x[hF) @UdZddlZddlZddlZddlZddlmZddlmZm Z m Z m Z ddl m Z ddlmZddlmZddlmZmZmZdd lmZdd lmZdd lmZd egegd Zeed<ej<eZ de!de"de!fdZ#dede"de"fdZ$defdZ%de"dede de!ddf dZ&ddZ'y)zFSet Passwords: Set user passwords and enable/disable SSH password authN)List)features lifecyclesubputil)Cloud)Config) MetaSchema) ALL_DISTROSDistroug_util)log_util) PER_INSTANCE)update_ssh_configcc_set_passwords)iddistros frequencyactivate_by_schema_keysmeta users_listpw_typereturnc|sgS|Dcgc].}|jdd|k(r|d|jddf0c}Scc}w)zDeither password or type: RANDOM is required, user is always requiredtypehashnamepasswordRANDOM)get)rritems C/usr/lib/python3/dist-packages/cloudinit/config/cc_set_passwords.pyget_users_by_typer##sZ  # xx'72&\488J9 :  s3?distroservice extra_argsc |jd|g|tjdy#tj$r }tj d|Yd}~yd}~wwxYw)NrestartzRestarted the SSH daemon.zm'ssh_pwauth' configuration may not be applied. Cloud-init was unable to restart SSH daemon due to error: '%s')manage_serviceLOGdebugrProcessExecutionErrorwarning)r$r%r&es r"_restart_ssh_daemonr/0sZ i>:> -.  % %   >    s),AAAc|jdd}d}t|trtjdddt j |rd}nct j|rd }nKd |d }||jd k(rtjd||y tjd||y t||i}|stjd|y |jrTtjddddd|gjj!}|jdvrt#||dy y t#||y )zApply sshd PasswordAuthentication changes. @param pw_auth: config setting from 'pw_auth'. Best given as True, False, or "unchanged". @param distro: an instance of the distro class for the target distribution @return: None ssh_svcnamesshPasswordAuthenticationz-Using a string value for the 'ssh_pwauth' key22.2z&Use a boolean value with 'ssh_pwauth'. deprecateddeprecated_version extra_messageyesnozLeaving SSH config 'z ' unchanged.N unchangedz%s ssh_pwauth=%sz$%s Unrecognized value: ssh_pwauth=%sz/No need to restart SSH service, %s not updated. systemctlshowz --property ActiveStatez--value)active activating reloadingz--job-mode=ignore-dependencies) get_option isinstancestrr deprecateris_trueis_falselowerr*r+r-r uses_systemdrstdoutstripr/)pw_authr$r%cfg_namecfg_valbmsgupdatedstates r"handle_ssh_pwauthrR<sF u5G'H'3F%B  ||G w %hZ|< ?gmmo< II($ 8  KK>g N7 34G  CXN       &  ;;=A A !A  B" FG,rcfgcloudargsc |j}|r|d}d|vr%d|dvr|dd=ntj|dd}d}g}g}d|vr|d} tj| dg}d| vr| drt j dd d t | dtr-tjd tj| d|}nUt j d dd tjdtj| d} | r| j}tj| d|}|sU|sS|rQtj||\} } tj| \} }| r | d|g}ntjdg}|s|rAt!|d}|D cgc]\} }|  } } }t!|d}|D cgc]\} }|  }} }g}t!|dD]I\} }t#}| j%| |j%| |f|j%| d|Kt'j(d}|D]}|j+dd\}}|j-|)d|vr%|j%||f|j%|R|dk(s|dk(r t#}|j%|d||j%||f| j%|| r* tjd| |j/|d|r* tjd||j/|dt5|r.d d!j7|f}t9j:d"|zdd#|r[| }t<j>r||z }g}|D]%} |jA||j%|'|rtjd%|tC|jEd&|t5|r$tjd't5||d(ycc}} wcc}} w#t0$r7}|j%|tj2td| Yd}~Td}~wwxYw#t0$r7}|j%|tj2td|Yd}~kd}~wwxYw#t0$r7}|j%|tj2td$|Yd}~Xd}~wwxYw))NrchpasswdlistrTusers)defaultzConfig key 'lists'z22.3zUse 'users' instead.r5z$Handling input for chpasswd as list.zThe chpasswd multiline stringr4zUse string type instead.z0Handling input for chpasswd as multiline string.expire:z2No default or defined user to change password for.textrrz\$(1|2a|2y|5|6)(\$.+){2}RzChanging password for %s:F)hashedz,Failed to set passwords with chpasswd for %szSetting hashed password for %s:z3Failed to set hashed passwords with chpasswd for %sz%Set the following 'random' passwords  z%s %s )stderrfallback_to_stdoutzFailed to set 'expire' for %szExpired passwords for: %s users ssh_pwauthz+%s errors occurred, re-raising the last one)#r$rget_cfg_option_strget_cfg_option_listrrErCrYr*r+ splitlinesget_cfg_option_boolr normalize_users_groupsextract_defaultr-r#rand_user_passwordappendrecompilesplitmatchrX Exceptionlogexclenjoinr multi_logrEXPIRE_APPLIES_TO_HASHED_USERS expire_passwdrRr )rrTrUrVr$rr\plistrchfg multilinerZ_groupsuser _user_configerrorsplist_in_hashed_plist_in hashed_usersrandlistproglineupr.blurbusers_to_expire expired_userss r"handler~s\\F 7  3z?!:J'**3 DA FEJS:--dGRH T>d6l   /#)4  $v,- @A00vuE##>'-"<  LM 33D&A %002E))$&A %X"99#vF&66u=|  $h/0E KKL M F %Z8%-.'$..+J?,;<q< <(X> 2GD!)+H LL  OOT8, - OOtfAhZ0 1  2zz56 D::c1%DAqzz!}(S\&&1v.##A&8qH}*,AOOq!$45A' Q    5u=7   ;\J= x=8 (#E   U"5U  #O66</M$ II((+!((+ I ;]Kcggl+V4 6{ ?VMRj]/<@  a  G   a  I  4!IMM!$KK%DaHHIsT P P!%)P')Q*"R-' Q'0,Q""Q'* R*3,R%%R*- S-6,S((S-c z|dkr tdtjtjtjtj tjtj tjtjg}|jttj|t|z tjtj ztj ztjztj|dj|S)Nz.Password length must be at least 4 characters.) select_from) ValueErrorrandomchoicestringdigitsascii_lowercaseascii_uppercase punctuationextendrYrrand_strrushufflerv)pwlen res_rand_lists r"rmrms qyIJJ  fmm$ f,,- f,,- f(() M MMM**"MM(()(()$$%    NN=! 77= !!rS))(__doc__loggingrrortypingr cloudinitrrrrcloudinit.cloudrcloudinit.configr cloudinit.config.schemar cloudinit.distrosr r r cloudinit.logrcloudinit.settingsrcloudinit.ssh_utilrr__annotations__ getLogger__name__r*rYrDr#r/rRrrmrSr"rsM 55!#.::"+0 }! jg! $         3  ?-v?-DEE6E%EtEEP"rS