community.general/lib/ansible/utils/encrypt.py

# (c) 2012-2014, Michael DeHaan <michael.dehaan@gmail.com>
# (c) 2017 Ansible Project
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
from __future__ import (absolute_import, division, print_function)
__metaclass__ = type

import multiprocessing
import random

from ansible import constants as C
from ansible.errors import AnsibleError, AnsibleAssertionError
from ansible.module_utils.six import text_type
from ansible.module_utils._text import to_text, to_bytes


PASSLIB_AVAILABLE = False
try:
    import passlib.hash
    PASSLIB_AVAILABLE = True
except:
    pass

try:
    from __main__ import display
except ImportError:
    from ansible.utils.display import Display
    display = Display()

__all__ = ['do_encrypt']

_LOCK = multiprocessing.Lock()

DEFAULT_PASSWORD_LENGTH = 20


def do_encrypt(result, encrypt, salt_size=None, salt=None):
    if PASSLIB_AVAILABLE:
        try:
            crypt = getattr(passlib.hash, encrypt)
        except:
            raise AnsibleError("passlib does not support '%s' algorithm" % encrypt)

        if salt_size:
            result = crypt.encrypt(result, salt_size=salt_size)
        elif salt:
            if crypt._salt_is_bytes:
                salt = to_bytes(salt, encoding='ascii', errors='strict')
            else:
                salt = to_text(salt, encoding='ascii', errors='strict')
            result = crypt.encrypt(result, salt=salt)
        else:
            result = crypt.encrypt(result)
    else:
        raise AnsibleError("passlib must be installed to encrypt vars_prompt values")

    # Hashes from passlib.hash should be represented as ascii strings of hex
    # digits so this should not traceback.  If it's not representable as such
    # we need to traceback and then blacklist such algorithms because it may
    # impact calling code.
    return to_text(result, errors='strict')


def random_password(length=DEFAULT_PASSWORD_LENGTH, chars=C.DEFAULT_PASSWORD_CHARS):
    '''Return a random password string of length containing only chars

    :kwarg length: The number of characters in the new password.  Defaults to 20.
    :kwarg chars: The characters to choose from.  The default is all ascii
        letters, ascii digits, and these symbols ``.,:-_``
    '''
    if not isinstance(chars, text_type):
        raise AnsibleAssertionError('%s (%s) is not a text_type' % (chars, type(chars)))

    random_generator = random.SystemRandom()
    return u''.join(random_generator.choice(chars) for dummy in range(length))
Moving over all lookup plugins to v2 2015-01-09 16:37:31 +01:00			`# (c) 2012-2014, Michael DeHaan <michael.dehaan@gmail.com>`
decelerate! (#30160) removed accelerate code removed keyczar dep for accelerate 2017-09-17 05:35:50 +02:00			`# (c) 2017 Ansible Project`
			`# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)`
Import futures including print 2015-04-13 22:28:01 +02:00			`from __future__ import (absolute_import, division, print_function)`
			`__metaclass__ = type`

ansible/utils/: PEP8 compliancy (#24686) - Make PEP8 compliant 2017-05-30 19:09:44 +02:00			`import multiprocessing`
[passwordstore] Use builtin _random_password function instead of pwgen (#25843) * [password] _random_password -> random_password and moved to util/encrypt.py * [passwordstore] Use built-in random_password instead of pwgen utility * [passwordstore] Add integration tests 2017-08-15 00:19:40 +02:00			`import random`
Fixing accelerated connection plugin 2015-10-02 06:35:22 +02:00
ansible/utils/: PEP8 compliancy (#24686) - Make PEP8 compliant 2017-05-30 19:09:44 +02:00			`from ansible import constants as C`
Remove uses of assert in production code (#32079) * Remove uses of assert in production code * Fix assertion * Add code smell test for assertions, currently limited to lib/ansible * Fix assertion * Add docs for no-assert * Remove new assert from enos * Fix assert in module_utils.connection 2017-11-13 17:51:18 +01:00			`from ansible.errors import AnsibleError, AnsibleAssertionError`
[passwordstore] Use builtin _random_password function instead of pwgen (#25843) * [password] _random_password -> random_password and moved to util/encrypt.py * [passwordstore] Use built-in random_password instead of pwgen utility * [passwordstore] Add integration tests 2017-08-15 00:19:40 +02:00			`from ansible.module_utils.six import text_type`
ansible/utils/: PEP8 compliancy (#24686) - Make PEP8 compliant 2017-05-30 19:09:44 +02:00			`from ansible.module_utils._text import to_text, to_bytes`

[passwordstore] Use builtin _random_password function instead of pwgen (#25843) * [password] _random_password -> random_password and moved to util/encrypt.py * [passwordstore] Use built-in random_password instead of pwgen utility * [passwordstore] Add integration tests 2017-08-15 00:19:40 +02:00
Moving over all lookup plugins to v2 2015-01-09 16:37:31 +01:00			`PASSLIB_AVAILABLE = False`
			`try:`
			`import passlib.hash`
			`PASSLIB_AVAILABLE = True`
			`except:`
			`pass`

Cleanup pyflakes warning (real error) 2015-10-19 20:29:51 +02:00			`try:`
			`from __main__ import display`
			`except ImportError:`
			`from ansible.utils.display import Display`
			`display = Display()`

Moving over all lookup plugins to v2 2015-01-09 16:37:31 +01:00			`__all__ = ['do_encrypt']`

Prevent race in key setup for accelerate daemon (#15299) Ensure that initial setup in creating the key directory for ansible accelerate mode keys, and generation/storage of the key for a particular host are completed in a multiprocess safe manner. Creating directories/files and then assigning permissions and contents to them means that paths may exist and satisfy the os.path.exists() method in python for other processes before they are usable. Use a combination of locking around operations with use of unique named files and an OS file system move to ensure that the conditions of checking whether a file or directory exists, where it is potentially created by another thread, will only succeed when the file has both the correct contents and permissions. Fixes #13850 2016-04-25 18:13:42 +02:00			`_LOCK = multiprocessing.Lock()`

decelerate! (#30160) removed accelerate code removed keyczar dep for accelerate 2017-09-17 05:35:50 +02:00			`DEFAULT_PASSWORD_LENGTH = 20`

Prevent race in key setup for accelerate daemon (#15299) Ensure that initial setup in creating the key directory for ansible accelerate mode keys, and generation/storage of the key for a particular host are completed in a multiprocess safe manner. Creating directories/files and then assigning permissions and contents to them means that paths may exist and satisfy the os.path.exists() method in python for other processes before they are usable. Use a combination of locking around operations with use of unique named files and an OS file system move to ensure that the conditions of checking whether a file or directory exists, where it is potentially created by another thread, will only succeed when the file has both the correct contents and permissions. Fixes #13850 2016-04-25 18:13:42 +02:00
Moving over all lookup plugins to v2 2015-01-09 16:37:31 +01:00			`def do_encrypt(result, encrypt, salt_size=None, salt=None):`
			`if PASSLIB_AVAILABLE:`
			`try:`
			`crypt = getattr(passlib.hash, encrypt)`
			`except:`
			`raise AnsibleError("passlib does not support '%s' algorithm" % encrypt)`

			`if salt_size:`
			`result = crypt.encrypt(result, salt_size=salt_size)`
			`elif salt:`
Now that we convert salt inside of do_encryptas needed, keep salt as text type until then. 2016-10-20 22:48:20 +02:00			`if crypt._salt_is_bytes:`
			`salt = to_bytes(salt, encoding='ascii', errors='strict')`
			`else:`
			`salt = to_text(salt, encoding='ascii', errors='strict')`
Moving over all lookup plugins to v2 2015-01-09 16:37:31 +01:00			`result = crypt.encrypt(result, salt=salt)`
			`else:`
			`result = crypt.encrypt(result)`
			`else:`
			`raise AnsibleError("passlib must be installed to encrypt vars_prompt values")`

Fix password lookup py3 plus alikins unittest additions refactoring (#17626) * Improve unit testing of 'password' lookup The tests showed some UnicodeErrors for the cases where the 'chars' param include unicode, causing the 'getattr(string, c, c)' to fail. So the candidate char generation code try/excepts UnicodeErrors there now. Some refactoring of the password.py module to make it easier to test, and some new tests that cover more of the password and salt generation. * More refactoring and fixes. * manual merge of text enc fixes from pr17475 * moving methods to module scope * more refactoring * A few more text encoding fixes/merges * remove now unused code * Add test cases and data for _gen_candidate_chars * more test coverage for password lookup * wip * More text encoding fixes and test coverage * cleanups * reenable text_type assert * Remove unneeded conditional in _random_password * Add docstring for _gen_candidate_chars * remove redundant to_text and list comphenesion * Move set of 'chars' default in _random_password on py2, C.DEFAULT_PASSWORD_CHARS is a regular str type, so the assert here fails. Move setting the default into the method and to_text(DEFAULT_PASSWORD_CHARS) if it's needed. * combine _random_password and _gen_password * s/_create_password_file/_create_password_file_dir * native strings for exception msgs * move password to_text to _read_password_file * move to_bytes(content) to _write_password_file * add more test assertions about genned pw's * Some cleanups to alikins and abadger's password lookup refactoring: * Make DEFAULT_PASSWORD_CHARS into a text string in constants.py - Move this into the nonconfigurable section of constants. * Make utils.encrypt.do_encrypt() return a text string because all the hashes in passlib should be returning ascii-only strings and they are text strings in python3. * Make the split up of functions more sane: - Don't split such that conditionals have to occur in two separate functions. - Don't go overboard: Good to split file system manipulation from parsing but we don't need to do every file manipulation in a separate function. - Don't split so that creation of the password store happens in two parts. - Don't split in such a way that no decisions are made in run. * Organize functions by when it gets called from run(). * Run all potential characters through the gen_candidate_chars function because it does both normalization and validation. * docstrings for functions * Change when we store salt slightly. Store it whenever it was already present in the file as well as when encrypt is requested. This will head of potential idempotence bugs where a user has two playbook tasks using the same password and in one they need it encrypted but in the other they need it plaintext. * Reorganize tests to follow the order of the functions so it's easier to figure out if/where a function has been tested. * Add tests for the functions that read and write the password file. * Add tests of run() when the password has already been created. * Test coverage currently at 100% 2016-09-19 20:37:57 +02:00			`# Hashes from passlib.hash should be represented as ascii strings of hex`
			`# digits so this should not traceback. If it's not representable as such`
			`# we need to traceback and then blacklist such algorithms because it may`
			`# impact calling code.`
			`return to_text(result, errors='strict')`
Moving over all lookup plugins to v2 2015-01-09 16:37:31 +01:00
ansible/utils/: PEP8 compliancy (#24686) - Make PEP8 compliant 2017-05-30 19:09:44 +02:00
[passwordstore] Use builtin _random_password function instead of pwgen (#25843) * [password] _random_password -> random_password and moved to util/encrypt.py * [passwordstore] Use built-in random_password instead of pwgen utility * [passwordstore] Add integration tests 2017-08-15 00:19:40 +02:00			`def random_password(length=DEFAULT_PASSWORD_LENGTH, chars=C.DEFAULT_PASSWORD_CHARS):`
			`'''Return a random password string of length containing only chars`

			`:kwarg length: The number of characters in the new password. Defaults to 20.`
			`:kwarg chars: The characters to choose from. The default is all ascii`
			letters, ascii digits, and these symbols ``.,:-_``
			`'''`
Remove uses of assert in production code (#32079) * Remove uses of assert in production code * Fix assertion * Add code smell test for assertions, currently limited to lib/ansible * Fix assertion * Add docs for no-assert * Remove new assert from enos * Fix assert in module_utils.connection 2017-11-13 17:51:18 +01:00			`if not isinstance(chars, text_type):`
			`raise AnsibleAssertionError('%s (%s) is not a text_type' % (chars, type(chars)))`
[passwordstore] Use builtin _random_password function instead of pwgen (#25843) * [password] _random_password -> random_password and moved to util/encrypt.py * [passwordstore] Use built-in random_password instead of pwgen utility * [passwordstore] Add integration tests 2017-08-15 00:19:40 +02:00
			`random_generator = random.SystemRandom()`
			`return u''.join(random_generator.choice(chars) for dummy in range(length))`