gh@ddlZddlZddlZddlZddlmZddlmZmZm Z m Z m Z m Z ddl mZmZmZmZmZmZmZmZmZmZddlmZddlmZmZmZddlmZej@Z!ejDejFe$Z%dZ&Gd d ejNZ(y) N)exists)AnyDictListOptionalTupleUnion) apiaptcontract event_logger exceptionshttpmessagessecret_managersystemutil)base)ApplicationStatusCanDisableFailureCanDisableFailureReason)status_cache_filez<^linux-image-([\d]+[.-][\d]+[.-][\d]+-[\d]+-[A-Za-z0-9_-]+)$c eZdZdZdZdZdZdZdZdZ e de e e dffdZe de fd Ze de fd Ze dee fd Ze dee fd Ze dee fd Ze dee fdZde fdZdefdZe ej6de fdZ d+dedeeeefffd Zde fdZ de!jDdefdZ#de fdZ$de!jDfdZ%de!jDfdZ&de!jDfdZ'dZ(dZ)dee*ee+jXffdZ-dZ. d+de/e e0fd e/e e0fd!edeffd" Z1 d,de!jDd#eee d$eddfd%Z2de!jDddfd&Z3 d-d'eee fd(Z4 d.de!jDd)efd*Z5xZ6S)/RepoEntitlementz1/etc/apt/sources.list.d/ubuntu-{name}.{extension}z$/etc/apt/preferences.d/ubuntu-{name}z {}/ubuntuNFTreturncyNselfs !{{tzz!+CC66==)-4::> v~r#cr|jduxrt|jdkD}|js|syy)Nr)r9len access_only)r will_installs r! enable_stepszRepoEntitlement.enable_stepss8}}D0KS5G!5K   <r#progressc|jtjj|j|j ||j rn|jrbt|jdkDrI|jdtjjdj|jy|j|y)zEnable specific entitlement. @return: True on success, False otherwise. @raises: UbuntuProError on failure to install suggested packages servicerinfo r9T)rurCONFIGURING_APT_ACCESSr-rRsetup_apt_configsupports_access_onlyrrrqr9emitSKIPPING_INSTALLING_PACKAGESjoininstall_packages)r rus r!_perform_enablezRepoEntitlement._perform_enables   + + 2 24:: 2 F  h'  $ $)9)94==!A% 99@@!$$--!8A  ! !( +r#c|jsyy)Nrorp)rhrs r! disable_stepszRepoEntitlement.disable_stepsszzr#c|jr|jr|jdtj|jddt j |j}|j||syg}g}|D]S}t j||j}|r|j|t|fC|j|U|j|||syt|dr|j|j||jrg|jr[|jtj j#|j$|j'|j)y)NryF)exclude_originremove_packagesrRT)rhrgrrPURGE_EXPERIMENTALr get_installed_packages_by_originpurge_kernel_checkget_remote_versions_for_packageappendmaxprompt_for_purgehasattrrremove_apt_configruPURGING_PACKAGESr-rRexecute_reinstallexecute_removal)r rurepo_origin_packagespackages_to_reinstallpackages_to_removepackage alternativess r!_perform_disablez RepoEntitlement._perform_disables` ::$++ MM&("="= > MM&" %#&#G#G $ **+?J$& !!# / 7"BBDKK   *00 #l"34'--g6 7(("$98 4* +  " x( ::$++   ))00tzz0B   " "#8 9  !3 4r#cHg}|D]I}tjt|j}|s*|j |j dK|rJ|j stj|jdtjj|j|jddj|tj j"}|jdtj$j|tj&}|Dcgc]}||vr| } }| s!|jdtj(y|jdt*j,dtj.ifgy cc}w) a* Checks if the purge operation involves a kernel. When package called 'linux-image-*' is in the package list, warn the user that a kernel is being removed. Then, show the user what the current kernel is. If the current kernel is to be removed, and there are no other valid Ubuntu Kernels installed in the system, return False to abort the operation. If there is another Ubuntu kernel - besides the one installed - then prompt the user for confirmation before proceeding. ryrwrz)kernel_versionFmessage_operationmsgT)research RE_KERNEL_PKGr'rgroupis_interactiver#NonInteractiveKernelPurgeDisallowedrrPURGE_KERNEL_REMOVALr-rRrrget_kernel_info uname_releasePURGE_CURRENT_KERNELget_installed_ubuntu_kernelsPURGE_NO_ALTERNATIVE_KERNELrprompt_for_confirmationPURGE_KERNEL_CONFIRMATION) r package_listrulinux_image_versionsrmcurrent_kernelinstalled_kernelsversionalternative_kernelss r!rz"RepoEntitlement.purge_kernel_checks} "# 8G -6A$++AGGAJ7 8 **, DDFF MM--44TZZ4H  MM&#((+?"@ A#335CCN MM--44#15 !' C C E  1#"66# # ' fh&J&JK MM#44 B BC )#s9 Fc d}|r_|jdtj|jdtj|Dcgc]}|j c}d}|rd|jdtj |jdtj|Dcgc]\}}|j c}}d}|r3|jdtjdtjifgycc}wcc}}w)NFryTrr) rrWARN_PACKAGES_REMOVALrcreate_package_list_strr'WARN_PACKAGES_REINSTALLrPROCEED_YES_NO)r rrrupromptr_s r!rz RepoEntitlement.prompt_for_purgeFs   MM&("@"@ A MM,,1CDgW\\D  F MM&("B"B C MM,,6KLlwW\\L  F  MM#44 7 78 3EMs D&Dctj}|Dcgc]}|j|vr |j}}|r5tj|tj j |yycc}w)Nr{)r get_installed_packages_namesr'purge_packagesrUNINSTALLING_PACKAGES_FAILEDr-)r rinstalled_packagesr to_removes r!rzRepoEntitlement.execute_removalms !==?. ||11 LL     55<<&=    s!A4ctj}|Dcgc]9\}}|j|vr&dj|j|j;}}}|rtj |yycc}}w)Nz{}={})r rr'r-ver_strreinstall_packages)r rrrr to_reinstalls r!rz!RepoEntitlement.execute_reinstallss!==?'< "'||11 NN7<< 9    " "< 0   s>A4ctjtjj |j f}|j }|jdijdi}|jd}|s:tjtjj |j fS|jd}|s:tjtjj |j fStjtj}|D]p}tj|jj |||}|s6tj tj"j |j f}n|j$rc|j&D]T} tj(| rtjtj*j |j,| fcS|S)Nrr3r4r<rD) error_msg)rxr)rDISABLEDrSERVICE_NOT_CONFIGUREDr-rRr6r7NO_APT_URL_FOR_SERVICENO_SUITES_FOR_SERVICEr get_apt_cache_policyAPT_POLICY_FAILEDrrr1ENABLEDSERVICE_IS_ACTIVEcheck_packages_are_installedr9 is_installed SERVICE_DISABLED_MISSING_PACKAGEr') r current_statusr6r4repo_url repo_suitespolicysuite service_matchrs r!application_statusz"RepoEntitlement.application_statuss  & &  + + 2 2 2 D  ..$((;?? " >>(+!**//66TZZ6H !nnX. !**..55DJJ5G  ))H4N4NO EII++228UCVM%--..55DJJ5G"   , ,== ''0)22 AAHH$(IIwI r#c|j}tdtj|j j dDry|syt |tj|vS)zCheck if apt url delta should be applied. :param apt_url: string containing the apt url to be used. :return: False if apt url is already found on the source file. True otherwise. c3>K|]}|jdyw)#N) startswith).0lines r! z.s!  OOC  s FT)r.allr load_filestripsplitbool)r r>apt_files r!_check_apt_url_is_appliedz)RepoEntitlement._check_apt_url_is_appliedsm>>  ((288:@@F  Gv//99::r# orig_accessdeltas allow_enablect ||||ry|jdi}|jdi}|jd}|jd}tj}|r|r|j } n|j \} } | tjk(ry|j|stjd|j|tjtjj!|j|jdi} | jdijd} | r+t#j$|j&| |j(|j+t-j.|j1t-j.|r}tjd |tjtj2j!d j5| |j7t-j.| y) a1Process any contract access deltas for this entitlement. :param orig_access: Dictionary containing the original resourceEntitlement access details. :param deltas: Dictionary which contains only the changed access keys and values. :param allow_enable: Boolean set True if allowed to perform the enable operation. When False, a message will be logged to inform the user about the recommended enabled service. :return: True when delta operations are processed; False when noop. Tr3r4r<r5Fz.New aptURL, updating %s apt sources list to %srwz%New additionalPackages, installing %r, r{)r)reprocess_contract_deltasr7rread"_check_application_status_on_cacherrrrrPryr'r[rREPO_UPDATING_APT_SOURCESr-r remove_auth_apt_repor.rBrr ProgressWrapperr} REPO_REFRESH_INSTALLING_PACKAGESrr)r rrrdelta_entitlementdelta_directives delta_apt_urldelta_packages status_cacherrorig_entitlementold_urlrms r!rz'RepoEntitlement.process_contract_deltass$ 7 *; M"JJ}b9,00rB(,,X6 )--.BC(--/  !%!H!H!J $($;$;$= !  !2!;!; ;--m< HH@   JJ2299$))9L  +}bA &**<<@@JG((NNGT-?-?  " "3#6#6#8 9  ! !#"5"5"7 8  HH>+=+=m+LM   % %h /   0 0 7 7djj 7 I   " "!24D E K !% K   ' '%'"3 +(( !&&s':':'<=  4(( !DKK  &&s':':'<=  sB;"C8;:C58A(E cp d}d}d}|jjs|jjrtjd|jjtj }tjd|jjtj }tjj}n|jjs|jjrtjd|jjtj }tjd|jjtj }tjj}tj||||j}|j}|dj!di}|j#}|j!d} | s t%j&|j(|j!d } | s t%j*|j(|j!d } | s t%j,|j(|j.r|j0s+t%j2|j(|j4 |j6j9|j( } tj:| | |j0|j.g} t=tj>s| jAd t=tjBs| jAd| rV|jEdtFjHj9djK|  tjL| tjV||jXj9| || |jZ|j\|j_tFj`j9|j4  tjb|y#t$jN$r%|jQtSjTwxYw#t$jN$r'|jQtSjTdwxYw)zSetup apt config based on the resourceToken and directives. Also sets up apt proxy if necessary. :raise UbuntuProError: on failure to setup any aspect of this apt configuration Nrhttps) http_proxy https_proxy proxy_scoper3r4aptKeyrdr<rDrcr'zapt-transport-httpszca-certificatesryrr{F)run_apt_update)2rNglobal_apt_http_proxyglobal_apt_https_proxyrvalidate_proxyPROXY_VALIDATION_APT_HTTP_URLPROXY_VALIDATION_APT_HTTPS_URLr AptProxyScopeGLOBALua_apt_http_proxyua_apt_https_proxyUACLIENTsetup_apt_proxyr.r6r7rVr RepoNoAptKeyr'MissingAptURLDirective RepoNoSuitesr"rgRepoPinFailNoOriginrRrepo_pref_file_tmplr-add_ppa_pinningrAPT_METHOD_HTTPS_FILErCA_CERTIFICATES_FILErrINSTALLING_PACKAGESrr rrr radd_auth_apt_repor0r`rBruAPT_UPDATING_LISTupdate_sources_list)r rur rscope repo_filename resource_cfgr4rSrrrrepo_pref_fileprerequisite_pkgss r!r}z RepoEntitlement.setup_apt_configXs   88 ) )TXX-L-L,,..22J --//33K %%,,E XX ' '488+F+F,,**22J --++33K %%..E !{  ++ !-044\2F ''))))499E E>>(+33TYYO O nnX. ))499E E  ! !;; 44%)YY**"55<<$))<LN    &&  c//0  $ $%: ;c../  $ $%6 7  MM,,33!YY'894   ++5FG      % %h /           (44;;;LM   # #M 2#,, &&s':':'<= $((   " "3#6#6#8 " O  sQ*Q;8Q8;:R5override_snapshot_urlsc||}n |j}|j}|jjdijdijd}|jj |} |j d\}}tjj||g|zD]}|stj|||y#t$rd}|}YTwxYw)Nr3r4r<:bearer) rBrVr6r7r0r-r ValueErrorrsecrets add_secretr add_apt_auth_conf_entry)r r0rB credentialsrusernamepasswordurls r!update_apt_authzRepoEntitlement.update_apt_auths " -2M ..M--/  $ $]B 7 Sr " S]  %%,,X6 #!,!2!23!7 Hh ))(3: - EC++C8D E  #H"H #s9C C"!C"rcvtjj}|j}|jj |j jdi}|jdi}|jd}|s tj|j |jj|}|jtjj|jt!j"|||j$|j&t!j(|||j*r;|j,j|j }tj.||r4|jtj0t!j2yy)zRemove any repository apt configuration files. :param run_apt_update: If after removing the apt update command after removing the apt files. r3r4r<rrrN)rr)r*r.rK entitlementsr'r7rr r0r-rurREMOVING_APT_CONFIGURATIONrRr rrBr`remove_apt_list_filesr"r#ensure_file_absentAPT_UPDATING_LISTSrun_apt_update_command) r rurr*r,r3access_directivesrr.s r!rz!RepoEntitlement.remove_apt_configs[((*11 --::rBrErVrr^abcabstractmethodr`rrrfrtr rrrrrrrrrr NamedMessagerrrrrrr}r<r __classcell__)rms@r!rr$sHN@MF$) N5c4#8O3OO***$s)  #   tCy   HSM  C84 s  16)- tX/00 1,c(;(;.s*)<)<*X?9L9L?B%%% %N& 1/  (8+@+@"AA B/b;<# C#s(^CS#XC C  CP-1#' 9%%9tCy)9! 9  9vd)<)<ddN=AE&.tCy&9E6 $$)%%$)$)r#r))rLr8loggingros.pathrtypingrrrrrr uaclientr r r r rrrrrruaclient.entitlementsr(uaclient.entitlements.entitlement_statusrrruaclient.files.state_filesrget_event_loggerr[ getLoggerreplace_top_level_logger_namerErPr UAEntitlementrrr#r!r[s  ::   ' 9% %%'g:::8DEP V )d((V )r#