U Jhp: @sddlZddlZddlZddlZddlZddlZddlZddlmZm Z ddl m Z m Z m Z mZmZmZmZmZddl mZddl mZmZddl mZddl mZmZmZddlmZmZmZm Z dd l!m"Z"m#Z#dd l$m%Z%m&Z&m'Z'm(Z(m)Z)e*Z+e,e-e.Z/d Z0d Z1e j2ej3ejd ddZ4d0e j2eej5ej3eje6dddZ7d1e j2e8e6e6ddddZ9d2e j2e j:ddddZ;ddddde j2e8e6e8e6e ee8dddZdd'd(d)Z?e j2d*d+d,Z@e j2e8d-d.d/ZAdS)4N)ListOptional)apicloudsconfigcontract entitlements event_logger exceptions livepatch)log)messagessecret_manager)status)systemtimerutil)APPARMOR_PROFILESCLOUD_BUILD_INFODEFAULT_CONFIG_FILEDEFAULT_LOG_PREFIX) machine_tokennotices)AttachmentDataattachment_data_filemachine_id_fileonly_series_check_marker_filetimer_jobs_state_file)zapt-news.servicezesm-cache.servicezua-timer.servicezua-timer.timerzua-auto-attach.pathzua-auto-attach.servicezua-reboot-cmds.servicezubuntu-advantage.service )cfgcontract_client attached_atcCs<ddlm}tt|dtj|d|||dS)Nrupdate_motd_messagesr!r)uaclient.timer.update_messagingr#rwriter ua_statusrZupdate_activity_token)rr r!r#r)2/usr/lib/python3/dist-packages/uaclient/actions.py_handle_partial_attach9s   r+Frservices_to_be_enabledr r!silentc CsTd}g}g}zN|D]D}t||j|j|d\} } || M}| sH||jqtj|jdqWntjk r} z t|jt |||| W5d} ~ XYn`tj k r||jd}Yn<t k r} zd}||j|| W5d} ~ XYnX|sPt |||t ||r:tj ddt||Ddntjdd|DddS) NT)rnamevariantr.)serviceFcSs,g|]$\}}|tjjt|tdfqS))Z error_msgZlog_path)r ZUNEXPECTED_ERRORformatstrpro_logZget_user_or_root_log_file_path).0r/Z exceptionr)r)r* rsz,_enable_default_services..)failed_servicescSsg|]}|tjfqSr))r Z!E_ATTACH_FAILURE_DEFAULT_SERVICES)r5r/r)r)r*r6s)enable_entitlement_by_namer/r0appendeventZservice_processedr ZConnectivityErrorZservice_failedr+ZUbuntuProError ExceptionZservices_failedZAttachFailureUnknownErrorzipZAttachFailureDefaultServices) rr-r r!r.retr7Zunexpected_errorsZenable_by_default_serviceent_retreasonexcer)r)r*_enable_default_servicesFsV       rB)rtoken allow_enabler.returnc Csddlm}ddlm}tj|t|}t |}t j j t j jd}|j||d} tj} | didi} tdd | d gD} | d id id d} | r$zt| }Wntjk rYn,Xt| }|j|jkrtj|j|jdtjtjj|j|jdt !| |!| z ||Wn2tj"k rl}z|#|W5d}~XYnXtj$%| didt$|}t&!||rt '||(}t)|||||dt*!t+|d||t,-dS)aC Common functionality to take a token and attach via contract backend :raise ConnectivityError: On unexpected connectivity issues to contract server or inability to access identity doc from metadata service. :raise ContractAPIError: On unexpected errors when talking to the contract server. r)+check_entitlement_apt_directives_are_uniquer")Ztz)Zcontract_tokenZ attachment_dtZmachineTokenInfo contractInfocss*|]"}|ddkr|d|fVqdS)typesupportN)get)r5rAr)r)r* sz$attach_with_token..ZresourceEntitlementsrIZ affordancesZ onlySeriesN)releaseseries_codenameZ machineIdr,r$).Zuaclient.entitlementsrFr&r#rZsecretsZ add_secretrZget_machine_token_filerUAContractClientdatetimeZnowtimezoneZutcZadd_contract_machinerZget_release_infoZseriesrJdictZget_distro_infor ZMissingSeriesInDistroInfoFileZeolZAttachFailureRestrictedReleaserLrMraddZNoticeZLIMITED_TO_RELEASErr'Z%EntitlementsAPTDirectivesAreNotUniquedeleteZget_machine_id cache_clearrZget_enabled_by_default_servicesrrBrrrstart)rrCrDr.rFr#Zmachine_token_filer r!Znew_machine_tokenZcurrent_seriesrGZsupport_resourceZ only_seriesZallowed_releaseZcurrent_releaserAZ machine_idr-r)r)r*attach_with_tokens                rVT)rcloudrEcCs||}t|||ddS)a\ :raise ConnectivityError: On unexpected connectivity issues to contract server or inability to access identity doc from metadata service. :raise ContractAPIError: On unexpected errors when talking to the contract server. :raise NonAutoAttachImageError: If this cloud type does not have auto-attach support. )rCrDN)Zacquire_pro_tokenrV)rrWrDrCr)r)r* auto_attachs rX) access_onlyr0r. extra_args)rr/rZr0r.r[c Csftj|||||d}|s.ttjj|jd|t \}}|r^|s^ttj j|jd||fS)z Constructs an entitlement based on the name provided. Passes kwargs onto the entitlement constructor. :raise EntitlementNotFoundError: If no entitlement with the given name is found, then raises this error. )rr/r0rZr[)title) rZentitlement_factoryr:infor Z ENABLING_TMPLr2r\enablerZProgressWrapperZ ENABLED_TMPL) rr/rZr0r.r[Z entitlementr>r?r)r)r*r8sr8)simulate_with_tokenshow_all)rr_r`cCs4|rtj|||d\}}ntj||d}d}||fS)z6 Construct the current Pro status dictionary. )rrCr`rr`r)r(Zsimulate_statusr)rr_r`rr=r)r)r*rs  r)filenamerEc Csddddg}d}d}zt|\}}WnJtjk rp}z*tdt|td|t|W5d}~XYnBX|rg}| d D]}t ||r| |qt|d |dS) z Helper which gets ubuntu_pro apparmor logs from the kernel from the last day and writes them to the specified filename. Z journalctlz-bz-kz--since=1 day agoz7apparmor=\".*(profile=\"ubuntu_pro_|name=\"ubuntu_pro_)Nz!Failed to collect kernel logs: %s{}-error )rsubpr ProcessExecutionErrorLOGwarningr3 write_filer2splitresearchr9join)rbcmdZ apparmor_reZ kernel_logs_rAZ apparmor_logsZ kernel_liner)r)r*_write_apparmor_logs_to_file0s (  rp)rb return_codesrEc Csnztj||d\}}Wn:tjk rT}ztd|t|W5d}~XYnXt|d||dS)zCHelper which runs a command and writes output or error to filename.)ZrcsrcNzstdout: {} stderr: {})rrerjr rfrir2r3)rnrbrqouterrrAr)r)r*_write_command_output_to_fileIs( rtr%cs,jptjtjjtffddtjDS)Nc3s&|]}t|tjjr|jVqdS)N) issubclassrZrepoZRepoEntitlementZ repo_file)r5Zentitlement_clsr%r)r*rK^sz#_get_state_files..) Zcfg_pathrlog_filerZua_filepathrrZENTITLEMENT_CLASSESr%r)r%r*_get_state_filesWs rx)r output_dirc Cstdd|tdtjd|tdd|tdd|td d d d tDd |tD]$}td|d||ddgdqrt|dd\}}td|t j |t j dt }td|t |t|}t rtdtntg}t|D]r\}} z0t t| } ttj|d|| Wn6tk r} ztd| t| W5d} ~ XYnXq|ttdD]} tj| rzt| } Wn@tk r} z td| t| WYqW5d} ~ XYnXt | } t r"t| | ttj|tj | | qt!d|t"D]f} tj| rVzt#$| |Wn@tk r} z td| t| WYqVW5d} ~ XYnXqVdS)zG Write all relevant Ubuntu Pro logs to the specified directory zcloud-idz{}/cloud-id.txtz {} statusz{}/livepatch-status.txtzsystemctl list-timers --allz{}/systemd-timers.txtzujournalctl --boot=0 -o short-precise -u cloud-init-local.service -u cloud-init-config.service -u cloud-config.servicez{}/cloud-init-journal.txtzjournalctl -o short-precise {} cSsg|]}d|krd|qS)z.servicez-u {})r2)r5sr)r)r*r6sz collect_logs..z{}/pro-journal.txtzsystemctl status {}z {}/{}.txtr)rqFraz{}/pro-status.json)clsz{}/environment_vars.jsonNz user{}.logz&Failed to collect user log file: %s %s*zFailed to load file: %s %sz{}/apparmor_logs.txtzFailed to copy file: %s %s)%rtr2r Z LIVEPATCH_CMDrm UA_SERVICESrrrijsondumpsrZDatetimeAwareJSONEncoderZget_pro_environmentrxZwe_are_currently_rootr4Zget_all_user_log_filesUSER_LOG_COLLECTED_LIMITZget_user_log_file enumerateZredact_sensitive_logsZ load_fileosrwr;rgrhr3globrisfilebasenamerprshutilcopy) rryr1Z pro_statusroZenv_varsZ state_filesZuser_log_filesZ log_file_idxrvZcontentrAfr)r)r* collect_logsfs       r)F)F)T)N)BrOrrZloggingrrkrtypingrrZuaclientrrrrrr r r r r4r rrr(rrrZuaclient.defaultsrrrrZuaclient.filesrrZuaclient.files.state_filesrrrrrZget_event_loggerr:Z getLoggerZreplace_top_level_logger_name__name__rgrrZUAConfigrNr+ZEnableByDefaultServiceboolrBr3rVZAutoAttachInstancerXr8rpintrtrxrr)r)r)r*s(     F b  %