Add Debian 7 backend

tchatow · tchatow · commit a917cec011bf · 2024-11-18T18:36:31.000-08:00
diff --git a/blueprints/debian7-debian7/blueprint.yml b/blueprints/debian7-debian7/blueprint.yml
@@ -0,0 +1,10 @@
+debian1:
+  image: "bento/debian-7.11"
+  version: "201806.08.0"
+  type: "linux"
+  net_backend: ifupdown
+debian2:
+  image: "bento/debian-7.11"
+  version: "201806.08.0"
+  type: "linux"
+  net_backend: ifupdown
diff --git a/src/cvex/cvex.py b/src/cvex/cvex.py
@@ -92,7 +92,8 @@ def _read_cvex(self, cve_dir: Path):
                                             data['type'],
                                             trace,
                                             playbooks,
-                                            command))
+                                            command,
+                                            data.get('net_backend')))
         if not self.vm_templates:
             self.log.critical("%s: configuration mismatch", blueprint_yml)
             sys.exit(1)
diff --git a/src/cvex/linuxvm.py b/src/cvex/linuxvm.py
@@ -56,7 +56,7 @@ def get_ansible_inventory(self) -> Path:
                     f"ansible_port={self.vag.port()} "
                     f"ansible_user={self.vag.user()} "
                     f"ansible_ssh_private_key_file={self.vag.keyfile()} "
-                    f"ansible_ssh_common_args='-o StrictHostKeyChecking=no'")
+                    f"ansible_ssh_common_args='-o StrictHostKeyChecking=no -oHostKeyAlgorithms=+ssh-rsa'")
             f.write(data)
         return inventory
     
@@ -70,7 +70,7 @@ def _update_netplan_config(self, netcfg: dict, netcfg_dest: str):
         self.ssh.run_command("sudo netplan apply")
         self.network_interface_initialized = True
 
-    def set_network_interface_ip(self, router: VM | None = None):
+    def set_network_interface_ip_netplan(self, router: VM | None = None):
         if self.network_interface_initialized:
             return
         yamls = self.ssh.run_command("ls /etc/netplan")
@@ -114,6 +114,33 @@ def set_routing(self, router: VM):
         self.ssh.run_command("sudo sysctl net.ipv4.conf.all.accept_redirects=0")
         self.ssh.run_command("sudo sysctl net.ipv4.conf.default.accept_redirects=0")
 
+    def set_network_interface_ip_ifupdown(self, router: VM | None = None):
+        # Download existing config
+        netcfg_local = tempfile.NamedTemporaryFile()
+        self.ssh.download_file(netcfg_local.name, "/etc/network/interfaces")
+
+        with open(netcfg_local.name, "r") as f:
+            netcfg = f.read()
+
+        netcfg = re.sub('(iface eth1[^\r]*address[ ]*)([0-9.]*)',
+                        f'\\g<1>{self.ip}', netcfg, flags=re.MULTILINE)
+
+        with open(netcfg_local.name, "w") as f:
+            f.write(netcfg)
+        self.ssh.upload_file(netcfg_local.name, "/tmp/interfaces")
+        self.ssh.run_command("sudo mv /tmp/interfaces /etc/network/interfaces")
+        self.ssh.run_command("sudo ifdown eth1; sudo ifup eth1")
+
+
+    def set_network_interface_ip(self, router: VM | None = None):
+        if self.net_backend is None or self.net_backend == 'netplan':
+            self.set_network_interface_ip_netplan(router)
+        elif self.net_backend == 'ifupdown':
+            self.set_network_interface_ip_ifupdown(router)
+        else:
+            self.log.critical("Unknown net backend %s", self.net_backend)
+            sys.exit(1)
+
     def start_api_tracing(self):
         if not self.trace:
             return
diff --git a/src/cvex/ssh.py b/src/cvex/ssh.py
@@ -8,6 +8,8 @@
 
 from cvex.logger import get_logger
 
+# Fix bug in paramiko ssh key selection
+paramiko.transport.Transport._preferred_pubkeys = ('ssh-rsa', *paramiko.transport.Transport._preferred_pubkeys)
 
 class SSH:
     log: logging.Logger
diff --git a/src/cvex/vm.py b/src/cvex/vm.py
@@ -17,6 +17,9 @@ class VMTemplate:
     VM_TYPE_WINDOWS = "windows"
     VM_TYPE_UNKNOWN = "unknown"
 
+    NET_BACKEND_NETPLAN = "netplan"
+    NET_BACKEND_IFUPDOWN = "ifupdown"
+
     log: logging.Logger
     vm_name: str
     image: str
@@ -25,6 +28,7 @@ class VMTemplate:
     trace: str | None
     playbooks: list[Path]
     command: list[str]
+    net_backend: str
 
     def __init__(self,
                  vm_name: str,
@@ -33,7 +37,8 @@ def __init__(self,
                  vm_type: str,
                  trace: str | None = None,
                  playbooks: list[Path] = [],
-                 command: list[str] = []):
+                 command: list[str] = [],
+                 net_backend: str = None):
         self.log = get_logger(vm_name)
         self.vm_name = vm_name
         self.image = image
@@ -55,6 +60,14 @@ def __init__(self,
                 sys.exit(1)
         self.playbooks = playbooks
         self.command = command
+        if net_backend is not None:
+            if vm_type != self.VM_TYPE_LINUX:
+                self.log.critical("net_backend only valid for %s", self.VM_TYPE_LINUX)
+                sys.exit(1)
+            elif net_backend != self.NET_BACKEND_NETPLAN and net_backend != self.NET_BACKEND_IFUPDOWN:
+                self.log.critical("Unknown net backend %s", net_backend)
+                sys.exit(1)
+        self.net_backend = net_backend
 
 
 current_ip = 2
@@ -132,6 +145,7 @@ def __init__(self,
         self.trace = template.trace
         self.playbooks = template.playbooks
         self.command = template.command
+        self.net_backend = template.net_backend
         self.cve = cve
         global current_ip
         self.ip = f"192.168.56.{current_ip}"
