x[h^SSKrSSKrSSKrSSKrSSKrSSKrSSKrSSKJr SSK J r J r SSK J r J r SSK JrJrJrJrJr SSKJr SSKJr SSKJrJrJrJrJrJr SS KJ r SS K!J"r" \RF"\$5r%S r&S r'S r(Sr)Sr*\ RV"SSSS9r,\"S5r-S\S\-4S\S\-44Sjr.\.S5r/\.S5r0SS.S\1S\ Rd4Sjjr3Sr4\.S5r5\S 5r6\.SS!S"S#.S$\1S%\7S&\\8S'\9S(\9S\Rt4 S)jj5r;S*\1S+\1S,\1S\84S-jr<"S.S/5r="S0S1\>5r?"S2S35r@"S4S55rA"S6S75rB"S8S95rC\.SGS:\1S;\RS<\\\1S=\\14S>jj5rE\.S:\1S?S@4SAj5rFSBrG"SCSD\>5rH"SESF5rIg)HN)contextmanager)datetimetimezone)sleeptime)CallableListOptionalTypeVarUnion) ElementTree)escape)distrossubp temp_utils url_helperutilversion)events)errorsz 168.63.129.16boot-telemetryz system-info diagnostic compressedzazure-dsz initialize reporter for azure dsT)name descriptionreporting_enabledTfunc.returnc^U4SjnU$)Nc>[R"TRTR[S9 T"U0UD6sSSS5 $!,(df  g=f)Nrrparent)rReportEventStack__name__azure_ds_reporter)argskwargsrs A/usr/lib/python3/dist-packages/cloudinit/sources/helpers/azure.pyimpl)azure_ds_telemetry_reporter..impl*sA  $ $ $ ((    s A A)rr*s` r)azure_ds_telemetry_reporterr-)s) Kc x[R"5(d [S5e[R S5 [ [ 55[ [R"55- n[R"/SQSS9up#SnU(aSU;aURS5S nU(d [S 5eU[ U5S - -n[R"/SQSS9up#SnU(aSU;aURS5S nU(d [S5eU[ U5S - -n[R"[SS[ R""U[$R&5R)5<S[ R""U[$R&5R)5<S[ R""U[$R&5R)5<3[R*5n[R,"U5 U$![an[S5UeSnAff=f![Ran[S U-5UeSnAf[an[S U-5UeSnAff=f![Ran[SU-5UeSnAf[an[SU-5UeSnAff=f)zWReport timestamps related to kernel initialization and systemd activation of cloud-initz1distro not using systemd, skipping boot telemetryzCollecting boot telemetryz*Failed to determine kernel start timestampN) systemctlshow-pUserspaceTimestampMonotonicT)capture=z8Failed to parse UserspaceTimestampMonotonic from systemdi@Bz-Failed to get UserspaceTimestampMonotonic: %sz H H J  " ":x|| < F F H  " "$hll ik    ## C  JS PGHaOP$  % % ;a ?    JQ N  2  % % > B    M   sa2H/AH.AI5 H+ H&&H+.I2I I2I--I25J9 J J9%J44J9cF[R"5n[R"[SS[ R "5<SUS<SUS<SUSS <S USS <S USS <SUS<3[R5n[R"U5 U$)z%Collect and report system informationzsystem informationzcloudinit_version=z, kernel_version=releasez , variant=variantz, distro_name=distrz, distro_version=r6z , flavor=z, python_version=python) r system_inforrASYSTEMINFO_EVENT_TYPErversion_stringrFrG)inforOs r)get_system_infor[s    D     " " $ O O LO LO LO N  ## C"  Jr. logger_funcmsgc[U5(aU"U5 [R"[SU[R5n[R "US1S9 U$)zReport a diagnostic eventzdiagnostic messagelogexcluded_handler_types)callablerrADIAGNOSTIC_EVENT_TYPErFrG)r^r]rOs r)report_diagnostic_eventresT C    ##  C  UG< Jr.c.[R"[R"U55nSUR S5S.n[ R "[U[R"U5[ R5n[ R"U1SkS9 U$)zReport a compressed eventzgz+b64ascii)encodingdata>r`printwebhookra) base64 encodebyteszlibcompressdecoderrACOMPRESSED_EVENT_TYPEjsondumpsrFrG) event_name event_contentcompressed_data event_datarOs r)report_compressed_eventrxs}((})EFO&&w/J    :##  C   $? Jr.c[RS5 [R"S/SSS9up[SU5 g![a.n[ S[ U5-[RS9 SnAgSnAff=f) zReport dmesg to KVP.zDumping dmesg log to KVPdmesgFT)rpr4z$Exception when dumping dmesg log: %sr\N)r:r;rrx Exceptionrereprwarning)rJrKexs r)report_dmesg_to_kvprsaII() G9UDA-   2T"X =   s%= A5$A00A5c## [R"5n[R"[RR U55 Sv [R"U5 g![R"U5 f=f7fN)osgetcwdchdirpath expanduser)newdirprevdirs r)cdrsKiikGHHRWW   '(  sA B A'B'A??B)ri retry_sleeptimeout_minutesurlheadersrirrc US-[5-nSnSnU(dUS- n[R"XUSS9n[ S X4-[RS9 U$![Ra]n[ SXXR UR 4-[RS9 [5U-U:dS [U5;aeSnAOSnAff=f[U5 U(dMN) zReadurl wrapper for querying wireserver. :param retry_sleep: Time to sleep before retrying. :param timeout_minutes: Retry up to specified number of minutes. :raises UrlError: on error fetching data. <rNr6)rr)rritimeoutzdFailed HTTP request with Azure endpoint %s during attempt %d with exception: %s (code=%r headers=%r)r\zNetwork is unreachablez@Successful HTTP request with Azure endpoint %s after %d attempts) rrreadurlUrlErrorrecoderr:r;strr) rrrirrrattemptresponserIs r)http_with_retriesrs"TV+GGH1  !))4H ,  'II O5""  #EFFAII67 II  $/+s1v56 & k5hsAC+ACCusernamehostname disableSshPwdcp[R"S5nURXUS9nURS5$)Na. 1.0 LinuxProvisioningConfiguration {username} {disableSshPwd} {hostname} 1.0 true )rrrutf-8)textwrapdedentformatencode)rrrOVF_ENV_TEMPLATErets r)build_minimal_ovfrsE  2  ! !M " C ::g r.c|\rSrSrSSS.rSrS S\R4SjjrS S \ \ S\R4S jjr S r g)AzureEndpointHttpClienti> WALinuxAgentz 2012-11-30)zx-ms-agent-namez x-ms-versioncSUS.Ulg)N DES_EDE3_CBC)zx-ms-cipher-namez!x-ms-guest-agent-public-x509-certextra_secure_headers)self certificates r)__init__ AzureEndpointHttpClient.__init__Ds .1<% !r.rcURnU(a5URR5nURUR5 [ XS9$)N)r)rcopyupdaterr)rrsecurers r)getAzureEndpointHttpClient.getJs=,, ll'')G NN444 5 66r.NricURnUb+URR5nURU5 [XUS9$)N)rir)rrrr)rrri extra_headersrs r)postAzureEndpointHttpClient.postQs>,,  $ll'')G NN= ) AAr.r)FNN) r% __module__ __qualname____firstlineno__rrr UrlResponserr bytesr__static_attributes__r,r.r)rr>sU)$G  7 (>(>7@DB!%B   BBr.rc\rSrSrSrSrg)InvalidGoalStateXMLExceptioni[z9Raised when GoalState XML is invalid or has missing data.r,N)r%rrr__doc__rr,r.r)rr[sCr.rc D\rSrSrS S\\\4S\S\SS4Sjjr Sr S r g) GoalStatei_ unparsed_xmlazure_endpoint_clientneed_certificaterNcX l[R"U5UlURS5Ul URS5Ul URS5Ul SH7n[X5bMSU-n[ U[ RS9 [U5e SUlURS 5nUbnU(af[R "S S ["S 9 URR%US S9R&UlURc [S5eSSS5 ggg![Ra!n[ SU-[ RS9 eSnAff=f!,(df  g=f)a@Parses a GoalState XML string and returns a GoalState object. @param unparsed_xml: string representing a GoalState XML. @param azure_endpoint_client: instance of AzureEndpointHttpClient. @param need_certificate: switch to know if certificates is needed. @return: GoalState object representing the GoalState XML string. z!Failed to parse GoalState XML: %sr\Nz./Container/ContainerIdz4./Container/RoleInstanceList/RoleInstance/InstanceIdz ./Incarnation) container_id instance_id incarnationzMissing %s in GoalState XMLzD./Container/RoleInstanceList/RoleInstance/Configuration/Certificateszget-certificates-xmlzget certificates xmlr"T)rz/Azure endpoint returned empty certificates xml.)rET fromstringroot ParseErrorrer:r}_text_from_xpathrrrgetattrrcertificates_xmlrr$r&rcontents)rrrrrIattrr^rs r)rGoalState.__init__`sx&;"  l3DI!112KL00 B  00ABDt"*3d:'E2377 C !%## *  ?/((+2( )-(B(B(F(F)G)(%((06I1 0?1}}  #3a7KK    2s$D,AE$,E!EE!$ E2cXURRU5nUb UR$gr)rfindtext)rxpathelements r)rGoalState._text_from_xpaths'))..'  << r.)rrrrrr)T) r%rrrr rrrboolrrrr,r.r)rr_sA "& 5CJ'5 75 5  5nr.rc\rSrSrSSS.rSrSr\S5r\RS5r\ S 5r \ \ S 55r \ S 5r\ S 5r\ S 5r\ S5rSrg)OpenSSLManagerizTransportPrivate.pemzTransportCert.pem) private_keyrcf[R"5UlSUlUR 5 gr)rmkdtemptmpdir _certificategenerate_certificaters r)rOpenSSLManager.__init__s& ((*   !!#r.cD[R"UR5 gr)rdel_dirrrs r)clean_upOpenSSLManager.clean_ups T[[!r.cUR$rrrs r)rOpenSSLManager.certificates   r.cXlgrr)rvalues r)rrs!r.c,[RS5 URb[RS5 g[UR5 [ R "SSSSSSS S S S S UR SSUR S/5 Sn[R"UR S5R5HnSU;dM XR5- nM XlSSS5 [RS5 g!,(df  N$=f)Nz7Generating certificate for communication with fabric...zCertificate already generated.opensslreqz-x509z-nodesz-subjz/CN=LinuxTransportz-days32768z-newkeyzrsa:3072z-keyoutrz-outr CERTIFICATEzNew certificate generated.) r:r;rrrrcertificate_namesrload_text_file splitlinesrstrip)rrlines r)r#OpenSSLManager.generate_certificates KL    ' II6 7   _ II(**=9**=9 $K++&&}5jl!,;;=0K  + 34 ./5_sA9D D Dc>SSSU/n[R"X!S9up4U$)Nrx509z-nooutri)r)actioncertcmdresultrKs r)_run_x509_actionOpenSSLManager._run_x509_actions'&(F3IIc-  r.c^URSU5n/SQn[R"X2S9upEU$)Nz-pubkey)z ssh-keygenz-iz-mPKCS8z-fz /dev/stdinr)rr)rrpub_key keygen_cmdssh_keyrKs r)_get_ssh_key_from_cert%OpenSSLManager._get_ssh_key_from_certs.'' ;?L YYz8 r.cURSU5nURS5nX#S-SRS5nSRU5$)zopenssl x509 formats fingerprints as so: 'SHA1 Fingerprint=07:3E:19:D1:4D:1C:79:92:24:C6:A0:FD:8D:DA:\ B6:A8:BF:27:D4:73\n' Azure control plane passes that fingerprint as so: '073E19D14D1C799224C6A0FD8DDAB6A8BF27D473' z -fingerprintr5r6:r)rrr?join)rrraw_fpeqoctetss r)_get_fingerprint_from_cert)OpenSSLManager._get_fingerprint_from_certsK&&~{C [[ Q$**3/wwvr.cx[R"U5RS5nURnSSSSSUR S5/n[ UR 5 [R"SR"S 0URD6S S RU5S 9upVS S S 5 U$!,(df  W$=f)zDecrypt the certificates XML document using the our private key; return the list of certs and private keys contained in the doc. z.//DatasMIME-Version: 1.0s<Content-Disposition: attachment; filename="Certificates.p7m"s?Content-Type: application/x-pkcs7-mime; name="Certificates.p7m"s!Content-Transfer-Encoding: base64r.rzuopenssl cms -decrypt -in /dev/stdin -inkey {private_key} -recip {certificate} | openssl pkcs12 -nodes -password pass:T )shellriNr,) rrrrrrrrrrr)rrtagcertificates_contentlinesrJrKs r)_decrypt_certs_from_xml&OpenSSLManager._decrypt_certs_from_xmls mm,-229="xx K N 0  ' ' 0   _YY##)6*D,0,B,BDZZ& FC _ s AB** B9cnURU5n/n0nUR5HnURU5 [R"SU5(a/nM4[R"SU5(dMRSR U5nUR U5nURU5nXtU'/nM U$)zxGiven the Certificates XML document, return a dictionary of fingerprints and associated SSH keys derived from the certs.z[-]+END .*?KEY[-]+$z[-]+END .*?CERTIFICATE[-]+$ )rrappendrematchrr r) rrrJcurrentkeysrrr  fingerprints r)parse_certificates!OpenSSLManager.parse_certificates s**+;<NN$D NN4 xx.558$??"ii0 55kB"==kJ $+[!% r.)rrrN)r%rrrrrrpropertyrsetterr-r staticmethodrr rrr'rr,r.r)rrs-* $ "!!""!0!0B ! !! ! ! !!0!!r.rc \rSrSr\R "S5r\R "S5rSrSr Sr Sr S\ S \ S \S S 4S jr\SSj5r\S\S S 4Sj5rSS\S\S\S\S \4 Sjjr\S\S S 4Sj5rSrg )GoalStateHealthReporteri a {incarnation} {container_id} {instance_id} {health_status} {health_detail_subsection} z
{health_substatus} {health_description}
ReadyNotReadyProvisioningFailedi goal_staterendpointrNc(XlX lX0lg)aCreates instance that will report provisioning status to an endpoint @param goal_state: An instance of class GoalState that contains goal state info such as incarnation, container id, and instance id. These 3 values are needed when reporting the provisioning status to Azure @param azure_endpoint_client: Instance of class AzureEndpointHttpClient @param endpoint: Endpoint (string) where the provisioning status report will be sent to @return: Instance of class GoalStateHealthReporter N) _goal_state_azure_endpoint_client _endpoint)rr1rr2s r)r GoalStateHealthReporter.__init__Fs"&&;#!r.cURURRURRURRUR S9n[ RS5 URUS9 [ RS5 g![a!n[SU-[ RS9 eSnAff=f)N)rrrstatusz Reporting ready to Azure fabric.documentz#exception while reporting ready: %sr\zReported ready to Azure fabric.) build_reportr4rrrPROVISIONING_SUCCESS_STATUSr:r;_post_health_reportr{reerrorrZ)rr;rIs r)send_ready_signal)GoalStateHealthReporter.send_ready_signal[s$$((44))66((4433 %  45   $ $h $ 7 23  #59II    s/B B?B::B?rc vURURRURRURRUR UR US9nURUS9 [RS5 g![a#nSU-n[U[RS9 eSnAff=f)N)rrrr9 substatusrr:z%exception while reporting failure: %sr\z!Reported failure to Azure fabric.) r<r4rrrPROVISIONING_NOT_READY_STATUSPROVISIONING_FAILURE_SUBSTATUSr>r{rer:r?r})rrr;rIr^s r)send_failure_signal+GoalStateHealthReporter.send_failure_signalos$$((44))66((445599# %    $ $h $ 7 78  9A=C #CSYY ?  s&B B8B33B8rrrr9c4SnUb9URR[U5[USUR5S9nURR[[ U55[U5[U5[U5US9nUR S5$)Nr)health_substatushealth_description)rrr health_statushealth_detail_subsectionr)%HEALTH_DETAIL_SUBSECTION_XML_TEMPLATErr"HEALTH_REPORT_DESCRIPTION_TRIM_LENHEALTH_REPORT_XML_TEMPLATErr) rrrrr9rCr health_detail health_reports r)r<$GoalStateHealthReporter.build_reports   FFMM!' !2#) I$"I"IJ$NM77>>s;/0 -{+ .%2 ? ##G,,r.r;c[S5 [RS5 SRUR5nUR R UUSS0S9 [RS5 g)Nrz&Sending health report to Azure fabric.zhttp://{}/machine?comp=healthz Content-Typeztext/xml; charset=utf-8)rirz/Successfully sent health report to Azure fabric)rr:r;rr6r5r)rr;rs r)r>+GoalStateHealthReporter._post_health_reportsc( a :;-44T^^D ##(( )+DE ) CDr.)r5r6r4)rNr)r%rrrrrrOrMr=rDrErNrrrrr-r@rFrr<r>rr,r.r)r-r- s !) ",-5OO -)#*$.!%9"),&"" 7" "  "*!4!4&!9s9t9!90--- -  - -8!EEEdE!Er.r-cT\rSrSrS\4SjrSr\S\RSS4Sj5r \SS\RS\ \ \4S jj5r \S \SS4S j5r\S \S\4S j5r\S\4Sj5r\S\\\4S \S\4Sj5r\S\S\S\4Sj5r\S\S\S\4Sj5rSrg)WALinuxAgentShimir2c,XlSUlSUlgr)r2openssl_managerr)rr2s r)rWALinuxAgentShim.__init__s 9=HL"r.cTURbURR5 ggr)rXrrs r)rWALinuxAgentShim.clean_ups%    +  ) ) + ,r.distrorNc[RS5 URU5 g![a%n[ SU-[R S9 SnAgSnAff=f)NzEjecting the provisioning isoz(Failed ejecting the provisioning iso: %sr\)r:r; eject_mediar{rer?)riso_devr\rIs r) eject_isoWALinuxAgentShim.eject_isosI 12    w '  #:Q>II  s) AAAcSnURc(Ub%[5UlURRnURc[ U5UlUR USLS9nSnUbUR XR5n[XPRUR5nUbURX1S9 UR5 U$)aGets the VM's GoalState from Azure, uses the GoalState information to report ready/send the ready signal/provisioning complete signal to Azure, and then uses pubkey_info to filter and obtain the user's pubkeys from the GoalState. @param pubkey_info: List of pubkey values and fingerprints which are used to filter and obtain the user's pubkey values from the GoalState. @return: The list of user's authorized pubkey values. Nr)r\) rXrrrr_fetch_goal_state_from_azure_get_user_pubkeysr-r2r`r@)rr\ pubkey_infor_http_client_certificater1ssh_keyshealth_reporters r)"register_with_azure_and_fetch_data3WALinuxAgentShim.register_with_azure_and_fetch_datas#'    'K,C#1#3D &*&:&:&F&F #  % % -)@'*D &664D@7   "--jFH1 22DMM    NN7N 2))+r.rcURc[S5UlURSS9n[X RUR5nUR US9 g)zGets the VM's GoalState from Azure, uses the GoalState information to report failure/send provisioning failure signal to Azure. @param: user visible error description of provisioning failure. NFrcr)rrrdr-r2rF)rrr1ris r)®ister_with_azure_and_report_failure7WALinuxAgentShim.register_with_azure_and_report_failures\  % % -)@)FD &666N 1 22DMM  ++ +Dr.rcDUR5nURX!5$)zFetches the GoalState XML from the Azure endpoint, parses the XML, and returns a GoalState object. @param need_certificate: switch to know if certificates is needed. @return: GoalState object representing the GoalState XML )"_get_raw_goal_state_xml_from_azure_parse_raw_goal_state_xml)rrunparsed_goal_state_xmls r)rd-WALinuxAgentShim._fetch_goal_state_from_azures)#'"I"I"K-- #  r.c[RS5 SRUR5n[R "SS[ S9 URRU5nSSS5 [RS 5 WR$!,(df  N/=f![a!n[SU-[RS9 eSnAff=f) zrFetches the GoalState XML from the Azure endpoint and returns the XML as a string. @return: GoalState XML string zRegistering with Azure...z!http://{}/machine/?comp=goalstatezgoalstate-retrievalzretrieve goalstater"Nz9failed to register with Azure and fetch GoalState XML: %sr\z#Successfully fetched GoalState XML.)r:rZrr2rr$r&rrr{rer}r;r)rrrrIs r)rq3WALinuxAgentShim._get_raw_goal_state_xml_from_azures ,-188G ((*0(  5599#>  78      #KKK    s5B" B(B" BB"B"" C ,CC rsc8[UURU5nSR SUR-SUR-SUR-/5n[U[RS9 U$![a!n[SU-[R S9 eSnAff=f)zParses a GoalState XML string and returns a GoalState object. @param unparsed_goal_state_xml: GoalState XML string @param need_certificate: switch to know if certificates is needed. @return: GoalState object representing the GoalState XML z"Error processing GoalState XML: %sr\Nz, zGoalState XML container id: %szGoalState XML instance id: %szGoalState XML incarnation: %s) rrr{rer:r}rrrrr;)rrsrr1rIr^s r)rr*WALinuxAgentShim._parse_raw_goal_state_xml2s "'** Jii0:3J3JJ/*2H2HH/*2H2HH   ;  #4q8KK    sA.. B8BBr1rfc/nURb[UbXURbK[RS5 URR UR5nUR XB5nU$)aGets and filters the VM admin user's authorized pubkeys. The admin user in this case is the username specified as "admin" when deploying VMs on Azure. See https://docs.microsoft.com/en-us/cli/azure/vm#az-vm-create. cloud-init expects a straightforward array of keys to be dropped into the admin user's authorized_keys file. Azure control plane exposes multiple public keys to the VM via wireserver. Select just the admin user's key(s) and return them, ignoring any other certs. @param goal_state: GoalState object. The GoalState object contains a certificate XML, which contains both the VM user's authorized pubkeys and other non-user pubkeys, which are used for MSI and protected extension handling. @param pubkey_info: List of VM user pubkey dicts that were previously obtained from provisioning data. Each pubkey dict in this list can either have the format pubkey['value'] or pubkey['fingerprint']. Each pubkey['fingerprint'] in the list is used to filter and obtain the actual pubkey value from the GoalState certificates XML. Each pubkey['value'] requires no further processing and is immediately added to the return list. @return: A list of the VM user's authorized pubkey values. z/Certificate XML found; parsing out public keys.)rrXr:r;r'_filter_pubkeys)rr1rfrhkeys_by_fingerprints r)re"WALinuxAgentShim._get_user_pubkeysTsl:  ' ' 3'$$0 IIG H"&"6"6"I"I++# ++,?MHr.r{c"/nUHnSU;a US(aURUS5 M)SU;aAUS(a7USnX@;aURX5 MX[RSU5 Mp[RSU5 M U$)aFilter and return only the user's actual pubkeys. @param keys_by_fingerprint: pubkey fingerprint -> pubkey value dict that was obtained from GoalState Certificates XML. May contain non-user pubkeys. @param pubkey_info: List of VM user pubkeys. Pubkey values are added to the return list without further processing. Pubkey fingerprints are used to filter and obtain the actual pubkey values from keys_by_fingerprint. @return: A list of the VM user's authorized pubkey values. rr&zIovf-env.xml specified PublicKey fingerprint %s not found in goalstate XMLzFovf-env.xml specified PublicKey with neither value nor fingerprint: %s)r!r:r})r{rfr%pubkeyr&s r)rz WALinuxAgentShim._filter_pubkeys~s!F& VG_ F7O,&(VM-B$]3 5KK 3 @AKK8#  0"( r.)rr2rXr)r%rrrrrrr-rDistror`r r rjrnrrrdrrqr rrlistrer+dictrzrr,r.r)rVrVseMM ,!D!!@D#nn# $s) #!#J! E# E$ E! E!  $    !  !!E!!!4!!&sEz!2  !B!'#'26' '!'R!T!!!!r.rVr2r\rfr_c[US9nURXUS9UR5 $!UR5 f=f)Nr2)r\rfr_)rVrjr)r2r\rfr_shims r)get_metadata_from_fabricrs@ X .D66G7   s+=r?zerrors.ReportableErrorc[US9nUR5nURUS9 UR5 g!UR5 f=f)Nrrm)rVas_encoded_reportrnr)r2r?rrs r)report_failure_to_fabricrsC X .D))+K 33 3L  s ;A cp[SU-[RS9 [SU-[RS9 g)Nzdhclient output stream: %sr\zdhclient error stream: %s)rer:r;)rJerrs r) dhcp_log_cbrs0$s* #c)syyr.c\rSrSrSrg)NonAzureDataSourceir,N)r%rrrrr,r.r)rrsr.rc\rSrSrSSS.rSSSSSSSSSS. S\\S \\S \\S \\S \\S \\ \ S\S\\S\SS4Sjjr S\4Sjr \ S\SS4Sj5rS!S\S\S\4SjjrS"S\S\S\S\4SjjrSrSrSrS rg)# OvfEnvXmliz)http://schemas.dmtf.org/ovf/environment/1z)http://schemas.microsoft.com/windowsazure)ovfwaNF rpasswordr custom_datadisable_ssh_password_auth public_keyspreprovisioned_vmpreprovisioned_vm_typeprovision_guest_proxy_agentrrrrrrrrrrc XlX lX0lX@lXPlU=(d /UlXplXlXlgrr) rrrrrrrrrrs r)rOvfEnvXml.__init__s>!   &)B&'2'8b!2&<#+F(r.c4URUR:H$r)__dict__)rothers r)__eq__OvfEnvXml.__eq__s}}..r. ovf_env_xmlc>[R"U5nUR SUR 5c [S5e[5nURU5 URU5 U$![Ran[R"US9UeSnAff=f)zParser for ovf-env.xml data. :raises NonAzureDataSource: if XML is not in Azure's format. :raises errors.ReportableErrorOvfParsingException: if XML is unparsable or invalid. ) exceptionNz./wa:ProvisioningSectionz=Ignoring non-Azure ovf-env.xml: ProvisioningSection not found) rrrr"ReportableErrorOvfParsingExceptionr NAMESPACESrr&_parse_linux_configuration_set_section _parse_platform_settings_section)clsrrrIinstances r) parse_textOvfEnvXml.parse_texts P==-D 99/ @ H$O ;77=11$7}} P;;aHa O PsA..BBBrrequired namespacec@URSU<SU<3[R5nU(d8SU-n[R U5 U(a[ R "U5eg[U5S:a$[ R "SU[U54-5eUS$)Nz./rmissing configuration for %rr6*multiple configuration matches for %r (%d)r)findallrrr:r;r!ReportableErrorOvfInvalidMetadatalen)rnoderrrmatchesr^s r)_findOvfEnvXml._finds,,"D )9+?+? 047C IIcN>>sCC \A ::<W&'  qzr. decode_base64 parse_boolcURSU-[R5nU(d9SU-n[R U5 U(a[ R "U5eU$[U5S:a$[ R "SU[U54-5eUSRn U cUn U(a6U b3[R"SRU R555n U(a[R"U 5n U $)Nz./wa:rr6rrr)rrrr:r;rrrrrl b64decoderr?rtranslate_bool) rrrrrrdefaultrr^rs r)_parse_propertyOvfEnvXml._parse_propertys,,w~y/C/CD047C IIcN>>sCCN w* &  +r.cURUSSS9nURUSSS9nURUSSSSS9UlURUSSS9UlURUS SSSS9Ulg) NPlatformSettingsSectionTrPlatformSettingsPreprovisionedVmF)rrrPreprovisionedVMTypeProvisionGuestProxyAgent)rrrrr)rrplatform_settings_sectionplatform_settingss r)r*OvfEnvXml._parse_platform_settings_sectionbs$(JJ +d%/% !!JJ %'9D' "&!5!5   "6" '+&:&:  "';' # ,0+?+?  & ,@, (r.c^/UlURUSSS9nUcgURUSSS9nUcgURS[R5HXnUR USSS9nUR USSS9nUR USS SS 9nUUUS .nURR U5 MZ g) NSSHFr PublicKeysz./wa:PublicKey FingerprintPathValuer)rr)r&rr)rrrrrrr!) rr ssh_sectionpublic_keys_section public_keyr&rrr s r)rOvfEnvXml._parse_ssh_section~sjjUUjC   "jj )   & -55 i22 J..ME/K'' FU'KD((GR%)E +G    # #G , r.) rrrrrrrrr)r)FFN)r%rrrrr rrrr rrr classmethodrrrrrrrr,r.r)rrs`:9J#'"&"&'+48,0"'04,1G3-G3- G 3- G e_ G$,D>Gd4j)G G!) G&*G G./t/S[:    :$ ## #  #  #J ,D 8-r.rr)Jrlrrloggingrr"rrn contextlibrrrrrtypingrr r r r xml.etreer rxml.sax.saxutilsr cloudinitrrrrrrcloudinit.reportingrcloudinit.sources.azurer getLoggerr%r:DEFAULT_WIRESERVER_ENDPOINTrBrXrdrqr$r&rr-rPr[rrArerxrrrrintrrrrr{rrrr-rVrrrrrrr,r.r)rs    %';;'#JJ&* !."%$$++ 2  CL hsAv&6 8CF;K RRj6"  $*     ! 3 33 5/ 3  3  333l 14 DBB:D9D<<~D[E[E|bbJ(,!   NN $s)$ c]  s3K  P-P-r.