Vh=xddlmZdZdZdZddlZddlZddlZddlZddl Z ddl m Z ddl m Z ddl mZdd lmZmZdd lmZdd lmZdd lmZdd lmZddlmZddlmZddlmZdZdZ ddlmZdZ"dZ#dZ$dZ%dZ&dZ'dZ(dZ)dZ*dZ+dZ,e-dk(re,yy#e $rdZe jBZYHwxYw) ) annotationsa author: 'Ansible Core Team (@ansible)' short_description: 'Add and remove deb822 formatted repositories' description: - 'Add and remove deb822 formatted repositories in Debian based distributions.' module: deb822_repository notes: - This module will not automatically update caches, call the M(ansible.builtin.apt) module based on the changed state. options: allow_downgrade_to_insecure: description: - Allow downgrading a package that was previously authenticated but is no longer authenticated. type: bool allow_insecure: description: - Allow insecure repositories. type: bool allow_weak: description: - Allow repositories signed with a key using a weak digest algorithm. type: bool architectures: description: - Architectures to search within repository. type: list elements: str by_hash: description: - Controls if APT should try to acquire indexes via a URI constructed from a hashsum of the expected file instead of using the well-known stable filename of the index. type: bool check_date: description: - Controls if APT should consider the machine's time correct and hence perform time related checks, such as verifying that a Release file is not from the future. type: bool check_valid_until: description: - Controls if APT should try to detect replay attacks. type: bool components: description: - Components specify different sections of one distribution version present in a C(Suite). type: list elements: str date_max_future: description: - Controls how far from the future a repository may be. type: int enabled: description: - Tells APT whether the source is enabled or not. type: bool inrelease_path: description: - Determines the path to the C(InRelease) file, relative to the normal position of an C(InRelease) file. type: str languages: description: - Defines which languages information such as translated package descriptions should be downloaded. type: list elements: str name: description: - Name of the repo. Specifically used for C(X-Repolib-Name) and in naming the repository and signing key files. required: true type: str pdiffs: description: - Controls if APT should try to use C(PDiffs) to update old indexes instead of downloading the new indexes entirely. type: bool signed_by: description: - Either a URL to a GPG key, absolute path to a keyring file, one or more fingerprints of keys either in the C(trusted.gpg) keyring or in the keyrings in the C(trusted.gpg.d/) directory, or an ASCII armored GPG public key block. type: str suites: description: - >- Suite can specify an exact path in relation to the URI(s) provided, in which case the Components: must be omitted and suite must end with a slash (C(/)). Alternatively, it may take the form of a distribution version (for example a version codename like C(disco) or C(artful)). If the suite does not specify a path, at least one component must be present. type: list elements: str targets: description: - Defines which download targets apt will try to acquire from this source. type: list elements: str trusted: description: - Decides if a source is considered trusted or if warnings should be raised before, for example packages are installed from this source. type: bool types: choices: - deb - deb-src default: - deb type: list elements: str description: - Which types of packages to look for from a given source; either binary V(deb) or source code V(deb-src). uris: description: - The URIs must specify the base of the Debian distribution archive, from which APT finds the information it needs. type: list elements: str mode: description: - The octal mode for newly created files in C(sources.list.d). type: raw default: '0644' state: description: - A source string state. type: str choices: - absent - present default: present requirements: - python3-debian / python-debian version_added: '2.15' ag - name: Add debian repo deb822_repository: name: debian types: deb uris: http://deb.debian.org/debian suites: stretch components: - main - contrib - non-free - name: Add debian repo with key deb822_repository: name: debian types: deb uris: https://deb.debian.org suites: stable components: - main - contrib - non-free signed_by: |- -----BEGIN PGP PUBLIC KEY BLOCK----- mDMEYCQjIxYJKwYBBAHaRw8BAQdAD/P5Nvvnvk66SxBBHDbhRml9ORg1WV5CvzKY CuMfoIS0BmFiY2RlZoiQBBMWCgA4FiEErCIG1VhKWMWo2yfAREZd5NfO31cFAmAk IyMCGyMFCwkIBwMFFQoJCAsFFgIDAQACHgECF4AACgkQREZd5NfO31fbOwD6ArzS dM0Dkd5h2Ujy1b6KcAaVW9FOa5UNfJ9FFBtjLQEBAJ7UyWD3dZzhvlaAwunsk7DG 3bHcln8DMpIJVXht78sL =IE0r -----END PGP PUBLIC KEY BLOCK----- - name: Add repo using key from URL deb822_repository: name: example types: deb uris: https://download.example.com/linux/ubuntu suites: '{{ ansible_distribution_release }}' components: stable architectures: amd64 signed_by: https://download.example.com/linux/ubuntu/gpg a repo: description: A source string for the repository returned: always type: str sample: | X-Repolib-Name: debian Types: deb URIs: https://deb.debian.org Suites: stable Components: main contrib non-free Signed-By: -----BEGIN PGP PUBLIC KEY BLOCK----- . mDMEYCQjIxYJKwYBBAHaRw8BAQdAD/P5Nvvnvk66SxBBHDbhRml9ORg1WV5CvzKY CuMfoIS0BmFiY2RlZoiQBBMWCgA4FiEErCIG1VhKWMWo2yfAREZd5NfO31cFAmAk IyMCGyMFCwkIBwMFFQoJCAsFFgIDAQACHgECF4AACgkQREZd5NfO31fbOwD6ArzS dM0Dkd5h2Ujy1b6KcAaVW9FOa5UNfJ9FFBtjLQEBAJ7UyWD3dZzhvlaAwunsk7DG 3bHcln8DMpIJVXht78sL =IE0r -----END PGP PUBLIC KEY BLOCK----- dest: description: Path to the repository file returned: always type: str sample: /etc/apt/sources.list.d/focal-archive.sources key_filename: description: Path to the signed_by key file returned: always type: str sample: /etc/apt/keyrings/debian.gpg N) AnsibleModule)missing_required_lib) is_sequence)S_IRWXU_RXG_RXO S_IRWU_RG_RO)to_bytes) to_native) raise_from)generic_urlparse)open_url)get_user_agent)urlparseT)Deb822Fz/etc/apt/keyringsc d}tjjts/|jstj tt |dz}||jtgdddddd|z}|S)NFT)NNNroot0755)path secontextownergroupmode attributes)osrisdir KEYRINGS_DIR check_modemkdirrset_fs_attributes_if_different)modulechangeds Q/home/dcms/DCMS/lib/python3.12/site-packages/ansible/modules/deb822_repository.pyensure_keyrings_dirr#sqG 77== &  HH\? 34 v44 +     G NcTtjjt|d|S)N.)rrjoinr)slugexts r"make_signed_by_filenamer*s 77<< s&; <z#format_multiline..-sI$$**,%#%Is z )textwrapindentr'r: splitlinesr1s r"format_multilinerA+s> (// I!'')2F2F2HII r$cZ|dk(ry|dk(ry|jddjS)NnamezX-Repolib-NameurisURIs_-)replacetitler1s r"format_field_namerJ2s0F{ f 99S#  $ $ &&r$c d|vS)Ns$-----BEGIN PGP PUBLIC KEY BLOCK-----r0)b_datas r" is_armoredrM:s 2f <sG ww~~a4 F Xa[ )E || ~'78AVVXFa 4%%&--8NE7 5$ 1 f%%5C&tS1Hw'J--)K[ &v..    w 14 v++HlEJJG Hd ""; : |IcN3S 9 9 :s$ E!5F! F*FFFc tidddidddidddidddd d ddid ddid ddid ddd dddidddidddidddd dddddddidddidddd dddd ddiddgdddgdddd ddddd d!gd d"d#d$}ts |jtd%t&|j }d'}|j j}|jd(}|jd)}|d}tjd*d+tjd,d-|j}t|}|d!k(rtjj|r|stj ||dz}d.D]G} t#|| } tjj| s/|stj | d}I|j%d|| /t'} d} t)|j+D]\} } |  t-| t.r t1| } nUt-| t2r t5| } n9t7| r t9| } n"| dk(r t;|| |\}} }| xs|} ||z}| j?d2d3kDr tA| } | | tC| <| jE}tGjH|jJ4\}}tjL|d55}|jOtQ|dddt|}|jS|}|jS|}||k7r|s|jU|||dz}||jW||d'z}|j%|||| /y#t<$r)}|jd0t5|z1Yd}~?d}~wwxYw#1swYxYw)6Nallow_downgrade_to_insecuretypeboolallow_insecure allow_weak architecturesstrlist)elementsrnby_hash check_datecheck_valid_until componentsdate_max_futureintenabledinrelease_path languagesrCT)rnrequiredpdiffs signed_bysuitestargetsdebzdeb-src)choicesrurndefaultraw0644)rnrpresentabsent)rnrr)trustedtypesrDrstate) argument_specsupports_check_modezpython3-debian)msg exceptionFrrz [^a-z0-9-]+z[_\s]+rG)rSrT)repor!dest key_filenamez!Could not fetch signed_by key: %s)rr8rrPrR),r HAS_DEBIAN fail_jsonrDEBIAN_IMP_ERRrparamscopypopresublowerr,rrexistsunlinkr* exit_jsonrsorteditems isinstanceror3r{r rr6rkrYcountrArJdumprZr[r\r]r^r r_r`ra)r rr!rrrrCr(sources_filenamer)signed_by_filenamedeb822keyvalue key_changedsigned_by_datardrrerfrgrirjs r"mainris, Y ),Y   Y  Y  !Y  Y " #Y ( ")Y . !/Y 6  7Y < =Y B CY H !IY P  QY X YY ^ _Y d !eY l !mY v " " ! % cY t!w\F| 12BC#1  3""JG]]   !F ::f D JJw E &>D 66     JJL  D-T2  77>>* + *+ tOG! C!8s!C ww~~01!II01   !+  XFV\\^,/ U =  eT "&E s #e$E  &E K  BUV\^ceiBj? /* tracebackansible.module_utils.basicrr'ansible.module_utils.common.collectionsr ansible.module_utils.common.filerr+ansible.module_utils.common.text.convertersr r ansible.module_utils.sixr ansible.module_utils.urlsr r rrrr debian.deb822r ImportError format_excrr#r*r,r3r6rArJrMrkr__name__r0r$r"rs #M ^* X! F 4;?J@A/6.4.  ,$ # ,= '=(#V}@ zF] ,J)Y))+N,s*BB98B9