i]0ddlZddlZddlZddlZddlZddlZddlZddlZddlZddl m Z ddl m Z ddl mZddlmZddlmZddlmZmZmZdd lmZdd lmZmZdd lmZdd lmZm Z m!Z!dd l"m#Z#ddl$m%Z%m&Z&m'Z'ejPe)Z*de+de,fdZ-dede,fdZ.GddeZ/Gddej`Z1Gdde1Z2Gdde'e1ejfdZ4y)N)basename)TemporaryDirectory)Sequence)ferny)make_bootloader)BusVariantbus)BridgeBeibootHelper) JsonObjectget_str) BridgeConfig)ConfiguredPeerPeer PeerError) PolkitAgent)Router RoutingError RoutingRule sudo_pathreturnc tj|ddgtjtjtjdy#tjtf$rYywxYw)Nz-Az--helpT)stdinstdoutstderrcheckF) subprocessrunDEVNULLCalledProcessErrorOSError)rs 3/usr/lib/python3/dist-packages/cockpit/superuser.pysudo_supports_askpassr$!s]  h '$$%%%%    ) )7 3sAA A&%A&configc|jsytj|jd}|yt |dk(r t |syy)NFrsudoT) privilegedshutilwhichspawnrr$)r%commands r#is_valid_superuser_configr-0sG   ll6<<?+GF"+@+I ceZdZUejed<dededejffd Zddde de jfd Z d d Z xZS) SuperuserPeer responderrouterr%c4t|||||_yN)super__init__r1)selfr2r%r1 __class__s r#r6zSuperuserPeer.__init__>s ("r.argsz Sequence[str]rrc^Ktjtjtj\}}t j }dt jd}tj}|jddddd|dd d d d fd d dd fdd dd fdd|d fdd|d fdd|d fddtj|d|dfgd fgg }|jd|j|d{|jfd|d{\} } | usJ| S7-7w)Nzcockpit-superuser-z.servicezorg.freedesktop.systemd1z/org/freedesktop/systemd1z org.freedesktop.systemd1.ManagerStartTransientUnitzssa(sv)a(sa(sv))fail DescriptionszCockpit privileged bridge)tvTypeexecUserrootStandardInputFileDescriptorhStandardOutputFileDescriptorStandardErrorFileDescriptor ExecStartza(sasb)rFTcSr4r7sr#z4SuperuserPeer.start_transient_unit..hs4r.)sock)socket socketpairAF_UNIX SOCK_STREAMasyncioget_running_looposgetpidrdefault_systemmessage_new_method_callr)r*#set_allow_interactive_authorization call_asynccreate_connection) r7r9rourstheirsloop unit_namesystemmsg transportprotocols ` r#start_transient_unitz"SuperuserPeer.start_transient_unitBsZ((9K9KL f'')( X> ##%,, & ' .   c0K LMs01s01.c0GH/s1HI.c0GHIfll476KTSX5Y4Z[\  # & //5$$$$($:$:EI9H?'I97I8I9I#I$I( J3I74J<I9?I9I9II4I//I44I97J9J ?J J JrN)__name__ __module__ __qualname__rAskpassHandler__annotations__rrr6objectrS Transportrdr __classcell__r8s@r#r0r0;sW####v#|#H\H\#(((SZSdSd(T&Tr.r0c ,eZdZdZdedddddedd f d Zy ) CockpitResponder)z ferny.askpasscockpit.send-stderrr,r9ztuple[object, ...]fdsz list[int]rrNc &K|dk(r|tj|d5}|jd|jdgtjtjt j ddgfgdddyy#1swYyxYww)Nrr)filenoi)rOpopsendmsg SOL_SOCKET SCM_RIGHTSarray)r7r,r9rrrNs r#do_custom_commandz"CockpitResponder.do_custom_commands + +c!f- g  eW(9(96;L;LekkZ]`a_bNc'd&ef g g , g gsBAB; BB B)rrrcommandsr{rrKr.r#rrs:7Hgg"6g=HgRUg gr.rc0eZdZdefdZdedededdfdZy ) AuthorizeResponderr2c ||_d|_y)NF)r2authorize_attempted)r7r2s r#r6zAuthorizeResponder.__init__s #( r.messagesprompthintr str | Nonec0K|jrtjdyd|_djdt j j dD}|jjd|d{}|dk(rdS|S7 w)NzAnoninteractive authorize during init already attempted, rejectingTc3$K|]}|d yw)02xNrK).0cs r# z0AuthorizeResponder.do_askpass..sPQsG*Psasciizplain1:) rrlinfojoingetpassgetuserrrr2request_authorization)r7rrrhexuserpasswords r# do_askpasszAuthorizeResponder.do_askpasss  # # KK[ \#' ''Pgoo.?.F.Fw.OPP::WWI;NOO2~t383PsBBBBN)rrrrr6r{rrKr.r#rrs/)v) 4 4c 4 4 4r.rceZdZUdZeeed<ded<ded<ejjdddddZ ejjd g Z ejjdd Z ejjd i Zd eddfdZdedededdfdZdddedeffdZd,dZdedej0ddfdZd eeddfd!Zd,d"Zd,d#Zd$eddfd%Zd-d&Zejj?dg'deddfd(Z ejj?d,d)Z!ejj?dg'd*eddfd+Z"xZ#S).SuperuserRoutingRulerKsuperuser_configszasyncio.Future[str] | Nonepending_promptzSuperuserPeer | Nonepeerr>bas)valuenonea{sv}optionsrz Peer | Nonec|jd}|r|jdk(ry|js|dk(r |jStd)N superuserrDtryz access-denied)getcurrentrr)r7rrs r# apply_rulezSuperuserRoutingRule.apply_rulesHKK , DLLF2 YY)u,99 / /r.rrrrc(K|jJ|dk(}tjj|_ tj d||j d|d|||jd{d|_S7 #d|_wxYww)Nconfirmzprompting for %sr)rrSrT create_futurerlrmr)r7rrrechos r#rzSuperuserRoutingRule.do_askpasss""***y %668FFH ' LL+V 4 KKFBh 7,,,"&D -"&D s.;B:B8B9B<BB BBF)r(r2r(ct||d|_d|_d|_|st j dk(rd|_yy)NrrD)r5r6rrstartuprUgetuidr)r7r2r(r8s r#r6zSuperuserRoutingRule.__init__sB  "  )!DL*r.Nc d|_d|_y)Nr)rrrLs r# peer_donezSuperuserRoutingRule.peer_dones  r.namer1cK|jdk7rtjdd|jJ|jJ|j D]}||j dfvsntjdd|dd|_t|j|||_|jj|j |jj|jjd{|jj$j |_y7*#tj$rtjd d dtt f$r%}tjdt#||d}~wwxYww) Nrzcockpit.Superuser.Errorz Superuser bridge already runninganyzUnknown superuser bridge type ""init) init_hostz!cockpit.Superuser.Error.CancelledzOperation aborted)rr BusErrorrrrrr0r2add_done_callbackrstartrrSCancelledErrorr"rr{r%)r7rr1r%rs r#gozSuperuserRoutingRule.gos\ <<6 !,,8:\] ]yy   ||###,, eF U++ e,,8<[\`[aab:cd d !$++vyA  ##DNN3 M))//DKK,A,A/B B B yy'',, C%% c,,BDWX^b b# M,,8#c(C L MsCA!F $A%F  3D*=D(>D*&F (D**8F" FFF configsc tjdt||Dcgc]}t|s|}}t ||_|j Dcgc]}|j c}|_|Dcic];}|js|jtdt|jid=c}|_ tjd|j|jh|jj|j vrEtjd|jjj |jyyycc}wcc}wcc}w)Nzset_configs() with %d itemslabelrz bridges are now %sz= stopping superuser bridge '%s': it disappeared from configs)rlrmlenr-tuplerrbridgesrr methodsrr%shutdown)r7rr%rs r# set_configsz SuperuserRoutingRule.set_configss  2CLA(/Uf3LV3T6UU!&w262H2HI I X_kSTcdcjcj'71773C)Dg!NNk  +T\\: 99 yyt'='== \^b^g^g^n^n^s^st > !VIksEEE8E .Ec`|j"|jjd|_yyr4)rcancelrLs r# cancel_promptz"SuperuserRoutingRule.cancel_prompts-    *    & & ("&D  +r.c|j|j|jj|jJyr4)rrcloserLs r#rzSuperuserRoutingRule.shutdowns8  99 IIOO yy   r.paramsct|dd}t|j}tj|j |||_|j j|jy)Nidr) rrr2rS create_taskr _init_taskr _init_done)r7rrr1s r#rzSuperuserRoutingRule.init#sQvtU+&t{{3 !--dggdI.FG ))$//:r.ctjd|j|jj d|`y)Nzsuperuser init done! %szsuperuser-init-done)r,)rlrm exceptionr2 write_controlr)r7tasks r#rzSuperuserRoutingRule._init_done)s3 .0@A !!*?!@ Or.)in_typescDK|j||d{y7wr4)r)r7rs r#rzSuperuserRoutingRule.start/sggdD!!!s   c$|jyr4)rrLs r#stopzSuperuserRoutingRule.stop3s  r.replyc|j1tjd|jj|ytjdy)Nzresponding to pending promptz!got Answer, but no prompt pending)rrlrm set_result)r7rs r#answerzSuperuserRoutingRule.answer7s<    * LL7 8    * *5 1 LL< =r.r)rzasyncio.Task[None]rN)$rrrrrrrr InterfaceSignalrPropertyrrrr rr{rrboolr6rrrrrrrrrMethodrrrrrs@r#rrs02x -200  ]] ! !#sCc :Fmm$$T$4Gmm$$S$7Gmm$$WB$7G 0* 0 0 ' 'c ' ' '>C"v"d"-S-U-A-A-d-4  8L#9  d  ' !;:;$;   ]]C5)"""*" ]] ]]C5)>C>D>*>r.rzcockpit.Superuser) interface)5rrSrirloggingrUr)rOros.pathrtempfilertypingrcockpit._vendorrcockpit._vendor.bei.bootloaderrcockpit._vendor.systemd_ctypesrr r beipackr jsonutilr rpackagesrrrrrrkrr2rrr getLoggerrrlr{rr$r-r0rrrObjectrrKr.r#rs   '!:<<()"1155   8 $ S T ltWTNWTt gu++ g4)4"J>;(8#**PcJ>r.