U lHJe- @sddlZddlZddlZddlZddlZddlmZmZmZm Z m Z ddl m Z m Z ddlmZmZddlmZmZmZdZdZdZd Zd ZeeeZe d d efd eeeffdefgZ e dd efd eeeffdefdeeeffdeefgZ!ee"dddZ#ee eee edddZ$ia%e ee eddddZ&eeefdddZ'd.e j(e ee ddd Z)d!d"Z*d#d$Z+d/e j(e ee ee d%d&d'Z,e edd(d)Z-diddd*fee e.eeefe ee ee"e!d+d,d-Z/dS)0N)AnyDictList NamedTupleOptional)errorrequest) ParseResulturlparse)defaults exceptionsutil)z169.254.169.254Zmetadataz[fd00:ec2::254]zhttp://archive.ubuntu.comzhttps://esm.ubuntu.comzhttp://api.snapcraft.iozhttps://api.snapcraft.ioUnparsedHTTPResponsecodeheadersbody HTTPResponse json_dict json_list)urlreturncCsXz t|}Wntk r"YdSX|jdkr2dSz |jWntk rRYdSXdS)NF)httpshttpT)r ValueErrorschemeZport)rZ parsed_urlr8/usr/lib/python3/dist-packages/uaclient/http/__init__.pyis_service_url(s   r)protocolproxytest_urlrc Csr|sdSt|stj|dtj|dd}|dkrt|jdkrzt||d}Wntjk rhYnntj k r~YnXtj k rYnBt k r}z$t d||t|tj|dW5d}~XYnX|jdkr|Stj|dt||i}t|}z|||WStjt jfk rl}z,t d||t|d t|tj|dW5d}~XYnXdS) N)rHEAD)methodr https_proxyz:Error trying to use "%s" as pycurl proxy to reach "%s": %sz:Error trying to use "%s" as urllib proxy to reach "%s": %sreason)rr ZProxyInvalidUrlrRequestr r_readurl_pycurl_https_in_httpsPycurlRequiredErrorProxyAuthenticationFailedPycurlCACertificatesError ExceptionLOGrstrZProxyNotWorkingErrorr ProxyHandler build_openeropensockettimeoutURLErrorgetattr)rrr reqZresponsee proxy_handleropenerrrrvalidate_proxy9sL     r:) http_proxyr$rcCsi}|r||d<|r||d<dtt}dD]6}tj|}|r.dtt|dtt}q.t d||tjd<|tjd<|rt |}t |}t |t j dd |id |ad S) aW Globally configure pro-client to use http and https proxies. - sets global proxy configuration for urllib - sets the no_proxy environment variable for the current process which gets inherited for all subprocesses - sets module variable for use in https-in-https pycurl requests this is retrieved later using get_configured_web_proxy :param http_proxy: http proxy to be used by urllib. If None, it will not be configured :param https_proxy: https proxy to be used by urllib. If None, it will not be configured rr,)no_proxyNO_PROXYzSetting no_proxy: %sr=r>zSetting global proxy dictextra)r?N)joinsortedUA_NO_PROXY_URLSosenvirongetsetsplitunionr-debugrr/r0Zinstall_opener_global_proxy_dict)r;r$Z proxy_dictr=Zenv_varZ proxy_valuer8r9rrrconfigure_web_proxyns.       rK)rcCstS)N)rJrrrrget_configured_web_proxysrL)r6r3rc Csztj||d}WnZtjk r:}z|}W5d}~XYn4tjk rl}ztj||jdW5d}~XYnX| d}dd|j D}t |j ||dS)Nr3rutf-8cSsi|]\}}||qSr)lower).0kvrrr sz#_readurl_urllib..rrr)rZurlopenrZ HTTPErrorr4r ZUrlErrorZfull_urlreaddecoderitemsrr)r6r3respr7rrrrr_readurl_urllibs"rZcCsJt|}t|}|jdko8t|j o8|dk o8|jdk}td||S)a We only want to use pycurl if all of the following are true - The target url scheme is https - The target host is not in no_proxy - An https_proxy is configured either via pro's config or via environment - The https_proxy url scheme is https urllib.request provides some helpful functions that we re-use here. This function also returns the https_proxy to use, since it is calculated here anyway. rNzShould use pycurl: %r)r _parse_https_proxyrrZ proxy_bypassZhostnamer-rI)r$Z target_urlZparsed_target_urlparsed_https_proxyZretrrrshould_use_pycurls   r]cCs|d}d}t|jdkr |jd}t|jdkr8|jd}||krV|rVd|krVtn"||krltj|dn tj|ddS)NrzHTTP code 407 from proxyrN)r7)lenargsr r*r+Z PycurlError)rrauthentication_error_codeca_certificates_error_codermsgrrr_handle_pycurl_errors    rd)r6r3r$rc sz ddl}Wntk r(tYnX|}|}|dkrV||jdnT|dkrn||j dn<|dkr||j d|j r||j |j nt d|||j|dd|D}t|dkr||j|||jd||jtj|r||j||rXt|}|r6|nd}||j|||jd n td t }||j!|ifd d } ||j"| z |#Wn>|j$k r} zt%| ||j&|j'd W5d} ~ XYnXt(|)|j*} |+,d} |-t.| | dS)NrGETTr!POSTz5HTTP method "{}" not supported in HTTPS-in-HTTPS modecSsg|]\}}d||qS)z{}: {}format)rQnamevalrrr sz2_readurl_pycurl_https_in_https..z1in pycurl request function without an https proxycsF|d}d|krdS|dd\}}|}|}||<dS)Nz iso-8859-1:r^)rWrGstriprP)Z header_lineZname_rawZ value_rawrivaluerrr save_header%s  z3_readurl_pycurl_https_in_https..save_header)rrarbrOrU)/pycurl ImportErrorr r)ZCurlZ get_methodupperZsetoptZHTTPGETZNOBODYrfdataZCOPYPOSTFIELDSrrhZURLZ get_full_urlZ header_itemsr_Z HTTPHEADERZFOLLOWLOCATIONZCAINFOr ZSSL_CERTS_PATHZTIMEOUTr[ZgeturlZPROXYZ PROXYTYPEr-ZwarningioBytesIOZ WRITEDATAZHEADERFUNCTIONZperformrrdZ E_RECV_ERRORZE_SSL_CACERT_BADFILEintZgetinfoZ RESPONSE_CODEgetvaluerWcloser) r6r3r$rrcr"Zheader_str_listr\Z body_outputrqr7rrrrprr(st      r(cCs"|std}|rt|SdS)Nr)rZ getproxiesrEr r#rrrr[Gsr[T)rrurr"r3log_response_bodyrc sb|r |s d}tj|||d}dfddtD}td|pHd|||rZ|dndt d }t ||rt |||d n t ||d i} g} d j d dkrtjjtjd} t| tr| } nt| tr| } dfddtj D}d|pd||} |r@j} | r(| } n | r2| } | d| 7} t| tjj j| | dS)Nrf)rurr"z, csg|]}d||qSz '{}': '{}'rgrQrRrprrrkZszreadurl..z'URL [{}]: {}, headers: {{{}}}, data: {}rerOr)r3r$rMzapplication/jsonz content-type)clscsg|]}d|j|qSr})rhrr~)rYrrrkwsz&URL [{}] response: {}, headers: {{{}}}z , data: {})rrrrr)rr'r@rAr-rIrhrWrLrEr]r(rZrjsonloadsrr ZDatetimeAwareJSONDecoder isinstancedictlistrr)rrurr"r3r|r6Zsorted_header_strr$rrZ json_bodyZ debug_msgZ body_to_logr)rrYrreadurlMsj      r)N)NN)0rvrZloggingrCr2typingrrrrrZurllibrrZ urllib.parser r Zuaclientr r r rBZPROXY_VALIDATION_APT_HTTP_URLZPROXY_VALIDATION_APT_HTTPS_URLZPROXY_VALIDATION_SNAP_HTTP_URLZPROXY_VALIDATION_SNAP_HTTPS_URLZ getLoggerZreplace_top_level_logger_name__name__r-rxr.rrboolrr:rJrKrLr'rZr]rdr(r[bytesrrrrrs   2 1  _