U Jhi@sddlZddlZddlZddlZddlmZddlmZmZm Z m Z m Z m Z ddl mZmZmZmZmZmZmZmZmZmZddlmZddlmZmZmZddlmZe Z!e"e#e$Z%dZ&Gd d d ej'Z(dS) N)exists)AnyDictListOptionalTupleUnion) apiaptcontract event_logger exceptionshttpmessagessecret_managersystemutil)base)ApplicationStatusCanDisableFailureCanDisableFailureReason)status_cache_filez<^linux-image-([\d]+[.-][\d]+[.-][\d]+-[\d]+-[A-Za-z0-9_-]+)$cs8eZdZdZdZdZdZdZdZdZ dZ e e e edfddd Ze edd d Ze edd d Ze eedddZe eedddZe eedddZe eedddZedddZedddZe ejedddZdCeeeeefdfdd Z e ddd Z!e"j#ed!d"d#Z$e dd$d%Z%e"j#d&d'd(Z&e"j#d&d)d*Z'e"j#d&d+d,Z(d-d.Z)d/d0Z*ee+ee,j-fdd1d2Z.d3d4Z/dDe0ee1fe0ee1feed5fd6d7 Z2dEe"j#eeeedd8d9d:Z3e"j#dd!d;d<Z4dFeeed=d>d?Z5dGe"j#ed@dAdBZ6Z7S)HRepoEntitlementz1/etc/apt/sources.list.d/ubuntu-{name}.{extension}z$/etc/apt/preferences.d/ubuntu-{name}z {}/ubuntuNFT)returncCsdSNselfrr4sz6RepoEntitlement.purge_kernel_check..Fmessage_operationmsgT)research RE_KERNEL_PKGr!rcgroupZis_interactiver Z#NonInteractiveKernelPurgeDisallowedrZrZPURGE_KERNEL_REMOVALr&r<r[rZget_kernel_infoZ uname_releaseZPURGE_CURRENT_KERNELZget_installed_ubuntu_kernelsZPURGE_NO_ALTERNATIVE_KERNELrprompt_for_confirmationZPURGE_KERNEL_CONFIRMATION)r package_listrSrlmZcurrent_kernelZinstalled_kernelsZalternative_kernelsrrqrrb sF   z"RepoEntitlement.purge_kernel_checkcCsd}|r6|dtj|dtdd|Dd}|rh|dtj|dtdd|Dd}|r|dtjdtjifgdS) NFrVcSsg|] }|jqSrr!rorlrrrrrVsz4RepoEntitlement.prompt_for_purge..TcSsg|]\}}|jqSrr|)rorl_rrrrr`srsrt)rZrZWARN_PACKAGES_REMOVALrZcreate_package_list_strZWARN_PACKAGES_REINSTALLryZPROCEED_YES_NO)rrkrjrSpromptrrrreJs8   z RepoEntitlement.prompt_for_purgecs8tfdd|D}|r4t|tjj|ddS)Ncsg|]}|jkr|jqSrr|r}Zinstalled_packagesrrrrws z3RepoEntitlement.execute_removal..rX)r get_installed_packages_namesZpurge_packagesrZUNINSTALLING_PACKAGES_FAILEDr&)rrkZ to_removerrrriqs zRepoEntitlement.execute_removalcs,tfdd|D}|r(t|dS)Ncs*g|]"\}}|jkrd|j|jqS)z{}={})r!r&Zver_str)rorlrprrrrrs z5RepoEntitlement.execute_reinstall..)r rZreinstall_packages)rrjZ to_reinstallrrrrhs  z!RepoEntitlement.execute_reinstallc Cstjtjj|jdf}|j}|didi}|d}|sTtjtjj|jdfS|d}|sxtjtj j|jdfSt j tj d}|D]8}t |j|||}|rtjtjj|jdf}qq|jr|jD]*} t | stjtjj|j| dfSq|S)Nrar*r+r1r5)Z error_msg)rUrl)rDISABLEDrZSERVICE_NOT_CONFIGUREDr&r<r-r.ZNO_APT_URL_FOR_SERVICEZNO_SUITES_FOR_SERVICEr Zget_apt_cache_policyZAPT_POLICY_FAILEDrurvr)ZENABLEDZSERVICE_IS_ACTIVEcheck_packages_are_installedr0Z is_installedZ SERVICE_DISABLED_MISSING_PACKAGEr!) rZcurrent_statusr-r+repo_url repo_suitesZpolicyZsuiteZ service_matchrlrrrapplication_statussN       z"RepoEntitlement.application_statuscCsF|j}tddt|dDr,dS|s4dSt|t|kS)zCheck if apt url delta should be applied. :param apt_url: string containing the apt url to be used. :return: False if apt url is already found on the source file. True otherwise. css|]}|dVqdS)#N) startswith)rolinerrr sz. FT)r'allrZ load_filestripsplitbool)rr3Zapt_filerrr_check_apt_url_is_appliedsz)RepoEntitlement._check_apt_url_is_applied) orig_accessdeltas allow_enablerc s6t|||rdS|di}|di}|d}|d}t}|rZ|rZ|} n |\} } | tjkrtdS| |st d|j |t tjj|j d|di} | did} | rt|j| |j|t|t|r2t d |t tjjd |d |jt|d dS) a1Process any contract access deltas for this entitlement. :param orig_access: Dictionary containing the original resourceEntitlement access details. :param deltas: Dictionary which contains only the changed access keys and values. :param allow_enable: Boolean set True if allowed to perform the enable operation. When False, a message will be logged to inform the user about the recommended enabled service. :return: True when delta operations are processed; False when noop. Tr*r+r1r,Fz.New aptURL, updating %s apt sources list to %srTz%New additionalPackages, installing %r, rX)rz)rFprocess_contract_deltasr.rreadZ"_check_application_status_on_cacherrrrr;rVr!r@rZREPO_UPDATING_APT_SOURCESr&r remove_auth_apt_repor'r4rgr ProgressWrapperrYZ REPO_REFRESH_INSTALLING_PACKAGESr[r\) rrrrZdelta_entitlementZdelta_directivesZ delta_apt_urlZdelta_packagesZ status_cacherr~Zorig_entitlementZold_urlrLrrrsV          z'RepoEntitlement.process_contract_deltas)rSrzcleanup_on_failurercCs|s |j}|sdS|d|jdz||Wn*tjk r^|rX|t YnX| t j j |jd|jrddi}ddd g}nd}g}ztj|||d Wn<tjk r|rtd |j|t YnXdS) zInstall contract recommended packages for the entitlement. :param package_list: Optional package list to use instead of self.packages. :param cleanup_on_failure: Cleanup apt files if apt install fails. NrsZ pre_installraZDEBIAN_FRONTENDZnoninteractivez--allow-downgradesz$-o Dpkg::Options::="--force-confdef"z$-o Dpkg::Options::="--force-confold")r0 apt_optionsoverride_env_varsz.Apt install failed, removing apt config for {})r0rZZ messagingr.Z_update_sources_listr UbuntuProErrorrgr rrSrZINSTALLING_SERVICE_PACKAGESr&r<apt_noninteractiver run_apt_install_commandr;rVr!)rrSrzrrrrrrr\!sJ  z RepoEntitlement.install_packagesc Csdd}d}d}|jjs|jjrNtd|jjtj}td|jjtj}tjj }n@|jj s^|jj rtd|jj tj}td|jj tj}tjj }tj |||d|j}|j}|ddi}|}|d} | stj|jd|d } | stj|jd|d } | stj|jd|jr^|js:tj|j|jd |jj|jd } t| | |j|jg} ttjsx| d ttj!s| d| r|"dt#j$jd%| dztj&| dWn(tj'k r|(t)*YnXt+||j,| || |j-|j.|j/|0t#j1j|jd zt2|Wn,tj'k r^|j(t)*ddYnXdS)zSetup apt config based on the resourceToken and directives. Also sets up apt proxy if necessary. :raise UbuntuProError: on failure to setup any aspect of this apt configuration NrZhttps) http_proxy https_proxyZ proxy_scoper*r+aptKeyrEr1r5rDr|zapt-transport-httpszca-certificatesrVrrXF)run_apt_update)3r:Zglobal_apt_http_proxyZglobal_apt_https_proxyrZvalidate_proxyZPROXY_VALIDATION_APT_HTTP_URLZPROXY_VALIDATION_APT_HTTPS_URLr Z AptProxyScopeZGLOBALZua_apt_http_proxyZua_apt_https_proxyZUACLIENTZsetup_apt_proxyr'r-r.r>r Z RepoNoAptKeyr!MissingAptURLDirectiveZ RepoNoSuitesrrHZRepoPinFailNoOriginr<repo_pref_file_tmplr&Zadd_ppa_pinningrZAPT_METHOD_HTTPS_FILErcZCA_CERTIFICATES_FILErZrZINSTALLING_PACKAGESr[rrrgr rZadd_auth_apt_repor(rBr4check_updates_pocketrSZAPT_UPDATING_LISTZupdate_sources_list)rrSrrZscope repo_filenameZ resource_cfgr+r=rrrrepo_pref_fileZprerequisite_pkgsrrrrY\s          z RepoEntitlement.setup_apt_config)override_snapshot_urlscCs|dk r|}n|j}|}|jdidid}|j|}z|d\}}Wntk rrd}|}YnXtj ||g|D]}|rt |||qdS)Nr*r+r1:Zbearer) r4r>r-r.r(r&r ValueErrorrZsecretsZ add_secretr Zadd_apt_auth_conf_entry)rrr4Z credentialsrZusernameZpasswordZurlrrrupdate_apt_auths*   zRepoEntitlement.update_apt_auth)rSrc Cstj}|j}|j|jdi}|di}|d}|sPtj |jd|j |}| t jj |jdt|||j|jt|||jr|jj |jd}t||r| t jtdS)zRemove any repository apt configuration files. :param run_apt_update: If after removing the apt update command after removing the apt files. r*r+r1rrar|N)rr#r$r'r8Z entitlementsr!r.r rr(r&rSrZREMOVING_APT_CONFIGURATIONr<r rr4rBZremove_apt_list_filesrrZensure_file_absentZAPT_UPDATING_LISTSZrun_apt_update_command) rrSrr$rr*Zaccess_directivesrrrrrrgs6       z!RepoEntitlement.remove_apt_config)F)F)NT)N)T)8__name__ __module__ __qualname__r%rr(rHrrZsupports_purgerpropertyrintstrrr'r)rr0rr3r4r6r>rrAabcabstractmethodrBrrrGrRr rr]r^rmrbrerirhrrZ NamedMessagerrrrrr\rYrrg __classcell__rrrLrr$s  ,E ' 1  H  ;h r))rr/Zloggingruos.pathrtypingrrrrrrZuaclientr r r r r rrrrrZuaclient.entitlementsrZ(uaclient.entitlements.entitlement_statusrrrZuaclient.files.state_filesrZget_event_loggerr@Z getLoggerZreplace_top_level_logger_namerr;rwZ UAEntitlementrrrrrs  0