for vsphere
2019/05/13 12:37:00 Using internal plugin for checksum
2019/05/13 12:37:00 Using internal plugin for docker-push
2019/05/13 12:37:00 Using internal plugin for docker-save
2019/05/13 12:37:00 Using internal plugin for googlecompute-import
2019/05/13 12:37:00 Using internal plugin for vsphere-template
2019/05/13 12:37:00 Detected home directory from env var: C:\Users\VincentL
2019/05/13 12:37:00 Attempting to open config file: C:\Users\VincentL\packer.config
2019/05/13 12:37:00 [WARN] Config file doesn't exist: C:\Users\VincentL\packer.config
2019/05/13 12:37:00 Packer config: &{DisableCheckpoint:false DisableCheckpointSignature:false PluginMinPort:10000 PluginMaxPort:25000 Builders:map[alicloud-ecs:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-alicloud-ecs amazon-chroot:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-amazon-chroot amazon-ebs:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-amazon-ebs amazon-ebssurrogate:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-amazon-ebssurrogate amazon-ebsvolume:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-amazon-ebsvolume amazon-instance:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-amazon-instance azure-arm:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-azure-arm cloudstack:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-cloudstack digitalocean:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-digitalocean docker:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-docker file:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-file googlecompute:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-googlecompute hcloud:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-hcloud hyperone:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-hyperone hyperv-iso:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-hyperv-iso hyperv-vmcx:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-hyperv-vmcx lxc:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-lxc lxd:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-lxd ncloud:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-ncloud null:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-null oneandone:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-oneandone openstack:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-openstack oracle-classic:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-oracle-classic oracle-oci:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-oracle-oci parallels-iso:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-parallels-iso parallels-pvm:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-parallels-pvm profitbricks:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-profitbricks qemu:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-qemu scaleway:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-scaleway tencentcloud-cvm:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-tencentcloud-cvm triton:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-triton vagrant:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-vagrant virtualbox-iso:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-virtualbox-iso virtualbox-ovf:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-virtualbox-ovf vmware-iso:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-vmware-iso vmware-vmx:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-builder-vmware-vmx] PostProcessors:map[alicloud-import:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-alicloud-import amazon-import:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-amazon-import artifice:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-artifice checksum:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-checksum compress:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-compress digitalocean-import:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-digitalocean-import docker-import:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-docker-import docker-push:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-docker-push docker-save:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-docker-save docker-tag:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-docker-tag googlecompute-export:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-googlecompute-export googlecompute-import:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-googlecompute-import manifest:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-manifest shell-local:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-shell-local vagrant:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-vagrant vagrant-cloud:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-vagrant-cloud vsphere:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-vsphere vsphere-template:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-post-processor-vsphere-template] Provisioners:map[ansible:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-ansible ansible-local:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-ansible-local breakpoint:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-breakpoint chef-client:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-chef-client chef-solo:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-chef-solo converge:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-converge file:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-file inspec:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-inspec powershell:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-powershell puppet-masterless:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-puppet-masterless puppet-server:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-puppet-server salt-masterless:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-salt-masterless shell:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-shell shell-local:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-shell-local sleep:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-sleep windows-restart:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-windows-restart windows-shell:C:\Apps\Bin\packer.exe-PACKERSPACE-plugin-PACKERSPACE-packer-provisioner-windows-shell]}
2019/05/13 12:37:00 Detected home directory from env var: C:\Users\VincentL
2019/05/13 12:37:00 Detected home directory from env var: C:\Users\VincentL
2019/05/13 12:37:00 Setting cache directory: C:\gbstbsd\nebula\packer\centos-vb\packer_cache
2019/05/13 12:37:00 Loading builder: hyperv-iso
2019/05/13 12:37:00 Plugin could not be found. Checking same directory as executable.
2019/05/13 12:37:00 Current exe path: C:\Apps\Bin\packer.exe
2019/05/13 12:37:00 Creating plugin client for path: C:\Apps\Bin\packer.exe
2019/05/13 12:37:00 Starting plugin: C:\Apps\Bin\packer.exe []string{"C:\\Apps\\Bin\\packer.exe", "plugin", "packer-builder-hyperv-iso"}
2019/05/13 12:37:00 Waiting for RPC address for: C:\Apps\Bin\packer.exe
2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 [INFO] Packer version: 1.4.0
2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Packer Target OS/Arch: windows amd64
2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Built with Go Version: go1.12
2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Detected home directory from env var: C:\Users\VincentL
2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Attempting to open config file: C:\Users\VincentL\packer.config
2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 [WARN] Config file doesn't exist: C:\Users\VincentL\packer.config
2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Packer config: &{DisableCheckpoint:false DisableCheckpointSignature:false PluginMinPort:10000 PluginMaxPort:25000 Builders:map[] PostProcessors:map[] Provisioners:map[]}
2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Detected home directory from env var: C:\Users\VincentL
hyperv-iso output will be in this color.2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Detected home directory from env var: C:\Users\VincentL

2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Setting cache directory: C:\gbstbsd\nebula\packer\centos-vb\packer_cache

2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 args: []string{"packer-builder-hyperv-iso"} 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Plugin minimum port: 10000 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Plugin maximum port: 25000 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Plugin address: tcp 127.0.0.1:10000 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Waiting for connection... 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Serving a plugin connection... 2019/05/13 12:37:00 Build debug mode: false 2019/05/13 12:37:00 Force build: false 2019/05/13 12:37:00 On error: 2019/05/13 12:37:00 Preparing build: hyperv-iso 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 DiskSize: 25360 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 DiskBlockSize: 32 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 RamSize: 2048 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 VMName: packer-demo 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Using switch internal_vSwitch 2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 SwitchName: internal_vSwitch

Warnings for build 'hyperv-iso': 2019/05/13 12:37:00 Waiting on builds to complete... 2019/05/13 12:37:00 Starting build run: hyperv-iso

2019/05/13 12:37:00 Running builder: hyperv-iso

Hyper-V might fail to create a VM if there is not enough free memory in the system.2019/05/13 12:37:00 [INFO] (telemetry) Starting builder hyperv-iso

2019/05/13 12:37:00 packer.exe: 2019/05/13 12:37:00 Enter method: verifyPSVersion

2019/05/13 12:37:00 [INFO] (telemetry) ending hyperv-iso 2019/05/13 12:37:00 ui error: Build 'hyperv-iso' errored: Failed creating Hyper-V driver: PowerShell error: CylancePROTECT Script Control has blocked access to this PowerShell script.Build 'hyperv-iso' errored: Failed creating Hyper-V driver: PowerShell error: CylancePROTECT Script Control has blocked access to this PowerShell script.

==> Some builds didn't complete successfully and had errors: 2019/05/13 12:37:00 Builds completed. Waiting on interrupt barrier... --> hyperv-iso: Failed creating Hyper-V driver: PowerShell error: CylancePROTECT Script Control has blocked access to this PowerShell script. 2019/05/13 12:37:00 machine readable: error-count []string{"1"}

2019/05/13 12:37:00 ui error: ==> Some builds didn't complete successfully and had errors: ==> Builds finished but no artifacts were created. 2019/05/13 12:37:00 machine readable: hyperv-iso,error []string{"Failed creating Hyper-V driver: PowerShell error: CylancePROTECT Script Control has blocked access to this PowerShell script."} 2019/05/13 12:37:00 ui error: --> hyperv-iso: Failed creating Hyper-V driver: PowerShell error: CylancePROTECT Script Control has blocked access to this PowerShell script. ==> Builds finished but no artifacts were created. 2019/05/13 12:37:00 [INFO] (telemetry) Finalizing. 2019/05/13 12:37:01 waiting for all plugin processes to complete... 2019/05/13 12:37:01 C:\Apps\Bin\packer.exe: plugin process exited



- The _simplest example template and scripts_ needed to reproduce the bug.
  use this example https://www.apcension.com/articles/Packer/
  temp_path sets to "c://scripts" as override
  "c://script" whitelisted by Cyclance Script Control
  %TEMP% script location has been blocked by Cylance Script Control
  I have tried to override the temp_path as “C:\\scripts”. However Packer binary is using %TEMP% to store temp PowerShell scripts regardless what temp_path is set to.

vlinx commented 5 years ago

You can override %TMP% to workaround this issue

λ set TMP=c:\scripts λ echo %TMP% c:\scripts

azr commented 5 years ago

Hello there, thanks for reporting. Yes the docs states( for windows ) :

TMP TEMP USERPROFILE - The location of the directory used for temporary files ( defaults to [...] %USERPROFILE%\AppData\Local\Temp on Windows Vista and above )

Looking into it.

azr commented 5 years ago

@vlinx On Windows, it uses GetTempPath, returning the first non-empty value from %TMP%, %TEMP%, %USERPROFILE%, or the Windows directory.

Are you sure TMP was not set at the time ? In which case I think TMP will have precedence.

vlinx commented 5 years ago

I have both of my %TMP% and %TEMP% set correctly. However I would like to use temp_path to override the value to "c:\scripts" while keeping %TMP% and %TEMP% as it is. What I am trying to accomplish here is to GetTempPath to return c:\scripts without manually modifing %TMP% and %TEMP%. Since modifing %TMP% and %TEMP% breaks other programs. https://www.packer.io/docs/builders/hyperv-iso.html#temp_path

azr commented 5 years ago

temp_path is The location under which Packer will create a directory to house all the VM files and folders during the build.

Looking at the code & tests, it looks like to me that everything is fine:

https://github.com/hashicorp/packer/blob/c4f3dccc148bed4241a3b19f3f1b89824bf39a50/builder/hyperv/common/step_create_build_dir.go#L33-L38

https://github.com/hashicorp/packer/blob/c4f3dccc148bed4241a3b19f3f1b89824bf39a50/builder/hyperv/common/step_create_build_dir.go#L47

ioutil.TempDir will use what's in temp_path if set and tmp.Dir uses GetTempPath (env vars) when temp_path is not set.

In your debug output something else fails even before we get to the step where temp_path is used as we can't find the debug output: Created build directory.

Your error is the following:

Failed creating Hyper-V driver: PowerShell error: CylancePROTECT Script Control has blocked access to this PowerShell script.

Looks like to me that CylancePROTECT is blocking you the access to the hyperv driver.

I'm going to close this issue as it seems to me it is a question more than a bug, I think the discussion list is the place to go for you 🙂. https://www.packer.io/community.html

Cheers !

ghost commented 4 years ago

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

hashicorp / packer

Bug: Temp PowerShell scripts hardcode to store under %TEMP% instead of using temp_path var location #7634