o
    wÚ7e  ã                
   @   s  U d Z ddlZddlZddlmZ ddlmZ ddlmZ	 ddlm
Z
mZ ddlmZ ddlmZ dd	lmZmZ dd
lmZ ddlmZ e	 e¡ZdZdddeegeedƒedƒgg dœZeed< eeƒZ ddd„Zddd„Zdededede ddf
dd„Z!dS ) z%Seed Random: Provide random seed dataé    N)ÚBytesIO)Údedent)Úlog)ÚsubpÚutil)ÚCloud)ÚConfig)Ú
MetaSchemaÚget_meta_doc)ÚALL_DISTROS)ÚPER_INSTANCEaP  All cloud instances started from the same image will produce very similar
data when they are first booted as they are all starting with the same seed
for the kernel's entropy keyring. To avoid this, random seed data can be
provided to the instance either as a string or by specifying a command to run
to generate the data.

Configuration for this module is under the ``random_seed`` config key. If
the cloud provides its own random seed data, it will be appended to ``data``
before it is written to ``file``.

If the ``command`` key is specified, the given command will be executed.  This
will happen after ``file`` has been populated.  That command's environment will
contain the value of the ``file`` key as ``RANDOM_SEED_FILE``. If a command is
specified that cannot be run, no error will be reported unless
``command_required`` is set to true.
Úcc_seed_randomzSeed RandomzProvide random seed datazû            random_seed:
              file: /dev/urandom
              data: my random string
              encoding: raw
              command: ['sh', '-c', 'dd if=/dev/urandom of=$RANDOM_SEED_FILE']
              command_required: true
            a_              # To use 'pollinate' to gather data from a remote entropy
            # server and write it to '/dev/urandom', the following
            # could be used:
            random_seed:
              file: /dev/urandom
              command: ["pollinate", "--server=http://local.polinate.server"]
              command_required: true
            )ÚidÚnameÚtitleÚdescriptionÚdistrosÚ	frequencyÚexamplesÚactivate_by_schema_keysÚmetac                 C   s`   | sdS |r|  ¡ dv rt | ¡S |  ¡ dv rt | ¡S |  ¡ dv r*tj| dd dS td| ƒ‚)Nó    )Úraw)Úbase64Úb64)ÚgzipÚgzF)ÚquietÚdecodez Unknown random_seed encoding: %s)Úlowerr   Úencode_textr   Ú	b64decodeÚdecomp_gzipÚIOError)ÚdataÚencoding© r&   úA/usr/lib/python3/dist-packages/cloudinit/config/cc_seed_random.pyÚ_decodeP   s   

r(   c                 C   sl   | s|rt dƒ‚| st d¡ d S | d }t |¡s,|r$t dj|dƒ‚t d|¡ d S tj| |dd d S )	Nz"no command found but required=truezno command providedr   z+command '{cmd}' not found but required=true)Úcmdz'command '%s' not found for seed_commandF)ÚenvÚcapture)Ú
ValueErrorÚLOGÚdebugr   ÚwhichÚformat)ÚcommandÚrequiredr*   r)   r&   r&   r'   Úhandle_random_seed_command]   s   


ÿr3   r   ÚcfgÚcloudÚargsÚreturnc              
   C   s  |  di ¡}|  dd¡}|  dd¡}tƒ }|r#| t||  d¡d¡ |jj}|r7d|v r7| t |d ¡¡ | ¡ }t	|ƒrOt
 d| t	|ƒ|¡ t ||¡ |  d	d ¡}	|  d
d¡}
ztj ¡ }||d< t|	|
|d W d S  tyƒ } z	t
 d|	|¡ |‚d }~ww )NÚrandom_seedÚfilez/dev/urandomr$   r   r%   )r%   z0%s: adding %s bytes of random seed entropy to %sr1   Úcommand_requiredFÚRANDOM_SEED_FILE)r1   r2   r*   z'handling random command [%s] failed: %s)Úgetr   Úwriter(   Ú
datasourceÚmetadatar   r    ÚgetvalueÚlenr-   r.   Úappend_fileÚosÚenvironÚcopyr3   r,   Úwarning)r   r4   r5   r6   ÚmycfgÚ	seed_pathÚ	seed_dataÚseed_bufr?   r1   Úreqr*   Úer&   r&   r'   Úhandlep   s:   ü
€þrM   )N)"Ú__doc__r   rC   Úior   Útextwrapr   Ú	cloudinitr   Úloggingr   r   Úcloudinit.cloudr   Úcloudinit.configr   Úcloudinit.config.schemar	   r
   Úcloudinit.distrosr   Úcloudinit.settingsr   Ú	getLoggerÚ__name__r-   ÚMODULE_DESCRIPTIONr   Ú__annotations__r(   r3   ÚstrÚlistrM   r&   r&   r&   r'   Ú<module>   sB   
ÿ
ÿõâ!

"