o f @sddlZddlZddlZddlZddlZddlZddlZddlm Z ddl m Z ddl m Z ddlmZmZmZmZmZmZmZmZmZmZddlmmmZddlmZmZm Z mZm!Z!m"Z"m#Z#m$Z$m%Z%m&Z&ddl'm(Z(m)Z)ddl*m+Z+dd l,m-Z-dd l.m/Z/dd l0m1Z1dd l2m3Z3m4Z4m5Z5dd l6m7Z7ddl8m9Z9ddl:m;Z;dZe?Z@eAd"ZBgd#ZCejDejEd$ZFeeeGeeeeeGeeeGeeGfeeeGeeGeffZHGd%d&d&eIZJGd'd(d(e!jKejLd)ZMd*eGd+eNfd,d-ZOd*eGfd.d/ZPde&jQfd0d1ZRd2d3ZSd4eGd5eeMfd6d7ZT 9d>d:d;ZUdd:d;Z?e@jAddd?d@ZCdAdBZDddCdDZEddEdFZFdGdHZGddeHfdIdJZIe@jAddKdLZJe@jAdMdNZKdOdPZLdQdRZMe@jAddSdTZNe@jAdUdVZOe@jAdWdXZPdYdZZQd[d\ZRe>d]d^ZSd_d`ZTdadbZUe0dcddZVdedfZWdeHfdgdhZXdidjZYdeHfdkdlZZdmdnZ[dodpZ\dqefdrdsZ]dtduZ^ddvdwZ_dxe`dyeHfdzd{Zad|d}Zbdd~dZcdddZddddZedddZfegddZhegdddZiegddded edefddZjdedededefddZkdefddZldde`dedefddZme>dededededede`f ddZne0ddZoeojpddZoe>de&de#e&fddZqe>de&de#e&fddZre>de&de&de#e&fddZse>deddfddZte>dede#efddZue>dedevfddZwdS)Distroz python3-pipz/usr/libz /etc/hostsz/etc/doas.confz"/etc/sudoers.d/90-cloud-init-usersz /etc/hostnamez /etc/shadowz/var/lib/extrausers/shadowz ^{username}::z^{username}:!:z/usr/share/zoneinfoz root:rootservicerenderer_configsNnetworking_clsz-Hz-Pz-r)haltpoweroffrebootnet_opsFz/etc/resolv.confosfamilydhclient_lease_directorydhclient_lease_file_regexcCsT||_||_||_||_tj|_tj |_ t ||_ g|_d|_d|_d|_dS)NT)_paths_cfgnamerT networkingr ALL_DHCP_CLIENTSdhcp_client_priorityiproute2Iproute2rXrRunners_runnerpackage_managers _dhcp_client_fallback_interfaceis_linux)selfr_cfgpathsrOrOrP__init__s   zDistro.__init__ci_pkl_versionreturncCsTd|jvs |jjs||_t|dsd|_t|dsd|_t|ds(d|_dSdS)z)Perform deserialization fixes for Distro.r`rhNrirjT)__dict__r`rThasattrrhrirj)rkrorOrOrP _unpickles     zDistro._unpicklecCs8t|tr|St|ttfrt|dkrt|Std)Nz?Invalid 'packages' yaml specification. Check schema definition.) isinstancestrlisttuplelen ValueError)rkentryrOrOrP_validate_entrys  zDistro._validate_entrypkglistc Cstt}t}|D]=}t|tr>|D](\}}|D]!}||}z |t||Wqty;t d|Yqwqq |||q t||fS)zTransform the generic package list to package by package manager. Additionally, include list of generic packages zLCannot install packages under '%s' as it is not a supported package manager!) rsetrudictitemsr|raddKeyErrorLOGerror)rkr}packages_by_managergeneric_packagesr{package_manager package_list definitionrOrOrP_extract_package_by_managers,     z"Distro._extract_package_by_managerc Csd}||\}}t}|jD]?}||jt}||B}|||s3td|j | |q|s6q| |} | | | rHt || t| |}q| D]\} } | j dd|jDvrcqS| | |j|jj | dqS|r{t||dS)NzcFailed to install the following packages: %s. See associated package manager logs for more details.z"Package manager '%s' not availablecSsg|]}|jqSrO)r_).0prOrOrP z+Distro.install_packages..)r})rr~rgget __class__difference_update availablerdebugr_updateinstall_packagesinfor from_configrfr^rK) rkr} error_messagerr total_failedmanagermanager_packagesto_tryfailed manager_typepackagesrOrOrPrsJ        zDistro.install_packagesc Cs|jr|jS|j}t|jdg}|rwt )aaccess the distro's preferred dhcp client if no client has been selected yet select one - uses self.dhcp_client_priority, which may be overridden in each distro's object to eliminate checking for clients which will not be provided by the distro )networkrbz.Using configured dhcp client priority list: %sz4Configured dhcp client %s is not supported, skippingzDHCP client selected: %szDHCP client not found: %s) rhrbrget_cfg_by_pathr^rrr ra client_nameappendwarningNoDHCPLeaseMissingDhclientError)rkrbconfig_priority found_clientsclient_configured client_classclientrOrOrP dhcp_client#sD      zDistro.dhcp_clientcCs6t|jdd}ztj|dWStjyYdSw)z=Return the configured network activator for this environment.)rrNpriority)rrr^rselect_activatorNoActivatorException)rkrrOrOrPnetwork_activator_szDistro.network_activatorcCsDt|jdd}tj|d\}}td||||j|d}|S)N)rr!rz-Selected renderer '%s' from priority list: %s)config) rrr^r!selectrrrSr)rkrr_ render_clsrendererrOrOrPnetwork_rendererjszDistro.network_rendererrcCs||dSN)render_network_state)rk network_staterrOrOrP_write_network_statewzDistro._write_network_statecCs4tj|jt|}tj|std||f|S)Nz(Invalid timezone %s, no file found at %s)ospathjoin tz_zone_dirrvisfileIOError)rktztz_filerOrOrP _find_tz_filezs   zDistro._find_tz_filecCs|j||Sr)r^r)rkopt_namedefaultrOrOrP get_optionrzDistro.get_optioncCs||j|<dSr)r^)rkrvaluerOrOrP set_optionrzDistro.set_optioncCs(|||}|||j||dSr)_select_hostname_write_hostnamehostname_conf_fn_apply_hostname)rkhostnamefqdnwriteable_hostnamerOrOrP set_hostnames zDistro.set_hostnamecCstS)z?Wrapper to report whether this distro uses systemd or sysvinit.) uses_systemdrOrOrOrPrszDistro.uses_systemdcCtrNotImplementedError)rkcommandargspkgsrOrOrPpackage_commandszDistro.package_commandforcec Csl|jD]0}|std|jqz|j|dWqty3}ztd|j|WYd}~qd}~wwdS)Nz8Skipping update for package manager '%s': not available.rz%Failed to update package using %s: %s)rgrrrr_update_package_sources Exceptionr)rkrrerOrOrPrs zDistro.update_package_sourcescCstd}|dvr dS|S)N)i386i486i586i686r)runame)rkr(rOrOrPget_primary_archs zDistro.get_primary_archcCs"|dg}|s |}t||S)Npackage_mirrors)rr_get_arch_package_mirror_info)rkr( mirror_inforOrOrPrs  z$Distro._get_arch_package_mirror_infocCs||}t||dS)N) data_sourcer)r_get_package_mirror_info)rkr(r arch_inforOrOrPget_package_mirror_infos zDistro.get_package_mirror_infocCstSr)rgenerate_fallback_configrkrOrOrPrszDistro.generate_fallback_configcCs`|j}t||d}||||r)td|j}|s"tddS||dStddS)aApply the network config. If bring_up is True, attempt to bring up the passed in devices. If devices is None, attempt to bring up devices returned by _write_network_config. Returns True if any devices failed to come up, otherwise False. )rz/Bringing up newly configured network interfacesz>No network activator found, not bringing up network interfacesTz3Not bringing up newly configured network interfacesF)rr#rrrrrbring_up_all_interfaces)rk netconfigbring_uprrrrOrOrPapply_network_configs     zDistro.apply_network_configcCrrr)rklocaleout_fnrOrOrP apply_localezDistro.apply_localecCrrr)rkrrOrOrP set_timezonerzDistro.set_timezonecCsdS)Nz 127.0.0.1rOrrOrOrP_get_localhost_ipszDistro._get_localhost_ipcCrrrrrOrOrP get_localeszDistro.get_localecCrrr)rkfilenamerrOrOrP_read_hostnamerzDistro._read_hostnamecCrrr)rkrrrOrOrPrrzDistro._write_hostnamecCrrrrrOrOrP_read_system_hostnamerzDistro._read_system_hostnamecCsFtd|z td|gWdStjy"ttd|YdSw)Nz2Non-persistently setting the system hostname to %srz;Failed to non-persistently adjust the system hostname to %s)rrrProcessExecutionErrorrlogexc)rkrrOrOrPrs zDistro._apply_hostnamecCs&t|jd|jr |r |S|s|S|S)Nprefer_fqdn_over_hostname)rget_cfg_option_boolr^ prefer_fqdn)rkrrrOrOrPrs zDistro._select_hostnamecCs6g}|D]}|tvrtd||t|q|S)Nz&No distributions found for osfamily {}) OSFAMILIESrzformatextend) family_listdistrosfamilyrOrOrPexpand_osfamilyszDistro.expand_osfamilyc Cs|}|||}|rtj|r||}nd}|\}}g}|r&||kr+|||r5||kr:||kr:|||rK|rK||krKtd||dSt dd|D}t d|t ||D]} z| || Wq_t yzttd|| Yq_w||vr||dSdS)Nz6%s differs from %s, assuming user maintained hostname.cSsg|]}|r|qSrOrO)rfrOrOrPrLz*Distro.update_hostname..z/Attempting to update hostname to %s in %s filesz!Failed to write hostname %s to %s)rrrexistsrrrrrr~rryrrrrr) rkrrprev_hostname_fnapplying_hostname prev_hostnamesys_fn sys_hostname update_filesfnrOrOrPupdate_hostnamesH       zDistro.update_hostnamec Cszd}tj|jrtt|j}n td}tjdd}| }| |}d}|s5| |||d}ndd}|D]*}d} g} t |dkrI|d} t |dkrU|dd} | durc| |krc|| vrcd}q9|rt |} | ||g||| D] }t |dkr| ||dqxt |dkr|j |g|Rqx|rt} |r| d || d |tj|j| d d dSdS) NaddedbaseFTrYrrtz%s imode)rrr hosts_fnr HostsConfrload_text_file make_headerr get_entry add_entryryrwr del_entriesrwrite write_filegetvalue) rkrrheaderehlocal_ip prev_info need_changer{ entry_fqdn entry_aliases new_entriescontentsrOrOrPupdate_etc_hosts`sP         zDistro.update_etc_hostscCs|jstt|_|jS)z7Allow distro to determine the preferred ntp client list)_preferred_ntp_clientsrwPREFERRED_NTP_CLIENTSrrOrOrPpreferred_ntp_clientss zDistro.preferred_ntp_clientscCs |dS)N default_user)rrrOrOrPget_default_users zDistro.get_default_userc Ksvt|r td|dSd|vr|d}nd}d|g}d|g}tr/|d|dddd d d d d dddd }dddd}dg}|d} | rt| t rV| d} t| t rgt j d|dddddd| D} d| |d<|d } | r| | |r| r| D]} t| s|| td!| |qd"|vrt |d"|d"<t|D]D\} } | |vr| rt| t r||| | g| |vr||| d#gq||| | gq| |vr| r||| ||| q|d$s|d%r |d&|d&n |d'|d'td(|z tj||d)WdSty:}z ttd*||d+}~ww),z Add a user to the system using standard GNU tools This should be overridden on distros where useradd is not desirable or not available. Returns False if user already exists, otherwise True. z!User %s already exists, skipping.F create_groupsTuseradd --extrausersz --commentz--homez--gidz--uidz--groups --passwordz--shellz --expiredatez --inactivez--selinux-user) gecoshomedir primary_groupuidgroupspasswdshell expiredateinactive selinux_userz--no-user-groupz--systemz --no-log-init) no_user_groupsystem no_log_initr;r:,z The user z) has a 'groups' config value of type dictz22.3z=Use a comma-delimited string or array instead: group1,group2. deprecateddeprecated_version extra_messagecSsg|]}|qSrOstrip)rgrOrOrPrr z#Distro.add_user..r8z created group '%s' for user '%s'r9REDACTEDno_create_homerAz-Mz-mzAdding user %s) logstringzFailed to create user %sN)ris_userrrpopsystem_is_snappyrrrurvsplitrr deprecateris_group create_grouprkeyssortedrrrrr)rkr_kwargsr2 useradd_cmdlog_useradd_cmd useradd_opts useradd_flags redact_optsr:r8groupkeyvalrrOrOrPadd_users                     zDistro.add_userc Ks|d}|dd}gd}|r|d||td|ztj||dd\}}td ||t|}|d d } W| StyU} z ttd || d } ~ ww) zD Add a snappy user to the system using snappy tools snapuserknownF)snapz create-userz--sudoerz--jsonz--knownzAdding snap user %sT)rMcapturez snap create-user returned: %s:%susernameNzFailed to create snap user %s) rrrrrr load_jsonrr) rkr_rWrarbcreate_user_cmdouterrjobjrerrOrOrP add_snap_users(       zDistro.add_snap_usercstr |j|jg}n|jg}dfdd|jD}|D]4}tj|s'qt |}t dd|t j s@t d|qt d|t ||t j rRdSqd S) z Check whether username exists in shadow files with empty password. Support reading /var/lib/extrausers/shadow on snappy systems. |csg|]}|jdqS)re)r)rpatternrmrOrPr5s z?Distro._shadow_file_has_empty_user_password..^:zUser %s not found in %sz0User %s found in %s. Checking for empty passwordTF)rrPshadow_extrausers_fn shadow_fnr#shadow_empty_locked_passwd_patternsrrr rrefindall MULTILINErr)rkre shadow_filesshadow_empty_passwd_re shadow_fileshadow_contentrOrmrP$_shadow_file_has_empty_user_password*s4   z+Distro._shadow_file_has_empty_user_passwordc Ksd|vr |j|fi|S|j|fi| }d}d}d}d}d|vr6d}d}|dr4|||dnd}d|vrOd}d}|drM|j||dddnd}|rf|sed|vr_d}td ||| }nd|vrtd}d}|dstd}|d dr||n"|s|r|rtd ||| |n|rtd |ntd |d|vr|dr| ||dd|vr|dr| ||dn|ddurt j d|ddddd|vr|d}t|tr|g}n t|trt|}|durt|tttfs tdt|g}nt|pg}tt||d|vrP|dg} | s3td||ddS|d} tj} | d| } | d|} tjt| || ddS)a Creates or partially updates the ``name`` user in the system. This defers the actual user creation to ``self.add_user`` or ``self.add_snap_user``, and most of the keys in ``kwargs`` will be processed there if and only if the user does not already exist. Once the existence of the ``name`` user has been ensured, this method then processes these keys (for both just-created and pre-existing users): * ``plain_text_passwd`` * ``hashed_passwd`` * ``lock_passwd`` * ``doas`` * ``sudo`` * ``ssh_authorized_keys`` * ``ssh_redirect_user`` raFNplain_text_passwdT hashed_passwd)hashedr;z5'passwd' in user-data is ignored for existing user %s lock_passwdzIAllowing unlocking empty password for %s based on empty '%s' in user-datazNot unlocking blank password for existing user %s. 'lock_passwd: false' present in user-data but no existing password set and no 'plain_text_passwd'/'hashed_passwd' provided in user-datazNot unlocking password for user %s. 'lock_passwd: false' present in user-data but no 'passwd'/'plain_text_passwd'/'hashed_passwd' provided in user-datadoassudozThe value of 'false' in user z's 'sudo' configz22.2zUse 'null' instead.rDssh_authorized_keyszZInvalid type '%s' detected for 'ssh_authorized_keys', expected list, string, dict, or set.ssh_redirect_usercloud_public_ssh_keysz^Unable to disable SSH logins for %s given ssh_redirect_user: %s. No cloud public-keys present.z$USERz $DISABLE_USER)options)rkr` set_passwdrrr{rrr unlock_passwdwrite_doas_ruleswrite_sudo_rulesrrRrurvrrwvaluesrxr~typersetup_user_keysDISABLE_USER_OPTSreplace) rkr_rWpre_existing_userhas_existing_passwordud_blank_password_specifiedud_password_specified password_keyrU cloud_keys redirect_userdisable_optionrOrOrP create_userLs                 zDistro.create_userc Csdd|gdd|gf}z tdd|D}Wnty/}ztd|dd |Df|d }~wwzt|Wd StyM}z ttd ||d }~ww) zL Lock the password of a user, i.e., disable password logins r;z-lusermodz--lockcs"|] }t|dr|VqdSrNrwhichrtoolrOrOrP  z%Distro.lock_passwd..zBUnable to lock user account '%s'. No tools available. Tried: %s.cSg|]}|dqSrrOrcrOrOrPrr z&Distro.lock_passwd..Nz&Failed to disable password for user %snext StopIteration RuntimeErrorrrrrr)rkr_ lock_toolscmdrrOrOrPrs(zDistro.lock_passwdr_c CsLdd|gdd|gf}z tdd|D}Wnty/}ztd|dd |Df|d }~wwz tj|d d gd \}}WntyR}z ttd||d }~ww|rdd|gddd|gf}z tdd|D}Wnty}ztd|dd |Df|d }~wwzt|Wd Sty}z ttd||d }~wwd S)zM Unlock the password of a user, i.e., enable password logins r;z-urz--unlockcsrrrrrOrOrPrrz'Distro.unlock_passwd..zDUnable to unlock user account '%s'. No tools available. Tried: %s.cSrrrOrrOrOrPrr z(Distro.unlock_passwd..Nrrcsz%Failed to enable password for user %sz-dr5z''csrrrrrOrOrPr$s  zTUnable to set blank password for user account '%s'. No tools available. Tried: %s.cSrrrOrrOrOrPr+r z(Failed to set blank password for user %sr)rkr_ unlock_toolsrr_ripasswd_set_toolsrOrOrPr s`  zDistro.unlock_passwdc CsBz tdd|gWdSty }z ttd||d}~ww)Nr;z--expirezFailed to set 'expire' for %s)rrrrr)rkuserrrOrOrP expire_passwd5szDistro.expire_passwdc Csfd||f}dg}|r|dz tj||d|dWdSty2}z ttd||d}~ww)Nz%s:%schpasswd-ezchpasswd for %s)datarMzFailed to set password for %sT)rrrrrr)rkrr;r~ pass_stringrrrOrOrPr<s   zDistro.set_passwdplist_inr~cCs>ddd|Dd}dg|rdgng}tj||ddS)N css"|] \}}d||gVqdS)rpNr)rr_passwordrOrOrPrSrz"Distro.chpasswd..rr)r)rr)rkrr~payloadrrOrOrPrPs  zDistro.chpasswdcCstd}td||t||}|r3td|d|d|kr(tddStd|ddStd dS) Nz^(?:permit|deny)(?:\s+(?:nolog|nopass|persist|keepenv|setenv \{[^}]+\})+)*\s+([a-zA-Z0-9_]+)+(?:\s+as\s+[a-zA-Z0-9_]+)*(?:\s+cmd\s+[^\s]+(?:\s+args\s+[^\s]+(?:\s*[^\s]+)*)*)*\s*$z3Checking if user '%s' is referenced in doas rule %rz!User '%s' referenced in doas rulerYz'Correct user is referenced in doas ruleTz.Incorrect user '%s' is referenced in doas ruleFz/doas rule does not appear to reference any user)rrrtsearchr])rkrrule rule_pattern valid_matchrOrOrPis_doas_rule_valid]s(     zDistro.is_doas_rule_validc Cs"|s|j}|D]}|||sd||f}t|dSqdd|g}|D] }|d|q&d|}|d7}tj|sit |g}zt j |d|ddWdSt yh} z t td|| d} ~ ww|t |vrz t ||WdSt y} z t td || d} ~ wwdS) NzHInvalid doas rule %r for user '%s', not writing any doas rules for user!rz# cloud-init User rules for %s%sr rzFailed to write doas file %sz Failed to append to doas file %s)doas_fnrrrrrrrr rrr!rrr append_file) rkrrules doas_filermsglinescontentr+rrOrOrPr}sH      zDistro.write_doas_rules /etc/sudoersc Csfd}d}d}tj|rt|}d}n tj|rt|}d}|D]'}|}td|}|s4q%| d} | s>q%tj | } | |krLd}nq%|szF|svddtj dd d |dg} |rgt d ||d | 7}t||d ndtj dd d |dg} d | }t||t d||Wnty} z tt d|| d} ~ wwt|ddS)NrFz/usr/etc/sudoersTz^[#|@]includedir\s+(.*)$rYz?# See sudoers(5) for more information on "#include" directives:rrz#includedir %szUsing content from '%s'rrzAdded '#includedir %s' to %szFailed to write %si)rrr rr splitlinesrIrtrr]abspathrrrrr!rrrr ensure_dir) rkr sudo_basesudoers_contents base_existssystem_sudo_base found_includeline include_match included_dirrrrOrOrPensure_sudo_dirsb            zDistro.ensure_sudo_dirc CsH|s|j}dd|g}t|ttfr!|D] }|d||fqnt|tr0|d||fn d}t|t|d |}|d7}| t j |t j |s|t|g}z t|d |dWdSty{} z ttd|| d} ~ ww|t|vrz t||WdSty} z ttd|| d} ~ wwdS) Nrz# User rules for %sz%s %sz1Can not create sudoers rule addition with type %rrrzFailed to write sudoers file %sz#Failed to append to sudoers file %s) ci_sudoers_fnrurwrxrrv TypeErrorrobj_namerrrrdirnamer rrr!rrrrr) rkrr sudo_filerrrrr+rrOrOrPrsL   zDistro.write_sudo_rulescCsd|g}tr |d|sg}t|rtd|nz t|td|Wnty:t td|Ynwt |dkrd|D]"}t |sRtd||qCtdd d ||gtd ||qCdSdS) Ngroupaddr4z(Skipping creation of existing group '%s'zCreated new group %szFailed to create group %srzCUnable to add group member '%s' to group '%s'; user does not exist.rz-az-GzAdded user '%s' to group '%s') rrPrrSrrrrrrryrN)rkr_members group_add_cmdmemberrOrOrPrTs4      zDistro.create_groupc Csld|j|g}z |dkrdt|}Wnty'}ztd|f|d}~ww||g}|r4|||S)Nshutdownnowz+%dz?power_state[delay] must be 'now' or '+m' (minutes). found '%s'.)shutdown_options_mapintrzrr)clsrdelaymessagerrrrOrOrPshutdown_command s&   zDistro.shutdown_commandcCs2|j}|s d|vr|dg}tj|d|dSdS)zX Reload systemd startup daemon. May raise ProcessExecutionError systemctlz daemon-reloadTrdrN)init_cmdrr)rrrrrOrOrP reload_init1s zDistro.reload_initraction extra_argsc Gs|j}|s d|vr*dg}d|gd|gd|gd|gd|gd|gd|gd |gd }n|dg|dg|dg|dg|dg|dg|dg|d gd }t|t||}tj|d |d S) z Perform the requested action on a service. This handles the common 'systemctl' and 'service' cases and may be overridden in subclasses as necessary. May raise ProcessExecutionError rstopstartenabledisablerestartzreload-or-restartzreload-or-try-restartstatus)rrrrrreloadz try-reloadrTr)rrrwr)rrrRrrrcmdsrrOrOrPmanage_service<s.   zDistro.manage_servicelayoutmodelvariantrcCs(|rtdd||||gdSt)N localectlzset-x11-keymap)rrr)rkrrrrrOrOrP set_keymapas zDistro.set_keymapcCs.tjdd}t|ds|Stj|jddS)NT) needs_exenoexecz cloud-initclouddir)rget_tmp_ancestorr has_mount_optrrr usr_lib_exec)rktmp_dirrOrOrPget_tmp_exec_pathps  zDistro.get_tmp_exec_pathrrrcwdc Ks>|rd|dnd}tjdd|d|dd|gfi|S) a` Perform a command as the requested user. Behaves like subp() Note: We pass `PATH` to the user env by using `env`. This could be probably simplified after bionic EOL by using `su --whitelist-environment=PATH ...`, more info on: https://lore.kernel.org/all/20180815110445.4qefy5zx5gfgbqly@ws.net.home/T/ zcd z && rsurJz-czenv PATH=$PATH  )rr)rkrrrrW directoryrOrOrPdo_asvs z Distro.do_asr lease_filepid_file interface config_filec Cs,|ddd|d|ddg |rd||gS|gS)Nz-1z-vz-lfz-pfz-sfz /bin/truez-cfrO)rr r r r rOrOrPbuild_dhclient_cmds   zDistro.build_dhclient_cmdcCs.|jdurt|_|jstd|j|jS)zADetermine the network interface used during local network config.Nz0Did not find a fallback interface on distro: %s.)rirfind_fallback_nicrrr_rrOrOrPfallback_interfaces  zDistro.fallback_interfacecCs ||_dSr)ri)rkrrOrOrPrs pidcCVt|d}|dur)tt t|WdS1swYtd||dS)=Return the parent pid of a process by parsing /proc/$pid/statrNz&/proc/%s/stat has an invalid ppid [%s]rQ_get_proc_stat_by_indexrrzrrrrmatchrOrOrP get_proc_ppid   zDistro.get_proc_ppidcCr)rNz&/proc/%s/stat has an invalid pgid [%s]rrrOrOrP get_proc_pgidrzDistro.get_proc_pgidfieldc Csz%tjd|dd}td|}|std||WdSt||WSt y?}ztd||WYd}~dSd}~wt yQtd||||YdSw) z parse /proc/$pid/stat for a specific field as numbered in man:proc(5) param pid: integer to query /proc/$pid/stat for param field: field number within /proc/$pid/stat to return z /proc/%s/statT)quietz,^(\d+) (\(.+\)) ([RSDZTtWXxKPI]) (\d+) (\d+)z*/proc/%s/stat has an invalid contents [%s]Nz Failed to load /proc/%s/stat. %sz4Unable to match field %s of process pid=%s (%s) (%s)) rrrIrtrrrrr]r IndexError)rrrrrrOrOrPrs:  zDistro._get_proc_stat_by_indexdevicecCsLd}tdr d|g}ntdrdd|g}ntjddddt|dS)Nejectz/lib/udev/cdrom_idz --eject-mediaeject_media_cmdzeject command not foundz.neither eject nor /lib/udev/cdrom_id are found)r descriptionreason)rrr)rrrOrOrP eject_medias    zDistro.eject_mediablockdevcCs,tj|}|drtd|||SdS)aReturns underlying block device for a mapped device. If it is mapped, blockdev will usually take the form of /dev/mapper/some_name If blockdev is a symlink pointing to a /dev/dm-* device, return the device pointed to. Otherwise, return None. z/dev/dm-z$%s is a mapped device pointing to %sN)rrrealpath startswithrr)r$r%rOrOrPget_mapped_devices zDistro.get_mapped_devicedevpathc Cstj|}tj|}d|}tj|std||ftj|d}tj|s1td|t | }tj|}tj |}t tj|d }tjd|} | |fS)zconvert an entry in /dev/ to parent disk and partition number input of /dev/vdb or /dev/disk/by-label/foo rpath is hopefully a real-ish path in /dev (vda, sdb..) z/sys/class/block/%sz%s had no syspath (%s) partitionz%s not a partitiondevz /dev/block/%s) rrr%basenamer rzrrrrrstripr) r(rpathbnamesyspathptpathptnumrsyspath disksyspath diskmajmin diskdevpathrOrOrPdevice_part_infos$        zDistro.device_part_infor)NN)F)r)r)xrLrMrNpip_package_namerrrrrrrrqrsr default_ownerrrSrrvr r__annotations__r-rrTr rrrcrdrXr"_ci_pkl_versionrresolve_conf_fnr[r r\rnrrsr| PackageListr rrr rrpropertyr DhcpClientrrNetworkActivatorrr$rrrrrr staticmethodrabcabstractmethodrrrrrrboolrrrrrrrrrrrrr,r/r1r`rkr{rrrrrrwrrrrrrT classmethodrrrrrrr rsetterrrrr#r'rxr6rOrOrOrPrQs     5;                A+ y"+,  $ 6 )    $      rQ) metaclassurltransformationscCsztj|}Wn tyYdSw|j}|durdS|D]}||}|dur,|Sq|}|jdur;d||j}tj|j|dS)a Apply transformations to a URL's hostname, return transformed URL. This is a separate function because unwrapping and rewrapping only the hostname portion of a URL is complex. :param url: The URL to operate on. :param transformations: A list of ``(str) -> Optional[str]`` functions, which will be applied in order to the hostname portion of the URL. If any function (regardless of ordering) returns None, ``url`` will be returned without any modification. :return: A string whose value is ``url`` with the hostname ``transformations`` applied, or ``None`` if ``url`` is unparsable. Nz{}:{})netloc) urllibparseurlsplitrzrportr urlunsplit_replace)rGrHparts new_hostnametransformation new_netlocrOrOrP&_apply_hostname_transformations_to_url*s"  rTcs2tdddddfddddg}t||S)aH Given a mirror URL, replace or remove any invalid URI characters. This performs the following actions on the URL's hostname: * Checks if it is an IP address, returning the URL immediately if it is * Converts it to its IDN form (see below for details) * Replaces any non-Letters/Digits/Hyphen (LDH) characters in it with hyphens * Removes any leading/trailing hyphens from each domain name label Before we replace any invalid domain name characters, we first need to ensure that any valid non-ASCII characters in the hostname will not be replaced, by ensuring the hostname is in its Internationalized domain name (IDN) representation (see RFC 5890). This conversion has to be applied to the whole hostname (rather than just the substitution variables), because the Punycode algorithm used by IDNA transcodes each part of the hostname as a whole string (rather than encoding individual characters). It cannot be applied to the whole URL, because (a) the Punycode algorithm expects to operate on domain names so doesn't output a valid URL, and (b) non-ASCII characters in non-hostname parts of the URL aren't encoded via Punycode. To put this in RFC 5890's terminology: before we remove or replace any characters from our domain name (which we do to ensure that each label is a valid LDH Label), we first ensure each label is in its A-label form. (Note that Python's builtin idna encoding is actually IDNA2003, not IDNA2008. This changes the specifics of how some characters are encoded to ASCII, but doesn't affect the logic here.) :param url: The URL to operate on. :return: A sanitized version of the URL, which will have been IDNA encoded if necessary, or ``None`` if the generated string is not a parseable URL. .cSst|rdS|Sr)r is_ip_addressrrOrOrPrz&_sanitize_mirror_url..cSs|ddS)Nidnaascii)encodedecoderWrOrOrPrXscsdfdd|DS)Nrc3s |] }|vr |ndVqdSrJNrOracceptable_charsrOrPrs 9_sanitize_mirror_url....rrWr^rOrPrXscSsddd|dDS)NrUcss|]}|dVqdSr]rH)rpartrOrOrPrs  r`)rrQrWrOrOrPrXs )LDH_ASCII_CHARSrT)rGrHrOr^rP_sanitize_mirror_urlUs&  rcc Cs"|si}i}|r1|jr1|j|d<t|jr1|jdd}tr&d||d<n |jdkr1d||d<|r;|jr;|j|d<i}|diD]\}}|||<qE|d iD]2\}}g} |D]} z| |}Wn tyoYq^wt |}|dur}| |q^|| } | r| ||<qVt d ||S) Navailability_zonerr ec2_regionec2regionfailsaferzfiltered distro mirror info: %s) rd _EC2_AZ_RErr platform_typerhrrrrcrrr) rr mirror_filtersubstrfresultsr_mirror searchlistmirrorstmplfoundrOrOrPrsD            rcCs8d}|D]}|d}||vr|Sd|vr|}q|S)Narchesr)r)rr(ritemrtrOrOrPrs rr_rpcCsHt|dtgdg\}}|std||ft|d}t|d}|S)NrrQz1No distribution found for distro %s (searched %s)r)r find_modulerL ImportError import_modulegetattr)r_locs looked_locsmodrrOrOrPfetchs r} /etc/timezone/etc/localtimecCsjt|t|d|r3|r3tj|}|stj|s-|r%t|t ||dSt ||dS)Nr) rr!rvr,rrislinkr del_filesymlinkcopy)rrtz_conftz_localrrOrOrPset_etc_timezones    rcCs.z td}t|jWStyYdSw)Nz/run/systemd/systemF)rlstatstatS_ISDIRst_moder)resrOrOrPrs   r)Nr~r)WrAloggingrrtrstring urllib.parserJ collectionsr contextlibriortypingrrrrr r r r r rcloudinit.net.netops.iproute2rnetopsrc cloudinitrrrrrrrrrcloudinit.distros.networkingrr4cloudinit.distros.package_management.package_managerr*cloudinit.distros.package_management.utilsrcloudinit.distros.parsersrcloudinit.featuresr cloudinit.netrr r!cloudinit.net.netopsr"cloudinit.net.network_stater#cloudinit.net.rendererr$ ALL_DISTROSr getLoggerrLrcompilerjr. ascii_lettersdigitsrbrvr<rrKCloudInitPickleMixinABCMetarQrwrTrcsearch_for_mirrorrrr}rrrOrOrOrPs    0 0         '   1+< 3