d{6ddlZddlZddlZddlZddlZddlZddlZddlZddlm Z  ddl m cm Z ddl m cmcmZddlmZddlmZGddeZy#e$rddlm Z ddlmcmZddlmZddlmZY.wxYw)N)array_to_bytes) OSUtilError) DefaultOSUtilceZdZfdZdZdZdZdZdZdZ dZ d Z d Z d Z dd Zdd ZdZddZfdZddZdZdZdZfdZxZS) BigIpOSUtilc*tt| y)N)superr__init__)self __class__s E/usr/lib/python3/dist-packages/azurelinuxagent/common/osutil/bigip.pyr zBigIpOSUtil.__init__/s k4)+ctddD]_}tjdtjdd}|dk(rtjdnt j d adk(ry td ) aWWait for mcpd to become available All configuration happens in mcpd so we need to wait that this is available before we go provisioning the system. I call this method at the first opportunity I have (during the DVD mounting call). This ensures that the rest of the provisioning does not need to wait for mcpd to be available unless it absolutely wants to. :return bool: Returns True upon success :raises OSUtilError: Raises exception if mcpd does not come up within roughly 50 minutes (100 * 30 seconds) dzChecking to see if mcpd is upzU/usr/bin/tmsh -a show sys mcp-state field-fmt 2>/dev/null | grep phase | grep runningFchk_errrz mcpd is up!Tz5mcpd hasn't completed initialization! Cannot proceed!)rangeloggerinfo shellutilruntimesleepr)r retriesrcs r _wait_until_mcpd_is_initializedz+BigIpOSUtil._wait_until_mcpd_is_initialized2s|Q} G KK7 8vAFGBQw M* JJrN  7 C  rchd}tj|}|dk7rtjd|S)Nz/usr/bin/tmsh save sys configrz,WARNING: Cannot save sys config on 1st boot.)rrrerror)r cmdrs r _save_sys_configzBigIpOSUtil._save_sys_configOs.- ]]3  7 LLG H rc0tjddS)Nz/usr/bin/bigstart restart sshdFr)rrr s r restart_ssh_servicezBigIpOSUtil.restart_ssh_serviceVs}}=uMMrcbtjdj|jdS)Nz/sbin/service {0} stopFrrrformat service_namer$s r stop_agent_servicezBigIpOSUtil.stop_agent_serviceYs&}}5<O>OPZ_``rcbtjdj|jdS)Nz/sbin/chkconfig --add {0}Frr'r$s r register_agent_servicez"BigIpOSUtil.register_agent_service_&}}8??@Q@QR\abbrcbtjdj|jdS)Nz/sbin/chkconfig --del {0}Frr'r$s r unregister_agent_servicez$BigIpOSUtil.unregister_agent_servicebr/rc(|jddgS)Nz /sbin/pidofdhclient) _get_dhcp_pidr$s r get_dhcp_pidzBigIpOSUtil.get_dhcp_pides!!=*"=>>rcy)a>Set the static hostname of the device Normally, tmsh is used to set the hostname for the system. For our purposes at this time though, I would hesitate to trust this function. Azure(Stack) uses the name that you provide in the Web UI or ARM (for example) as the value of the hostname argument to this method. The problem is that there is nowhere in the UI that specifies the restrictions and checks that tmsh has for the hostname. For example, if you set the name "bigip1" in the Web UI, Azure(Stack) considers that a perfectly valid name. When WAAgent gets around to running though, tmsh will reject that value because it is not a fully qualified domain name. The proper value should have been bigip.xxx.yyy WAAgent will not fail if this command fails, but the hostname will not be what the user set either. Currently we do not set the hostname when WAAgent starts up, so I am passing on setting it here too. :param hostname: The hostname to set on the device Nr hostnames r set_hostnamezBigIpOSUtil.set_hostnamehs,rcy)zSets the DHCP hostname See `set_hostname` for an explanation of why I pass here :param hostname: The hostname to set on the device Nr7r8s r set_dhcp_hostnamezBigIpOSUtil.set_dhcp_hostnamesrc|j|rtjd|ydddd|ddd d d d d d d ddg}|j|dj ||j y)a?Create user account using tmsh Our policy is to create two accounts when booting a BIG-IP instance. The first account is the one that the user specified when they did the instance creation. The second one is the admin account that is, or should be, built in to the system. :param username: The username that you want to add to the system :param expiration: The expiration date to use. We do not use this value. :param comment: description of the account. We do not use this value. z%User {0} already exists, skip useraddN /usr/bin/tmshcreateauthuserzpartition-accessadd{zall-partitionsroleadmin}shellbashz!Failed to create user account:{0}err_msgr) get_userentryrr _run_command_raising_OSUtilErrorr(r")r username expirationcommentr!s r useraddzBigIpOSUtil.useradds   h ' KK? J&&(DVX]_bdtFGS#w@ --c;^;e;efn;o-p rc |jdddd|d|gdj||jd}| td |jdddddd|gd |j y ) aChange a user's password with tmsh Since we are creating the user specified account and additionally changing the password of the built-in 'admin' account, both must be modified in this method. Note that the default method also checks for a "system level" of the user; based on the value of UID_MIN in /etc/login.defs. In our env, all user accounts have the UID 0. So we can't rely on this value. :param username: The username whose password to change :param password: The unencrypted password to set for the user :param crypt_id: If encrypting the password, the crypt_id that was used :param salt_len: If encrypting the password, the length of the salt value used to do it. r>modifyr@rApasswordzFailed to set password for {0}rIrEz'The 'admin' user account was not found!z Failed to set password for adminr)rLr(rKrr")r rMrScrypt_idsalt_len userentrys r chpasswdzBigIpOSUtil.chpasswds& -- h*h W4;;HE . G &&w/  GH H -- hX V6 . 8 rcV|jddg|jdddd|gy)awDeletes a user account. Note that the default method also checks for a "system level" of the user; based on the value of UID_MIN in /etc/login.defs. In our env, all user accounts have the UID 0. So we can't rely on this value. We also don't use sudo, so we remove that method call as well. :param username: :return: touchz /var/run/utmpr>deleter@rAN)_run_command_without_raising)r rMs r del_accountzBigIpOSUtil.del_accounts1 ))7O*DE ))?HffV^*_`rcd}tj|Dcgc]}tj||c}D]&}|dj |j dcSt dcc}w)a.Find BIG-IP's CD/DVD device This device is almost certainly /dev/cdrom so I added the ? to this pattern. Note that this method will return upon the first device found, but in my tests with 12.1.1 it will also find /dev/sr0 on occasion. This is NOT the correct CD/DVD device though. :todo: Consider just always returning "/dev/cdrom" here if that device device exists on all platforms that are supported on Azure(Stack) :param dev_dir: The root directory from which to look for devices z(sr[0-9]|hd[c-z]|cdrom[0-9]?)z/dev/{0}rzFailed to get dvd device)oslistdirrematchr(groupr)r dev_dirpattendevdvds r get_dvd_devicezBigIpOSUtil.get_dvd_devicesi257ZZ5HIcBHHVS)I 7C!((166 7455JsA.c J|jtt|di|S)aMount the DVD containing the provisioningiso.iso file This is the _first_ hook that WAAgent provides for us, so this is the point where we should wait for mcpd to load. I am just overloading this method to add the mcpd wait. Then I proceed with the stock code. :param max_retry: Maximum number of retries waagent will make when mounting the provisioningiso.iso DVD :param chk_err: Whether to check for errors or not in the mounting commands r7)rr r mount_dvd)r kwargsr s r rizBigIpOSUtil.mount_dvds& ,,.[$1;F;;rc.tjdy)a_Runs the eject command to eject the provisioning DVD BIG-IP does not include an eject command. It is sufficient to just umount the DVD disk. But I will log that we do not support this for future reference. :param chk_err: Whether or not to check for errors raised by the eject command z'Eject is not supported on this platformN)rwarn)r rs r eject_dvdzBigIpOSUtil.eject_dvds  =>rcd}d}tjd}|dk(rd}nd}tjtjtjtj }t j dd||zz}tjd ||z|jd}tj|jd |}tjd |d} | ||zk(rtjd |t!|}t#d||z|D]} |j%|| }d |vrn|j'd tj(| dz| dzfS)aReturn the interface name, and ip addr of the management interface. We need to add a struct_size check here because, curiously, our 64bit platform is identified by python in Azure(Stack) as 32 bit and without adjusting the struct_size, we can't get the information we need. I believe this may be caused by only python i686 being shipped with BIG-IP instead of python x86_64?? r64bit( BiLiz9SIOCGIFCONF returned more than {0} up network interfaces.slozlatin-1)platform architecturesocketAF_INET SOCK_DGRAM IPPROTO_UDParraystructpack buffer_infofcntlioctlfilenounpackrrlrr_format_single_interface_namedecode inet_ntoa) r ifaceexpected python_arc struct_sizesockbuffparamretretsizeis r get_first_ifzBigIpOSUtil.get_first_ifsg**,Q/  KK}}V^^#..#//1{{3K)? @A D$[0 ,,.q13kk$++-7==s+A. x+- . KK/19 ;d#q+0+> A66tQ?E~ ||I&(8(8ad1R4(IIIrc8|||dzjdddS)Nrprurr)split)r roffsets r rz)BigIpOSUtil._format_single_interface_name0s%F6"9%++E15a88rcVdj|||}tj|dS)z{Add specified route using tmsh. :param net: :param mask: :param gateway: :return: z-/usr/bin/tmsh create net route {0}/{1} gw {2}Fr)r(rr)r netmaskgatewayr!s r route_addzBigIpOSUtil.route_add3s+ !'T7!; }}S%00rctddD]8}tjjdrnt j d:t t|#|S)zReturn device name attached to ide port 'n'. Include a wait in here because BIG-IP may not have yet initialized this list of devices. :param port_id: :return: rrz/sys/bus/vmbus/devices/ ) rr^pathexistsrrr rdevice_for_ide_port)r port_idrr s r rzBigIpOSUtil.device_for_ide_port?sMQ} Gww~~78 2   [$;GDDr)NN)r)z/dev)T)__name__ __module__ __qualname__r rr"r%r*r,r.r1r5r:r<rPrWr\rgrirmrrrr __classcell__)r s@r rr-s|, :N`acc?0.!F a62 < ?(JT9 1EErr)rrr^ryr`r{rrazurelinuxagent.common.futurerazurelinuxagent.common.loggercommonr&azurelinuxagent.common.utils.shellutilutilsr azurelinuxagent.common.exceptionr%azurelinuxagent.common.osutil.defaultr ImportErrorazurelinuxagent.loggerazurelinuxagent.utils.shellutilazurelinuxagent.exception%azurelinuxagent.distro.default.osutilrr7rr rsl$  8 D22>><CaE-aED+775C Ds!A A87A8