HOME


Mini Shell 1.0
DIR: /opt/cloudlinux/venv/lib/python3.11/site-packages/__pycache__/
Upload File :
Current File : //opt/cloudlinux/venv/lib/python3.11/site-packages/__pycache__/clsudo.cpython-311.pyc
�

D. j�B���ddlZddlZddlZddlZddlZddlZddlZddlmZm	Z	ej
e��ZGd�de
��ZGd�de
��ZGd�de
��ZGd	�d
e
��ZdZgd�Zd
gZgd�ZdZdZdZGd�d��ZdS)�N)�S_IRUSR�S_IRGRPc��eZdZd�ZdS)�
NoSuchUserc�D�t�|d|�d���dS)NzNo such user (�)��	Exception�__init__)�self�users  ��/builddir/build/BUILDROOT/alt-python27-cllib-3.4.40-1.el8.cloudlinux.x86_64/opt/cloudlinux/venv/lib/python3.11/site-packages/clsudo.pyrzNoSuchUser.__init__s*�����4�!9�$�!9�!9�!9�:�:�:�:�:�N��__name__�
__module__�__qualname__r�rrrrs#������;�;�;�;�;rrc��eZdZd�ZdS)�NoSuchGroupc�D�t�|d|�d���dS)NzNo such group (rr	)r�groups  rrzNoSuchGroup.__init__s*�����4�!;�5�!;�!;�!;�<�<�<�<�<rNrrrrrr�#������=�=�=�=�=rrc��eZdZd�ZdS)�UnableToReadFilec�<�t�|d��dS)NzCannot read sudoers filer	�rs rrzUnableToReadFile.__init__s�����4�!;�<�<�<�<�<rNrrrrrrrrrc��eZdZd�ZdS)�UnableToWriteFilec�<�t�|d��dS)NzCannot modify sudoers filer	rs rrzUnableToWriteFile.__init__$s�����4�!=�>�>�>�>�>rNrrrrrr#s#������?�?�?�?�?rrz/etc/sudoers)z/bin/psz	/bin/grepz
/sbin/servicez%/usr/bin/getcontrolpaneluserspackagesz/usr/sbin/lvectlz>/usr/local/directadmin/plugins/new_lvemanager/admin/GetDomainsz0/usr/share/l.v.e-manager/utils/cloudlinux-cli.pyz5/usr/share/l.v.e-manager/utils/cloudlinux-cli-user.py)�/usr/bin/cl-selectorz/usr/bin/pinisetz/usr/sbin/lvepsz/usr/bin/selectorctlzDefaults:%s !requirettyz-%%%s ALL=NOPASSWD: LVECTL_CMDS, SELECTOR_CMDSzDefaults:%%%s !requirettyc�x�eZdZdZdZgZdZdZdZdZ	dZ
dZdZdZ
dZdZeefd���Zeefd���Zeefd���Zeefd���Zeefd���Zeefd	���Zed
���Zed���Zed���Zed
���Zed���Zed���Zed���ZdS)�Clsudoz/
    Adds CloudLinux users to sudoers file
    NFc��t�d||tj��tj����t
�|��t
�|��t
�|��t
j	s:t
j
�dd�t��z��t
js:t
j
�dd�t��z��t
js:t
j
�dd�t"��z��t
js"t
j
�|�d���t
js"t
j
�|�d���t
js"t
j
�|�d���t
js(t
j
�t,|fz��t
���t�d	||��d
S)z@
        Adds username to sudoers file (for lvemanager)
        z@add_user: adding user '%s' to sudoers file '%s' (uid=%d, pid=%d)�Cmnd_Alias LVECTL_CMDS = �, zCmnd_Alias LVECTL_USER_CMDS = �Cmnd_Alias SELECTOR_CMDS = � ALL=NOPASSWD: LVECTL_CMDS�% ALL=(ALL) NOPASSWD: LVECTL_USER_CMDS� ALL=NOPASSWD: SELECTOR_CMDSz.add_user: successfully added user '%s' to '%s'N)�logger�info�os�getuid�getpidr#�update_commands_list�_check_user�
_get_contents�	has_alias�sudoers_list�append�join�ALIAS_LVECTL_CMDS�has_user_alias�ALIAS_LVECTL_USER_CMDS�has_selector_alias�ALIAS_SELECTOR_CMDS�
has_rights�has_user_rights�has_selector_rights�
has_action�DEFAULTS_REQUIRETTY�_write_contents�r
�sudoers_files  r�add_userzClsudo.add_userHs���
	���(�)-�|��Y�[�[�"�)�+�+�	/�	/�	/�	�#�#�L�1�1�1����4� � � ����T�"�"�"���	c���&�&�'B�T�Y�Y�O`�Ea�Ea�'a�b�b�b��$�	m���&�&�'G�$�)�)�Tj�Jk�Jk�'k�l�l�l��(�	g���&�&�'D�t�y�y�Qd�Ge�Ge�'e�f�f�f�� �	L���&�&�$�'J�'J�'J�K�K�K��%�	W���&�&�$�'U�'U�'U�V�V�V��)�	N���&�&�$�'L�'L�'L�M�M�M�� �	F���&�&�':�d�W�'D�E�E�E���� � � ����D��<�	)�	)�	)�	)�	)rc��t�d||tj��tj����|t
_t
�|��t
�|��t
j	st
j
�d��t
js"t
j
�|�d���t
j
s(t
j
�t|fz��t
���t�d||��dS)z<
        Adds username to sudoers file (for cagefs)
        zGadd_cagefs_user: adding user '%s' to sudoers file '%s' (uid=%d, pid=%d)zOCmnd_Alias CAGEFS_CMDS = /usr/sbin/cagefsctl, /bin/ps, /bin/grep, /sbin/service� ALL=NOPASSWD: CAGEFS_CMDSz5add_cagefs_user: successfully added user '%s' to '%s'N)r+r,r-r.r/r#�filepathr1r2�has_cagefs_aliasr4r5�has_cagefs_rightsr?r@rArBs  r�add_cagefs_userzClsudo.add_cagefs_usergs'��
	���(�)-�|��Y�[�[�"�)�+�+�	/�	/�	/�'������4� � � ����T�"�"�"��&�	L���&�&�(K�
L�
L�
L��'�	L���&�&�$�'J�'J�'J�K�K�K�� �	F���&�&�':�d�W�'D�E�E�E���� � � ����K��<�	)�	)�	)�	)�	)rc�t�t�d||tj��tj����t
�|��t
�|��t
�|��t
j	s:t
j
�dd�t��z��t
js:t
j
�dd�t��z��t
js(t
j
�t"|fz��t
js(t
j
�t&|fz��t
���t�d||��dS)zJ
        Adds group to sudoers file, grants access to LVE Manager
        zMadd_lvemanager_group: adding group '%s' to sudoers file '%s' (uid=%d, pid=%d)r%r&r'z;add_lvemanager_group: successfully added group '%s' to '%s'N)r+r,r-r.r/r#r0�_check_group�_get_contents_groupr3r4r5r6r7r:r;r?�GROUP_LVECTL_SELECTOR�has_group_action�GROUP_DEFAULTS_REQUIRETTYrA)�
group_namerCs  r�add_lvemanager_groupzClsudo.add_lvemanager_group}so��
	���(�)3�\��Y�[�[�"�)�+�+�	/�	/�	/�	�#�#�L�1�1�1����J�'�'�'��"�"�:�.�.�.���	c���&�&�'B�T�Y�Y�O`�Ea�Ea�'a�b�b�b��(�	g���&�&�'D�t�y�y�Qd�Ge�Ge�'e�f�f�f�� �	N���&�&�'<�
�}�'L�M�M�M��&�	R���&�&�'@�J�=�'P�Q�Q�Q���� � � ����Q���	/�	/�	/�	/�	/rc��t�d||tj��tj����|t
_	tt
jd���5}|����	��t
_
ddd��n#1swxYwYd}d}|tt
j
��kr�t
j
|}|�d�|vs
t|fz|vr>t�d||��t
j
�
|��d	}��|d
z
}|tt
j
��k��|r7t
���t�d||��dSt�d||��dS#tt f$r}t#��|�d}~wwxYw)
z5
         Removes username from sudoers file
        zGremove_user: removing user '%s' from sudoers file '%s' (uid=%d, pid=%d)�utf-8��encodingNrFz ALL=NOPASSWD:z4remove_user: removing sudoers rule for user '%s': %sT�z5remove_user: successfully removed user '%s' from '%s'z1remove_user: no rules found for user '%s' in '%s')r+r,r-r.r/r#rG�open�read�
splitlinesr4�lenr@�removerA�IOError�OSErrorr)r
rC�f�idx�removed�line�es       r�remove_userzClsudo.remove_user�s��
	���(�)-�|��Y�[�[�"�)�+�+�	/�	/�	/�'���	,��f�o��8�8�8�
<�A�&'�f�f�h�h�&9�&9�&;�&;��#�
<�
<�
<�
<�
<�
<�
<�
<�
<�
<�
<����
<�
<�
<�
<��C��G���F�/�0�0�0�0��*�3�/���,�,�,��5�5�<O�SW�RY�<Y�^b�;b�;b��K�K� V� $�d�,�,�,��'�.�.�t�4�4�4�"�G���q�����F�/�0�0�0�0��
1��&�&�(�(�(����S�!�<�1�1�1�1�1����O�!�<�1�1�1�1�1����!�	,�	,�	,�"�$�$�!�+�����	,���sC�F/�)1B&�F/�&B*�*F/�-B*�.C!F/�F/�/G�G�Gc�"�t�d||tj��tj����t
�|��t
�|��t
�|��dS)z�
        updates username in sudoers file
        :param user: username for caching
        :param sudoers_file: path to /etc/sudoers (only for tests)
        :return: None
        zEupdate_user: updating user '%s' in sudoers file '%s' (uid=%d, pid=%d)N)	r+r,r-r.r/r#r0r1r2rBs  r�update_userzClsudo.update_user�s{��	���(�)-�|��Y�[�[�"�)�+�+�	/�	/�	/�	�#�#�L�1�1�1�	���4� � � ����T�"�"�"�"�"rc���|t_tj�tj��t_t���ttd�}d}ttj
��D]�\}}|���D]z\}}||vrq|�|d���
��}|�d��}|D]1}||vr+d}|�dd�|����tj
|<n�2�{|rXt �d|tj��tj����t�����d	S)
z�
        Update command lists for lvemanager plugin
        If any required command absent in file, add it
        :param sudoers_file: path to /etc/sudoers
        :return: None
        )�Cmnd_Alias LVECTL_CMDS�Cmnd_Alias SELECTOR_CMDSF��,Tz = r&zGupdate_commands_list: updating command aliases in '%s' (uid=%d, pid=%d)N)r#rGr-�path�dirname�temp_dir�
_read_sudoersr7r;�	enumerater4�items�replace�strip�splitr6r+r,r.r/rA)	rC�	cmnd_dict�is_sudoer_changer`�command_string�
aliase_key�aliase_list�	cmnd_list�aliase_cmnd_items	         rr0zClsudo.update_commands_list�sv��'����'�/�/�&�/�:�:���������/@�1D�F�F�	� ��#,�V�-@�#A�#A�	)�	)��C��+4�?�?�+<�+<�
"�
"�'�
�K���/�/�%3�%;�%;�J��%K�%K�%Q�%Q�%S�%S�N� .� 4� 4�S� 9� 9�I�,7�"�"�(�+�9�<�<�/3�,�:D�7a�7a����S^�I_�I_�7a�7a�F�/��4�!�E�=�� �
)����0�1=��Y�[�[�"�)�+�+�7�7�7��&�&�(�(�(��	)�	)rc�t�	tj|��dS#t$r}t|��|�d}~wwxYw)zZ
        Checks passwd database for username presence
        @param user: string
        N)�pwd�getpwnam�KeyErrorr)r
rcs  rr1zClsudo._check_user�sL��	*��L���������	*�	*�	*��T�"�"��)�����	*������
7�2�7c�t�	tj|��dS#t$r}t|��|�d}~wwxYw)z_
        Checks grp database for group_name presence
        @param group_name: string
        N)�grp�getgrnamrr)rQrcs  rrLzClsudo._check_group�sL��	1��L��$�$�$�$�$���	1�	1�	1��j�)�)�q�0�����	1���r�c���ttjd���5}|������t_ddd��dS#1swxYwYdS)NrTrU)rXr#rGrYrZr4)r_s rrozClsudo._read_sudoers�s���
�&�/�G�
4�
4�
4�	8��"#�&�&�(�(�"5�"5�"7�"7�F��	8�	8�	8�	8�	8�	8�	8�	8�	8�	8�	8�	8����	8�	8�	8�	8�	8�	8s�1A�A�!Ac��dt_dt_dt_dt_dt_dt_dt_dt_dt_	dt_
tjd|�d���}	t�
��ttj��D�]\}}d|vr
dt_�d|vr
dt_�(d|vr
dt_	�9|�d�|vr
dt_�M|�d	�|vr
dt_�a|�d
�|vr
dt_
�ud|vr$|�|��}|rdt_��d|vr[d
|vr#|�dd��tj|<d|vr#|�dd��tj|<dt_��|�d�|vrdt_����dS#t$t&f$r}t)��|�d}~wwxYw)zM
        Reads file into list of strings
        @param user: string
        FzDefaults:\s*z\s*!requirettyrhTzCmnd_Alias LVECTL_USER_CMDS�Cmnd_Alias CAGEFS_CMDSr(r)rF�
requirettyri�pinisetr!�&/usr/bin/cl-selector, /usr/bin/piniset�lveps�7/usr/bin/cl-selector, /usr/bin/piniset, /usr/sbin/lvepsr*N)r#r?rOr3r8r<r=r:r>rHrI�re�compilerorpr4�searchrrr]r^r)r
�require_tty_patternr`rw�
pattern_matchrcs      rr2zClsudo._get_contentssQ��"���"'��� ��� %���!���!&���$)��!�%*��"�"'���#(�� � �j�)M��)M�)M�)M�N�N��,	,�� � �"�"�"�'0��1D�'E�'E�'
�'
�#��^�+�~�=�=�'+�F�$��0�N�B�B�,0�F�)��+�~�=�=�.2�F�+���6�6�6�.�H�H�(,�F�%���A�A�A�^�S�S�-1�F�*���6�6�6�.�H�H�/3�F�,���>�1�1�$7�$>�$>�~�$N�$N�M�$�1�,0��)��-��?�?� ��6�6�3A�3I�3I�2�D�4�4��+�C�0��n�4�4�3A�3I�3I�D�U�4�4��+�C�0�15�F�-���8�8�8�N�J�J�15�F�.��K�K'
�'
��P��!�	,�	,�	,�"�$�$�!�+�����	,���s�EG�G>�*G9�9G>c�~�dt_dt_dt_dt_dt_dt_dt_dt_d|��}d|��}tj
|�d���}	t���ttj
��D]�\}}d|vr[d|vr#|�dd��tj
|<d	|vr#|�dd
��tj
|<dt_�dd|vr
dt_�ud
|vr
dt_��|�|��r#|�|��}|rdt_|�|��rdt_��dS#t"t$f$r}t'��|�d}~wwxYw)zS
        Reads file into list of strings
        @param group_name: string
        F�%z
Defaults:%z/\s*ALL=NOPASSWD:\s*LVECTL_CMDS,\s*SELECTOR_CMDSrir�r!r�r�r�Trhr�N)r#r?rOr3r<r:r>rHrIr�r�rorpr4rr�
startswithr�r]r^r)rQ�group_prefix�group_action�
group_patternr`rwr�rcs        rrMzClsudo._get_contents_groupDs���"���"'��� ���!���$)��!�%*��"�"'���#(�� �'�:�'�'��0�J�0�0���
�z�#b�#b�#b�c�c�
�	,�� � �"�"�"�'0��1D�'E�'E�
3�
3�#��^�-��?�?� ��6�6�3A�3I�3I�2�D�4�4��+�C�0��n�4�4�3A�3I�3I�D�U�4�4��+�C�0�15�F�-��+�~�=�=�'+�F�$��+�~�=�=�.2�F�+��!�,�,�\�:�:�1�$1�$8�$8��$H�$H�M�$�1�,0��)�!�,�,�\�:�:�3�.2�F�+��3
3�
3��4��!�	,�	,�	,�"�$�$�!�+�����	,���s�DF�F<�(F7�7F<c�X�	tj�tj��}d}tj||���\}}tj|d��}|�d�	tj
��dz��|���ttz}tj||��t�|��st �n�#t t"f$r�}t$�dtjtj��tj����	tj�|��rtj|��n#t0$rYnwxYwt3��|�d}~wwxYw	tj|tj��dS#t"$r]}t$�dtjtj��tj����t3��|�d}~wwxYw)zX
        Writes data to temporary file then checks it and rewrites sudoers file
        �lve_sudoers_)�prefix�dir�w�
zC_write_contents: failed to write sudoers file '%s' (uid=%d, pid=%d)NzD_write_contents: failed to rename temp file to '%s' (uid=%d, pid=%d))r-rlrmr#rG�tempfile�mkstemp�fdopen�writer6r4�closerr�chmod�_is_file_validr]r^r+�warningr.r/�exists�unlinkr
r�rename)rn�temp_prefix�fd�	temp_path�fo�maskrcs       rrAzClsudo._write_contentsws���
	-��w���v��7�7�H�(�K�$�,�K�X�N�N�N�M�B�	���2�s�#�#�B��H�H�T�Y�Y�v�2�3�3�d�:�;�;�;��H�H�J�J�J��W�$�D��H�Y��%�%�%��(�(��3�3�
��
�
����!�		-�		-�		-��N�N�.�/5���9�;�;��	���
5�
5�
5�
��7�>�>�)�,�,�)��I�i�(�(�(����
�
�
���
����#�%�%�1�,�����		-����	-��I�i���1�1�1�1�1���	-�	-�	-��N�N�.�/5���9�;�;��	���
5�
5�
5�$�%�%�1�,�����		-���sV�C'C*�*F�;A	F�3E9�8F�9
F�F�F�F�F�!G�
H)�AH$�$H)c�
�ddd|g}tj|tjtjtj���5}|���|jdkr	ddd��dS	ddd��n#1swxYwYdS)Nz/usr/sbin/visudoz-cz-f)�stdin�stdout�stderrrFT)�
subprocess�Popen�DEVNULL�PIPE�STDOUT�communicate�
returncode)�filename�cmd�procs   rr�zClsudo._is_file_valid�s���
���(�
��
�
���$��?��$�	
�
�
�	�
���������!�#�#��	�	�	�	�	�	�	�	�$�	�	�	�	�	�	�	�	�	�	�	����	�	�	�	��ts�!A8�8A<�?A<)rrr�__doc__rGr4r?rOr3r8r<r=r:r>rHrI�staticmethod�SUDOERS_FILErDrJrRrdrfr0r1rLror2rMrAr�rrrr#r#7s����������H��L��J����I��N��J��O����������$0�)�)�)��\�)�<�+7�)�)�)��\�)�*�6B�/�/�/��\�/�0�'3�,�,�,��\�,�@�'3�#�#�#��\�#�"�*6�)�)�)��\�)�<�*�*��\�*��1�1��\�1��8�8��\�8��>,�>,��\�>,�@�0,�0,��\�0,�d�-�-��\�-�B����\���rr#)�loggingr-r}r�r�r�r��statrr�	getLoggerrr+r
rrrrr�r7r9r;r@rNrPr#rrr�<module>r�s�������	�	�	�	�
�
�
�
�
�
�
�
�	�	�	�	���������!�!�!�!�!�!�!�!�	��	�8�	$�	$��;�;�;�;�;��;�;�;�
=�=�=�=�=�)�=�=�=�
=�=�=�=�=�y�=�=�=�
?�?�?�?�?�	�?�?�?�
��I�I�I��R�R��m�m�m��/��G��7��r�r�r�r�r�r�r�r�r�rr