HOME


Mini Shell 1.0
DIR: /lib/python3/dist-packages/uaclient/cli/__pycache__/
Upload File :
Current File : //lib/python3/dist-packages/uaclient/cli/__pycache__/fix.cpython-312.pyc
�

�Hcf.s�
���ddlZddlZddlmZmZmZmZmZmZm	Z	ddl
mZmZm
Z
mZmZddlmZmZddlmZddlmZmZddlmZmZddlmZmZmZmZdd	l m!Z!m"Z"m#Z#m$Z$m%Z%m&Z&m'Z'm(Z(m)Z)m*Z*m+Z+m,Z,m-Z-m.Z.m/Z/m0Z0m1Z1m2Z2m3Z3m4Z4dd
l5m6Z6ddl5m7Z8ddl9m:Z:ddl9m7Z;dd
l<m=Z=m>Z>ddl?m@Z@mAZAddlBmCZCmDZDmEZEddlFmGZGddlHmIZIddlJmKZKddlLmMZMmNZNmOZOddlPmQZQddlRmSZSddlTmUZUddlVmWZWGd�d�ZXd�ZYd�ZZde+fd�Z[de-fd�Z\d e]d!e^d"eGfd#�Z_d e]d!e^d$e^d"eGfd%�Z`	dKd&ee]d'e]d(ead)ead*ee]d+e]fd,�Zbd"eGd-e]d+e^fd.�ZcdLd/�Zdd"eGfd0�Zed"eGd+e^fd1�Zfd2ee]d+e]fd3�Zgd"eGd!e^d+e^fd4�Zhd"eGd+e^fd5�Zid"eGd6e]d+e^fd7�Zjd6e]d"eGd!e^d+e^fd8�Zk	dMd'ed9e]d:e]fd;�Zld<e]fd=�Zmd>eXd?e0fd@�Znd>eXd?e1fdA�Zod>eXd?e/fdB�Zpd>eXd?e$fdC�Zqd>eXd?e%fdD�Zrd>eXd?e&fdE�Zsd>eXd?e*fdF�Ztd>eXd?e(fdG�Zud>eXd?e'fdH�Zvde+d!e^d"eGd+eeeeffdI�ZwdJ�Zxy)N�N)�Dict�List�
NamedTuple�Optional�Set�Tuple�Union)�apt�
exceptions�messages�system�util)�attach_with_token�enable_entitlement_by_name)�	_initiate)�MagicAttachRevokeOptions�_revoke)�MagicAttachWaitOptions�_wait)�CVE_OR_USN_REGEX�	FixStatus�UnfixedPackage�status_message)�ESM_APPS_POCKET�ESM_INFRA_POCKET�STANDARD_UPDATES_POCKET�FixPlanAptUpgradeStep�FixPlanAttachStep�FixPlanEnableStep�FixPlanNoOpAlreadyFixedStep�FixPlanNoOpLivepatchFixStep�FixPlanNoOpStatus�FixPlanNoOpStep�
FixPlanResult�FixPlanStep�FixPlanUSNResult�FixPlanWarning�"FixPlanWarningFailUpdatingESMCache�&FixPlanWarningPackageCannotBeInstalled�#FixPlanWarningSecurityIssueNotFixed�NoOpAlreadyFixedData�NoOpLivepatchFixData�USNAdditionalData)�CVEFixPlanOptions)�_plan)�USNFixPlanOptions)�ContractExpiryStatus�_is_attached)�NAME�
USAGE_TMPL)�CLOUD_TYPE_TO_TITLE�PRO_CLOUD_URLS�get_cloud_type)�UAConfig)�PRINT_WRAP_WIDTH)�entitlement_factory)�ApplicabilityStatus�CanEnableFailure�UserFacingStatus)�notices)�Notice)�
PRO_HOME_PAGE)�colorize_commandsc�j�eZdZdededeedefd�Zd�Z	ddeed	ed
e	efd�Z
deed
efd�Zy)�
FixContext�title�dry_run�
affected_pkgs�cfgc���d|_g|_t�|_tj
|_||_||_||_	||_
d|_d|_d|_
y)NrTF)�	pkg_index�unfixed_pkgs�set�installed_pkgsr�SYSTEM_NON_VULNERABLE�
fix_statusrDrFrErG�should_print_pkg_header� warn_package_cannot_be_installed�fixed_by_livepatch)�selfrDrErFrGs     �2/usr/lib/python3/dist-packages/uaclient/cli/fix.py�__init__zFixContext.__init__Qs_��������!�e���#�9�9�����
�*���������'+��$�05��-�"'���c�Z�|jr�tjjt	|j��jt	|j�dj
t|j����}ttj|tdd���yy)N�, )�count�pkgs�    F)�width�subsequent_indent�replace_whitespace)rFr�SECURITY_AFFECTED_PKGS�	pluralize�len�format�join�sorted�print�textwrap�fillr9)rR�msgs  rS�print_fix_headerzFixContext.print_fix_headerds�������1�1�;�;��D�&�&�'���f��$�,�,�-��Y�Y�v�d�&8�&8�9�:���
�
��
�
��*�&,�',�	�
�rUN�source_pkgs�status�pocketc��|jrDtt|||jt	|j
�|rt
|�nd���yy)N)�pkg_listrjrI�num_pkgs�
pocket_source)rOrd�_format_packages_messagerIr`rF�get_pocket_description)rRrirjrks    rS�print_pkg_headerzFixContext.print_pkg_headerusJ���'�'��(�(�!�"�n�n� ��!3�!3�4�:@�.�v�6�d�
�

�(rUrY�unfixed_reasonc�^�|D](}|jjt||����*y)N)�pkgrs)rJ�appendr)rRrYrsrus    rS�add_unfixed_packageszFixContext.add_unfixed_packages�s/���	�C����$�$��3�~�F�
�	rU�N)�__name__�
__module__�__qualname__�str�boolrr8rTrhrrrrw�rUrSrCrCPs{��(��(��(��C�y�	(�
�(�&�*!%�	��#�Y������
�	�&��c���C�rUrCc��|jdtj��}|jt��t|�y)N�fix��help)�action)�
add_parserr�CLI_ROOT_FIX�set_defaults�
action_fix�
fix_parser)�
subparsers�
parser_fixs  rSr�r��s6���&�&�u�8�3H�3H�&�I�J����:��.��z�rUc��tjtd��|_d|_t
j|_t
j|j_
|jdt
j��|jddt
j��|jd	dt
j��|S)
z1Build or extend an arg parser for fix subcommand.z"fix <CVE-yyyy-nnnn+>|<USN-nnnn-d+>)�name�commandr��security_issuer�z	--dry-run�
store_true)r�r�z--no-related)r4rar3�usage�progr�CLI_FIX_DESC�description�	CLI_FLAGS�
_optionalsrD�add_argument�
CLI_FIX_ISSUE�CLI_FIX_DRY_RUN�CLI_FIX_NO_RELATED)�parsers rSr�r��s����$�$�
�?��F�L��F�K�!�.�.�F��&�0�0�F����
���(�x�/E�/E��F�
����L�x�/G�/G�������|�(�2M�2M����MrU�cvec���dj|jj�|j��dj|jj��g}t	dj|��y)N�{issue}: {description}��issuer�z! - https://ubuntu.com/security/{}�
)rarD�upperr�rdrb)r��liness  rS�print_cve_headerr��s^�� �'�'��)�)�/�/�#����	(�	
�	,�2�2�3�9�9�?�?�3D�E�	
�E�
�$�)�)�E�
�rU�fix_planc��|j}dj|jj�|j��g}|j
}t
|t�r�|jry|jtj�|jD]J}|jdjtjjj|�����LnP|jrD|jtj�|jD]}|jd|z��t!dj#|��y)Nr�r�z - {})r�z - r�)�target_usn_planrarDr�r��additional_data�
isinstancer-�associated_cvesrvr�SECURITY_FOUND_CVES�urls�SECURITY_CVE_PAGE�associated_launchpad_bugs�SECURITY_FOUND_LAUNCHPAD_BUGSrdrb)r��
target_usnr�r�r��lp_bugs      rS�print_usn_headerr��s���)�)�J� �'�'��"�"�(�(�*�
�8N�8N�	(�	
�
�E�!�0�0�O��/�#4�5��*�*��L�L��5�5�6�&�6�6�
������N�N� �
�
�7�7�>�>�3�>�G���
��
6�
6��L�L��?�?�@�)�C�C�
-�����U�V�^�,�
-�
�$�)�)�E�
�rUr�rErGc���tt|g��|��}|jjdj}|rN|j
rBt
jtj|jxsd|j
����t|jjd�t�t|jjd||�\}}|S)N)�cves��optionsrGr�unexpected-error��	named_msg)�cve_planr.�	cves_datar��errorrgr�AnonymousUbuntuProErrorr�NamedMessage�coder�rd�execute_fix_plan)r�rErGr�r�rj�_s       rS�fix_cver��s����!��'7�8�c��H�
���#�#�A�&�,�,�E������0�0��+�+��
�
�0�0�%�)�)��
�	
�
�X�'�'�,�,�Q�/�0�	�G� ��!3�!3�!8�!8��!;�W�c�J�I�F�A��MrU�
no_relatedc	��tt|g��|��}|jjdjj
}|rN|jrBtjtj|jxsd|j����t|jjd�tdtjj|��z�t!|jjdj||�\}}|t"j$t"j&fvr|S|jjdj(}|r|r|Stdtj*jdj-d	�|D���
�z�tdtj.z�i}	|D]J}
tdj|
j0��t!|
||�|	|
j0<t��Lttj2�t5||tj6��d
}|D]�}
|	|
j0\}}
t5||
j0tj8��|t"j:k(r.tdtj<jd��z�d}|t"j>k(s��|
D]>}|j@s�tdj|jB|j@���@d}��|r,tdtjDj|��z�|S)N)�usnsr�rr�r�r�)�issue_idz
- c3�4K�|]}|j���y�wrx)rD)�.0�usns  rS�	<genexpr>zfix_usn.<locals>.<genexpr>	s����$L�3�S�Y�Y�$L�s�)�related_usnsz- {})�contextF�- �
fix operation��	operationTz
  - {}: {})#�usn_planr0�	usns_datar�r�r�rgrr�rr�r�r�rd�SECURITY_FIXING_REQUESTED_USNrar�rrM�SYSTEM_NOT_AFFECTED�related_usns_plan�SECURITY_RELATED_USNSrb�SECURITY_FIXING_RELATED_USNSrD�SECURITY_USN_SUMMARY�_handle_fix_status_message�FIX_ISSUE_CONTEXT_REQUESTED�FIX_ISSUE_CONTEXT_RELATED�SYSTEM_VULNERABLE_UNTIL_REBOOT�ENABLE_REBOOT_REQUIRED_TMPL�SYSTEM_STILL_VULNERABLErsru�SECURITY_RELATED_USN_ERROR)r�rEr�rGr�r��target_usn_statusr�r��related_usn_status�related_usn_plan�failure_on_related_usnrjrJ�unfixed_pkgs               rS�fix_usnr��s2���!��'7�8�c��H�
���#�#�A�&�6�6�<�<�E������0�0��+�+��
�
�0�0�%�)�)��
�	
�
�X�'�'�,�,�Q�/�0�	��
�
0�
0�
7�
7�#�8�
�	
��,�������"�2�2������q���'�'��%�%�!��!� � �*�*�/�/��2�D�D���
� � �	��
�
(�
(�
/�
/����$L�:K�$L�L�0�
�	
��
�$��6�6�
6�7�
��.���
�f�m�m�,�2�2�3�4�5E����6
��+�1�1�2�
	���
�(�
'�
'�(�����4�4��#��-�*��1�2B�2H�2H�I����"���"�"��6�6�	
��Y�=�=�=����6�6�=�=�-�>���
�&*�"��Y�6�6�6�+�
���-�-��$�+�+�'�O�O�[�-G�-G���
�&*�"�1*�4�
���1�1�8�8�'�9��
�	
��rUrmrjrIrnro�returnc
�v�|syg}g}|D]9}|dz
}|jdj||��|j|��;tjdjddj	|�zdzdj	t|���td�	�}d
j|t||��S)z;Format the packages and status to an user friendly message.��z{}/{}z{} {}:�(rW�)rZ�r[r\z{}
{})rvrarerfrbrcr9r)	rmrjrIrnro�	msg_index�src_pkgs�src_pkg�
msg_headers	         rSrprpGs������I��H��!���Q��	�������	�8�<�=����� �!�
�������$�)�)�I�&�&��,�d�i�i��x�8H�.I�	
�� ��J��?�?�:�~�f�m�'L�M�MrU�tokenc��ttdd|gg��	t||d��y#tj$r}t|j
�Yd}~yd}~wwxYw)ztAttach to an Ubuntu Pro subscription with a given token.

    :return: True if attach performed without errors.
    �pro�attachT)r��allow_enableNF)rdrArr�UbuntuProErrorrg)rGr��errs   rS�_run_ua_attachr�csT��

�
�e�X�u�5�6�
7�8���#�U��>����$�$��
�c�g�g�����s�)�A�A�Ac���t�\}}|tj�vrQttj
j
tj|�tj|����yy)z:Alert the user when running Pro on cloud with PRO support.)rD�cloud_specific_urlN)	r7r6�keysrdr�SECURITY_USE_PRO_TMPLrar5�get)�
cloud_typer�s  rS�*_inform_ubuntu_pro_existence_if_applicabler�qsa��"�$�M�J���^�(�(�*�*�
��*�*�1�1�)�-�-�j�9�#1�#5�#5�j�#A�
2�
�	
�+rUc��ttj�t|��}tdtjj|j��z�t|j��}	t||��}tdtjz�t!||j"�S#tj$rC}ttj�t|j��}t||��|�d}~wwxYw)N)rGr�)�	user_code)�magic_tokenr�)rdr�CLI_MAGIC_ATTACH_INITr�CLI_MAGIC_ATTACH_SIGN_INrarrr�rr�MagicAttachTokenError�CLI_MAGIC_ATTACH_FAILEDrr�CLI_MAGIC_ATTACH_PROCESSINGr��contract_token)rG�
initiate_resp�wait_options�	wait_resp�e�revoke_optionss      rS�_perform_magic_attachr
}s���	�(�
(�
(�)��#�&�M�	��
�
+�
+�
2�
2�#�-�-�3�
�	
��*�m�6I�6I�J�L�	��,�C�8�	�
�$��5�5�
5�6��#�y�7�7�8�8���+�+��
�h�.�.�/�1�%�+�+�
��	��C�0�����s�3
B2�2D�>D�Dc�.�t�ttj�t	j
tjgd���}|dk(ry|dk(rt|�S|dk(r0ttj�td�}t||�Sy)	zZPrompt for attach to a subscription or token.

    :return: True if attach performed.
    )�s�a�c��
valid_choicesrFrr�> T)r�rdr�*SECURITY_UPDATE_NOT_INSTALLED_SUBSCRIPTIONr�prompt_choices�SECURITY_FIX_ATTACH_PROMPTr
�PROMPT_ENTER_TOKEN�inputr�)rG�choicer�s   rS�_prompt_for_attachr�s���
/�0�	�(�
=�
=�>�
�
 �
 ��+�+�%��F���}��
��}�$�S�)�)�
��}�
�h�)�)�*��d����c�5�)�)�rUrJc
���t|�}tjtjj|�j
|djt|����td��S)z�Format the list of unfixed packages into an message.

    :returns: A string containing the message output for the unfixed
              packages.
    rW)rnrYrZr�)
r`rerfr�SECURITY_PKG_STILL_AFFECTEDr_rarbrcr9)rJ�num_pkgs_unfixeds  rS�_format_unfixed_packages_msgr�sb���<�(���=�=��,�,�6�6��	
�
�&�%����6�,�/�0��
�� �	�	rUc��t|�j}|r:|tjjk(r|rttj�yyy)zuCheck if the Ubuntu Pro subscription is expired.

    :returns: True if subscription is expired and not renewed.
    FT)r2�contract_statusr1�EXPIRED�valuerdr�(SECURITY_DRY_RUN_UA_EXPIRED_SUBSCRIPTION)rGrE�contract_expiry_statuss   rS�_check_subscription_is_expiredr&�sG��
*�#�.�>�>���"�&:�&B�&B�&H�&H�H���(�C�C�D���rUc��ddl}ddlm}t�t	t
j�tjt
jjt��ddg��}|dk(rjt	t
j�td�}t	td	d
gg��|j|j!dd�
�|�t#||�Sy)zdPrompt for attach a new subscription token to the user.

    :return: True if attach performed.
    rN)�cli)�url�rrrrr��detachTr()�
assume_yesraF)�argparse�uaclientr(r�rdr�%SECURITY_UPDATE_NOT_INSTALLED_EXPIREDrr�SECURITY_FIX_RENEW_PROMPTrar@�PROMPT_EXPIRED_ENTER_TOKENrrA�
action_detach�	Namespacer�)rGr-r(rr�s     rS�_prompt_for_new_tokenr4�s���
��.�0�	�(�
8�
8�9�
�
 �
 ��*�*�1�1�m�1�D��C�j��F���}�
�h�1�1�2��d���
��%��!2� 3�4�5�������$�u��=�s�	
��c�5�)�)�rU�servicec��ttjj|���t	j
tjj|��ddg��}|dk(rjttdd|gg��t||d��\}}|s=|�;t|t�r+|j�t|jj�|Sy	)
zMPrompt for enable a pro service.

    :return: True if enable performed.
    �r5rrrr��enableT)rGr�r,F)
rdr�SECURITY_SERVICE_DISABLEDrarr�SECURITY_FIX_ENABLE_PROMPTrArr�r<�messagerg)rGr5r�ret�reasons     rS�_prompt_for_enabler>�s���

�(�
,�
,�
3�
3�G�
3�
D�E�
�
 �
 ��+�+�2�2�7�2�C��C�j��F�
��}�
��%��7�!;� <�=�>�0��'�d�
���V�
��"��6�#3�4��~�~�)��f�n�n�(�(�)��
�rUc�<�t||��}||�}|�r|j�\}}|tjk(ry|j	�\}}|t
jk(r�|r7tdtjj|j��z�yt||j�ryttjj|j���yttjj|j���y)zQ
    Verify if the Ubuntu Pro subscription has the required service enabled.
    )rGr�Tr�r7F)r:�user_facing_statusr=�ACTIVE�applicability_statusr;�
APPLICABLErdr�'SECURITY_DRY_RUN_UA_SERVICE_NOT_ENABLEDrar�r>�SECURITY_UA_SERVICE_NOT_ENABLED� SECURITY_UA_SERVICE_NOT_ENTITLED)r5rGrE�ent_cls�ent�
ent_statusr�rBs        rS�)_handle_subscription_for_required_servicerJ
s��"�c��8�G�
�#�,�C�
��.�.�0�
�
�A��)�0�0�0��"%�":�":�"<���a��#6�#A�#A�A�����F�F�M�M� #���N�����!�#�s�x�x�0����<�<�C�C� #���D����

��9�9�@�@��H�H�A��
�rUr�r�c��|tjk(rc|r"tjj	||��}n tj
j	|��}t
tj|��y|tjk(rc|r"tjj	||��}n tjj	|��}t
tj|��y|tjk(rc|r"tjj	||��}n tjj	|��}t
tj|��y|r"tjj	||��}n tjj	|��}t
tj|��y)N)r�r��r�)rrMr�%SECURITY_ISSUE_RESOLVED_ISSUE_CONTEXTra�SECURITY_ISSUE_RESOLVEDrdr�handle_unicode_charactersr��'SECURITY_ISSUE_UNAFFECTED_ISSUE_CONTEXT�SECURITY_ISSUE_UNAFFECTEDr��)SECURITY_ISSUE_NOT_RESOLVED_ISSUE_CONTEXT�SECURITY_ISSUE_NOT_RESOLVED)rjr�r�rgs    rSr�r�9sv����0�0�0���@�@�G�G���H��C��2�2�9�9��9�I�C�
�d�,�,�S�1�2�	�9�0�0�	0���B�B�I�I���J��C��4�4�;�;�(�;�K�C�
�d�,�,�S�1�2�	�9�;�;�	;���D�D�K�K���L��C��6�6�=�=�H�=�M�C�
�d�,�,�S�1�2���D�D�K�K���L��C��6�6�=�=�H�=�M�C�
�d�,�,�S�1�2rUrkc��|tk(rtjS|tk(rtjS|t
k(rtjS|Srx)rr�'SECURITY_UBUNTU_STANDARD_UPDATES_POCKETr�SECURITY_UA_INFRA_POCKETr�SECURITY_UA_APPS_POCKET)rks rSrqrq^sE��
�(�(��?�?�?�	�#�	#��0�0�0�	�?�	"��/�/�/��
rU�fix_context�stepc��|j|jjd|jj��d|_t
jj|jj|jj��}td|z�|j|jjg|��d|_
tj|_y)N�released�rirjrkF)�package�versionr��rYrsT)rr�data�related_source_packagesrkrOr�FIX_CANNOT_INSTALL_PACKAGEra�binary_package�binary_package_versionrdrw�source_packagerPrr�rN)rXrY�warn_msgs   rS�)_execute_package_cannot_be_installed_steprgis���� � ��I�I�5�5���y�y���!��
+0�K�'��2�2�9�9��	�	�(�(��	�	�0�0�:��H�
�$��/���$�$��i�i�&�&�
'��%��48�K�0�&�>�>�K�rUc��|j|jj|jj��|xjt|jj�z
c_|j
|jjt|jj���tj|_
y)N)rirjr_)rrr`�source_packagesrjrIr`rwrrr�rN�rXrYs  rS�&_execute_security_issue_not_fixed_steprk�s���� � ��I�I�-�-��y�y���!�����S����!:�!:�;�;���$�$�
�Y�Y�
&�
&�%�d�i�i�&6�&6�7�%��'�>�>�K�rUc��tj�rttj�ytdtj
zdz�y)Nr�)r�we_are_currently_rootrdr�CLI_FIX_FAIL_UPDATING_ESM_CACHE�(CLI_FIX_FAIL_UPDATING_ESM_CACHE_NON_ROOTrjs  rS�%_execute_fail_updating_esm_cache_steprp�s6���!�!�#�
�h�6�6�7�
�d�X�F�F�F��M�NrUc�P�|j|jjd|jj��|xjt|jj�z
c_|jjs;|jsttj�tj|_
ytj�sp|j sdttj"�tj$|_
|j'|jjtj"��ytt)gd�gd�zt+|jj�zg��|j rtj|_
y	t-j.�t-j0gd�|jjzddi�	�tj|_
d|_|j:j=|jj�y#t2$rg}t5|d
t7|��}t|�tj$|_
|j'|jj|��Yd}~yd}~wwxYw)Nr[r\r_)r
�updatez&&)r
�install�--only-upgrade�-y)zapt-getrsrtru�DEBIAN_FRONTEND�noninteractive)�cmd�override_env_varsrgT)rrr`rirkrIr`�binary_packagesrPrdr�SECURITY_UPDATE_INSTALLEDrrMrNrrmrE�SECURITY_APT_NON_ROOTr�rwrArcr
�run_apt_update_command�run_apt_command�	Exception�getattrr|rOrLrr)rXrYrrgs    rS�_execute_apt_upgrade_stepr��s��� � ��I�I�-�-���y�y���!��
���S����!:�!:�;�;���9�9�$�$��;�;��(�4�4�5�!*�!@�!@�����%�%�'��0C�0C�
�h�,�,�-�!*�!B�!B����(�(����*�*�#�9�9�	)�	
�	�	��'�<�=�����2�2�3�4�
�	
�����!*�!@�!@������"�"�$����>��i�i�'�'�(�0�2B�C�	
�'�<�<�K��*.�K�'����%�%�d�i�i�&?�&?�@�����a���A��'��
�c�
�!*�!B�!B����(�(����*�*��	)�	
�	���s�#AH5�5	J%�>AJ � J%c��|jjdk(rtnt}|j	|jj
d|��d|_t|j�js�|jrtdtjz��nPt|j��s:tj |_|j%|jj
tj&j)|jj����yt+|j|j��r�|jrttj,�n�t/|j�sotj |_|j%|jj
tj0j)|jj����ytj2|_y)	N�	esm-infrar[r\Fr�r7r_)rGrE)r`�required_servicerrrrrirOr2rG�is_attachedrErdr� SECURITY_DRY_RUN_UA_NOT_ATTACHEDrrr�rNrw�SECURITY_UA_SERVICE_REQUIREDrar&r$r4�$SECURITY_UA_SERVICE_WITH_EXPIRED_SUBrM�rXrYrks   rS�_execute_attach_stepr��s����9�9�%�%��4�	�
��
� � ��I�I�-�-���!��+0�K�'�����(�4�4�����$��B�B�B�C�%�k�o�o�6�)2�)J�)J��&��0�0����2�2�#+�#H�#H�#O�#O� $�	�	� :� :�$P�$�1���	'��O�O�[�%8�%8�
�����(�C�C�D�&�{���7�%.�%F�%F�K�"��,�,��Y�Y�.�.�'�L�L�S�S� �I�I�6�6� T� �
-�
�
�&�<�<�K�rUc��|jjdk(rtnt}|j	|jj
d|��d|_t|jj|j|j�so|j|jj
tjj|jj����tj|_ytj"S)Nr�r[r\Fr7r_)r`r5rrrrrirOrJrGrErwr�%SECURITY_UA_SERVICE_NOT_ENABLED_SHORTrarr�rNrMr�s   rS�_execute_enable_stepr�s����9�9����+�	�
��
� � ��I�I�-�-���!��
+0�K�'�4��	�	����������
	�(�(����*�*�#�I�I�P�P��	�	�)�)�Q��	)�	
�"+�!B�!B�����*�*�*rUc���|jjtjjk(r/ttj�tj|_
yyrx)r`rjr"�NOT_AFFECTEDr#rdr�SECURITY_NO_AFFECTED_PKGSrr�rNrjs  rS�_execute_noop_not_affected_stepr�)sE���y�y���,�9�9�?�?�?�
�h�0�0�1�!*�!>�!>���@rUc���t|jt�rPttj
j
|j|jj���d|_	yy)N)r�r^T)
r�r`r,rdr�CVE_FIXED_BY_LIVEPATCHrarD�
patch_versionrQrjs  rS�%_execute_noop_fixed_by_livepatch_stepr�1sY���$�)�)�1�2�
��+�+�2�2�!�'�'��	�	�/�/�
3�
�	
�*.��&�3rUc�H�t|jt�r�|j|jjd|jj
��t
tj�|xjt|jj�z
c_	yy)Nr[r\)r�r`r+rrrirkrdrr{rIr`rjs  rS� _execute_noop_already_fixed_stepr�>sx���$�)�)�1�2��$�$��	�	�1�1���9�9�#�#�	%�	
�
	�h�0�0�1�����T�Y�Y�%>�%>�!?�?��3rUc�@�g|j�|j�}t|j||jxsg|��}|j�t
|d���D�]^}t|t�rt||�t|t�rt||�t|t�rt||�t|t�r+t||�|j t"j$k7rn�t|t&�r+t)||�|j t"j$k7rn�t|t*�r+t-||�|j t"j$k7rnYt|t.�rt1||�t|t2�rt5||�t|t6�s��St9||���at;�|j<r]t;t?tAtC|j<D�cgc]}|jD��c}����t"jF|_|j t"j$k(r�tIjJ|jL��ret"jN|_tPjRjUd��}t;|�tWjXtZj\d��|j^s ta|j |j�|j |j<fScc}w)N)rDrErFrGc��|jSrx)�order)�xs rS�<lambda>z"execute_fix_plan.<locals>.<lambda>[s
�����rU)�key)rLr�r�)1�plan�warningsrCrD�affected_packagesrhrcr�r)rgr*rkr(rprr�rNrrMrr�rr�r#r�r!r�r r�rdrJr�listrKrur�r
�
should_rebootrLr�rr�rar>�addr?�ENABLE_REBOOT_REQUIREDrQr�)r�rErG�	full_planrXrYr��
reboot_msgs        rSr�r�Ks����	����	�	�	��I�
��n�n���0�0�6�B��	�K�� � �"��y�&7�8�@���d�B�C�5�k�4�H��d�?�@�2�;��E��d�>�?�1�+�t�D��d�1�2�%�k�4�8��%�%��)H�)H�H���d�-�.� ��d�3��%�%��)H�)H�H���d�-�.� ��d�3��%�%��)H�)H�H���d�O�,�+�K��>��d�7�8�1�+�t�D��d�7�8�,�[�$�?�9@�<
�G����
�(���0;�/G�/G�� +�(�O�O����	
�	
�"+�!B�!B���	���)�"A�"A�A�� � ��0J�0J�K�!*�!I�!I����9�9�@�@�%�A�
�
�	�j������)�)�%�	
�
�)�)�"�;�#9�#9�8�>�>�J��"�"�K�$<�$<�=�=��7s�:Lc���tjt|j�s t	j
|j���|jrttj�d|jj�vr-t|j|j|�}|jSt|j|j|j|�}|jS)NrLr�)�re�matchrr�r�InvalidSecurityIssueIdFormatrErdr�SECURITY_DRY_RUN_WARNING�lowerr�r�r��	exit_code)�argsrG�kwargsrjs    rSr�r��s���
�8�8�$�d�&9�&9�:��5�5��%�%�
�	
��|�|�
�h�/�/�0���#�#�)�)�+�+���,�,�d�l�l�C�@������	�������t����
�����rUrx)r�N)r�)yr�re�typingrrrrrrr	r.r
rrr
r�uaclient.actionsrr�+uaclient.api.u.pro.attach.magic.initiate.v1r�)uaclient.api.u.pro.attach.magic.revoke.v1rr�'uaclient.api.u.pro.attach.magic.wait.v1rr�'uaclient.api.u.pro.security.fix._commonrrrr�/uaclient.api.u.pro.security.fix._common.plan.v1rrrrrrr r!r"r#r$r%r&r'r(r)r*r+r,r-�+uaclient.api.u.pro.security.fix.cve.plan.v1r.r/r��+uaclient.api.u.pro.security.fix.usn.plan.v1r0r��(uaclient.api.u.pro.status.is_attached.v1r1r2�uaclient.cli.constantsr3r4�uaclient.clouds.identityr5r6r7�uaclient.configr8�uaclient.defaultsr9�uaclient.entitlementsr:�(uaclient.entitlements.entitlement_statusr;r<r=�uaclient.filesr>�uaclient.files.noticesr?�uaclient.messages.urlsr@�uaclient.statusrArCr�r�r�r�r|r}r�r��intrpr�r�r
rrr&r4r>rJr�rqrgrkrpr�r�r�r�r�r�r�r�r~rUrS�<module>r�s]��	�����=�<�J�A�����������,J�I�I�I��4���
%�.�5���
#�)�0�-�<�<�~��&�-���/��4�C��$��X��&d��d�"&�d�48�d�?G�d�X$(�N��3�i�N��N��N��	N�
�C�=�N�	�
N�8�������	
�9�x�9�6�H����.�t�C�y��S��&���4��D��$�x��D��6�H��s��t��<)�
�)��)�*.�)�	�)�Z68�"3��"3�!$�"3�/2�"3�J�3��?��?�
0�?�2
?��
?�#F�
?� O��O�#E�O�;A��;A�
�;A�|,=��,=�
�,=�^+��+�
�+�B?��?�#2�?�
.��
.�#>�
.�
@��
@�#>�
@�O>��O>�&*�O>�19�O>�
�9�d�>�*�*�+�O>�drU