| Server IP : 209.38.156.173 / Your IP : 216.73.216.122 [ Web Server : Apache/2.4.52 (Ubuntu) System : Linux lakekumayuhotel 5.15.0-136-generic #147-Ubuntu SMP Sat Mar 15 15:53:30 UTC 2025 x86_64 User : root ( 0) PHP Version : 8.1.2-1ubuntu2.22 Disable Function : NONE Domains : 2 Domains MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /usr/lib/python3/dist-packages/cloudinit/distros/__pycache__/ |
Upload File : |
o
����x[h�������������������
���@���s���d�dl�Z�d�dlZd�dlZd�dlZd�dlZd�dlZd�dlZd�dlm Z �d�dl
m
Z
�d�dl
m
Z
�d�dlmZmZmZmZmZmZmZmZmZmZ�d�dlm��m��m
Z
�d�dl
m
Z
m Z m Z mZm!Z!m"Z"m#Z#m$Z$m%Z%m&Z&�d�dl'm(Z(m)Z)�d�dl*m+Z+�d�d l,m-Z-�d�d
l.m/Z/�d�d
l0m1Z1�d�d
l2m3Z3�d�d
l4m5Z5m6Z6m7Z7�d�dl8m9Z9�d�dl:m;Z;�d�dl<m=Z=�dZ>dgdgdgddgddgddgdgd
gg�d
�g�d
�d gd d!gd"�
Z?e�@eA�ZBg�d#�ZCejDejE�d$�ZFeeeG�ee�eeeG��eeeGeeG�f��eeeGeeG�ef��f�ZHG�d%d&��d&eI�ZJG�d'd(��d(e!jKe�jLd)�ZMd*eGd+eNfd,d-�ZOd*eGfd.d/�ZPde&jQfd0d1�ZRd2d3��ZSd4eGd5eeM�fd6d7�ZT 9d>d:d;�ZUd<d=��ZVdS�)?�����N)�
defaultdict)�suppress)�StringIO)
�Any�Dict�List�Mapping�MutableMapping�Optional�Set�Tuple�Type�Union)
�helpers�importer� lifecycle�net�
persistence�ssh_util�subp�
temp_utils�
type_utils�util)�LinuxNetworking�
Networking)�PackageManager)�known_package_managers)�hosts)�+ALLOW_EC2_MIRRORS_ON_NON_AWS_INSTANCE_TYPES)�log_with_downgradable_level)�
activators�dhcp� renderers)�NetOps)�parse_net_config_data)�Renderer�all�alpine�aosc�arch�debian�ubuntu�freebsd� dragonfly�gentoo�cos�netbsd�openbsd)� almalinux�amazon�
azurelinux�centos�
cloudlinux� eurolinux�fedora�mariner�
miraclelinux�
openmandriva�photon�rhel�rocky� virtuozzo)�opensusez
opensuse-leapzopensuse-microoszopensuse-tumbleweed�sle_hpcz sle-micro�sles�suse� openeuler�
OpenCloudOS� TencentOS)
r'���r(���r)���r*���r,���r.���r0���r1����redhatrC���rD���rE���)�chronyzsystemd-timesyncd�ntp�ntpdate�-c�������������������@���s
���e�Zd�ZdS�)�PackageInstallerErrorN)�__name__�
__module__�
__qualname__��rP���rP����</usr/lib/python3/dist-packages/cloudinit/distros/__init__.pyrL���}���s����rL���c����������������
���@���s���e�Zd�ZU�dZdZdZdZdZdZdZ dZ
d d
gZ
d
Z
d
Z
d
gZee�ed<�i�Zeeeeef�f�ed<�dZeZee�ed<�dddd�Ze
j
Z
ee �ed<�dZ dZ!dZ"eed<�dZ#e$e�ed<�dZ%e$e�ed
<�d
d
��Z&d e'd dfd!d"�Z(d#d$��Z)d%e*d e+e,ee-�e.f�e.f�fd&d'�Z/d%e*fd(d)�Z0e1d e2j3fd*d+��Z4e1d ee5j6�fd,d-��Z7e1d e8fd.d/��Z9d0e8fd1d2�Z:d3d4��Z;d�d5d6�Z<d�d7d8�Z=d�d9d:�Z>e?d;d<���Z@eAjBd�d=d>��ZCdd?�d@dA�ZDdBdC��ZEd�dDdE�ZFd�dFdG�ZGdHdI��ZHd�d eIfdJdK�ZJeAjBd�dLdM��ZKeAjBdNdO���ZLdPdQ��ZMdRdS��ZNeAjBd�dTdU��ZOeAjBdVdW���ZPeAjBdXdY���ZQdZd[��ZRd\d]��ZSe?d^d_���ZTd`da��ZUdbdc��ZVe1ddde���ZWdfdg��ZXd eIfdhdi�ZYdjdk��ZZd eIfdldm�Z[dndo��Z\dpdq��Z]drefdsdt�Z^dudv��Z_d�dwdx�Z`dyeadzeIfd{d|�Zbd}d~��Zcd�dd��Zdd�d�d��Zed�d�d��Zfd�d�d��Zgehd�d����Ziehd�d�d���Zjehdd��d�ed
ed�efd�d���Zkd�ed�ed�ed�efd�d��Zld efd�d��Zmd�d�ead�ed�efd�d��Zne?d�ed�ed�ed�ed�ed eaf
d�d���Zoe1d�d����Zpepjqd�d����Zpe?d�e'd e$e'�fd�d���Zre?d�e'd e$e'�fd�d���Zse?d�e'd�e'd e$e'�fd�d���Zte?d�ed dfd�d���Zue?d�ed e$e�fd�d���Zve?d�ed ewfd�d���Zxd�d�d��ZydS�)��Distroz
python3-pipz/usr/libz
/etc/hostsz/etc/doas.confz"/etc/sudoers.d/90-cloud-init-usersz
/etc/hostnamez
/etc/shadowz/var/lib/extrausers/shadowz
^{username}::z^{username}:!:z/usr/share/zoneinfoz root:root�service�init_cmd�renderer_configsN�networking_clsz-Hz-Pz-r)�halt�poweroff�reboot�net_ops����Fz/etc/resolv.conf�osfamily�dhclient_lease_directory�dhclient_lease_file_regexc�����������������C���sT���||�_�||�_||�_|����|�_tj|�_tj |�_
t
�
|�|�_
g�|�_d�|�_d�|�_d|�_d�S�)NT)�_paths�_cfg�namerV����
networkingr!����ALL_DHCP_CLIENTS�dhcp_client_priority�iproute2�Iproute2rZ���r����Runners�_runner�package_managers�
_dhcp_client�_fallback_interface�is_linux)�selfra����cfg�pathsrP���rP���rQ����__init__����s���
zDistro.__init__�ci_pkl_version�returnc�����������������C���sT���d|�j�vs |�jj�s|����|�_t|�d�sd|�_t|�d�s
d|�_t|�d�s(d|�_dS�dS�)z)Perform deserialization fixes for Distro.rb���rj���Nrk���rl���T)�__dict__rb���rV����hasattrrj���rk���rl���)rm���rq���rP���rP���rQ���� _unpickle����s���
�zDistro._unpicklec�����������������C���s8���t�|t�r|S�t�|ttf�rt|�dkrt|�S�td��)N����z?Invalid 'packages' yaml specification. Check schema definition.)�
isinstance�str�list�tuple�len�
ValueError)rm����entryrP���rP���rQ����_validate_entry����s���
�zDistro._validate_entry�pkglistc��������������
���C���s����t�t�}t��}|D�]=}t|t�r>|���D�](\}}|D�]!}|��|�}z
|t|���|��W�q�ty;���t �
d|��Y�qw�qq |�|��|���q t|�|fS�)z�Transform the generic package list to package by package manager.
Additionally, include list of generic packages
zLCannot install packages under '%s' as it is not a supported package manager!)
r����setrw����dict�itemsr~���r
����add�KeyError�LOG�error)rm���r����packages_by_manager�generic_packagesr}����package_manager�
package_list�
definitionrP���rP���rQ����_extract_package_by_manager����s,���
�
����
z"Distro._extract_package_by_managerc�����������
������C���s����d}|���|�\}}t��}|�jD�]?}|�|jt���}||B�}|�|��|���s3t�d|j ��|�
|��q|s6q|�
|�} |�
| ��| rHt�
|| ��t| �|�}q|�
��D�] \}
}
|
j dd��|�jD��v�rcqS|�
|
�|�j|�j�j
|
d���qS|r{t||���d�S�)NzcFailed to install the following packages: %s. See associated package manager logs for more details.z"Package manager '%s' not availablec�����������������S���s���g�|�]}|j��qS�rP���)ra���)�.0�prP���rP���rQ����
<listcomp>�������z+Distro.install_packages.<locals>.<listcomp>)r���)r����r����ri����get� __class__�difference_update� availabler�����debugra����update�install_packages�infor�����
from_configrh���r`���rL���)
rm���r����
error_messager����r�����
total_failed�manager�manager_packages�to_try�failed�
manager_type�packagesrP���rP���rQ���r��������sJ���� �
�
���
�zDistro.install_packagesc�������������� ���C���s����|�j�r|�j�S�|�j}t�|�jdg��}|r<g�}t�d|��|D�]}tjD�]}||j kr0|�
|���nq"t�
d|��q
|r<|}|D�]%}z|��|�_�t�d|j ��|�j�W���S��tj
fyc���t�d|j ��Y�q>w�t�
���)a
��access the distro's preferred dhcp client
if no client has been selected yet select one - uses
self.dhcp_client_priority, which may be overridden in each distro's
object to eliminate checking for clients which will not be provided
by the distro
)�networkrd���z.Using configured dhcp client priority list: %sz4Configured dhcp client %s is not supported, skippingzDHCP client selected: %szDHCP client not found: %s)
rj���rd���r����get_cfg_by_pathr`���r����r����r!���rc����
client_name�append�warning� NoDHCPLeaseMissingDhclientError)rm���rd����config_priority�
found_clients�client_configured�
client_class�clientrP���rP���rQ����
dhcp_client ��sD��� ��
���
�zDistro.dhcp_clientc�����������������C���s
���t��|�jdd�}tj|d�S�)z�Return the configured network activator for this environment.
:returns: The network activator class to use
:raises: NoActivatorException if no activator is found
)r����r ���N��priority)r���r����r`���r ����select_activator)rm���r����rP���rP���rQ����network_activator\��s����
zDistro.network_activatorc�����������������C���sD���t��|�jdd��}tj|d�\}}t�d||��||�j�|�d�}|S�)N)r����r"���r����z-Selected renderer '%s' from priority list: %s)�config) r���r����r`���r"����selectr����r����rU���r����)rm���r����ra����
render_cls�rendererrP���rP���rQ����network_rendererh��s�����zDistro.network_rendererr����c�����������������C���s���|��|��d�S��N)�render_network_state)rm����
network_stater����rP���rP���rQ����_write_network_stateu������zDistro._write_network_statec�����������������C���s4���t�j�|�jt|��}t�j�|�std||f���|S�)Nz(Invalid timezone %s, no file found at %s)�os�path�join�
tz_zone_dirrx����isfile�IOError)rm����tz�tz_filerP���rP���rQ����
_find_tz_filex��s
���
�zDistro._find_tz_filec�����������������C���s���|�j��||�S�r����)r`���r����)rm����opt_name�defaultrP���rP���rQ����
get_option���r����zDistro.get_optionc�����������������C���s���||�j�|<�d�S�r����)r`���)rm���r�����valuerP���rP���rQ����
set_option���r����zDistro.set_optionc�����������������C���s(���|���||�}|��||�j��|��|��d�S�r����)�_select_hostname�_write_hostname�hostname_conf_fn�_apply_hostname)rm����hostname�fqdn�writeable_hostnamerP���rP���rQ����
set_hostname���s���
zDistro.set_hostnamec�������������������C���s���t���S�)z?Wrapper to report whether this distro uses systemd or sysvinit.)�
uses_systemdrP���rP���rP���rQ���r�������s���zDistro.uses_systemdc�����������������C�������t����r������NotImplementedError)rm����command�args�pkgsrP���rP���rQ����package_command���s���zDistro.package_command��forcec�������������
���C���sl���|�j�D�]0}|���st�d|j��qz|j|d��W�q�ty3�}�zt�d|j|��W�Y�d�}~qd�}~ww�d�S�)Nz8Skipping update for package manager '%s': not available.r����z%Failed to update package using %s: %s)ri���r����r����r����ra����update_package_sources� Exceptionr����)rm���r����r�����erP���rP���rQ���r�������s ���
�����z
Distro.update_package_sourcesc�����������������C���s
���t����d�}|dv�r
dS�|S�)N����)�i386�i486�i586�i686r����)r�����uname)rm���r)���rP���rP���rQ����get_primary_arch���s���
zDistro.get_primary_archc�����������������C���s"���|���dg��}|s
|����}t||�S�)N�package_mirrors)r����r�����
_get_arch_package_mirror_info)rm���r)����
mirror_inforP���rP���rQ���r�������s���
z$Distro._get_arch_package_mirror_infoc�����������������C���s���|���|�}t||d�S�)N)�
data_sourcer����)r�����_get_package_mirror_info)rm���r)���r����� arch_inforP���rP���rQ����get_package_mirror_info���s���
�z
Distro.get_package_mirror_infoc�����������������C���s���t����S�r����)r����generate_fallback_config�rm���rP���rP���rQ���r�������s���z Distro.generate_fallback_configc�����������������C���st���|�j�}t||d�}|��||��|r3t�d��z|�j}W�n�tjy+���t�d��Y�dS�w�|� |��dS�t�d��dS�)a��Apply the network config.
If bring_up is True, attempt to bring up the passed in devices. If
devices is None, attempt to bring up devices returned by
_write_network_config.
Returns True if any devices failed to come up, otherwise False.
)r����z/Bringing up newly configured network interfacesz>No network activator found, not bringing up network interfacesTz3Not bringing up newly configured network interfacesF)
r����r$���r����r����r����r����r ����NoActivatorExceptionr�����bring_up_all_interfaces)rm���� netconfig�bring_upr����r����r����rP���rP���rQ����apply_network_config���s"���
��
�zDistro.apply_network_configc�����������������C���r����r����r����)rm����locale�out_fnrP���rP���rQ����
apply_locale�������zDistro.apply_localec�����������������C���r����r����r����)rm���r����rP���rP���rQ����
set_timezone���r����zDistro.set_timezonec�����������������C�������dS�)Nz 127.0.0.1rP���r����rP���rP���rQ����_get_localhost_ip���s���zDistro._get_localhost_ipc�����������������C���r����r����r����r����rP���rP���rQ����
get_locale���s���zDistro.get_localec�����������������C���r����r����r����)rm����filenamer����rP���rP���rQ����_read_hostname���r����zDistro._read_hostnamec�����������������C���r����r����r����)rm���r����r����rP���rP���rQ���r�������r����zDistro._write_hostnamec�����������������C���r����r����r����r����rP���rP���rQ����_read_system_hostname���r����z
Distro._read_system_hostnamec�����������������C���sF���t��d|��z
t�d|g��W�d�S��tjy"���t�t�d|��Y�d�S�w�)Nz2Non-persistently setting the system hostname to %sr����z;Failed to non-persistently adjust the system hostname to %s)r����r����r����ProcessExecutionErrorr����logexc)rm���r����rP���rP���rQ���r�������s����
��zDistro._apply_hostnamec�����������������C���s&���t��|�jd|�j�r
|r
|S�|s|S�|S�)N�prefer_fqdn_over_hostname)r����get_cfg_option_boolr`����
prefer_fqdn)rm���r����r����rP���rP���rQ���r������s���
���zDistro._select_hostnamec�����������������C���s6���g�}|�D�]}|t�vrtd�|���|�t�|���q|S�)Nz&No distributions found for osfamily {})�
OSFAMILIESr|����format�extend)�
family_list�distros�familyrP���rP���rQ����expand_osfamily��s����zDistro.expand_osfamilyc�����������
���
���C���s��|}|���||�}|rtj�|�r|��|�}nd�}|����\}}g�}|r&||kr+|�|��|r5||kr:||kr:|�|��|rK|rK||krKt�d||��d�S�t dd��|D���}t�
d|t
|���|D�]} z|��
|| ��W�q_�t
yz���t�td|| ��Y�q_w�||v�r�|��|��d�S�d�S�)Nz6%s differs from %s, assuming user maintained hostname.c�����������������S���s���g�|�]}|r|�qS�rP���rP���)r�����frP���rP���rQ���r����K�������z*Distro.update_hostname.<locals>.<listcomp>z/Attempting to update hostname to %s in %s filesz!Failed to write hostname %s to %s)r����r����r�����existsr����r����r����r����r����r����r����r{���r����r����r���r���r����)
rm���r����r�����prev_hostname_fn�applying_hostname�
prev_hostname�sys_fn�
sys_hostname�
update_files�fnrP���rP���rQ����update_hostname
��sH���
��
���zDistro.update_hostnamec�����������
������C���sz��d}t�j�|�j�rt�t�|�j��}n
t�d�}tjdd�}|�� ��}|�
|�}d}|s5|�
|||��d}ndd}|D�]*}d�} g�}
t
|�dkrI|d�} t
|�dkrU|dd���}
| d�urc| |krc||
v�rcd}q9|r�t
|�}
|
�||g��|�|��|
D�] }t
|�dkr�|�
||d���qxt
|�dkr�|j
|g|�R����qx|r�t��}
|r�|
�d |���|
�d |���tj|�j|
���d
d
��d�S�d�S�)
N���added��baseFTr[���r���rv���z%s
i�����mode)r����r����r
���hosts_fnr
���� HostsConfr����load_text_file�
make_headerr����� get_entry� add_entryr{���ry���r�����
del_entriesr����write�
write_file�getvalue)
rm���r����r�����header�eh�local_ip� prev_info�
need_changer}����
entry_fqdn�
entry_aliases�
new_entries�contentsrP���rP���rQ����update_etc_hosts_��sP���
�
��zDistro.update_etc_hostsc�����������������C���s���|�j�stt�|�_�|�j�S�)z7Allow distro to determine the preferred ntp client list)�_preferred_ntp_clientsry����PREFERRED_NTP_CLIENTSr����rP���rP���rQ����preferred_ntp_clients���s���
z
Distro.preferred_ntp_clientsc�����������������C���s
���|���d�S�)N�
default_user)r����r����rP���rP���rQ����get_default_user���s���
zDistro.get_default_userc��������������
���K���sv��t��|�r
t�d|��dS�d|v�r|�d�}nd}d|g}d|g}t����r/|�d��|�d��ddd d
d
d
d
dddd�
}dddd�}dg}|�d�} | r�t| t �rV| �
d�} t| t
�rgt
j
d|��d�dd
d
��d
d ��| D��} d�| �|d<�|�d �}
|
r�| �|
��|r�| r�| D�]}
t��|
�s�|��|
��t�d!|
|��q�d"|���v�r�t |d"��|d"<�t|����D�]D\}
}
|
|v�r�|
r�t|
t �r�|�||
�|
g��|
|v�r�|�||
�d#g��q�|�||
�|
g��q�|
|v�r�|
r�|�||
���|�||
���q�|�d$�s�|�d%��r
|�d&��|�d&��n
|�d'��|�d'��t�d(|��z
tj||d)��W�dS��t�y:�}�z t��td*|��|�d+}~ww�),z�
Add a user to the system using standard GNU tools
This should be overridden on distros where useradd is not desirable or
not available.
Returns False if user already exists, otherwise True.
z!User %s already exists, skipping.F�
create_groupsT�useradd�
--extrausersz --commentz--homez--gidz--uidz--groups�
--passwordz--shellz
--expiredatez
--inactivez--selinux-user)
�gecos�homedir�
primary_group�uid�groups�passwd�shell�
expiredate�inactive�
selinux_userz--no-user-groupz--systemz
--no-log-init)�
no_user_group�system�
no_log_initr>��r=���,z The user z) has a 'groups' config value of type dictz22.3z=Use a comma-delimited string or array instead: group1,group2.��
deprecated�deprecated_version�
extra_messagec�����������������S���s���g�|�]}|�����qS�rP�����strip)r�����grP���rP���rQ���r�������r
��z#Distro.add_user.<locals>.<listcomp>r;��z created group '%s' for user '%s'r<���REDACTED�no_create_homerD��z-Mz-mzAdding user %s)� logstringzFailed to create user %sN)r����is_userr����r�����pop�system_is_snappyr����r����rw���rx����splitr����r���� deprecater�����is_group�
create_groupr�����keys�sortedr����r��r���r����r���)rm���ra����kwargsr5���
useradd_cmd�log_useradd_cmd�
useradd_opts�
useradd_flags�
redact_optsr=��r;���group�key�valr����rP���rP���rQ����add_user���s����
��
�
�
�
���zDistro.add_userc�����������
���
���K���s����|��d�}|��dd�}g�d�}|r|�d��|�|��t�d|��z tj||dd�\}}t�d ||��t�|�}|��d
d
�} W�| S��tyU�}
�z t�td
|��|
�d
}
~
ww�)
zD
Add a snappy user to the system using snappy tools
�snapuser�knownF)�snapz
create-userz--sudoerz--jsonz--knownzAdding snap user %sT)rP���capturez snap create-user returned: %s:%s�usernameNz
Failed to create snap user %s) r����r����r����r����r���r���� load_jsonr����r���)
rm���ra���rZ��rd��re���create_user_cmd�out�err�jobjrh��r����rP���rP���rQ����
add_snap_user��s(���
�
���zDistro.add_snap_userc��������������������s����t����r
|�j|�jg}n|�jg}d���fdd�|�jD���}|D�]4}tj�|�s'q
t�� |�}t
�
d����d�|t
j
�s@t
�d��|��q
t
�d��|��t
�
||t
j
�rR�dS�q
d S�)
z�
Check whether username exists in shadow files with empty password.
Support reading /var/lib/extrausers/shadow on snappy systems.
�|c��������������������s���g�|�]}|j���d���qS�)�rh��)r��)r�����patternrp��rP���rQ���r����4��s����
��z?Distro._shadow_file_has_empty_user_password.<locals>.<listcomp>�^�:zUser %s not found in %sz0User %s found in %s. Checking for empty passwordTF)r���rS���shadow_extrausers_fn� shadow_fnr�����#shadow_empty_locked_passwd_patternsr����r����r
��r
���re�findall� MULTILINEr����r����)rm���rh���
shadow_files�shadow_empty_passwd_re�
shadow_file�shadow_contentrP���rp��rQ����$_shadow_file_has_empty_user_password)��s4���
��
���z+Distro._shadow_file_has_empty_user_passwordc�����������
������K���s���d|v�r
|�j�|fi�|��S�|�j|fi�|��
�}d}d}d}d}d|v�r6d}d}|d�r4|��||d���nd}d|v�rOd}d}|d�rM|�j||d�dd��nd}|rk|sjd|v�rdd}ttd tjd
|fd
��|��|�
�}nd|v�ryd}d}|d�syd}|�d
d�r�|�� |��n,|s�|r�|r�t�
d
||��|��
|��n|r�ttd tjd|fd
��n
ttd tjd|fd
��d|v�r�|d�r�|��
||d���d|v�r�|d�r�|��
||d���n|d�du�r�tjd|��d�ddd��d|v��r*|d�}t|t�r�|g}n
t|t��rt|����}|du�r"t|tttf��st�dt|���g�}nt|��p!g�}t�t|�|��d|v��r`|�dg��} | �sCt�d||d���dS�|d�}
tj}
|
�
d
|
�}
|
�
d
|�}
tjt| �||
d
��dS�) a���
Creates or partially updates the ``name`` user in the system.
This defers the actual user creation to ``self.add_user`` or
``self.add_snap_user``, and most of the keys in ``kwargs`` will be
processed there if and only if the user does not already exist.
Once the existence of the ``name`` user has been ensured, this method
then processes these keys (for both just-created and pre-existing
users):
* ``plain_text_passwd``
* ``hashed_passwd``
* ``lock_passwd``
* ``doas``
* ``sudo``
* ``ssh_authorized_keys``
* ``ssh_redirect_user``
rd��FN�plain_text_passwdT�
hashed_passwd)�hashedr>��z24.3z5'passwd' in user-data is ignored for existing user %s)�logger�version�requested_level�msgr�����
lock_passwdzIAllowing unlocking empty password for %s based on empty '%s' in user-dataz�Not unlocking blank password for existing user %s. 'lock_passwd: false' present in user-data but no existing password set and no 'plain_text_passwd'/'hashed_passwd' provided in user-dataz�Not unlocking password for user %s. 'lock_passwd: false' present in user-data but no 'passwd'/'plain_text_passwd'/'hashed_passwd' provided in user-data�doas�sudoz
The value of 'false' in user z's 'sudo' configz22.2zUse 'null' instead.rG���ssh_authorized_keyszZInvalid type '%s' detected for 'ssh_authorized_keys', expected list, string, dict, or set.�ssh_redirect_user�cloud_public_ssh_keysz^Unable to disable SSH logins for %s given ssh_redirect_user: %s. No cloud public-keys present.z$USERz
$DISABLE_USER)�options)
rn��rc���
set_passwdr ���r�����logging�WARNINGr~��r����r���r�����
unlock_passwd�write_doas_rules�write_sudo_rulesr���rU��rw���rx���r����ry����valuesrz���r����r�����typer����setup_user_keys�DISABLE_USER_OPTS�replace)
rm���ra���rZ���pre_existing_user�has_existing_password�ud_blank_password_specified�ud_password_specified�
password_keyrX���
cloud_keys�
redirect_user�disable_optionrP���rP���rQ����
create_userK��s�����
��
�
�
�
�
�
��
�zDistro.create_userc��������������
���C���s����dd|gdd|gf}z
t�dd��|D���}W�n�ty/�}�ztd|dd ��|D��f��|�d
}~ww�zt�|��W�d
S��tyM�}�z t�td
|��|�d
}~ww�)
zL
Lock the password of a user, i.e., disable password logins
r>��z-l�usermodz--lockc�����������������s����"�����|�]
}t��|d���r|V��qdS��r���N�r����which�r�����toolrP���rP���rQ���� <genexpr>������� �z%Distro.lock_passwd.<locals>.<genexpr>zBUnable to lock user account '%s'. No tools available. Tried: %s.c�����������������S�������g�|�]}|d���qS��r���rP����r�����crP���rP���rQ���r���� ��r
��z&Distro.lock_passwd.<locals>.<listcomp>Nz&Failed to disable password for user %s��next�
StopIteration�
RuntimeErrorr���r����r���r���r����)rm���ra����
lock_tools�cmdr����rP���rP���rQ���r������s(����������zDistro.lock_passwdra���c��������������
���C���sL��dd|gdd|gf}z
t�dd��|D���}W�n�ty/�}�ztd|dd ��|D��f��|�d
}~ww�z
tj|d
d
gd
�\}}W�n�tyR�}�z t�td|��|�d
}~ww�|r�dd|gddd|gf}z
t�dd��|D���}W�n�ty��}�ztd|dd ��|D��f��|�d
}~ww�zt�|��W�d
S��ty��}�z t�td|��|�d
}~ww�d
S�)zM
Unlock the password of a user, i.e., enable password logins
r>��z-ur���z--unlockc�����������������s���r���r���r���r���rP���rP���rQ���r�����r���z'Distro.unlock_passwd.<locals>.<genexpr>zDUnable to unlock user account '%s'. No tools available. Tried: %s.c�����������������S���r���r���rP���r���rP���rP���rQ���r����
��r
��z(Distro.unlock_passwd.<locals>.<listcomp>Nr���������rcsz%Failed to enable password for user %sz-dr8��z''c�����������������s���r���r���r���r���rP���rP���rQ���r���,��s
������
�zTUnable to set blank password for user account '%s'. No tools available. Tried: %s.c�����������������S���r���r���rP���r���rP���rP���rQ���r����3��r
��z(Failed to set blank password for user %sr���)rm���ra����
unlock_toolsr���r�����_rl���passwd_set_toolsrP���rP���rQ���r�����s`����������
�
����������zDistro.unlock_passwdc��������������
���C���sB���z
t���dd|g��W�d�S��ty �}�z t�td|��|�d�}~ww�)Nr>��z--expirez
Failed to set 'expire' for %s)r���r����r���r���r����)rm����userr����rP���rP���rQ����
expire_passwd=��s�����zDistro.expire_passwdc��������������
���C���sf���d||f�}dg}|r|��d��z
tj||d|�d��W�dS��ty2�}�z t�td|��|�d�}~ww�)Nz%s:%s�chpasswd�-ezchpasswd for %s)�datarP��z
Failed to set password for %sT)r����r���r����r���r���r����)rm���r���r>��r����
pass_stringr���r����rP���rP���rQ���r���D��s
���
����zDistro.set_passwd�plist_inr���c�����������������C���s>���d��dd��|D���d�}dg|rdgng��}tj||d��d�S�)N�
c�����������������s���s"�����|�]
\}}d���||g�V��qdS�)rs��N�r����)r����ra����passwordrP���rP���rQ���r���[��r���z"Distro.chpasswd.<locals>.<genexpr>r���r���)r���)r����r���)rm���r���r����payloadr���rP���rP���rQ���r���X��s���
��� zDistro.chpasswdc�����������������C���st���d}t��d||��t�||�}|r3t��d|�d���|�d�|kr(t��d��dS�t��d|�d���dS�t��d ��dS�)
Nz�^(?:permit|deny)(?:\s+(?:nolog|nopass|persist|keepenv|setenv \{[^}]+\})+)*\s+([a-zA-Z0-9_]+)+(?:\s+as\s+[a-zA-Z0-9_]+)*(?:\s+cmd\s+[^\s]+(?:\s+args\s+[^\s]+(?:\s*[^\s]+)*)*)*\s*$z3Checking if user '%s' is referenced in doas rule %rz!User '%s' referenced in doas ruler[���z'Correct user is referenced in doas ruleTz.Incorrect user '%s' is referenced in doas ruleFz/doas rule does not appear to reference any user)r����r����rw���searchr`��)rm���r����rule�
rule_pattern�
valid_matchrP���rP���rQ����is_doas_rule_valide��s(���� �
�
�
zDistro.is_doas_rule_validc�����������
���
���C���s"��|s|�j�}|D�]}|��||�s
d||f�}t�|���d�S�qdd|�g}|D�] }|�d|���q&d�|�}|d7�}tj�|�sit �
��|g}zt j
|d�|�dd��W�d�S��t
yh�} �z t �
td|��| �d�} ~ ww�|t �|�vr�z t �||��W�d�S��t
y��} �z t �
td |��| �d�} ~ ww�d�S�)
NzHInvalid doas rule %r for user '%s', not writing any doas rules for user!r��z
# cloud-init User rules for %s�%sr���� ��r��z
Failed to write doas file %sz Failed to append to doas file %s)�doas_fnr���r����r����r����r����r����r����r
��r���r ��r$��r����r���r
���
append_file)
rm���r����rules� doas_filer���r����lines�contentr.��r����rP���rP���rQ���r������sH���
��
�
������zDistro.write_doas_rules�
/etc/sudoersc�����������
���
���C���sf��d}d}d}t�j�|�rt�|�}d}n
t�j�|�r t�|�}d}|���D�]'}|���}t�d|�}|s4q%|� d����} | s>q%t�j�
| �} | |krLd}�nq%|s�zF|svddtj
dd �d
|�dg}
|rgt
�
d
|��|d
�|
�7�}t�||d
��ndtj
dd �d
|�dg}
d
�|
�}t�||��t
�d||��W�n�ty��}
�z t�t
d|��|
�d�}
~
ww�t�|d��d�S�)Nr��Fz/usr/etc/sudoersTz^[#|@]includedir\s+(.*)$r[���z?# See sudoers(5) for more information on "#include" directives:r��r��z#includedir %szUsing content from '%s'r���r���z
Added '#includedir %s' to %szFailed to write %si���)r����r����r
��r���r
���
splitlinesrL��rw��r���r`���abspathr ��r����r����r����r$��r���r����r����r����
ensure_dir)
rm���r����� sudo_base�sudoers_contents�
base_exists�system_sudo_base�
found_include�line�
include_match�
included_dirr���r����rP���rP���rQ����ensure_sudo_dir���sb���
�
�
�
��zDistro.ensure_sudo_dirc�����������
���
���C���sH��|s|�j�}dd|�g}t|ttf�r!|D�]
}|�d||f���qnt|t�r0|�d||f���n
d}t|t�|����d� |�}|d7�}|��
t
j
�
|���t
j
�|�s|t���|g}z
t�|d� |�d��W�d�S��ty{�} �z t�td|��| �d�} ~ ww�|t�|�vr�z t�||��W�d�S��ty��} �z t�td|��| �d�} ~ ww�d�S�) Nr��z# User rules for %sz%s %sz1Can not create sudoers rule addition with type %rr���r���z Failed to write sudoers file %sz#Failed to append to sudoers file %s)�
ci_sudoers_fnrw���ry���rz���r����rx���� TypeErrorr����obj_namer����r���r����r�����dirnamer
��r���r ��r$��r����r���r����r
��r���)
rm���r���r���� sudo_filer���r���r���r���r.��r����rP���rP���rQ���r������sL�����
�������zDistro.write_sudo_rulesc�����������������C���s����d|g}t����r
|�d��|sg�}t��|�r
t�d|��n
z
t�|��t�d|��W�n�ty:���t�� td|��Y�nw�t
|�dkrd|D�]"}t��
|�sRt�d||��qCt�dd d
||g��t�d
||��qCd�S�d�S�)
N�groupaddr7��z(Skipping creation of existing group '%s'zCreated new group %szFailed to create group %sr���zCUnable to add group member '%s' to group '%s'; user does not exist.r���z-az-Gz
Added user '%s' to group '%s')
r���rS��r����rV��r����r����r���r����r����r���r{���rQ��)rm���ra����members�
group_add_cmd�memberrP���rP���rQ���rW����s4���
�
��zDistro.create_groupc�������������
���C���sl���d|�j�|�g}z
|dkrdt|��}W�n�ty'�}�ztd|f��|�d�}~ww�||g�}|r4|�|��|S�)N�shutdown�nowz+%dz?power_state[delay] must be 'now' or '+m' (minutes). found '%s'.)�shutdown_options_map�intr|���r���r����)�clsr���delay�messager����r����r����rP���rP���rQ����shutdown_command(��s&���
������
zDistro.shutdown_commandc�����������������C���s2���|�j�}|����s
d|v�r|dg}tj|d|d�S�dS�)zX
Reload systemd startup daemon.
May raise ProcessExecutionError
� systemctlz
daemon-reloadT�rg��r���N)rT���r����r���)r���r���rT���r���rP���rP���rQ����
reload_init9��s
����zDistro.reload_initr����action�
extra_argsc������������� ���G���s����|�j�}|����s
d|v�r*dg}d|gd|gd|gd|gd|gd|gd|gd |gd
�}n|dg|dg|dg|dg|dg|dg|dg|d gd
�}|||��t|��}tj|d
|d
�S�)
z�
Perform the requested action on a service. This handles the common
'systemctl' and 'service' cases and may be overridden in subclasses
as necessary.
May raise ProcessExecutionError
r����stop�start�enable�disable�restartzreload-or-restartzreload-or-try-restart�status)r���r���r���r���r����reloadz
try-reloadr���Tr���)rT���r����ry���r���)r���r���rS���r���r���rT����cmdsr���rP���rP���rQ����manage_serviceD��s.���
�
�
zDistro.manage_service�layout�model�variantr���c�����������������C���s(���|�����rt�dd||||g��d�S�t���)N� localectlzset-x11-keymap)r����r���r����)rm���r���r���r���r���rP���rP���rQ����
set_keymapi��s�����
zDistro.set_keymapc�����������������C���s.���t�jdd�}t�|d�s|S�tj�|�jdd�S�)NT)� needs_exe�noexecz
cloud-init�clouddir)r����get_tmp_ancestorr����
has_mount_optr����r����r�����
usr_lib_exec)rm����tmp_dirrP���rP���rQ����get_tmp_exec_pathx��s���
zDistro.get_tmp_exec_pathr��r����r����cwdc�������������� ���K���s>���|rd|��d�nd}t�j�dd|d|d�d�|��gfi�|��S�) a`��
Perform a command as the requested user. Behaves like subp()
Note: We pass `PATH` to the user env by using `env`. This could be
probably simplified after bionic EOL by using
`su --whitelist-environment=PATH ...`, more info on:
https://lore.kernel.org/all/20180815110445.4qefy5zx5gfgbqly@ws.net.home/T/
zcd z && r���surK���z-czenv PATH=$PATH � )r���r����)rm���r����r���r
��rZ��� directoryrP���rP���rQ����do_as~��s��� ���z
Distro.do_asr�����
lease_file�pid_file� interface�
config_filec�������������� ���C���s,���|�ddd|d|ddg |rd||g�S�|g�S�)Nz-1z-vz-lfz-pfz-sfz /bin/truez-cfrP���)r����r��r��r��r��rP���rP���rQ����build_dhclient_cmd���s
��� �
�
�zDistro.build_dhclient_cmdc�����������������C���s.���|�j�du�rt���|�_�|�j�st�d|�j��|�j�S�)zADetermine the network interface used during local network config.Nz0Did not find a fallback interface on distro: %s.)rk���r����find_fallback_nicr����r����ra���r����rP���rP���rQ����fallback_interface���s���
�zDistro.fallback_interfacec�����������������C���s
���||�_�d�S�r����)rk���)rm���r����rP���rP���rQ���r�����s���
�pidc�����������������C����V���t��|�d�}|dur)tt��
�t|�W��d����S�1�s
w���Y��t�d|�|��dS�)�=Return the parent pid of a process by parsing /proc/$pid/statr����Nz&/proc/%s/stat has an invalid ppid [%s]�rR����_get_proc_stat_by_indexr���r|���r���r����r�����r���matchrP���rP���rQ����
get_proc_ppid�������
�zDistro.get_proc_ppidc�����������������C���r��)r������Nz&/proc/%s/stat has an invalid pgid [%s]r��r
��rP���rP���rQ����
get_proc_pgid���r ��zDistro.get_proc_pgid�fieldc��������������
���C���s����z%t�jd|��dd����}t�d|�}|s
t�d|�|��W�dS�t|�|��W�S��t y?�}�zt�d|�|��W�Y�d}~dS�d}~w�t
yQ���t�d||�||��Y�dS�w�) z�
parse /proc/$pid/stat for a specific field as numbered in man:proc(5)
param pid: integer to query /proc/$pid/stat for
param field: field number within /proc/$pid/stat to return
z
/proc/%s/statT)�quietz,^(\d+) (\(.+\)) ([RSDZTtWXxKPI]) (\d+) (\d+)z*/proc/%s/stat has an invalid contents [%s]Nz Failed to load /proc/%s/stat. %sz4Unable to match field %s of process pid=%s (%s) (%s))
r���r
��rL��rw��r���r����r����r���r`��r�����
IndexError)r��r"��r���r
��r����rP���rP���rQ���r�����s:������� �
���z
Distro._get_proc_stat_by_index�devicec�����������������C���sL���d�}t��d�r
d|�g}nt��d�rdd|�g}nt�jdddd��t���|��d�S�)N�ejectz/lib/udev/cdrom_idz
--eject-media�eject_media_cmdzeject command not foundz.neither eject nor /lib/udev/cdrom_id are found)r����
description�reason)r���r���r����)r%��r���rP���rP���rQ����
eject_media���s���
�zDistro.eject_media�blockdevc�����������������C���s,���t�j�|��}|�d�rt�d|�|��|S�dS�)a
��Returns underlying block device for a mapped device.
If it is mapped, blockdev will usually take the form of
/dev/mapper/some_name
If blockdev is a symlink pointing to a /dev/dm-* device, return
the device pointed to. Otherwise, return None.
z/dev/dm-z$%s is a mapped device pointing to %sN)r����r�����realpath�
startswithr����r����)r+��r,��rP���rP���rQ����get_mapped_device���s���
�zDistro.get_mapped_device�devpathc�����������
������C���s����t�j�|��}t�j�|�}d|�}t�j�|�s
td|�|f���t�j�|d�}t�j�|�s1td|����t� |��
��}t�j�|�}t�j�
|�}t� t�j�|d���
��}t�j�d|��} | |fS�)z�convert an entry in /dev/ to parent disk and partition number
input of /dev/vdb or /dev/disk/by-label/foo
rpath is hopefully a real-ish path in /dev (vda, sdb..)
z/sys/class/block/%sz%s had no syspath (%s)� partitionz%s not a partition�devz
/dev/block/%s)
r����r����r,���basenamer
��r|���r����r���r���r
���rstripr���)
r/���rpath�bname�syspath�ptpath�ptnum�rsyspath�
disksyspath�
diskmajmin�
diskdevpathrP���rP���rQ����device_part_info
��s$���
��zDistro.device_part_infoc�����������������C���r����)a���Ensure that cloud-init has network connectivity.
For most distros, this is a no-op as cloud-init's network service is
ordered in boot to start after network connectivity has been achieved.
As an optimization, distros may opt to order cloud-init's network
service immediately after cloud-init's local service, and only
require network connectivity if it has been deemed necessary.
This method is a hook for distros to implement this optimization.
It is called during cloud-init's network stage if it was determined
that network connectivity is necessary in cloud-init's network stage.
NrP���r����rP���rP���rQ����wait_for_network1��s����zDistro.wait_for_networkr����)NN)F)r���)r��)rr���N)zrM���rN���rO����pip_package_namer��r
��r���r���r����ru��rt��rv��r�����
default_ownerrT���r���rx����__annotations__rU���r���r ���r���r0��r���rV���r
���r���r���re���rf���rZ���r#����_ci_pkl_versionr���resolve_conf_fnr]���r
���r^���rp���r���ru���r~����
PackageListr
���r���r���r
���r����r�����propertyr!����
DhcpClientr����r ����NetworkActivatorr����r%���r����r����r����r����r����r�����
staticmethodr�����abc�abstractmethodr����r����r����r����r����r�����boolr����r����r����r����r����r����r����r����r����r����r
��r��r/��r2��r4��rc��rn��r~��r���r���r���r���r���ry���r���r���r���r���r���rW���
classmethodr���r���r���r��r
��r��r��r���setterr
��r!��r��r*��r.��rz���r=��r>��rP���rP���rP���rQ���rR�������s��
�
�
�
5;
A+
y"�4,
$
6
)
���
�$�����
�
#rR���)� metaclass�url�transformationsc�����������������C���s����zt�j�|��}W�n
�ty���Y�dS�w�|j}|du�r
dS�|D�]}||�}|du�r,|���S�q
|}|jdur;d�||j�}t�j�|j|d��S�)a���
Apply transformations to a URL's hostname, return transformed URL.
This is a separate function because unwrapping and rewrapping only the
hostname portion of a URL is complex.
:param url:
The URL to operate on.
:param transformations:
A list of ``(str) -> Optional[str]`` functions, which will be applied
in order to the hostname portion of the URL. If any function
(regardless of ordering) returns None, ``url`` will be returned without
any modification.
:return:
A string whose value is ``url`` with the hostname ``transformations``
applied, or ``None`` if ``url`` is unparsable.
Nz{}:{})�netloc) �urllib�parse�urlsplitr|���r�����portr���
urlunsplit�_replace)rO��rP���parts�
new_hostname�transformation�
new_netlocrP���rP���rQ����&_apply_hostname_transformations_to_url?��s"���
��
r\��c��������������������s2���t�d���dd��dd����fdd�dd��g}t|�|�S�)aH��
Given a mirror URL, replace or remove any invalid URI characters.
This performs the following actions on the URL's hostname:
* Checks if it is an IP address, returning the URL immediately if it is
* Converts it to its IDN form (see below for details)
* Replaces any non-Letters/Digits/Hyphen (LDH) characters in it with
hyphens
* Removes any leading/trailing hyphens from each domain name label
Before we replace any invalid domain name characters, we first need to
ensure that any valid non-ASCII characters in the hostname will not be
replaced, by ensuring the hostname is in its Internationalized domain name
(IDN) representation (see RFC 5890). This conversion has to be applied to
the whole hostname (rather than just the substitution variables), because
the Punycode algorithm used by IDNA transcodes each part of the hostname as
a whole string (rather than encoding individual characters). It cannot be
applied to the whole URL, because (a) the Punycode algorithm expects to
operate on domain names so doesn't output a valid URL, and (b) non-ASCII
characters in non-hostname parts of the URL aren't encoded via Punycode.
To put this in RFC 5890's terminology: before we remove or replace any
characters from our domain name (which we do to ensure that each label is a
valid LDH Label), we first ensure each label is in its A-label form.
(Note that Python's builtin idna encoding is actually IDNA2003, not
IDNA2008. This changes the specifics of how some characters are encoded to
ASCII, but doesn't affect the logic here.)
:param url:
The URL to operate on.
:return:
A sanitized version of the URL, which will have been IDNA encoded if
necessary, or ``None`` if the generated string is not a parseable URL.
�.c�����������������S���s���t��|��rd�S�|�S�r����)r����
is_ip_address�r����rP���rP���rQ����<lambda>���r����z&_sanitize_mirror_url.<locals>.<lambda>c�����������������S���s���|���d��d�S�)N�idna�ascii)�encode�decoder_��rP���rP���rQ���r`�����s����c��������������������s���d����fdd�|�D���S�)Nr��c�����������������3���s �����|�]
}|��v�r
|nd�V��qdS��rK���NrP���r�����acceptable_charsrP���rQ���r������s�����
��9_sanitize_mirror_url.<locals>.<lambda>.<locals>.<genexpr>r���r_��rf��rP���rQ���r`�����s�����c�����������������S���s���d��dd��|��d�D���S�)Nr]��c�����������������s���s�����|�]}|��d��V��qdS�re��rK��)r�����partrP���rP���rQ���r������s�����
�rh��)r����rT��r_��rP���rP���rQ���r`�����s���
��)�LDH_ASCII_CHARSr\��)rO��rP��rP���rf��rQ����_sanitize_mirror_urlj��s���&
�
rk��c�����������
���
���C���s$��|�si�}�i�}|r2|j�r2|j�|d<�t�d|j��r2|j�dd��}tr'd|�|d<�n
|jdkr2d|�|d<�|r<|jr<|j|d<�i�}|��d i�����D�]\}}|||<�qF|��d
i�����D�]2\}}g�} |D�] }
z|
|�}W�n �typ���Y�q_w�t |�}|d�ur~| �
|��q_|| �}
|
r�|
||<�qWt
�
d
|��|S�)
N�availability_zonez#^[a-z][a-z]-(?:[a-z]+-)+[0-9][a-z]$r������r����
ec2_region�ec2�region�failsafer���z filtered distro mirror info: %s)
rl��rw��r
��r
����
platform_typerp��r����r����r����rk��r����r����r����)
r����r�����
mirror_filter�substrn���resultsra����mirror�
searchlist�mirrors�tmpl�foundrP���rP���rQ���r�������sJ���
�
�
��
r����c�����������������C���s8���d�}|�D�]}|��d�}||v�r|��S�d|v�r|}q|S�)N�archesr����)r����)r����r)���r�����itemr{��rP���rP���rQ���r�������s���
�r����ra���rr���c�����������������C���sH���t��|�dtgdg�\}}|std|�|f���t��|d��}t|d�}|S�)Nr��rR���z1No distribution found for distro %s (searched %s)r���)r����
find_modulerM����
ImportError�
import_module�getattr)ra����locs�
looked_locs�modr���rP���rP���rQ����fetch���s�����
r����
/etc/timezone�/etc/localtimec�����������������C���sj���t��|t|�����d���|r3|r3tj�|�}|s
tj�|�s-|r%t��|��t� ||��d�S�t��
||��d�S�)Nr���)
r���r$��rx���r3��r����r�����islinkr
���del_file�symlink�copy)r����r�����tz_conf�tz_localr���rP���rP���rQ����set_etc_timezone���s���
�r���c������������������C���s.���z
t��d�}�t�|�j�W�S��ty���Y�dS�w�)Nz/run/systemd/systemF)r�����lstat�stat�S_ISDIR�st_moder����)�resrP���rP���rQ���r������s
���
�r����)Nr���r���)WrI��r���r����rw��r����string�
urllib.parserR���
collectionsr����
contextlibr����ior����typingr���r���r���r���r ���r
���r
���r
���r
���r����
cloudinit.net.netops.iproute2r����netopsre���� cloudinitr���r���r���r���r���r���r���r���r����
cloudinit.distros.networkingr���r����4cloudinit.distros.package_management.package_managerr����*cloudinit.distros.package_management.utilsr
����cloudinit.distros.parsersr
����cloudinit.featuresr
����cloudinit.lifecycler ����
cloudinit.netr ���r!���r"����cloudinit.net.netopsr#����cloudinit.net.network_stater$����cloudinit.net.rendererr%����
ALL_DISTROSr��� getLoggerrM���r����r1���
ascii_letters�digitsrj��rx���rD��r����rL����CloudInitPickleMixin�ABCMetarR���ry���r\��rk���search_for_mirrorr����r����r���r���r����rP���rP���rP���rQ����<module>���s����
0
0
�
'
�� �����������I+<
�8
�