§
    Ü~cò  ã                   ó  — U d Z ddlZddlZddlmZ ddlmZmZ ddlm	Z	 ddl
mZ ddlmZmZ ddlmZmZ dd	lmZ dd
lmZ dZdddeegeddgg dœZeed<    ee¦  «        Z d„ Zd d„Zd„ Z	 d!d„Zdedede	dededdfd„ZdS )"z;SSH AuthKey Fingerprints: Log fingerprints of user SSH keysé    N)ÚLogger)Ússh_utilÚutil)ÚCloud)ÚConfig)Ú
MetaSchemaÚget_meta_doc)ÚALL_DISTROSÚug_util)ÚPER_INSTANCE)ÚSimpleTablezÔWrite fingerprints of authorized keys for each user to log. This is enabled by
default, but can be disabled using ``no_ssh_fingerprints``. The hash type for
the keys can be specified, but defaults to ``sha256``.
Úcc_ssh_authkey_fingerprintszSSH AuthKey Fingerprintsz!Log fingerprints of user SSH keyszno_ssh_fingerprints: truezauthkey_hash: sha512)ÚidÚnameÚtitleÚdescriptionÚdistrosÚ	frequencyÚexamplesÚactivate_by_schema_keysÚmetac                 óŒ   — g }t          dt          | ¦  «        d¦  «        D ]"}|                     | ||dz   …         ¦  «         Œ#|S )Nr   é   )ÚrangeÚlenÚappend)Úbin_hashÚsplit_upÚis      úN/usr/lib/python3/dist-packages/cloudinit/config/cc_ssh_authkey_fingerprints.pyÚ_split_hashr!   +   sO   € Ø€HÝ1•c˜(‘m”m QÑ'Ô'ð -ð -ˆØŠ˜  Q¨¡U Ô+Ñ,Ô,Ð,Ð,Ø€Oó    Úsha256c                 ó  — | sdS 	 t          j        |¦  «        }|                     t          j        | ¦  «        ¦  «         d                     t          |                     ¦   «         ¦  «        ¦  «        S # t          t          f$ r Y dS w xY w)NÚ ú:ú?)
ÚhashlibÚnewÚupdateÚbase64Ú	b64decodeÚjoinr!   Ú	hexdigestÚ	TypeErrorÚ
ValueError)Úb64_textÚ	hash_methÚhashers      r    Ú_gen_fingerprintr4   2   s   € Øð ØˆrðÝ”˜YÑ'Ô'ˆØŠ•fÔ& xÑ0Ô0Ñ1Ô1Ð1ØxŠx F×$4Ò$4Ñ$6Ô$6Ñ7Ô7Ñ8Ô8Ð8øÝ•zÐ"ð ð ð ð ˆsˆsð	øøøs   †A.A5 Á5B
Â	B
c                 óÔ   — t          | j        | j        | j        | j        g¦  «        r@| j        r9| j                             ¦   «                              ¦   «         t          j        v rdS dS )NTF)	ÚanyÚkeytyper+   ÚcommentÚoptionsÚlowerÚstripr   ÚVALID_KEY_TYPES)Úentrys    r    Ú_is_printable_keyr>   A   s_   € Ý
ˆEŒM˜5œ<¨¬¸¼ÐFÑGÔGð àŒMð	à”×#Ò#Ñ%Ô%×+Ò+Ñ-Ô-µÔ1IÐIÐIà4Øˆ5r"   ú	ci-info: c                 ój  — |s!|›d| ›d}t          j        |dd¬¦  «         d S dd|z  dd	g}t          |¦  «        }|D ]V}t          |¦  «        rE|j        pd
t          |j        |¦  «        pd
|j        pd
|j        pd
g}	| 	                    |	¦  «         ŒW| 
                    ¦   «         }
|
                     ¦   «         }t          t          |t          ¬¦  «        ¦  «        }t          j        d|›d| ›d|¦  «        g}|                     |¦  «         |D ]}t          j        |›|›ddd¬¦  «         Œd S )Nz3no authorized SSH keys fingerprints found for user z.
TF)ÚconsoleÚstderrÚKeytypezFingerprint (%s)ÚOptionsÚCommentú-)ÚkeyzAuthorized keys from z
 for user ú+ú
)ÚtextrB   rA   )r   Ú	multi_logr   r>   r7   r4   r+   r9   r8   Úadd_rowÚ
get_stringÚ
splitlinesr   ÚmaxÚcenterÚextend)ÚuserÚkey_fnÚkey_entriesr2   ÚprefixÚmessageÚ
tbl_fieldsÚtblr=   ÚrowÚ	authtbl_sÚauthtbl_linesÚmax_lenÚlinesÚlines                  r    Ú_pprint_key_entriesr_   K   sš  € ð ð ð ˆvˆvtttðð 	õ 	Œw¨°UÐ;Ñ;Ô;Ð;ØˆàØ˜iÑ(ØØð	€Jõ jÑ
!Ô
!€CØð ð ˆÝ˜UÑ#Ô#ð 	à”Ð$ Ý  ¤¨yÑ9Ô9Ð@¸SØ”Ð$ Ø”Ð$ ð	ˆCð KŠK˜ÑÔÐøØ—’Ñ Ô €IØ×(Ò(Ñ*Ô*€MÝ•#m­Ð-Ñ-Ô-Ñ.Ô.€GåŒˆØ5;°V°V¸T¸TÐBØØñ	
ô 	
ð€Eð 
‡L‚LÑÔÐØð 
ð 
ˆÝŒØ#˜V T T TÐ*°5À$ð	
ñ 	
ô 	
ð 	
ð 	
ð
ð 
r"   r   ÚcfgÚcloudÚlogÚargsÚreturnc                 óô  — t          j        |                     dd¦  «        ¦  «        r|                     d| ¦  «         d S t          j        |dd¦  «        }t          j        ||j        ¦  «        \  }}|                     ¦   «         D ]o\  }}	|	                     d¦  «        s|	                     d¦  «        r|                     d|¦  «         ŒFt          j
        |¦  «        \  }
}t          ||
||¦  «         Œpd S )	NÚno_ssh_fingerprintsFz>Skipping module named %s, logging of SSH fingerprints disabledÚauthkey_hashr#   Úno_create_homeÚsystemzXSkipping printing of ssh fingerprints for user '%s' because no home directory is created)r   Úis_trueÚgetÚdebugÚget_cfg_option_strr   Únormalize_users_groupsÚdistroÚitemsr   Úextract_authorized_keysr_   )r   r`   ra   rb   rc   r2   ÚusersÚ_groupsÚ	user_nameÚ_cfgrS   rT   s               r    Úhandlerv   v   s  € õ „|C—G’GÐ1°5Ñ9Ô9Ñ:Ô:ð Ø	Š	ØLØñ	
ô 	
ð 	
ð 	ˆåÔ'¨¨^¸XÑFÔF€IÝÔ5°c¸5¼<ÑHÔHÑ€UˆGØ"Ÿ[š[™]œ]ð 
Gð 
GÑˆDØ8Š8Ð$Ñ%Ô%ð 	¨¯ª°(Ñ);Ô);ð 	ØIŠIð/àñô ð ð
 å (Ô @ÀÑ KÔ KÑˆÝ˜I v¨{¸IÑFÔFÐFÐFð
Gð 
Gr"   )r#   )r#   r?   ) Ú__doc__r+   r(   Úloggingr   Ú	cloudinitr   r   Úcloudinit.cloudr   Úcloudinit.configr   Úcloudinit.config.schemar   r	   Úcloudinit.distrosr
   r   Úcloudinit.settingsr   Úcloudinit.simpletabler   ÚMODULE_DESCRIPTIONr   Ú__annotations__r!   r4   r>   r_   ÚstrÚlistrv   © r"   r    ú<module>r…      sÈ  ðð BÐ AÐ Aà €€€Ø €€€Ø Ð Ð Ð Ð Ð à $Ð $Ð $Ð $Ð $Ð $Ð $Ð $Ø !Ð !Ð !Ð !Ð !Ð !Ø #Ð #Ð #Ð #Ð #Ð #Ø <Ð <Ð <Ð <Ð <Ð <Ð <Ð <Ø 2Ð 2Ð 2Ð 2Ð 2Ð 2Ð 2Ð 2Ø +Ð +Ð +Ð +Ð +Ð +Ø -Ð -Ð -Ð -Ð -Ð -ðÐ ð (Ø&Ø0Ø%Øˆ}Øà#Øðð  "ðð €€jð ð ñ ð ˆ,tÑ
Ô
€ðð ð ðð ð ð ðð ð ð ;Fð(
ð (
ð (
ð (
ðVGØ
ðGØðGØ#(ðGØ/5ðGØ=AðGà	ðGð Gð Gð Gð Gð Gr"   