Ubuntu
euca2ools package

Merge lp:~smoser/ubuntu/natty/euca2ools/euca2ools-1.3.1 into lp:ubuntu/natty/euca2ools

Natty (11.04)
euca2ools-1.3.1
Merge into natty

Proposed by Scott Moser on 2010-11-17

Status:

Merged

Merged at revision:

Proposed branch:

lp:~smoser/ubuntu/natty/euca2ools/euca2ools-1.3.1

Merge into:

lp:ubuntu/natty/euca2ools

Diff against target:

17095 lines (+10928/-2506)

134 files modified

.pc/.quilt_patches (+1/-0)
.pc/.quilt_series (+1/-0)
.pc/.version (+1/-0)
.pc/applied-patches (+11/-0)
.pc/bundle-image-support-symlinks.patch/euca2ools/euca2ools/__init__.py (+1458/-0)
.pc/bundle-image-usage-on-invalid-user.patch/bin/euca-bundle-image (+285/-0)
.pc/bundle-vol-exclude-persistent-udev-net-rules.patch/bin/euca-bundle-vol (+456/-0)
.pc/bundle-vol-use-ec2-cert-by-default.patch/bin/euca-bundle-vol (+452/-0)
.pc/describe-image-attribute-empty-kernel-ramdisk.patch/bin/euca-describe-image-attribute (+166/-0)
.pc/describe-images-return-results-like-ec2-describe-images.patch/bin/euca-describe-images (+162/-0)
.pc/download-bundle-fix-usage.patch/bin/euca-download-bundle (+189/-0)
.pc/download-bundle-fix-usage.patch/man/euca-download-bundle.1 (+72/-0)
.pc/euca-revoke-exit-on-usage.patch/bin/euca-revoke (+202/-0)
.pc/print-instances-cleanup.patch/bin/euca-describe-instances (+156/-0)
.pc/print-instances-cleanup.patch/bin/euca-run-instances (+260/-0)
.pc/print-instances-cleanup.patch/euca2ools/euca2ools/__init__.py (+1458/-0)
.pc/run-instances-error-not-trace-on-bad-instance-count.patch/bin/euca-run-instances (+256/-0)
.pc/run-instances-usage-and-manpage-keypair.patch/bin/euca-run-instances (+256/-0)
.pc/run-instances-usage-and-manpage-keypair.patch/man/euca-run-instances.1 (+67/-0)
CHANGELOG (+17/-0)
INSTALL (+7/-7)
bin/euca-add-group (+33/-24)
bin/euca-add-keypair (+28/-20)
bin/euca-allocate-address (+21/-14)
bin/euca-associate-address (+39/-30)
bin/euca-attach-volume (+43/-36)
bin/euca-authorize (+96/-83)
bin/euca-bundle-image (+136/-91)
bin/euca-bundle-instance (+205/-0)
bin/euca-bundle-vol (+275/-200)
bin/euca-cancel-bundle-task (+120/-0)
bin/euca-confirm-product-instance (+42/-33)
bin/euca-create-snapshot (+38/-26)
bin/euca-create-volume (+60/-50)
bin/euca-delete-bundle (+137/-113)
bin/euca-delete-group (+25/-16)
bin/euca-delete-keypair (+27/-19)
bin/euca-delete-snapshot (+31/-23)
bin/euca-delete-volume (+32/-25)
bin/euca-deregister (+28/-22)
bin/euca-describe-addresses (+30/-19)
bin/euca-describe-availability-zones (+26/-16)
bin/euca-describe-bundle-tasks (+118/-0)
bin/euca-describe-groups (+42/-30)
bin/euca-describe-image-attribute (+70/-53)
bin/euca-describe-images (+51/-24)
bin/euca-describe-instances (+40/-31)
bin/euca-describe-keypairs (+26/-18)
bin/euca-describe-regions (+26/-17)
bin/euca-describe-snapshots (+36/-24)
bin/euca-describe-volumes (+53/-37)
bin/euca-detach-volume (+37/-28)
bin/euca-disassociate-address (+27/-20)
bin/euca-download-bundle (+72/-59)
bin/euca-get-console-output (+35/-26)
bin/euca-get-password (+126/-0)
bin/euca-get-password-data (+106/-0)
bin/euca-modify-image-attribute (+59/-46)
bin/euca-reboot-instances (+29/-21)
bin/euca-register (+94/-21)
bin/euca-release-address (+29/-21)
bin/euca-reset-image-attribute (+32/-24)
bin/euca-revoke (+92/-77)
bin/euca-run-instances (+145/-100)
bin/euca-terminate-instances (+30/-21)
bin/euca-unbundle (+77/-65)
bin/euca-upload-bundle (+118/-87)
bin/euca-version (+20/-13)
debian/changelog (+7/-0)
debian/patches/bundle-image-support-symlinks.patch (+17/-0)
debian/patches/bundle-image-usage-on-invalid-user.patch (+54/-0)
debian/patches/bundle-vol-exclude-persistent-udev-net-rules.patch (+31/-0)
debian/patches/bundle-vol-use-ec2-cert-by-default.patch (+20/-0)
debian/patches/describe-image-attribute-empty-kernel-ramdisk.patch (+26/-0)
debian/patches/describe-images-return-results-like-ec2-describe-images.patch (+92/-0)
debian/patches/download-bundle-fix-usage.patch (+39/-0)
debian/patches/euca-revoke-exit-on-usage.patch (+19/-0)
debian/patches/print-instances-cleanup.patch (+122/-0)
debian/patches/run-instances-error-not-trace-on-bad-instance-count.patch (+33/-0)
debian/patches/run-instances-usage-and-manpage-keypair.patch (+49/-0)
debian/patches/series (+11/-0)
debian/source/format (+1/-0)
debian/watch (+1/-1)
euca2ools.spec (+76/-42)
euca2ools/euca2ools/__init__.py (+995/-639)
euca2ools/setup.py (+21/-17)
man/euca-add-group.1 (+1/-1)
man/euca-add-keypair.1 (+1/-1)
man/euca-allocate-address.1 (+1/-1)
man/euca-associate-address.1 (+1/-1)
man/euca-attach-volume.1 (+1/-1)
man/euca-authorize.1 (+1/-1)
man/euca-bundle-image.1 (+1/-1)
man/euca-bundle-instance.1 (+46/-0)
man/euca-bundle-vol.1 (+1/-1)
man/euca-cancel-bundle-task.1 (+32/-0)
man/euca-confirm-product-instance.1 (+1/-1)
man/euca-create-snapshot.1 (+1/-1)
man/euca-create-volume.1 (+2/-2)
man/euca-delete-bundle.1 (+1/-1)
man/euca-delete-group.1 (+1/-1)
man/euca-delete-keypair.1 (+1/-1)
man/euca-delete-snapshot.1 (+1/-1)
man/euca-delete-volume.1 (+1/-1)
man/euca-deregister.1 (+1/-1)
man/euca-describe-addresses.1 (+1/-1)
man/euca-describe-availability-zones.1 (+1/-1)
man/euca-describe-bundle-tasks.1 (+33/-0)
man/euca-describe-groups.1 (+1/-1)
man/euca-describe-image-attribute.1 (+1/-1)
man/euca-describe-images.1 (+1/-1)
man/euca-describe-instances.1 (+1/-1)
man/euca-describe-keypairs.1 (+1/-1)
man/euca-describe-regions.1 (+1/-1)
man/euca-describe-snapshots.1 (+1/-1)
man/euca-describe-volumes.1 (+1/-1)
man/euca-detach-volume.1 (+1/-1)
man/euca-disassociate-address.1 (+1/-1)
man/euca-download-bundle.1 (+3/-3)
man/euca-get-console-output.1 (+1/-1)
man/euca-get-password-data.1 (+32/-0)
man/euca-get-password.1 (+34/-0)
man/euca-modify-image-attribute.1 (+6/-5)
man/euca-reboot-instances.1 (+1/-1)
man/euca-register.1 (+20/-4)
man/euca-release-address.1 (+1/-1)
man/euca-reset-image-attribute.1 (+2/-2)
man/euca-revoke.1 (+1/-1)
man/euca-run-instances.1 (+34/-23)
man/euca-terminate-instances.1 (+1/-1)
man/euca-unbundle.1 (+1/-1)
man/euca-upload-bundle.1 (+1/-1)
man/euca-version.1 (+2/-2)
util/euca2ools (+38/-1)

To merge this branch:

bzr merge lp:~smoser/ubuntu/natty/euca2ools/euca2ools-1.3.1

Undecided

Fix Released

Link a bug report

Reviewer	Date Requested	Status
Dave Walker	2010-11-17	Approve on 2010-11-17
Dustin Kirkland 	2010-11-17	Pending
Ubuntu branches	2010-11-17	Pending
Review via email: mp+41105@code.launchpad.net

Dave Walker (davewalker) wrote on 2010-11-17:

Nice one Scott!

Have you had any success in pushing these patches upstream?

Are you able to get this uploaded ASAP... would be good to start hammering it..

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk

The diff has been truncated for viewing.

Subscribers

People subscribed via source and target branches

to all changes:

Scott Moser

Ubuntu branches

Ubuntu
euca2ools package

Merge lp:~smoser/ubuntu/natty/euca2ools/euca2ools-1.3.1 into lp:ubuntu/natty/euca2ools

Commit Message

Description of the Change

Preview Diff

Subscribers

 === added directory '.pc'
 === added file '.pc/.quilt_patches'
 --- .pc/.quilt_patches	1970-01-01 00:00:00 +0000
 +++ .pc/.quilt_patches	2010-11-17 22:00:42 +0000
@@ -0,0 +1,1 @@
++debian/patches
 === added file '.pc/.quilt_series'
 --- .pc/.quilt_series	1970-01-01 00:00:00 +0000
 +++ .pc/.quilt_series	2010-11-17 22:00:42 +0000
@@ -0,0 +1,1 @@
++series
 === added file '.pc/.version'
 --- .pc/.version	1970-01-01 00:00:00 +0000
 +++ .pc/.version	2010-11-17 22:00:42 +0000
@@ -0,0 +1,1 @@
++2
 === added file '.pc/applied-patches'
 --- .pc/applied-patches	1970-01-01 00:00:00 +0000
 +++ .pc/applied-patches	2010-11-17 22:00:42 +0000
@@ -0,0 +1,11 @@
++bundle-vol-use-ec2-cert-by-default.patch
++bundle-image-support-symlinks.patch
++describe-images-return-results-like-ec2-describe-images.patch
++run-instances-usage-and-manpage-keypair.patch
++run-instances-error-not-trace-on-bad-instance-count.patch
++print-instances-cleanup.patch
++euca-revoke-exit-on-usage.patch
++download-bundle-fix-usage.patch
++bundle-image-usage-on-invalid-user.patch
++describe-image-attribute-empty-kernel-ramdisk.patch
++bundle-vol-exclude-persistent-udev-net-rules.patch
 === added directory '.pc/bundle-image-support-symlinks.patch'
 === added file '.pc/bundle-image-support-symlinks.patch/.timestamp'
 === added directory '.pc/bundle-image-support-symlinks.patch/euca2ools'
 === added directory '.pc/bundle-image-support-symlinks.patch/euca2ools/euca2ools'
 === added file '.pc/bundle-image-support-symlinks.patch/euca2ools/euca2ools/__init__.py'
 --- .pc/bundle-image-support-symlinks.patch/euca2ools/euca2ools/__init__.py	1970-01-01 00:00:00 +0000
 +++ .pc/bundle-image-support-symlinks.patch/euca2ools/euca2ools/__init__.py	2010-11-17 22:00:42 +0000
@@ -0,0 +1,1458 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import boto
++import getopt
++import sys
++import os
++import tarfile
++from xml.dom.minidom import Document
++from xml.dom import minidom
++from hashlib import sha1 as sha
++from M2Crypto import BN, EVP, RSA, X509
++from binascii import hexlify, unhexlify
++from subprocess import *
++import platform
++import urllib
++import re
++import shutil
++from boto.ec2.regioninfo import RegionInfo
++from boto.ec2.blockdevicemapping import BlockDeviceMapping
++from boto.ec2.blockdevicemapping import EBSBlockDeviceType
++from boto.ec2.connection import EC2Connection
++from boto.resultset import ResultSet
++import logging
++import base64
++
++BUNDLER_NAME = 'euca-tools'
++BUNDLER_VERSION = '1.3'
++VERSION = '2007-10-10'
++RELEASE = '31337'
++AES = 'AES-128-CBC'
++
++IP_PROTOCOLS = ['tcp', 'udp', 'icmp']
++
++IMAGE_IO_CHUNK = 10 * 1024
++IMAGE_SPLIT_CHUNK = IMAGE_IO_CHUNK * 1024
++MAX_LOOP_DEVS = 256
++
++METADATA_URL = 'http://169.254.169.254/latest/meta-data/'
++
++#
++# Monkey patch the SAX endElement handler in boto's
++# BlockDeviceMapping class to not break on Eucalyptus's
++# DescribeImageAttribute output.  It's impossible to test
++# this against EC2 because EC2 will not let you run a
++# DescribeImageAttribute on the blockDeviceMapping attribute,
++# even for an image you own.
++#
++def endElement(self, name, value, connection):
++    if name == 'virtualName':
++        self.current_vname = value
++    elif name == 'device' or name == 'deviceName':
++        if hasattr(self, 'current_vname') and self.current_vname:
++            self[self.current_vname] = value
++            self.current_vname = None
++        else:
++            self.current_name = value
++
++BlockDeviceMapping.endElement = endElement
++
++#
++# Monkey patch the register_image method from EC2Connection
++# The one in 1.9b required a value for the "name" parameter
++# but in fact that parameter is only required for EBS-backed
++# images.  So, an EBS image needs a name but not a location
++# and the S3 image needs a location but not a name.
++#
++def register_image(self, name=None, description=None, image_location=None,
++                   architecture=None, kernel_id=None, ramdisk_id=None,
++                   root_device_name=None, block_device_map=None):
++    """
++    Register an image.
++
++    :type name: string
++    :param name: The name of the AMI.  Valid only for EBS-based images.
++
++    :type description: string
++    :param description: The description of the AMI.
++
++    :type image_location: string
++    :param image_location: Full path to your AMI manifest in Amazon S3 storage.
++                           Only used for S3-based AMI's.
++
++    :type architecture: string
++    :param architecture: The architecture of the AMI.  Valid choices are:
++                         i386 | x86_64
++
++    :type kernel_id: string
++    :param kernel_id: The ID of the kernel with which to launch the instances
++
++    :type root_device_name: string
++    :param root_device_name: The root device name (e.g. /dev/sdh)
++
++    :type block_device_map: :class:`boto.ec2.blockdevicemapping.BlockDeviceMapping`
++    :param block_device_map: A BlockDeviceMapping data structure
++                             describing the EBS volumes associated
++                             with the Image.
++
++    :rtype: string
++    :return: The new image id
++    """
++    params = {}
++    if name:
++        params['Name'] = name
++    if description:
++        params['Description'] = description
++    if architecture:
++        params['Architecture'] = architecture
++    if kernel_id:
++        params['KernelId'] = kernel_id
++    if ramdisk_id:
++        params['RamdiskId'] = ramdisk_id
++    if image_location:
++        params['ImageLocation'] = image_location
++    if root_device_name:
++        params['RootDeviceName'] = root_device_name
++    if block_device_map:
++        block_device_map.build_list_params(params)
++    rs = self.get_object('RegisterImage', params, ResultSet)
++    image_id = getattr(rs, 'imageId', None)
++    return image_id
++
++EC2Connection.register_image = register_image
++
++class LinuxImage:
++
++    ALLOWED_FS_TYPES = ['ext2', 'ext3', 'xfs', 'jfs', 'reiserfs']
++    BANNED_MOUNTS = [
++        '/dev',
++        '/media',
++        '/mnt',
++        '/proc',
++        '/sys',
++        '/cdrom',
++        '/tmp',
++        ]
++    ESSENTIAL_DIRS = ['proc', 'tmp', 'dev', 'mnt', 'sys']
++    ESSENTIAL_DEVS = [
++        [os.path.join('dev', 'console'), 'c', '5', '1'],
++        [os.path.join('dev', 'full'), 'c', '1', '7'],
++        [os.path.join('dev', 'null'), 'c', '1', '3'],
++        [os.path.join('dev', 'zero'), 'c', '1', '5'],
++        [os.path.join('dev', 'tty'), 'c', '5', '0'],
++        [os.path.join('dev', 'tty0'), 'c', '4', '0'],
++        [os.path.join('dev', 'tty1'), 'c', '4', '1'],
++        [os.path.join('dev', 'tty2'), 'c', '4', '2'],
++        [os.path.join('dev', 'tty3'), 'c', '4', '3'],
++        [os.path.join('dev', 'tty4'), 'c', '4', '4'],
++        [os.path.join('dev', 'tty5'), 'c', '4', '5'],
++        [os.path.join('dev', 'xvc0'), 'c', '204', '191'],
++        ]
++    MAKEFS_CMD = 'mkfs.ext3'
++    NEW_FSTAB = \
++        """
++/dev/sda1 /     ext3    defaults 1 1
++/dev/sdb  /mnt  ext3    defaults 0 0
++none      /dev/pts devpts  gid=5,mode=620 0 0
++none      /proc proc    defaults 0 0
++none      /sys  sysfs   defaults 0 0
++    """
++
++    OLD_FSTAB = \
++        """/dev/sda1       /             ext3     defaults,errors=remount-ro 0 0
++/dev/sda2	/mnt	      ext3     defaults			  0 0
++/dev/sda3	swap	      swap     defaults			  0 0
++proc            /proc         proc     defaults                   0 0
++devpts          /dev/pts      devpts   gid=5,mode=620             0 0"""
++
++    def __init__(self, debug=False):
++        self.debug = debug
++
++    def create_image(self, size_in_MB, image_path):
++        dd_cmd = ['dd']
++        dd_cmd.append('if=/dev/zero')
++        dd_cmd.append('of=%s' % image_path)
++        dd_cmd.append('count=1')
++        dd_cmd.append('bs=1M')
++        dd_cmd.append('seek=%s' % (size_in_MB - 1))
++        if self.debug:
++            print 'Creating disk image...', image_path
++        Popen(dd_cmd, PIPE).communicate()[0]
++
++    def make_fs(self, image_path):
++        Util().check_prerequisite_command(self.MAKEFS_CMD)
++
++        if self.debug:
++            print 'Creating filesystem...'
++        makefs_cmd = Popen([self.MAKEFS_CMD, '-F', image_path],
++                           PIPE).communicate()[0]
++
++    def add_fstab(
++        self,
++        mount_point,
++        generate_fstab,
++        fstab_path,
++        ):
++        if not fstab_path:
++            return
++        fstab = None
++        if fstab_path == 'old':
++            if not generate_fstab:
++                return
++            fstab = self.OLD_FSTAB
++        elif fstab_path == 'new':
++            if not generate_fstab:
++                return
++            fstab = self.NEW_FSTAB
++
++        etc_file_path = os.path.join(mount_point, 'etc')
++        fstab_file_path = os.path.join(etc_file_path, 'fstab')
++        if not os.path.exists(etc_file_path):
++            os.mkdir(etc_file_path)
++        else:
++            if os.path.exists(fstab_file_path):
++                fstab_copy_path = fstab_file_path + '.old'
++                shutil.copyfile(fstab_file_path, fstab_copy_path)
++
++        if self.debug:
++            print 'Updating fstab entry'
++        fstab_file = open(fstab_file_path, 'w')
++        if fstab:
++            fstab_file.write(fstab)
++        else:
++            orig_fstab_file = open(fstab_path, 'r')
++            while 1:
++                data = orig_fstab_file.read(IMAGE_IO_CHUNK)
++                if not data:
++                    break
++                fstab_file.write(data)
++            orig_fstab_file.close()
++        fstab_file.close()
++
++    def make_essential_devs(self, image_path):
++        for entry in self.ESSENTIAL_DEVS:
++            cmd = ['mknod']
++            entry[0] = os.path.join(image_path, entry[0])
++            cmd.extend(entry)
++            Popen(cmd, stdout=PIPE, stderr=PIPE).communicate()
++
++
++class SolarisImage:
++
++    ALLOWED_FS_TYPES = ['ext2', 'ext3', 'xfs', 'jfs', 'reiserfs']
++    BANNED_MOUNTS = [
++        '/dev',
++        '/media',
++        '/mnt',
++        '/proc',
++        '/sys',
++        '/cdrom',
++        '/tmp',
++        ]
++    ESSENTIAL_DIRS = ['proc', 'tmp', 'dev', 'mnt', 'sys']
++
++    def __init__(self, debug=False):
++        self.debug = debug
++
++    def create_image(self, size_in_MB, image_path):
++        print 'Sorry. Solaris not supported yet'
++        raise UnsupportedException
++
++    def make_fs(self, image_path):
++        print 'Sorry. Solaris not supported yet'
++        raise UnsupportedException
++
++    def make_essential_devs(self, image_path):
++        print 'Sorry. Solaris not supported yet'
++        raise UnsupportedException
++
++
++class Util:
++
++    usage_string = \
++        """
++-a, --access-key		User's Access Key ID.
++
++-s, --secret-key		User's Secret Key.
++
++-U, --url			URL of the Cloud to connect to.
++
++--config			Read credentials and cloud settings from the
++				specified config file (defaults to $HOME/.eucarc or /etc/euca2ools/eucarc).
++
++-h, --help			Display this help message.
++
++--version 			Display the version of this tool.
++
++--debug 			Turn on debugging.
++
++Euca2ools will use the environment variables EC2_URL, EC2_ACCESS_KEY, EC2_SECRET_KEY, EC2_CERT, EC2_PRIVATE_KEY, S3_URL, EUCALYPTUS_CERT by default.
++    """
++
++    version_string = """    Version: 1.2 (BSD)"""
++
++    def version(self):
++        return self.version_string
++
++    def usage(self, compat=False):
++        if compat:
++            self.usage_string = self.usage_string.replace('-s,', '-S,')
++            self.usage_string = self.usage_string.replace('-a,', '-A,')
++        print self.usage_string
++
++    def check_prerequisite_command(self, command):
++        cmd = [command]
++        try:
++            output = Popen(cmd, stdout=PIPE, stderr=PIPE).communicate()
++        except OSError, e:
++            error_string = '%s' % e
++            if 'No such' in error_string:
++                print 'Command %s not found. Is it installed?' % command
++                raise NotFoundError
++            else:
++                raise OSError(e)
++
++
++class AddressValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid address'
++
++
++class InstanceValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid instance id'
++
++
++class VolumeValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid volume id'
++
++
++class SizeValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid size'
++
++
++class SnapshotValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid snapshot id'
++
++
++class ProtocolValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid protocol'
++
++
++class FileValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid file'
++
++
++class DirValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid directory'
++
++
++class BundleValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid bundle id'
++
++
++class CopyError:
++
++    def __init__(self):
++        self.message = 'Unable to copy'
++
++
++class MetadataReadError:
++
++    def __init__(self):
++        self.message = 'Unable to read metadata'
++
++
++class NullHandler(logging.Handler):
++
++    def emit(self, record):
++        pass
++
++
++class NotFoundError:
++
++    def __init__(self):
++        self.message = 'Unable to find'
++
++
++class UnsupportedException:
++
++    def __init__(self):
++        self.message = 'Not supported'
++
++
++class CommandFailed:
++
++    def __init__(self):
++        self.message = 'Command failed'
++
++
++class ConnectionFailed:
++
++    def __init__(self):
++        self.message = 'Connection failed'
++
++
++class ParseError:
++
++    def __init__(self, msg):
++        self.message = msg
++
++
++class Euca2ool:
++
++    def process_args(self):
++        ids = []
++        for arg in self.args:
++            ids.append(arg)
++        return ids
++
++    def __init__(
++        self,
++        short_opts=None,
++        long_opts=None,
++        is_s3=False,
++        compat=False,
++        ):
++        self.ec2_user_access_key = None
++        self.ec2_user_secret_key = None
++        self.ec2_url = None
++        self.s3_url = None
++        self.config_file_path = None
++        self.is_s3 = is_s3
++        if compat:
++            self.secret_key_opt = 'S'
++            self.access_key_opt = 'A'
++        else:
++            self.secret_key_opt = 's'
++            self.access_key_opt = 'a'
++        if not short_opts:
++            short_opts = ''
++        if not long_opts:
++            long_opts = ['']
++        short_opts += 'hU:'
++        short_opts += '%s:' % self.secret_key_opt
++        short_opts += '%s:' % self.access_key_opt
++        long_opts += [
++            'access-key=',
++            'secret-key=',
++            'url=',
++            'help',
++            'version',
++            'debug',
++            'config=',
++            ]
++        (opts, args) = getopt.gnu_getopt(sys.argv[1:], short_opts,
++                long_opts)
++        self.opts = opts
++        self.args = args
++        self.debug = False
++        for (name, value) in opts:
++            if name in ('-%s' % self.access_key_opt, '--access-key'):
++                self.ec2_user_access_key = value
++            elif name in ('-%s' % self.secret_key_opt, '--secret-key'):
++                try:
++                    self.ec2_user_secret_key = int(value)
++                    self.ec2_user_secret_key = None
++                except ValueError:
++                    self.ec2_user_secret_key = value
++            elif name in ('-U', '--url'):
++                self.ec2_url = value
++            elif name == '--debug':
++                self.debug = True
++            elif name == '--config':
++                self.config_file_path = value
++        system_string = platform.system()
++        if system_string == 'Linux':
++            self.img = LinuxImage(self.debug)
++        elif system_string == 'SunOS':
++            self.img = SolarisImage(self.debug)
++        else:
++            self.img = 'Unsupported'
++        self.setup_environ()
++
++        h = NullHandler()
++        logging.getLogger('boto').addHandler(h)
++
++    SYSTEM_EUCARC_PATH = os.path.join('/etc', 'euca2ools', 'eucarc')
++
++    def setup_environ(self):
++        envlist = (
++            'EC2_ACCESS_KEY',
++            'EC2_SECRET_KEY',
++            'S3_URL',
++            'EC2_URL',
++            'EC2_CERT',
++            'EC2_PRIVATE_KEY',
++            'EUCALYPTUS_CERT',
++            'EC2_USER_ID',
++            )
++        self.environ = {}
++        user_eucarc = None
++        if 'HOME' in os.environ:
++            user_eucarc = os.path.join(os.getenv('HOME'), '.eucarc')
++        read_config = False
++        if self.config_file_path \
++            and os.path.exists(self.config_file_path):
++            read_config = self.config_file_path
++        elif user_eucarc is not None and os.path.exists(user_eucarc):
++            read_config = user_eucarc
++        elif os.path.exists(self.SYSTEM_EUCARC_PATH):
++            read_config = self.SYSTEM_EUCARC_PATH
++        if read_config:
++            parse_config(read_config, self.environ, envlist)
++        else:
++            for v in envlist:
++                self.environ[v] = os.getenv(v)
++
++    def get_environ(self, name):
++        if self.environ.has_key(name):
++            return self.environ[name]
++        else:
++            print '%s not found' % name
++            raise NotFoundError
++
++    def make_connection(self):
++        if not self.ec2_user_access_key:
++            self.ec2_user_access_key = self.environ['EC2_ACCESS_KEY']
++            if not self.ec2_user_access_key:
++                print 'EC2_ACCESS_KEY environment variable must be set.'
++                raise ConnectionFailed
++
++        if not self.ec2_user_secret_key:
++            self.ec2_user_secret_key = self.environ['EC2_SECRET_KEY']
++            if not self.ec2_user_secret_key:
++                print 'EC2_SECRET_KEY environment variable must be set.'
++                raise ConnectionFailed
++
++        if not self.is_s3:
++            if not self.ec2_url:
++                self.ec2_url = self.environ['EC2_URL']
++                if not self.ec2_url:
++                    self.ec2_url = \
++                        'http://localhost:8773/services/Eucalyptus'
++                    print 'EC2_URL not specified. Trying %s' \
++                        % self.ec2_url
++        else:
++            if not self.ec2_url:
++                self.ec2_url = self.environ['S3_URL']
++                if not self.ec2_url:
++                    self.ec2_url = \
++                        'http://localhost:8773/services/Walrus'
++                    print 'S3_URL not specified. Trying %s' \
++                        % self.ec2_url
++
++        self.port = None
++        self.service_path = '/'
++        if self.ec2_url.find('https://') >= 0:
++            self.ec2_url = self.ec2_url.replace('https://', '')
++            self.is_secure = True
++        else:
++            self.ec2_url = self.ec2_url.replace('http://', '')
++            self.is_secure = False
++        self.host = self.ec2_url
++        url_parts = self.ec2_url.split(':')
++        if len(url_parts) > 1:
++            self.host = url_parts[0]
++            path_parts = url_parts[1].split('/', 1)
++            if len(path_parts) > 1:
++                self.port = int(path_parts[0])
++                self.service_path = self.service_path + path_parts[1]
++            else:
++                self.port = int(url_parts[1])
++
++        if not self.is_s3:
++            return EC2Connection(
++                aws_access_key_id=self.ec2_user_access_key,
++                aws_secret_access_key=self.ec2_user_secret_key,
++                is_secure=self.is_secure,
++                region=RegionInfo(None, 'eucalyptus', self.host),
++                port=self.port,
++                path=self.service_path,
++                )
++        else:
++            return boto.s3.Connection(
++                aws_access_key_id=self.ec2_user_access_key,
++                aws_secret_access_key=self.ec2_user_secret_key,
++                is_secure=self.is_secure,
++                host=self.host,
++                port=self.port,
++                calling_format=boto.s3.connection.OrdinaryCallingFormat(),
++                path=self.service_path,
++                )
++
++    def validate_address(self, address):
++        if not re.match("[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+(\/[0-9]+)?$",
++                        address):
++            raise AddressValidationError
++
++    def validate_instance_id(self, id):
++        if not re.match('i-', id):
++            raise InstanceValidationError
++
++    def validate_volume_id(self, id):
++        if not re.match('vol-', id):
++            raise VolumeValidationError
++
++    def validate_volume_size(self, size):
++        if size < 0 or size > 1024:
++            raise SizeValidationError
++
++    def validate_snapshot_id(self, id):
++        if not re.match('snap-', id):
++            raise SnapshotValidationError
++
++    def validate_protocol(self, proto):
++        if not proto in IP_PROTOCOLS:
++            raise ProtocolValidationError
++
++    def validate_file(self, path):
++        if not os.path.exists(path) or not os.path.isfile(path):
++            raise FileValidationError
++
++    def validate_dir(self, path):
++        if not os.path.exists(path) or not os.path.isdir(path):
++            raise DirValidationError
++
++    def validate_bundle_id(self, id):
++        if not re.match('bun-', id):
++            raise BundleValidationError
++
++    def get_relative_filename(self, filename):
++        f_parts = filename.split('/')
++        return f_parts[len(f_parts) - 1]
++
++    def get_file_path(self, filename):
++        relative_filename = self.get_relative_filename(filename)
++        file_path = os.path.dirname(filename)
++        if len(file_path) == 0:
++            file_path = '.'
++        return file_path
++
++    def split_file(self, file, chunk_size):
++        parts = []
++        parts_digest = []
++        file_size = os.path.getsize(file)
++        in_file = open(file, 'rb')
++        number_parts = int(file_size / chunk_size)
++        number_parts += 1
++        bytes_read = 0
++        for i in range(0, number_parts, 1):
++            filename = '%s.%d' % (file, i)
++            part_digest = sha()
++            file_part = open(filename, 'wb')
++            print 'Part:', self.get_relative_filename(filename)
++            part_bytes_written = 0
++            while part_bytes_written < IMAGE_SPLIT_CHUNK:
++                data = in_file.read(IMAGE_IO_CHUNK)
++                file_part.write(data)
++                part_digest.update(data)
++                data_len = len(data)
++                part_bytes_written += data_len
++                bytes_read += data_len
++                if bytes_read >= file_size:
++                    break
++            file_part.close()
++            parts.append(filename)
++            parts_digest.append(hexlify(part_digest.digest()))
++
++        in_file.close()
++        return (parts, parts_digest)
++
++    def check_image(self, image_file, path):
++        print 'Checking image'
++        if not os.path.exists(path):
++            os.makedirs(path)
++        image_size = os.path.getsize(image_file)
++        if self.debug:
++            print 'Image Size:', image_size, 'bytes'
++        in_file = open(image_file, 'rb')
++        sha_image = sha()
++        while 1:
++            buf = in_file.read(IMAGE_IO_CHUNK)
++            if not buf:
++                break
++        sha_image.update(buf)
++        return (image_size, hexlify(sha_image.digest()))
++
++    def tarzip_image(
++        self,
++        prefix,
++        file,
++        path,
++        ):
++        Util().check_prerequisite_command('tar')
++
++        print 'Tarring image'
++        tar_file = '%s.tar.gz' % os.path.join(path, prefix)
++        outfile = open(tar_file, 'wb')
++        file_path = self.get_file_path(file)
++        tar_cmd = ['tar', 'c', '-S']
++        if file_path:
++            tar_cmd.append('-C')
++            tar_cmd.append(file_path)
++            tar_cmd.append(self.get_relative_filename(file))
++        else:
++            tar_cmd.append(file)
++        p1 = Popen(tar_cmd, stdout=PIPE)
++        p2 = Popen(['gzip'], stdin=p1.stdout, stdout=outfile)
++        p2.communicate()
++        outfile.close
++        if os.path.getsize(tar_file) <= 0:
++            print 'Could not tar image'
++            raise CommandFailed
++        return tar_file
++
++    def hexToBytes(self, hexString):
++        bytes = []
++        hexString = ''.join(hexString.split(' '))
++        for i in range(0, len(hexString), 2):
++            bytes.append(chr(int(hexString[i:i + 2], 16)))
++
++        return ''.join(bytes)
++
++    def crypt_file(
++        self,
++        cipher,
++        in_file,
++        out_file,
++        ):
++        while 1:
++            buf = in_file.read(IMAGE_IO_CHUNK)
++            if not buf:
++                break
++            out_file.write(cipher.update(buf))
++        out_file.write(cipher.final())
++
++    def encrypt_image(self, file):
++        print 'Encrypting image'
++        enc_file = '%s.part' % file.replace('.tar.gz', '')
++
++        key = hex(BN.rand(16 * 8))[2:34].replace('L', 'c')
++        if self.debug:
++            print 'Key: %s' % key
++        iv = hex(BN.rand(16 * 8))[2:34].replace('L', 'c')
++        if self.debug:
++            print 'IV: %s' % iv
++
++        k = EVP.Cipher(alg='aes_128_cbc', key=unhexlify(key),
++                       iv=unhexlify(iv), op=1)
++
++        in_file = open(file)
++        out_file = open(enc_file, 'wb')
++        self.crypt_file(k, in_file, out_file)
++        in_file.close()
++        out_file.close()
++        bundled_size = os.path.getsize(enc_file)
++        return (enc_file, key, iv, bundled_size)
++
++    def split_image(self, file):
++        print 'Splitting image...'
++        return self.split_file(file, IMAGE_SPLIT_CHUNK)
++
++    def get_verification_string(self, manifest_string):
++        start_mc = manifest_string.find('<machine_configuration>')
++        end_mc = manifest_string.find('</machine_configuration>')
++        mc_config_string = manifest_string[start_mc:end_mc
++            + len('</machine_configuration>')]
++        start_image = manifest_string.find('<image>')
++        end_image = manifest_string.find('</image>')
++        image_string = manifest_string[start_image:end_image
++            + len('</image>')]
++
++        return mc_config_string + image_string
++
++    def parse_manifest(self, manifest_filename):
++        parts = []
++        encrypted_key = None
++        encrypted_iv = None
++        dom = minidom.parse(manifest_filename)
++        manifest_elem = dom.getElementsByTagName('manifest')[0]
++        parts_list = manifest_elem.getElementsByTagName('filename')
++        for part_elem in parts_list:
++            nodes = part_elem.childNodes
++            for node in nodes:
++                if node.nodeType == node.TEXT_NODE:
++                    parts.append(node.data)
++        encrypted_key_elem = \
++            manifest_elem.getElementsByTagName('user_encrypted_key')[0]
++        nodes = encrypted_key_elem.childNodes
++        for node in nodes:
++            if node.nodeType == node.TEXT_NODE:
++                encrypted_key = node.data
++        encrypted_iv_elem = \
++            manifest_elem.getElementsByTagName('user_encrypted_iv')[0]
++        nodes = encrypted_iv_elem.childNodes
++        for node in nodes:
++            if node.nodeType == node.TEXT_NODE:
++                encrypted_iv = node.data
++        return (parts, encrypted_key, encrypted_iv)
++
++    def assemble_parts(
++        self,
++        src_directory,
++        directory,
++        manifest_path,
++        parts,
++        ):
++        manifest_filename = self.get_relative_filename(manifest_path)
++        encrypted_filename = os.path.join(directory,
++                manifest_filename.replace('.manifest.xml', '.enc.tar.gz'
++                ))
++        if len(parts) > 0:
++            if not os.path.exists(directory):
++                os.makedirs(directory)
++            encrypted_file = open(encrypted_filename, 'wb')
++            for part in parts:
++                print 'Part:', self.get_relative_filename(part)
++                part_filename = os.path.join(src_directory, part)
++                part_file = open(part_filename, 'rb')
++                while 1:
++                    data = part_file.read(IMAGE_IO_CHUNK)
++                    if not data:
++                        break
++                    encrypted_file.write(data)
++                part_file.close()
++            encrypted_file.close()
++        return encrypted_filename
++
++    def decrypt_image(
++        self,
++        encrypted_filename,
++        encrypted_key,
++        encrypted_iv,
++        private_key_path,
++        ):
++        user_priv_key = RSA.load_key(private_key_path)
++        key = user_priv_key.private_decrypt(unhexlify(encrypted_key),
++                RSA.pkcs1_padding)
++        iv = user_priv_key.private_decrypt(unhexlify(encrypted_iv),
++                RSA.pkcs1_padding)
++        k = EVP.Cipher(alg='aes_128_cbc', key=unhexlify(key),
++                       iv=unhexlify(iv), op=0)
++
++        decrypted_filename = encrypted_filename.replace('.enc', '')
++        decrypted_file = open(decrypted_filename, 'wb')
++        encrypted_file = open(encrypted_filename, 'rb')
++        self.crypt_file(k, encrypted_file, decrypted_file)
++        encrypted_file.close()
++        decrypted_file.close()
++        return decrypted_filename
++
++    def decrypt_string(
++        self,
++        encrypted_string,
++        private_key_path,
++        encoded=False,
++        ):
++        user_priv_key = RSA.load_key(private_key_path)
++        string_to_decrypt = encrypted_string
++        if encoded:
++            string_to_decrypt = base64.b64decode(encrypted_string)
++        return user_priv_key.private_decrypt(string_to_decrypt,
++                RSA.pkcs1_padding)
++
++    def untarzip_image(self, path, file):
++        untarred_filename = file.replace('.tar.gz', '')
++        tar_file = tarfile.open(file, 'r|gz')
++        tar_file.extractall(path)
++        untarred_names = tar_file.getnames()
++        tar_file.close()
++        return untarred_names
++
++    def get_block_devs(self, mapping):
++        virtual = []
++        devices = []
++
++        vname = None
++        for m in mapping:
++            if not vname:
++                vname = m
++                virtual.append(vname)
++            else:
++                devices.append(m)
++                vname = None
++
++        return (virtual, devices)
++
++    def generate_manifest(
++        self,
++        path,
++        prefix,
++        parts,
++        parts_digest,
++        file,
++        key,
++        iv,
++        cert_path,
++        ec2cert_path,
++        private_key_path,
++        target_arch,
++        image_size,
++        bundled_size,
++        image_digest,
++        user,
++        kernel,
++        ramdisk,
++        mapping=None,
++        product_codes=None,
++        ancestor_ami_ids=None,
++        ):
++        user_pub_key = X509.load_cert(cert_path).get_pubkey().get_rsa()
++        cloud_pub_key = \
++            X509.load_cert(ec2cert_path).get_pubkey().get_rsa()
++
++        user_encrypted_key = hexlify(user_pub_key.public_encrypt(key,
++                RSA.pkcs1_padding))
++        user_encrypted_iv = hexlify(user_pub_key.public_encrypt(iv,
++                                    RSA.pkcs1_padding))
++
++        cloud_encrypted_key = hexlify(cloud_pub_key.public_encrypt(key,
++                RSA.pkcs1_padding))
++        cloud_encrypted_iv = hexlify(cloud_pub_key.public_encrypt(iv,
++                RSA.pkcs1_padding))
++
++        user_priv_key = RSA.load_key(private_key_path)
++
++        manifest_file = '%s.manifest.xml' % os.path.join(path, prefix)
++        if self.debug:
++            print 'Manifest: ', manifest_file
++
++        print 'Generating manifest %s' % manifest_file
++
++        manifest_out_file = open(manifest_file, 'wb')
++        doc = Document()
++
++        manifest_elem = doc.createElement('manifest')
++        doc.appendChild(manifest_elem)
++
++        # version
++
++        version_elem = doc.createElement('version')
++        version_value = doc.createTextNode(VERSION)
++        version_elem.appendChild(version_value)
++        manifest_elem.appendChild(version_elem)
++
++        # bundler info
++
++        bundler_elem = doc.createElement('bundler')
++        bundler_name_elem = doc.createElement('name')
++        bundler_name_value = doc.createTextNode(BUNDLER_NAME)
++        bundler_name_elem.appendChild(bundler_name_value)
++        bundler_version_elem = doc.createElement('version')
++        bundler_version_value = doc.createTextNode(BUNDLER_VERSION)
++        bundler_version_elem.appendChild(bundler_version_value)
++        bundler_elem.appendChild(bundler_name_elem)
++        bundler_elem.appendChild(bundler_version_elem)
++
++           # release
++
++        release_elem = doc.createElement('release')
++        release_value = doc.createTextNode(RELEASE)
++        release_elem.appendChild(release_value)
++        bundler_elem.appendChild(release_elem)
++        manifest_elem.appendChild(bundler_elem)
++
++        # machine config
++
++        machine_config_elem = doc.createElement('machine_configuration')
++        manifest_elem.appendChild(machine_config_elem)
++
++        target_arch_elem = doc.createElement('architecture')
++        target_arch_value = doc.createTextNode(target_arch)
++        target_arch_elem.appendChild(target_arch_value)
++        machine_config_elem.appendChild(target_arch_elem)
++
++        # block device mapping
++
++        if mapping:
++            block_dev_mapping_elem = \
++                doc.createElement('block_device_mapping')
++            (virtual_names, device_names) = self.get_block_devs(mapping)
++            vname_index = 0
++            for vname in virtual_names:
++                dname = device_names[vname_index]
++                mapping_elem = doc.createElement('mapping')
++                virtual_elem = doc.createElement('virtual')
++                virtual_value = doc.createTextNode(vname)
++                virtual_elem.appendChild(virtual_value)
++                mapping_elem.appendChild(virtual_elem)
++                device_elem = doc.createElement('device')
++                device_value = doc.createTextNode(dname)
++                device_elem.appendChild(device_value)
++                mapping_elem.appendChild(device_elem)
++                block_dev_mapping_elem.appendChild(mapping_elem)
++                vname_index = vname_index + 1
++            machine_config_elem.appendChild(block_dev_mapping_elem)
++
++        if product_codes:
++            product_codes_elem = doc.createElement('product_codes')
++            for product_code in product_codes:
++                product_code_elem = doc.createElement('product_code')
++                product_code_value = doc.createTextNode(product_code)
++                product_code_elem.appendChild(product_code_value)
++                product_codes_elem.appendChild(product_code_elem)
++            machine_config_elem.appendChild(product_codes_elem)
++
++        # kernel and ramdisk
++
++        if kernel:
++            kernel_id_elem = doc.createElement('kernel_id')
++            kernel_id_value = doc.createTextNode(kernel)
++            kernel_id_elem.appendChild(kernel_id_value)
++            machine_config_elem.appendChild(kernel_id_elem)
++
++        if ramdisk:
++            ramdisk_id_elem = doc.createElement('ramdisk_id')
++            ramdisk_id_value = doc.createTextNode(ramdisk)
++            ramdisk_id_elem.appendChild(ramdisk_id_value)
++            machine_config_elem.appendChild(ramdisk_id_elem)
++
++        image_elem = doc.createElement('image')
++        manifest_elem.appendChild(image_elem)
++
++        # name
++
++        image_name_elem = doc.createElement('name')
++        image_name_value = \
++            doc.createTextNode(self.get_relative_filename(file))
++        image_name_elem.appendChild(image_name_value)
++        image_elem.appendChild(image_name_elem)
++
++        # user
++
++        user_elem = doc.createElement('user')
++        user_value = doc.createTextNode('%s' % user)
++        user_elem.appendChild(user_value)
++        image_elem.appendChild(user_elem)
++
++        # type
++        # TODO: fixme
++
++        image_type_elem = doc.createElement('type')
++        image_type_value = doc.createTextNode('machine')
++        image_type_elem.appendChild(image_type_value)
++        image_elem.appendChild(image_type_elem)
++
++    # ancestor ami ids
++
++        if ancestor_ami_ids:
++            ancestry_elem = doc.createElement('ancestry')
++            for ancestor_ami_id in ancestor_ami_ids:
++                ancestor_id_elem = doc.createElement('ancestor_ami_id')
++                ancestor_id_value = doc.createTextNode(ancestor_ami_id)
++                ancestor_id_elem.appendChild(ancestor_id_value)
++                ancestry_elem.appendChild(ancestor_id_elem)
++            image_elem.appendChild(ancestry_elem)
++
++        # digest
++
++        image_digest_elem = doc.createElement('digest')
++        image_digest_elem.setAttribute('algorithm', 'SHA1')
++        image_digest_value = doc.createTextNode('%s' % image_digest)
++        image_digest_elem.appendChild(image_digest_value)
++        image_elem.appendChild(image_digest_elem)
++
++        # size
++
++        image_size_elem = doc.createElement('size')
++        image_size_value = doc.createTextNode('%s' % image_size)
++        image_size_elem.appendChild(image_size_value)
++        image_elem.appendChild(image_size_elem)
++
++        # bundled size
++
++        bundled_size_elem = doc.createElement('bundled_size')
++        bundled_size_value = doc.createTextNode('%s' % bundled_size)
++        bundled_size_elem.appendChild(bundled_size_value)
++        image_elem.appendChild(bundled_size_elem)
++
++        # key, iv
++
++        cloud_encrypted_key_elem = doc.createElement('ec2_encrypted_key'
++                )
++        cloud_encrypted_key_value = doc.createTextNode('%s'
++                % cloud_encrypted_key)
++        cloud_encrypted_key_elem.appendChild(cloud_encrypted_key_value)
++        cloud_encrypted_key_elem.setAttribute('algorithm', AES)
++        image_elem.appendChild(cloud_encrypted_key_elem)
++
++        user_encrypted_key_elem = doc.createElement('user_encrypted_key'
++                )
++        user_encrypted_key_value = doc.createTextNode('%s'
++                % user_encrypted_key)
++        user_encrypted_key_elem.appendChild(user_encrypted_key_value)
++        user_encrypted_key_elem.setAttribute('algorithm', AES)
++        image_elem.appendChild(user_encrypted_key_elem)
++
++        cloud_encrypted_iv_elem = doc.createElement('ec2_encrypted_iv')
++        cloud_encrypted_iv_value = doc.createTextNode('%s'
++                % cloud_encrypted_iv)
++        cloud_encrypted_iv_elem.appendChild(cloud_encrypted_iv_value)
++        image_elem.appendChild(cloud_encrypted_iv_elem)
++
++        user_encrypted_iv_elem = doc.createElement('user_encrypted_iv')
++        user_encrypted_iv_value = doc.createTextNode('%s'
++                % user_encrypted_iv)
++        user_encrypted_iv_elem.appendChild(user_encrypted_iv_value)
++        image_elem.appendChild(user_encrypted_iv_elem)
++
++        # parts
++
++        parts_elem = doc.createElement('parts')
++        parts_elem.setAttribute('count', '%s' % len(parts))
++        part_number = 0
++        for part in parts:
++            part_elem = doc.createElement('part')
++            filename_elem = doc.createElement('filename')
++            filename_value = \
++                doc.createTextNode(self.get_relative_filename(part))
++            filename_elem.appendChild(filename_value)
++            part_elem.appendChild(filename_elem)
++
++            # digest
++
++            part_digest_elem = doc.createElement('digest')
++            part_digest_elem.setAttribute('algorithm', 'SHA1')
++            part_digest_value = \
++                doc.createTextNode(parts_digest[part_number])
++            part_digest_elem.appendChild(part_digest_value)
++            part_elem.appendChild(part_digest_elem)
++            part_elem.setAttribute('index', '%s' % part_number)
++            parts_elem.appendChild(part_elem)
++            part_number += 1
++        image_elem.appendChild(parts_elem)
++
++        manifest_string = doc.toxml()
++
++        string_to_sign = self.get_verification_string(manifest_string)
++        signature_elem = doc.createElement('signature')
++        sha_manifest = sha()
++        sha_manifest.update(string_to_sign)
++        signature_value = doc.createTextNode('%s'
++                % hexlify(user_priv_key.sign(sha_manifest.digest())))
++        signature_elem.appendChild(signature_value)
++        manifest_elem.appendChild(signature_elem)
++        manifest_out_file.write(doc.toxml())
++        manifest_out_file.close()
++
++    def add_excludes(self, path, excludes):
++        if self.debug:
++            print 'Reading /etc/mtab...'
++        mtab_file = open('/etc/mtab', 'r')
++        while 1:
++            mtab_line = mtab_file.readline()
++            if not mtab_line:
++                break
++            mtab_line_parts = mtab_line.split(' ')
++            mount_point = mtab_line_parts[1]
++            fs_type = mtab_line_parts[2]
++            if mount_point.find(path) == 0 and fs_type \
++                not in self.img.ALLOWED_FS_TYPES:
++                if self.debug:
++                    print 'Excluding %s...' % mount_point
++                excludes.append(mount_point)
++        mtab_file.close()
++        for banned in self.img.BANNED_MOUNTS:
++            excludes.append(banned)
++
++    def make_image(
++        self,
++        size_in_MB,
++        excludes,
++        prefix,
++        destination_path,
++        ):
++        image_file = '%s.img' % prefix
++        image_path = '%s/%s' % (destination_path, image_file)
++        if not os.path.exists(destination_path):
++            os.makedirs(destination_path)
++        if self.img == 'Unsupported':
++            print 'Platform not fully supported.'
++            raise UnsupportedException
++        self.img.create_image(size_in_MB, image_path)
++        self.img.make_fs(image_path)
++        return image_path
++
++    def create_loopback(self, image_path):
++        Util().check_prerequisite_command('losetup')
++        tries = 0
++        while tries < MAX_LOOP_DEVS:
++            loop_dev = Popen(['losetup', '-f'],
++                             stdout=PIPE).communicate()[0].replace('\n'
++                    , '')
++            if loop_dev:
++                output = Popen(['losetup', '%s' % loop_dev, '%s'
++                               % image_path], stdout=PIPE,
++                               stderr=PIPE).communicate()
++                if not output[1]:
++                    return loop_dev
++            else:
++                print 'Could not create loopback device. Aborting'
++                raise CommandFailed
++            tries += 1
++
++    def mount_image(self, image_path):
++        Util().check_prerequisite_command('mount')
++
++        tmp_mnt_point = '/tmp/%s' % hex(BN.rand(16))[2:6]
++        if not os.path.exists(tmp_mnt_point):
++            os.makedirs(tmp_mnt_point)
++        if self.debug:
++            print 'Creating loopback device...'
++        loop_dev = self.create_loopback(image_path)
++        if self.debug:
++            print 'Mounting image...'
++        Popen(['mount', loop_dev, tmp_mnt_point],
++              stdout=PIPE).communicate()
++        return (tmp_mnt_point, loop_dev)
++
++    def copy_to_image(
++        self,
++        mount_point,
++        volume_path,
++        excludes,
++        ):
++        try:
++            Util().check_prerequisite_command('rsync')
++        except NotFoundError:
++            raise CopyError
++        rsync_cmd = ['rsync', '-aXS']
++        for exclude in excludes:
++            rsync_cmd.append('--exclude')
++            rsync_cmd.append(exclude)
++        rsync_cmd.append(volume_path)
++        rsync_cmd.append(mount_point)
++        if self.debug:
++            print 'Copying files...'
++            for exclude in excludes:
++                print 'Excluding:', exclude
++
++        pipe = Popen(rsync_cmd, stdout=PIPE, stderr=PIPE)
++        output = pipe.communicate()
++        for dir in self.img.ESSENTIAL_DIRS:
++            dir_path = os.path.join(mount_point, dir)
++            if not os.path.exists(dir_path):
++                os.mkdir(dir_path)
++                if dir == 'tmp':
++                    os.chmod(dir_path, 01777)
++        self.img.make_essential_devs(mount_point)
++        mtab_file = open('/etc/mtab', 'r')
++        while 1:
++            mtab_line = mtab_file.readline()
++            if not mtab_line:
++                break
++            mtab_line_parts = mtab_line.split(' ')
++            mount_location = mtab_line_parts[1]
++            fs_type = mtab_line_parts[2]
++            if fs_type == 'tmpfs':
++                mount_location = mount_location[1:]
++                dir_path = os.path.join(mount_point, mount_location)
++                if not os.path.exists(dir_path):
++                    if self.debug:
++                        print 'Making essential directory %s' \
++                            % mount_location
++                    os.makedirs(dir_path)
++        mtab_file.close()
++        if pipe.returncode:
++
++            # rsync return code 23: Partial transfer due to error
++            # rsync return code 24: Partial transfer due to vanished source files
++
++            if pipe.returncode in (23, 24):
++                print 'Warning: rsync reports files partially copied:'
++                print output
++            else:
++                print 'Error: rsync failed with return code %d' \
++                    % pipe.returncode
++                raise CopyError
++
++    def unmount_image(self, mount_point):
++        Util().check_prerequisite_command('umount')
++        if self.debug:
++            print 'Unmounting image...'
++        Popen(['umount', '-d', mount_point],
++              stdout=PIPE).communicate()[0]
++        os.rmdir(mount_point)
++
++    def copy_volume(
++        self,
++        image_path,
++        volume_path,
++        excludes,
++        generate_fstab,
++        fstab_path,
++        ):
++        (mount_point, loop_dev) = self.mount_image(image_path)
++        try:
++            output = self.copy_to_image(mount_point, volume_path,
++                    excludes)
++            if self.img == 'Unsupported':
++                print 'Platform not fully supported.'
++                raise UnsupportedException
++            self.img.add_fstab(mount_point, generate_fstab, fstab_path)
++        except CopyError:
++            raise CopyError
++        finally:
++            self.unmount_image(mount_point)
++
++    def can_read_instance_metadata(self):
++        meta_data = urllib.urlopen(METADATA_URL)
++
++    def get_instance_metadata(self, type):
++        if self.debug:
++            print 'Reading instance metadata', type
++        metadata = urllib.urlopen(METADATA_URL + type).read()
++        if 'Not' in metadata and 'Found' in metadata and '404' \
++            in metadata:
++            raise MetadataReadError
++        return metadata
++
++    def get_instance_ramdisk(self):
++        return self.get_instance_metadata('ramdisk-id')
++
++    def get_instance_kernel(self):
++        return self.get_instance_metadata('kernel-id')
++
++    def get_instance_product_codes(self):
++        return self.get_instance_metadata('product-codes')
++
++    def get_ancestor_ami_ids(self):
++        return self.get_instance_metadata('ancestor-ami-ids')
++
++    def get_instance_block_device_mappings(self):
++        keys = self.get_instance_metadata('block-device-mapping'
++                ).split('\n')
++        mapping = []
++        for k in keys:
++            mapping.append(k)
++            mapping.append(self.get_instance_metadata(os.path.join('block-device-mapping'
++                           , k)))
++        return mapping
++
++    def display_error_and_exit(self, msg):
++        code = None
++        message = None
++        index = msg.find('<')
++        if index < 0:
++            print msg
++            sys.exit(1)
++        msg = msg[index - 1:]
++        msg = msg.replace('\n', '')
++        dom = minidom.parseString(msg)
++        try:
++            error_elem = dom.getElementsByTagName('Error')[0]
++            code_elem = error_elem.getElementsByTagName('Code')[0]
++            nodes = code_elem.childNodes
++            for node in nodes:
++                if node.nodeType == node.TEXT_NODE:
++                    code = node.data
++
++            msg_elem = error_elem.getElementsByTagName('Message')[0]
++            nodes = msg_elem.childNodes
++            for node in nodes:
++                if node.nodeType == node.TEXT_NODE:
++                    message = node.data
++
++            print '%s:' % code, message
++        except Exception:
++            print msg
++        sys.exit(1)
++
++    def parse_block_device_args(self, block_device_maps_args):
++        block_device_map = BlockDeviceMapping()
++        for block_device_map_arg in block_device_maps_args:
++            parts = block_device_map_arg.split('=')
++            if len(parts) > 1:
++                device_name = parts[0]
++                block_dev_type = EBSBlockDeviceType()
++                value_parts = parts[1].split(':')
++                if value_parts[0].startswith('snap'):
++                    block_dev_type.snapshot_id = value_parts[0]
++                else:
++                    if value_parts[0].startswith('ephemeral'):
++                        block_dev_type.ephemeral_name = value_parts[0]
++                if len(value_parts) > 1:
++                    block_dev_type.size = int(value_parts[1])
++                if len(value_parts) > 2:
++                    if value_parts[2] == 'true':
++                        block_dev_type.delete_on_termination = True
++                block_device_map[device_name] = block_dev_type
++        return block_device_map
++
++
++# read the config file 'config', update 'dict', setting
++# the value from the config file for each element in array 'keylist'
++# "config" is a bash syntax file defining bash variables
++
++
++def parse_config(config, dict, keylist):
++    fmt = ''
++    str = ''
++    for v in keylist:
++        str = '%s "${%s}" ' % (str, v)
++        fmt = fmt + '%s%s' % ('%s', '\\0')
++
++    cmd = ['bash', '-ec', ". '%s' >/dev/null; printf '%s' %s"
++           % (config, fmt, str)]
++
++    handle = Popen(cmd, stderr=PIPE, stdout=PIPE)
++    (stdout, stderr) = handle.communicate()
++    if handle.returncode != 0:
++        raise ParseError('Parsing config file %s failed:\n\t%s'
++                         % (config, stderr))
++
++    values = stdout.split("\0")
++    for i in range(len(values) - 1):
++        if values[i] != '':
++            dict[keylist[i]] = values[i]
++
++
 === added directory '.pc/bundle-image-usage-on-invalid-user.patch'
 === added file '.pc/bundle-image-usage-on-invalid-user.patch/.timestamp'
 === added directory '.pc/bundle-image-usage-on-invalid-user.patch/bin'
 === added file '.pc/bundle-image-usage-on-invalid-user.patch/bin/euca-bundle-image'
 --- .pc/bundle-image-usage-on-invalid-user.patch/bin/euca-bundle-image	1970-01-01 00:00:00 +0000
 +++ .pc/bundle-image-usage-on-invalid-user.patch/bin/euca-bundle-image	2010-11-17 22:00:42 +0000
@@ -0,0 +1,285 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from euca2ools import Euca2ool, FileValidationError, Util, \
++    NotFoundError, CommandFailed
++
++usage_string = \
++    """
++Bundles an image for use with Eucalyptus or Amazon EC2.
++
++euca-bundle-image -i, --image image_path -u, --user user [-c, --cert cert_path]
++[-k, --privatekey private_key_path] [-p, --prefix prefix] [--kernel kernel_id]
++[--ramdisk ramdisk_id] [-B, --block-device-mapping mapping]
++[-d, --destination destination_path] [--ec2cert ec2cert_path]
++[-r, --arch target_architecture] [--batch] [-h, --help] [--version] [--debug]
++
++REQUIRED PARAMETERS
++
++-i, --image			Path to the image file to bundle.
++
++-u, --user			User ID (12-digit) of the user who is bundling the image.
++
++OPTIONAL PARAMETERS
++
++-c, --cert			Path to the user's PEM encoded certificate.
++
++-k, --privatekey		Path to the user's PEM encoded private key.
++
++-p, --prefix			The prefix for the bundle image files. (default: image name).
++
++--kernel			The kernel to be associated with the bundled image.
++
++--ramdisk			The ramdisk to be associated with the bundled image.
++
++-B, --block-device-mapping	Default block device mapping for the image (comma-separated list of key=value pairs).
++
++-d, --destination		Directory to store the bundled image in (default: "/tmp"). Recommended.
++
++--ec2cert			The path to the Cloud's X509 public key certificate.
++
++-r, --arch			Target architecture for the image ('x86_64' or 'i386' default: 'x86_64').
++
++--batch				Run in batch mode (compatibility only. has no effect).
++"""
++
++
++def usage(status=1):
++    print usage_string
++    Util().usage()
++    sys.exit(status)
++
++
++def version():
++    print Util().version()
++    sys.exit()
++
++
++def get_block_devs(mapping_str):
++    mapping = []
++    mapping_pairs = mapping_str.split(',')
++    for m in mapping_pairs:
++        m_parts = m.split('=')
++        if len(m_parts) > 1:
++            mapping.append(m_parts[0])
++            mapping.append(m_parts[1])
++    return mapping
++
++
++def add_product_codes(product_code_string, product_codes):
++    if not product_codes:
++        product_codes = []
++    product_code_values = product_code_string.split(',')
++
++    for p in product_code_values:
++        product_codes.append(p)
++
++    return product_codes
++
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool('i:c:k:u:B:d:br:p:', [
++            'image=',
++            'cert=',
++            'privatekey=',
++            'user=',
++            'prefix=',
++            'kernel=',
++            'ramdisk=',
++            'block-device-mapping=',
++            'destination=',
++            'ec2cert=',
++            'arch=',
++            'productcodes=',
++            'batch',
++            ])
++    except Exception, e:
++        print e
++        usage()
++
++    image_path = None
++    kernel = None
++    user = None
++    ramdisk = None
++    try:
++        cert_path = euca.get_environ('EC2_CERT')
++        private_key_path = euca.get_environ('EC2_PRIVATE_KEY')
++        ec2cert_path = euca.get_environ('EUCALYPTUS_CERT')
++        user_string = euca.get_environ('EC2_USER_ID')
++    except NotFoundError:
++        sys.exit(1)
++
++    prefix = None
++    destination_path = '/tmp'
++    target_arch = 'x86_64'
++    mapping = None
++    product_codes = None
++    product_code_string = None
++    if user_string:
++        try:
++            user = int(user_string)
++        except ValueError:
++            print 'Invalid user', user_string
++            sys.exit()
++        user = user_string
++
++    for (name, value) in euca.opts:
++        if name in ('-h', '--help'):
++            usage(0)
++        elif name in ('-i', '--image'):
++            image_path = value
++        elif name in ('-c', '--cert'):
++            cert_path = value
++        elif name in ('-k', '--privatekey'):
++            private_key_path = value
++        elif name in ('-u', '--user'):
++            try:
++                value = value.replace('-', '')
++                user = int(value)
++            except ValueError:
++                print 'Invalid user', value
++                sys.exit()
++            user = value
++        elif name == '--kernel':
++            kernel = value
++        elif name == '--ramdisk':
++            ramdisk = value
++        elif name in ('-p', '--prefix'):
++            prefix = value
++        elif name in ('-d', '--destination'):
++            destination_path = value
++        elif name == '--ec2cert':
++            ec2cert_path = value
++        elif name in ('-r', '--arch'):
++            target_arch = value
++            print target_arch
++            if target_arch != 'i386' and target_arch != 'x86_64':
++                print 'target architecture must be i386 or x86_64'
++                usage()
++        elif name in ('-B', '--block-device-mapping'):
++            mapping = value
++        elif name == '--productcodes':
++            product_code_string = value
++        elif name == '--version':
++            version()
++
++    if image_path and cert_path and private_key_path and user \
++        and ec2cert_path:
++        try:
++            euca.validate_file(image_path)
++        except FileValidationError:
++            print 'Invalid image'
++            sys.exit(1)
++        try:
++            euca.validate_file(cert_path)
++        except FileValidationError:
++            print 'Invalid cert'
++            sys.exit(1)
++        try:
++            euca.validate_file(private_key_path)
++        except FileValidationError:
++            print 'Invalid private key'
++            sys.exit(1)
++        try:
++            euca.validate_file(ec2cert_path)
++        except FileValidationError:
++            print 'Invalid ec2cert'
++            sys.exit(1)
++
++        (image_size, sha_image_digest) = euca.check_image(image_path,
++                destination_path)
++        if not prefix:
++            prefix = euca.get_relative_filename(image_path)
++        try:
++            tgz_file = euca.tarzip_image(prefix, image_path,
++                    destination_path)
++        except NotFoundError:
++            sys.exit(1)
++        except CommandFailed:
++            sys.exit(1)
++
++        (encrypted_file, key, iv, bundled_size) = \
++            euca.encrypt_image(tgz_file)
++        os.remove(tgz_file)
++        (parts, parts_digest) = euca.split_image(encrypted_file)
++        if mapping:
++            mapping = get_block_devs(mapping)
++        if product_code_string:
++            product_codes = add_product_codes(product_code_string,
++                    product_codes)
++        euca.generate_manifest(
++            destination_path,
++            prefix,
++            parts,
++            parts_digest,
++            image_path,
++            key,
++            iv,
++            cert_path,
++            ec2cert_path,
++            private_key_path,
++            target_arch,
++            image_size,
++            bundled_size,
++            sha_image_digest,
++            user,
++            kernel,
++            ramdisk,
++            mapping,
++            product_codes,
++            )
++        os.remove(encrypted_file)
++    else:
++        if not image_path:
++            print 'image be specified.'
++        if not cert_path:
++            print 'cert must be specified.'
++        if not private_key_path:
++            print 'private key must be specified.'
++        if not user:
++            print 'user must be specified.'
++        if not ec2cert_path:
++            print 'ec2cert must be specified.'
++        usage()
++
++
++if __name__ == '__main__':
++    main()
++
 === added directory '.pc/bundle-vol-exclude-persistent-udev-net-rules.patch'
 === added file '.pc/bundle-vol-exclude-persistent-udev-net-rules.patch/.timestamp'
 === added directory '.pc/bundle-vol-exclude-persistent-udev-net-rules.patch/bin'
 === added file '.pc/bundle-vol-exclude-persistent-udev-net-rules.patch/bin/euca-bundle-vol'
 --- .pc/bundle-vol-exclude-persistent-udev-net-rules.patch/bin/euca-bundle-vol	1970-01-01 00:00:00 +0000
 +++ .pc/bundle-vol-exclude-persistent-udev-net-rules.patch/bin/euca-bundle-vol	2010-11-17 22:00:42 +0000
@@ -0,0 +1,456 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from euca2ools import Euca2ool, FileValidationError, \
++    DirValidationError, CopyError, MetadataReadError, Util, \
++    NotFoundError, CommandFailed, UnsupportedException
++from subprocess import *
++import platform
++
++usage_string = \
++    """
++Bundle the local filesystem of a running instance as a bundled image.
++
++euca-bundle-vol -u, --user user -s, --size size_in_MB
++[-c, --cert cert_path] [-k, --privatekey private_key_path]
++[-a, --all] [-e, --exclude dir1, dir2,...dirN] [-p, --prefix prefix] [--[no-]inherit] [-v, --volume volume_path] [--fstab fstab_path] [--generate-fstab] [--kernel kernel_id] [--ramdisk ramdisk_id] [-B, --block-device-mapping mapping]
++[-d, --destination destination_path] [--ec2cert ec2cert_path] [-r, --arch target_architecture] [--batch] [--version]
++
++REQUIRED PARAMETERS
++
++-u, --user			User ID (12-digit) of the user who is bundling the image.
++
++-s, --size			Size for the image in MB (default: 10GB or 10240MB).
++
++OPTIONAL PARAMETERS
++
++-c, --cert			Path to the user's PEM encoded certificate.
++
++-k, --privatekey		Path to the user's PEM encoded private key.
++
++-a, --all			Bundle all directories (including mounted filesystems).
++
++-p, --prefix			The prefix for the bundle image files. (default: image name).
++
++--[no-]inherit			Add (or do not add) instance metadata to the bundled image. Inherit is set by default.
++
++-e, --exclude			comma-separated list of directories to exclude.
++
++--kernel			The kernel to be associated with the bundled image.
++
++--ramdisk			The ramdisk to be associated with the bundled image.
++
++-B, --block-device-mapping	Default block device mapping for the image (comma-separated list of key=value pairs).
++
++-d, --destination		Directory to store the bundled image in (default: "/tmp"). Recommended.
++
++--ec2cert			The path to the Cloud's X509 public key certificate.
++
++-r, --arch			Target architecture for the image ('x86_64' or 'i386' default: 'x86_64').
++
++-v, --volume			Path to mounted volume to create the bundle from (default: "/").
++
++--fstab 			Path to the fstab to be bundled into the image.
++
++--generate-fstab 		Generate fstab to bundle into the image.
++
++--batch                         Run in batch mode (compatibility only. has no effect).
++"""
++
++MAX_IMAGE_SIZE = 1024 * 10
++
++
++def usage(status=1):
++    print usage_string
++    sys.exit(status)
++
++
++def version():
++    print Util().version()
++    sys.exit()
++
++
++def check_root():
++    if os.geteuid() == 0:
++        return
++    else:
++        print 'Must be superuser to execute this command.'
++        sys.exit()
++
++
++def check_image_size(size):
++    if size > MAX_IMAGE_SIZE:
++        print 'Image Size is too large (Max = %d MB)' % MAX_IMAGE_SIZE
++        sys.exit()
++
++
++def parse_excludes(excludes_string):
++    excludes = []
++    if excludes_string:
++        excludes_string = excludes_string.replace(' ', '')
++        excludes = excludes_string.split(',')
++    return excludes
++
++
++def get_instance_metadata(
++    euca,
++    ramdisk,
++    kernel,
++    mapping,
++    ):
++    product_codes = None
++    ramdisk_id = ramdisk
++    kernel_id = kernel
++    block_dev_mapping = mapping
++    ancestor_ami_ids = None
++    try:
++        euca.can_read_instance_metadata()
++        if not ramdisk_id:
++            try:
++                ramdisk_id = euca.get_instance_ramdisk()
++            except MetadataReadError:
++                print 'Unable to read ramdisk id'
++
++        if not kernel_id:
++            try:
++                kernel_id = euca.get_instance_kernel()
++            except MetadataReadError:
++                print 'Unable to read kernel id'
++
++        if not block_dev_mapping:
++            try:
++                block_dev_mapping = \
++                    euca.get_instance_block_device_mappings()
++            except MetadataReadError:
++                print 'Unable to read block device mapping'
++
++        try:
++            product_codes = euca.get_instance_product_codes().split('\n'
++                    )
++        except MetadataReadError:
++            print 'Unable to read product codes'
++
++        try:
++            ancestor_ami_ids = euca.get_ancestor_ami_ids().split('\n')
++        except MetadataReadError:
++            print 'Unable to read product codes'
++    except IOError:
++
++        print 'Unable to read instance metadata. Pass the --no-inherit option if you wish to exclude instance metadata.'
++        sys.exit()
++
++    return (ramdisk_id, kernel_id, block_dev_mapping, product_codes,
++            ancestor_ami_ids)
++
++
++def add_product_codes(product_code_string, product_codes):
++    if not product_codes:
++        product_codes = []
++    product_code_values = product_code_string.split(',')
++
++    for p in product_code_values:
++        product_codes.append(p)
++
++    return product_codes
++
++
++def cleanup(path):
++    if os.path.exists(path):
++        os.remove(path)
++
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool('a:c:k:u:B:d:br:p:s:v:e:', [
++            'cert=',
++            'privatekey=',
++            'user=',
++            'prefix=',
++            'volume=',
++            'all',
++            'kernel=',
++            'ramdisk=',
++            'block-device-mapping=',
++            'destination=',
++            'ec2cert=',
++            'arch=',
++            'size=',
++            'exclude=',
++            'inherit=',
++            'no-inherit',
++            'batch',
++            'fstab=',
++            'generate-fstab',
++            'productcodes=',
++            ])
++    except Exception, e:
++        print e
++        usage()
++
++    kernel = None
++    user = None
++    ramdisk = None
++    try:
++        cert_path = euca.get_environ('EC2_CERT')
++        private_key_path = euca.get_environ('EC2_PRIVATE_KEY')
++        ec2cert_path = euca.get_environ('EUCALYPTUS_CERT')
++        user_string = euca.get_environ('EC2_USER_ID')
++    except NotFoundError:
++        sys.exit(1)
++
++    prefix = 'image'
++    size_in_MB = 10 * 1024
++    destination_path = '/disk1'
++    target_arch = 'x86_64'
++    mapping = None
++    excludes_string = None
++    excludes = None
++    all = False
++    volume_path = '/'
++    inherit = True
++    product_codes = None
++    ancestor_ami_ids = None
++    fstab_path = None
++    generate_fstab = False
++    product_code_string = None
++    if user_string:
++        try:
++            user = int(user_string)
++        except ValueError:
++            print 'Invalid user', user_string
++            sys.exit()
++    user = user_string
++
++    for (name, value) in euca.opts:
++        if name in ('-h', '--help'):
++            usage(0)
++        elif name in ('-c', '--cert'):
++            cert_path = value
++        elif name in ('-k', '--privatekey'):
++            private_key_path = value
++        elif name in ('-u', '--user'):
++            try:
++                value = value.replace('-', '')
++                user = int(value)
++            except ValueError:
++                print 'Invalid user', value
++                sys.exit()
++            user = value
++        elif name == '--kernel':
++            kernel = value
++        elif name == '--ramdisk':
++            ramdisk = value
++        elif name in ('-p', '--prefix'):
++            prefix = value
++        elif name in ('-s', '--size'):
++            size_in_MB = int(value)
++        elif name in ('-v', '--volume'):
++            volume_path = value
++        elif name in ('-e', '--exclude'):
++            excludes_string = value
++        elif name in ('-d', '--destination'):
++            destination_path = value
++        elif name == '--ec2cert':
++            ec2cert_path = value
++        elif name in ('-a', '--all'):
++            all = True
++        elif name in ('-r', '--arch'):
++            target_arch = value
++            if target_arch != 'i386' and target_arch != 'x86_64':
++                print 'target architecture must be i386 or x86_64'
++                usage()
++        elif name in ('-B', '--block-device-mapping'):
++            mapping = value
++        elif name == '--no-inherit':
++            inherit = False
++        elif name == '--generate-fstab':
++            generate_fstab = True
++        elif name == '--fstab':
++            fstab_path = value
++        elif name == '--productcodes':
++            product_code_string = value
++        elif name == '--version':
++            version()
++
++    if size_in_MB and cert_path and private_key_path and user \
++        and ec2cert_path:
++        try:
++            euca.validate_file(cert_path)
++        except FileValidationError:
++            print 'Invalid cert'
++            sys.exit(1)
++        try:
++            euca.validate_file(private_key_path)
++        except FileValidationError:
++            print 'Invalid private key'
++            sys.exit(1)
++        try:
++            euca.validate_file(ec2cert_path)
++        except FileValidationError:
++            print 'Invalid ec2cert'
++            sys.exit(1)
++        try:
++            euca.validate_dir(volume_path)
++        except DirValidationError:
++            print 'Invalid directory', volume_path
++            sys.exit(1)
++            if generate_fstab and fstab_path:
++                print '--generate-fstab and --fstab path cannot both be set.'
++                sys.exit(1)
++            if fstab_path:
++                try:
++                    euca.validate_file(fstab_path)
++                except FileValidationError:
++                    print 'Invalid fstab path'
++                    sys.exit(1)
++        if not fstab_path:
++            if platform.machine() == 'i386':
++                fstab_path = 'old'
++            else:
++                fstab_path = 'new'
++
++        check_root()
++        check_image_size(size_in_MB)
++        volume_path = os.path.normpath(volume_path)
++        if not all:
++            excludes = parse_excludes(excludes_string)
++            euca.add_excludes(volume_path, excludes)
++        if inherit:
++            (ramdisk, kernel, mapping, product_codes,
++             ancestor_ami_ids) = get_instance_metadata(euca, ramdisk,
++                    kernel, mapping)
++        if product_code_string:
++            product_codes = add_product_codes(product_code_string,
++                    product_codes)
++        try:
++            image_path = euca.make_image(size_in_MB, excludes, prefix,
++                    destination_path)
++        except NotFoundError:
++            sys.exit(1)
++        except UnsupportedException:
++            sys.exit(1)
++        image_path = os.path.normpath(image_path)
++        if image_path.find(volume_path) == 0:
++            exclude_image = image_path.replace(volume_path, '', 1)
++            image_path_parts = exclude_image.split('/')
++            if len(image_path_parts) > 1:
++                exclude_image = \
++                    exclude_image.replace(image_path_parts[0] + '/', ''
++                        , 1)
++            excludes.append(exclude_image)
++        try:
++            euca.copy_volume(image_path, volume_path, excludes,
++                             generate_fstab, fstab_path)
++        except CopyError:
++            print 'Unable to copy files'
++            cleanup(image_path)
++            sys.exit(1)
++        except NotFoundError:
++            cleanup(image_path)
++            sys.exit(1)
++        except CommandFailed:
++            cleanup(image_path)
++            sys.exit(1)
++        except UnsupportedException:
++            cleanup(image_path)
++            sys.exit(1)
++
++        (image_size, sha_image_digest) = euca.check_image(image_path,
++                destination_path)
++        if not prefix:
++            prefix = euca.get_relative_filename(image_path)
++        try:
++            tgz_file = euca.tarzip_image(prefix, image_path,
++                    destination_path)
++        except NotFoundError:
++            sys.exit(1)
++        except CommandFailed:
++            sys.exit(1)
++
++        (encrypted_file, key, iv, bundled_size) = \
++            euca.encrypt_image(tgz_file)
++        os.remove(tgz_file)
++        (parts, parts_digest) = euca.split_image(encrypted_file)
++        euca.generate_manifest(
++            destination_path,
++            prefix,
++            parts,
++            parts_digest,
++            image_path,
++            key,
++            iv,
++            cert_path,
++            ec2cert_path,
++            private_key_path,
++            target_arch,
++            image_size,
++            bundled_size,
++            sha_image_digest,
++            user,
++            kernel,
++            ramdisk,
++            mapping,
++            product_codes,
++            ancestor_ami_ids,
++            )
++        os.remove(encrypted_file)
++    else:
++
++# ....cleanup(image_path)
++
++        if not size_in_MB:
++            print 'size must be specified.'
++        if not cert_path:
++            print 'cert must be specified.'
++        if not private_key_path:
++            print 'privatekey must be specified.'
++        if not user:
++            print 'user must be specified.'
++        if not ec2cert_path:
++            defcert = "/usr/share/euca2ools/cert-ec2.pem"
++            if os.path.exists(defcert):
++                ec2cert_path = defcert
++            else:
++                print 'ec2cert must be specified or exist in %s.' % defcert
++        usage()
++
++
++if __name__ == '__main__':
++    main()
++
 === added directory '.pc/bundle-vol-use-ec2-cert-by-default.patch'
 === added file '.pc/bundle-vol-use-ec2-cert-by-default.patch/.timestamp'
 === added directory '.pc/bundle-vol-use-ec2-cert-by-default.patch/bin'
 === added file '.pc/bundle-vol-use-ec2-cert-by-default.patch/bin/euca-bundle-vol'
 --- .pc/bundle-vol-use-ec2-cert-by-default.patch/bin/euca-bundle-vol	1970-01-01 00:00:00 +0000
 +++ .pc/bundle-vol-use-ec2-cert-by-default.patch/bin/euca-bundle-vol	2010-11-17 22:00:42 +0000
@@ -0,0 +1,452 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from euca2ools import Euca2ool, FileValidationError, \
++    DirValidationError, CopyError, MetadataReadError, Util, \
++    NotFoundError, CommandFailed, UnsupportedException
++from subprocess import *
++import platform
++
++usage_string = \
++    """
++Bundle the local filesystem of a running instance as a bundled image.
++
++euca-bundle-vol -u, --user user -s, --size size_in_MB
++[-c, --cert cert_path] [-k, --privatekey private_key_path]
++[-a, --all] [-e, --exclude dir1, dir2,...dirN] [-p, --prefix prefix] [--[no-]inherit] [-v, --volume volume_path] [--fstab fstab_path] [--generate-fstab] [--kernel kernel_id] [--ramdisk ramdisk_id] [-B, --block-device-mapping mapping]
++[-d, --destination destination_path] [--ec2cert ec2cert_path] [-r, --arch target_architecture] [--batch] [--version]
++
++REQUIRED PARAMETERS
++
++-u, --user			User ID (12-digit) of the user who is bundling the image.
++
++-s, --size			Size for the image in MB (default: 10GB or 10240MB).
++
++OPTIONAL PARAMETERS
++
++-c, --cert			Path to the user's PEM encoded certificate.
++
++-k, --privatekey		Path to the user's PEM encoded private key.
++
++-a, --all			Bundle all directories (including mounted filesystems).
++
++-p, --prefix			The prefix for the bundle image files. (default: image name).
++
++--[no-]inherit			Add (or do not add) instance metadata to the bundled image. Inherit is set by default.
++
++-e, --exclude			comma-separated list of directories to exclude.
++
++--kernel			The kernel to be associated with the bundled image.
++
++--ramdisk			The ramdisk to be associated with the bundled image.
++
++-B, --block-device-mapping	Default block device mapping for the image (comma-separated list of key=value pairs).
++
++-d, --destination		Directory to store the bundled image in (default: "/tmp"). Recommended.
++
++--ec2cert			The path to the Cloud's X509 public key certificate.
++
++-r, --arch			Target architecture for the image ('x86_64' or 'i386' default: 'x86_64').
++
++-v, --volume			Path to mounted volume to create the bundle from (default: "/").
++
++--fstab 			Path to the fstab to be bundled into the image.
++
++--generate-fstab 		Generate fstab to bundle into the image.
++
++--batch                         Run in batch mode (compatibility only. has no effect).
++"""
++
++MAX_IMAGE_SIZE = 1024 * 10
++
++
++def usage(status=1):
++    print usage_string
++    sys.exit(status)
++
++
++def version():
++    print Util().version()
++    sys.exit()
++
++
++def check_root():
++    if os.geteuid() == 0:
++        return
++    else:
++        print 'Must be superuser to execute this command.'
++        sys.exit()
++
++
++def check_image_size(size):
++    if size > MAX_IMAGE_SIZE:
++        print 'Image Size is too large (Max = %d MB)' % MAX_IMAGE_SIZE
++        sys.exit()
++
++
++def parse_excludes(excludes_string):
++    excludes = []
++    if excludes_string:
++        excludes_string = excludes_string.replace(' ', '')
++        excludes = excludes_string.split(',')
++    return excludes
++
++
++def get_instance_metadata(
++    euca,
++    ramdisk,
++    kernel,
++    mapping,
++    ):
++    product_codes = None
++    ramdisk_id = ramdisk
++    kernel_id = kernel
++    block_dev_mapping = mapping
++    ancestor_ami_ids = None
++    try:
++        euca.can_read_instance_metadata()
++        if not ramdisk_id:
++            try:
++                ramdisk_id = euca.get_instance_ramdisk()
++            except MetadataReadError:
++                print 'Unable to read ramdisk id'
++
++        if not kernel_id:
++            try:
++                kernel_id = euca.get_instance_kernel()
++            except MetadataReadError:
++                print 'Unable to read kernel id'
++
++        if not block_dev_mapping:
++            try:
++                block_dev_mapping = \
++                    euca.get_instance_block_device_mappings()
++            except MetadataReadError:
++                print 'Unable to read block device mapping'
++
++        try:
++            product_codes = euca.get_instance_product_codes().split('\n'
++                    )
++        except MetadataReadError:
++            print 'Unable to read product codes'
++
++        try:
++            ancestor_ami_ids = euca.get_ancestor_ami_ids().split('\n')
++        except MetadataReadError:
++            print 'Unable to read product codes'
++    except IOError:
++
++        print 'Unable to read instance metadata. Pass the --no-inherit option if you wish to exclude instance metadata.'
++        sys.exit()
++
++    return (ramdisk_id, kernel_id, block_dev_mapping, product_codes,
++            ancestor_ami_ids)
++
++
++def add_product_codes(product_code_string, product_codes):
++    if not product_codes:
++        product_codes = []
++    product_code_values = product_code_string.split(',')
++
++    for p in product_code_values:
++        product_codes.append(p)
++
++    return product_codes
++
++
++def cleanup(path):
++    if os.path.exists(path):
++        os.remove(path)
++
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool('a:c:k:u:B:d:br:p:s:v:e:', [
++            'cert=',
++            'privatekey=',
++            'user=',
++            'prefix=',
++            'volume=',
++            'all',
++            'kernel=',
++            'ramdisk=',
++            'block-device-mapping=',
++            'destination=',
++            'ec2cert=',
++            'arch=',
++            'size=',
++            'exclude=',
++            'inherit=',
++            'no-inherit',
++            'batch',
++            'fstab=',
++            'generate-fstab',
++            'productcodes=',
++            ])
++    except Exception, e:
++        print e
++        usage()
++
++    kernel = None
++    user = None
++    ramdisk = None
++    try:
++        cert_path = euca.get_environ('EC2_CERT')
++        private_key_path = euca.get_environ('EC2_PRIVATE_KEY')
++        ec2cert_path = euca.get_environ('EUCALYPTUS_CERT')
++        user_string = euca.get_environ('EC2_USER_ID')
++    except NotFoundError:
++        sys.exit(1)
++
++    prefix = 'image'
++    size_in_MB = 10 * 1024
++    destination_path = '/disk1'
++    target_arch = 'x86_64'
++    mapping = None
++    excludes_string = None
++    excludes = None
++    all = False
++    volume_path = '/'
++    inherit = True
++    product_codes = None
++    ancestor_ami_ids = None
++    fstab_path = None
++    generate_fstab = False
++    product_code_string = None
++    if user_string:
++        try:
++            user = int(user_string)
++        except ValueError:
++            print 'Invalid user', user_string
++            sys.exit()
++    user = user_string
++
++    for (name, value) in euca.opts:
++        if name in ('-h', '--help'):
++            usage(0)
++        elif name in ('-c', '--cert'):
++            cert_path = value
++        elif name in ('-k', '--privatekey'):
++            private_key_path = value
++        elif name in ('-u', '--user'):
++            try:
++                value = value.replace('-', '')
++                user = int(value)
++            except ValueError:
++                print 'Invalid user', value
++                sys.exit()
++            user = value
++        elif name == '--kernel':
++            kernel = value
++        elif name == '--ramdisk':
++            ramdisk = value
++        elif name in ('-p', '--prefix'):
++            prefix = value
++        elif name in ('-s', '--size'):
++            size_in_MB = int(value)
++        elif name in ('-v', '--volume'):
++            volume_path = value
++        elif name in ('-e', '--exclude'):
++            excludes_string = value
++        elif name in ('-d', '--destination'):
++            destination_path = value
++        elif name == '--ec2cert':
++            ec2cert_path = value
++        elif name in ('-a', '--all'):
++            all = True
++        elif name in ('-r', '--arch'):
++            target_arch = value
++            if target_arch != 'i386' and target_arch != 'x86_64':
++                print 'target architecture must be i386 or x86_64'
++                usage()
++        elif name in ('-B', '--block-device-mapping'):
++            mapping = value
++        elif name == '--no-inherit':
++            inherit = False
++        elif name == '--generate-fstab':
++            generate_fstab = True
++        elif name == '--fstab':
++            fstab_path = value
++        elif name == '--productcodes':
++            product_code_string = value
++        elif name == '--version':
++            version()
++
++    if size_in_MB and cert_path and private_key_path and user \
++        and ec2cert_path:
++        try:
++            euca.validate_file(cert_path)
++        except FileValidationError:
++            print 'Invalid cert'
++            sys.exit(1)
++        try:
++            euca.validate_file(private_key_path)
++        except FileValidationError:
++            print 'Invalid private key'
++            sys.exit(1)
++        try:
++            euca.validate_file(ec2cert_path)
++        except FileValidationError:
++            print 'Invalid ec2cert'
++            sys.exit(1)
++        try:
++            euca.validate_dir(volume_path)
++        except DirValidationError:
++            print 'Invalid directory', volume_path
++            sys.exit(1)
++            if generate_fstab and fstab_path:
++                print '--generate-fstab and --fstab path cannot both be set.'
++                sys.exit(1)
++            if fstab_path:
++                try:
++                    euca.validate_file(fstab_path)
++                except FileValidationError:
++                    print 'Invalid fstab path'
++                    sys.exit(1)
++        if not fstab_path:
++            if platform.machine() == 'i386':
++                fstab_path = 'old'
++            else:
++                fstab_path = 'new'
++
++        check_root()
++        check_image_size(size_in_MB)
++        volume_path = os.path.normpath(volume_path)
++        if not all:
++            excludes = parse_excludes(excludes_string)
++            euca.add_excludes(volume_path, excludes)
++        if inherit:
++            (ramdisk, kernel, mapping, product_codes,
++             ancestor_ami_ids) = get_instance_metadata(euca, ramdisk,
++                    kernel, mapping)
++        if product_code_string:
++            product_codes = add_product_codes(product_code_string,
++                    product_codes)
++        try:
++            image_path = euca.make_image(size_in_MB, excludes, prefix,
++                    destination_path)
++        except NotFoundError:
++            sys.exit(1)
++        except UnsupportedException:
++            sys.exit(1)
++        image_path = os.path.normpath(image_path)
++        if image_path.find(volume_path) == 0:
++            exclude_image = image_path.replace(volume_path, '', 1)
++            image_path_parts = exclude_image.split('/')
++            if len(image_path_parts) > 1:
++                exclude_image = \
++                    exclude_image.replace(image_path_parts[0] + '/', ''
++                        , 1)
++            excludes.append(exclude_image)
++        try:
++            euca.copy_volume(image_path, volume_path, excludes,
++                             generate_fstab, fstab_path)
++        except CopyError:
++            print 'Unable to copy files'
++            cleanup(image_path)
++            sys.exit(1)
++        except NotFoundError:
++            cleanup(image_path)
++            sys.exit(1)
++        except CommandFailed:
++            cleanup(image_path)
++            sys.exit(1)
++        except UnsupportedException:
++            cleanup(image_path)
++            sys.exit(1)
++
++        (image_size, sha_image_digest) = euca.check_image(image_path,
++                destination_path)
++        if not prefix:
++            prefix = euca.get_relative_filename(image_path)
++        try:
++            tgz_file = euca.tarzip_image(prefix, image_path,
++                    destination_path)
++        except NotFoundError:
++            sys.exit(1)
++        except CommandFailed:
++            sys.exit(1)
++
++        (encrypted_file, key, iv, bundled_size) = \
++            euca.encrypt_image(tgz_file)
++        os.remove(tgz_file)
++        (parts, parts_digest) = euca.split_image(encrypted_file)
++        euca.generate_manifest(
++            destination_path,
++            prefix,
++            parts,
++            parts_digest,
++            image_path,
++            key,
++            iv,
++            cert_path,
++            ec2cert_path,
++            private_key_path,
++            target_arch,
++            image_size,
++            bundled_size,
++            sha_image_digest,
++            user,
++            kernel,
++            ramdisk,
++            mapping,
++            product_codes,
++            ancestor_ami_ids,
++            )
++        os.remove(encrypted_file)
++    else:
++
++# ....cleanup(image_path)
++
++        if not size_in_MB:
++            print 'size must be specified.'
++        if not cert_path:
++            print 'cert must be specified.'
++        if not private_key_path:
++            print 'privatekey must be specified.'
++        if not user:
++            print 'user must be specified.'
++        if not ec2cert_path:
++            print 'ec2cert must be specified.'
++        usage()
++
++
++if __name__ == '__main__':
++    main()
++
 === added directory '.pc/describe-image-attribute-empty-kernel-ramdisk.patch'
 === added file '.pc/describe-image-attribute-empty-kernel-ramdisk.patch/.timestamp'
 === added directory '.pc/describe-image-attribute-empty-kernel-ramdisk.patch/bin'
 === added file '.pc/describe-image-attribute-empty-kernel-ramdisk.patch/bin/euca-describe-image-attribute'
 --- .pc/describe-image-attribute-empty-kernel-ramdisk.patch/bin/euca-describe-image-attribute	1970-01-01 00:00:00 +0000
 +++ .pc/describe-image-attribute-empty-kernel-ramdisk.patch/bin/euca-describe-image-attribute	2010-11-17 22:00:42 +0000
@@ -0,0 +1,166 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from euca2ools import Euca2ool, Util, ConnectionFailed
++
++usage_string = \
++    """
++Show image attributes.
++
++euca-describe-image-attribute [-l, --launch-permission] [-p, --product-code]
++[-B, --block-device-mapping] [--kernel] [--ramdisk]
++[-h, --help] [--version] [--debug] image_id
++
++REQUIRED PARAMETERS
++
++image_id			unique identifier for the image that you want to retrieve the attributes for.
++
++OPTIONAL PARAMETERS
++
++-B, --block-device-mapping	show block device mapping.
++-l, --launch-permission 	show launch permissions.
++-p, --product-code		show the product codes associated with the image
++--kernel 			show the kernel id associated with the image.
++--ramdisk 			show the ramdisk id associated with the image.
++
++"""
++
++
++def usage(status=1):
++    print usage_string
++    Util().usage()
++    sys.exit(status)
++
++
++def version():
++    print Util().version()
++    sys.exit()
++
++
++def display_image_attribute(image_id, image_attribute):
++    if image_attribute.name == 'launch_permission':
++        if image_attribute.attrs.has_key('groups'):
++            for group in image_attribute.attrs['groups']:
++                print 'launchPermission\t%s\tgroup\t%s' \
++                    % (image_attribute.image_id, group)
++        if image_attribute.attrs.has_key('user_ids'):
++            for userid in image_attribute.attrs['user_ids']:
++                print 'launchPermission\t%s\tuserId\t%s' \
++                    % (image_attribute.image_id, userid)
++    if image_attribute.attrs.has_key('product_codes'):
++        for product_code in image_attribute.attrs['product_codes']:
++            print 'productCodes\t%s\tproductCode\t%s' \
++                % (image_attribute.image_id, product_code)
++    if image_attribute.kernel is not None:
++        print 'kernel\t%s\t\t%s' % (image_attribute.image_id,
++                                    image_attribute.value)
++    if image_attribute.ramdisk is not None:
++        print 'ramdisk\t%s\t\t%s' % (image_attribute.image_id,
++                image_attribute.value)
++    if image_attribute.attrs.has_key('block_device_mapping'):
++        block_device_mapping = \
++            image_attribute.attrs['block_device_mapping']
++        for dev_name in block_device_mapping:
++            print 'blockDeviceMapping\t%s\tblockDeviceMap\t%s: %s' \
++                % (image_id, dev_name,
++                   block_device_mapping[dev_name])
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool('lpB', ['block-device-mapping',
++                        'launch-permission', 'product-code', 'kernel',
++                        'ramdisk'])
++    except Exception, e:
++        print e
++        usage()
++
++    image_id = None
++    image_attribute = None
++
++    for (name, value) in euca.opts:
++        if name in ('-p', '--product-code'):
++            if not image_attribute:
++                image_attribute = 'productCodes'
++        elif name in ('-l', '--launch-permission'):
++            if not image_attribute:
++                image_attribute = 'launchPermission'
++        elif name in ('-B', '--block-device-mapping'):
++            if not image_attribute:
++                image_attribute = 'blockDeviceMapping'
++        elif name == '--kernel':
++            if not image_attribute:
++                image_attribute = 'kernel'
++        elif name == '--ramdisk':
++            if not image_attribute:
++                image_attribute = 'ramdisk'
++        elif name in ('-h', '--help'):
++            usage(0)
++        elif name == '--version':
++            version()
++
++    for arg in euca.args:
++        image_id = arg
++        break
++
++    if image_id and image_attribute:
++        try:
++            euca_conn = euca.make_connection()
++        except ConnectionFailed, e:
++            print e.message
++            sys.exit(1)
++        try:
++            image_attribute = \
++                euca_conn.get_image_attribute(image_id=image_id,
++                    attribute=image_attribute)
++        except Exception, ex:
++            euca.display_error_and_exit('%s' % ex)
++
++        if image_attribute:
++            display_image_attribute(image_id, image_attribute)
++    else:
++        if not image_id:
++            print 'image_id must be specified'
++        if not image_attribute:
++            print 'image attribute must be specified'
++        usage()
++
++
++if __name__ == '__main__':
++    main()
++
 === added directory '.pc/describe-images-return-results-like-ec2-describe-images.patch'
 === added file '.pc/describe-images-return-results-like-ec2-describe-images.patch/.timestamp'
 === added directory '.pc/describe-images-return-results-like-ec2-describe-images.patch/bin'
 === added file '.pc/describe-images-return-results-like-ec2-describe-images.patch/bin/euca-describe-images'
 --- .pc/describe-images-return-results-like-ec2-describe-images.patch/bin/euca-describe-images	1970-01-01 00:00:00 +0000
 +++ .pc/describe-images-return-results-like-ec2-describe-images.patch/bin/euca-describe-images	2010-11-17 22:00:42 +0000
@@ -0,0 +1,162 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from euca2ools import Euca2ool, Util, ConnectionFailed
++
++usage_string = \
++    """
++Shows information about machine images.
++
++euca-describe-images [-a] [-o owner] [-x user] [-h, --help] [--version] [--debug] [image1 image2 ... imageN]
++
++OPTIONAL PARAMETERS
++
++image1 image2 ... imageN	Images to describe.
++
++-a 				Show all images that the user has access to.
++
++-o 				Show only images owned by the owner specified are displayed.
++
++-x 				Show only images that the specified user is permitted to launch.
++
++"""
++
++
++def usage(status=1):
++    print usage_string
++    Util().usage(compat=True)
++    sys.exit(status)
++
++
++def version():
++    print Util().version()
++    sys.exit()
++
++
++def display_images(images, image_ids):
++    check_image_ids = False
++    if len(image_ids) > 0:
++        check_image_ids = True
++    for image in images:
++        if check_image_ids:
++            if not image.id in image_ids:
++                continue
++        image_string = '%s\t%s\t%s\t%s' % (image.id, image.location,
++                image.ownerId, image.state)
++        if image.is_public:
++            image_string += '\tpublic'
++        else:
++            image_string += '\tprivate'
++
++        image_string += '\t%s' % ','.join(image.product_codes)
++
++        for i in [image.architecture, image.type, image.kernel_id,
++                  image.ramdisk_id]:
++            image_string += '\t%s' % ((' ' if i == None else i))
++
++        if image.platform:
++            image_string += '\t%s' % image.platform
++        if image.root_device_type:
++            image_string += '\t%s' % image.root_device_type
++        print 'IMAGE\t%s' % image_string
++        if image.block_device_mapping:
++            block_dev_mapping = image.block_device_mapping
++            if image.root_device_type == 'ebs':
++                block_dev_string = '%s\t%s\t%s' \
++                    % (block_dev_mapping.current_name,
++                       block_dev_mapping.current_value.snapshot_id,
++                       block_dev_mapping.current_value.size)
++                print 'BLOCKDEVICEMAPPING\t%s' % block_dev_string
++
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool('ao:x:', compat=True)
++    except Exception, e:
++        print e
++        usage()
++
++    show_all = False
++    executable_by = ['self']
++    owners = ['self']
++    defaults = True
++
++    for (name, value) in euca.opts:
++        if name in ('-h', '--help'):
++            usage(0)
++        elif name == '-x':
++            if defaults:
++                executable_by = []
++                defaults = False
++                owners = []
++            executable_by.append(value)
++        elif name == '-o':
++            if defaults:
++                executable_by = []
++                defaults = False
++            owners.append(value)
++        elif name == '-a':
++            executable_by = ['self', 'all']
++            owners = []
++        elif name == '--version':
++            version()
++
++    image_ids = euca.process_args()
++    if defaults and len(image_ids) > 0:
++        executable_by = ['self', 'all']
++        owners = []
++
++    try:
++        euca_conn = euca.make_connection()
++    except ConnectionFailed, e:
++        print e.message
++        sys.exit(1)
++
++    try:
++        images = euca_conn.get_all_images(image_ids=image_ids,
++                owners=owners, executable_by=executable_by)
++    except Exception, ex:
++        euca.display_error_and_exit('%s' % ex)
++
++    display_images(images, image_ids)
++
++
++if __name__ == '__main__':
++    main()
++
 === added directory '.pc/download-bundle-fix-usage.patch'
 === added file '.pc/download-bundle-fix-usage.patch/.timestamp'
 === added directory '.pc/download-bundle-fix-usage.patch/bin'
 === added file '.pc/download-bundle-fix-usage.patch/bin/euca-download-bundle'
 --- .pc/download-bundle-fix-usage.patch/bin/euca-download-bundle	1970-01-01 00:00:00 +0000
 +++ .pc/download-bundle-fix-usage.patch/bin/euca-download-bundle	2010-11-17 22:00:42 +0000
@@ -0,0 +1,189 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from xml.dom import minidom
++from euca2ools import Euca2ool, FileValidationError, Util, \
++    ConnectionFailed
++from boto.exception import S3ResponseError
++from boto.s3 import Connection
++from boto.s3.key import Key
++
++usage_string = \
++    """
++Downloads a bundled image from a bucket.
++
++euca-download-bundle -b, --bucket bucket [-m, --manifest manifest_path] [-d, --directory directory]
++[-h, --help] [--version] [--debug]
++
++REQUIRED PARAMETERS
++
++-b, --bucket			The name of the bucket to download to. Bucket will be created if it does not exist.
++
++OPTIONAL PARAMETERS
++
++-m, --manifest_path		The path to the manifest file.
++
++-d, --directory			The name of the directory to download the bundled parts to.
++
++"""
++
++
++def usage(status=1):
++    print usage_string
++    Util().usage()
++    sys.exit(status)
++
++
++def version():
++    print Util().version()
++    sys.exit()
++
++
++def ensure_bucket(connection, bucket):
++    bucket_instance = None
++    try:
++        bucket_instance = connection.get_bucket(bucket)
++    except S3ResponseError, s3error:
++        print 'Unable to get bucket %s' % bucket
++        sys.exit()
++    return bucket_instance
++
++
++def get_parts(manifest_filename):
++    parts = []
++    dom = minidom.parse(manifest_filename)
++    manifest_elem = dom.getElementsByTagName('manifest')[0]
++    parts_list = manifest_elem.getElementsByTagName('filename')
++    for part_elem in parts_list:
++        nodes = part_elem.childNodes
++        for node in nodes:
++            if node.nodeType == node.TEXT_NODE:
++                parts.append(node.data)
++    return parts
++
++
++def get_relative_filename(filename):
++    f_parts = filename.split('/')
++    return f_parts[len(f_parts) - 1]
++
++
++def get_manifests(bucket):
++    manifests = []
++    keys = bucket.get_all_keys()
++    for k in keys:
++        if k.name:
++            if k.name.find('manifest') >= 0:
++                manifests.append(k.name)
++    return manifests
++
++
++def download_manifests(bucket, manifests, directory):
++    if len(manifests) > 0:
++        if not os.path.exists(directory):
++            os.makedirs(directory)
++    for manifest in manifests:
++        k = Key(bucket)
++        k.key = manifest
++        print 'Downloading', manifest
++        manifest_file = open(os.path.join(directory, manifest), 'wb')
++        k.get_contents_to_file(manifest_file)
++        manifest_file.close()
++
++
++def download_parts(bucket, manifests, directory):
++    for manifest in manifests:
++        manifest_filename = os.path.join(directory, manifest)
++        parts = get_parts(manifest_filename)
++        for part in parts:
++            k = Key(bucket)
++            k.key = part
++            print 'Downloading', part
++            part_file = open(os.path.join(directory, part), 'wb')
++            k.get_contents_to_file(part_file)
++            part_file.close()
++
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool('b:m:d:', ['bucket=', 'manifest=', 'directory='
++                        ], is_s3=True)
++    except Exception, e:
++        print e
++        usage()
++
++    bucket = None
++    manifest_path = None
++    directory = '/tmp'
++
++    for (name, value) in euca.opts:
++        if name in ('-h', '--help'):
++            usage(0)
++        elif name in ('-d', '--directory'):
++            directory = value
++        elif name in ('-b', '--bucket'):
++            bucket = value
++        elif name in ('-m', '--manifest'):
++            manifest_path = value
++
++    if bucket:
++        if manifest_path:
++            try:
++                euca.validate_file(manifest_path)
++            except FileValidationError:
++                print 'Invalid manifest', manifest_path
++                sys.exit(1)
++
++        try:
++            conn = euca.make_connection()
++        except ConnectionFailed, e:
++            print e.message
++            sys.exit(1)
++
++        bucket_instance = ensure_bucket(conn, bucket)
++        manifests = get_manifests(bucket_instance)
++        download_manifests(bucket_instance, manifests, directory)
++        download_parts(bucket_instance, manifests, directory)
++    else:
++        print 'bucket must be specified.'
++        usage()
++
++
++if __name__ == '__main__':
++    main()
++
 === added directory '.pc/download-bundle-fix-usage.patch/man'
 === added file '.pc/download-bundle-fix-usage.patch/man/euca-download-bundle.1'
 --- .pc/download-bundle-fix-usage.patch/man/euca-download-bundle.1	1970-01-01 00:00:00 +0000
 +++ .pc/download-bundle-fix-usage.patch/man/euca-download-bundle.1	2010-11-17 22:00:42 +0000
@@ -0,0 +1,72 @@
++.\" DO NOT MODIFY THIS FILE!  It was generated by help2man 1.36.
++.TH BUCKET "1" "July 2010" "bucket must be specified." "User Commands"
++.SH NAME
++bucket \- Eucalyptus tool: Downloads a bundled image from a bucket.
++.SH DESCRIPTION
++Downloads a bundled image from a bucket.
++.PP
++euca\-download\-bundle \fB\-b\fR, \fB\-\-bucket\fR bucket [\-m, \fB\-\-manifest\fR manifest_path] [\-d, \fB\-\-directory\fR directory]
++[\-h, \fB\-\-help]\fR [\-\-version] [\-\-debug]
++.PP
++REQUIRED PARAMETERS
++.PP
++
++\fB\-b\fR, \fB\-\-bucket\fR                    The name of the bucket to download to. Bucket will be created if it does not exist.
++.PP
++OPTIONAL PARAMETERS
++.PP
++\fB\-m\fR, \fB\-\-manifest_path\fR             The path to the manifest file.
++.PP
++\fB\-d\fR, \fB\-\-directory\fR                 The name of the directory to download the bundled parts to.
++.PP
++\fB\-a\fR, \fB\-\-access\-key\fR                User's Access Key ID.
++.PP
++\fB\-s\fR, \fB\-\-secret\-key\fR                User's Secret Key.
++.PP
++\fB\-U\fR, \fB\-\-url\fR                       URL of the Cloud to connect to.
++.PP
++\fB\-\-config\fR                        Read credentials and cloud settings from the
++.IP
++specified config file (defaults to $HOME/.eucarc or /etc/euca2ools/eucarc).
++.PP
++\fB\-h\fR, \fB\-\-help\fR                      Display this help message.
++.PP
++\fB\-\-version\fR                       Display the version of this tool.
++.PP
++\fB\-\-debug\fR                         Turn on debugging.
++.PP
++Euca2ools will use the environment variables EC2_URL, EC2_ACCESS_KEY, EC2_SECRET_KEY, EC2_CERT, EC2_PRIVATE_KEY, S3_URL, EUCALYPTUS_CERT by default.
++.PP
++Downloads a bundled image from a bucket.
++.PP
++euca\-download\-bundle \fB\-b\fR, \fB\-\-bucket\fR bucket [\-m, \fB\-\-manifest\fR manifest_path] [\-d, \fB\-\-directory\fR directory]
++[\-h, \fB\-\-help]\fR [\-\-version] [\-\-debug]
++.PP
++REQUIRED PARAMETERS
++.PP
++
++\fB\-b\fR, \fB\-\-bucket\fR                    The name of the bucket to download to. Bucket will be created if it does not exist.
++.PP
++OPTIONAL PARAMETERS
++.PP
++\fB\-m\fR, \fB\-\-manifest_path\fR             The path to the manifest file.
++.PP
++\fB\-d\fR, \fB\-\-directory\fR                 The name of the directory to download the bundled parts to.
++.PP
++\fB\-a\fR, \fB\-\-access\-key\fR                User's Access Key ID.
++.PP
++\fB\-s\fR, \fB\-\-secret\-key\fR                User's Secret Key.
++.PP
++\fB\-U\fR, \fB\-\-url\fR                       URL of the Cloud to connect to.
++.PP
++\fB\-\-config\fR                        Read credentials and cloud settings from the
++.IP
++specified config file (defaults to $HOME/.eucarc or /etc/euca2ools/eucarc).
++.PP
++\fB\-h\fR, \fB\-\-help\fR                      Display this help message.
++.PP
++\fB\-\-version\fR                       Display the version of this tool.
++.PP
++\fB\-\-debug\fR                         Turn on debugging.
++.PP
++Euca2ools will use the environment variables EC2_URL, EC2_ACCESS_KEY, EC2_SECRET_KEY, EC2_CERT, EC2_PRIVATE_KEY, S3_URL, EUCALYPTUS_CERT by default.
 === added directory '.pc/euca-revoke-exit-on-usage.patch'
 === added file '.pc/euca-revoke-exit-on-usage.patch/.timestamp'
 === added directory '.pc/euca-revoke-exit-on-usage.patch/bin'
 === added file '.pc/euca-revoke-exit-on-usage.patch/bin/euca-revoke'
 --- .pc/euca-revoke-exit-on-usage.patch/bin/euca-revoke	1970-01-01 00:00:00 +0000
 +++ .pc/euca-revoke-exit-on-usage.patch/bin/euca-revoke	2010-11-17 22:00:42 +0000
@@ -0,0 +1,202 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from euca2ools import Euca2ool, AddressValidationError, \
++    ProtocolValidationError, Util, ConnectionFailed
++
++usage_string = \
++    """
++Revoke a rule for a security group.
++
++euca-revoke [-P | --protocol protocol] [-p | --port-range port_range]
++[-t | --icmp-type-code type:code] [-o | --source-group source_group]
++[-u | --source-group-user source_group_user] [-s | --source-subnet source_subnet]
++[-h, --help] [--version] [--debug] group_name
++
++REQUIRED PARAMETERS
++
++group_name			Name of the group to add the rule to.
++
++OPTIONAL PARAMETERS
++
++-P, --protocol                  Protocol ("tcp" "udp" or "icmp").
++
++-p, --port-range		Range of ports for the rule (specified as "from-to").
++
++-t, --icmp-type-code		ICMP type and code specified as "type:code"
++
++-o, --source-group		Group from which traffic is authorized by the rule.
++
++-u, --source-group-user		User ID for the source group.
++
++-s, --source-subnet		The source subnet for the rule.
++
++"""
++
++
++def usage(status=1):
++    print usage_string
++    Util().usage(compat=True)
++
++
++def version():
++    print Util().version()
++    sys.exit(status)
++
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool('P:p:o:u:s:t:', [
++            'protocol=',
++            'port-range=',
++            'source-group=',
++            'source-group-user=',
++            'source-subnet=',
++            'icmp-type-code=',
++            ], compat=True)
++    except Exception, e:
++        print e
++        usage()
++
++    group_name = None
++    protocol = 'tcp'
++    from_port = None
++    to_port = None
++    source_group_name = None
++    source_group_owner_id = None
++    cidr_ip = None
++
++    for (name, value) in euca.opts:
++        if name in ('-P', '--protocol'):
++            protocol = value
++        elif name in ('-p', '--port-range'):
++            ports = value.split('-')
++            if len(ports) > 1:
++                from_port = int(ports[0])
++                to_port = int(ports[1])
++            else:
++                from_port = to_port = int(ports[0])
++        elif name in ('-o', '--source-group'):
++            source_group_name = value
++            protocol = None
++        elif name in ('-u', '--source-group-user'):
++            source_group_owner_id = value
++        elif name in ('-s', '--source-subnet'):
++            cidr_ip = value
++        elif name in ('-t', '--icmp-type-code'):
++            code_parts = value.split(':')
++            if len(code_parts) > 1:
++                try:
++                    from_port = int(code_parts[0])
++                    to_port = int(code_parts[1])
++                except ValueError:
++                    print 'port must be an integer.'
++                    sys.exit(1)
++        elif name in ('-h', '--help'):
++            usage(0)
++        elif name == '--version':
++            version()
++
++    if source_group_name:
++        from_port = None
++        to_port = None
++        protocol = None
++
++    for arg in euca.args:
++        group_name = arg
++        break
++
++    if group_name:
++        if cidr_ip:
++            try:
++                euca.validate_address(cidr_ip)
++            except AddressValidationError:
++                print 'Invalid address', cidr_ip
++                sys.exit(1)
++        if protocol:
++            try:
++                euca.validate_protocol(protocol)
++            except ProtocolValidationError:
++                print 'Invalid protocol', protocol
++                sys.exit(1)
++
++        try:
++            euca_conn = euca.make_connection()
++        except ConnectionFailed, e:
++            print e.message
++            sys.exit(1)
++        try:
++            return_code = euca_conn.revoke_security_group(
++                group_name=group_name,
++                src_security_group_name=source_group_name,
++                src_security_group_owner_id=source_group_owner_id,
++                ip_protocol=protocol,
++                from_port=from_port,
++                to_port=to_port,
++                cidr_ip=cidr_ip,
++                )
++        except Exception, ex:
++            euca.display_error_and_exit('%s' % ex)
++
++        if return_code:
++            print 'GROUP\t%s' % group_name
++            permission_string = 'PERMISSION\t%s\tALLOWS' % group_name
++            if protocol:
++                permission_string += '\t%s' % protocol
++            if from_port:
++                permission_string += '\t%s' % from_port
++            if to_port:
++                permission_string += '\t%s' % to_port
++            if source_group_owner_id:
++                permission_string += '\tUSER\t%s' \
++                    % source_group_owner_id
++            if source_group_name:
++                permission_string += '\tGRPNAME\t%s' % source_group_name
++            if cidr_ip:
++                permission_string += '\tFROM\tCIDR\t%s' % cidr_ip
++            print permission_string
++    else:
++
++        print 'group_name must be specified'
++        usage()
++
++
++if __name__ == '__main__':
++    main()
++
 === added directory '.pc/print-instances-cleanup.patch'
 === added file '.pc/print-instances-cleanup.patch/.timestamp'
 === added directory '.pc/print-instances-cleanup.patch/bin'
 === added file '.pc/print-instances-cleanup.patch/bin/euca-describe-instances'
 --- .pc/print-instances-cleanup.patch/bin/euca-describe-instances	1970-01-01 00:00:00 +0000
 +++ .pc/print-instances-cleanup.patch/bin/euca-describe-instances	2010-11-17 22:00:42 +0000
@@ -0,0 +1,156 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from euca2ools import Euca2ool, InstanceValidationError, Util, \
++    ConnectionFailed
++
++usage_string = \
++    """
++Shows information about instances.
++
++euca-describe-instances [-h, --help] [--version] [--debug]
++[instance1... instanceN]
++
++OPTIONAL PARAMETERS
++
++instance1... instanceN		instances to describe.
++
++"""
++
++
++def usage(status=1):
++    print usage_string
++    Util().usage()
++    sys.exit(status)
++
++
++def version():
++    print Util().version()
++    sys.exit()
++
++
++def display_reservations(reservations, instance_ids):
++    check_instance_ids = False
++    if len(instance_ids) > 0:
++        check_instance_ids = True
++    for reservation in reservations:
++        instances = []
++        if check_instance_ids:
++            for instance in reservation.instances:
++                if instance.id in instance_ids:
++                    instances.append(instance)
++        else:
++            instances = reservation.instances
++        if len(instances) == 0:
++            continue
++        reservation_string = '%s\t%s' % (reservation.id,
++                reservation.owner_id)
++        group_delim = '\t'
++        for group in reservation.groups:
++            reservation_string += '%s%s' % (group_delim, group.id)
++            group_delim = ', '
++        print 'RESERVATION\t%s' % reservation_string
++        for instance in instances:
++            if instance:
++                instance_string = '%s\t%s\t%s\t%s\t%s' % (instance.id,
++                        instance.image_id, instance.public_dns_name,
++                        instance.private_dns_name, instance.state)
++                if instance.key_name:
++                    instance_string += ' \t%s' % instance.key_name
++                if instance.ami_launch_index:
++                    instance_string += ' \t%s' \
++                        % instance.ami_launch_index
++                if instance.product_codes:
++                    first = True
++                    for p in instance.product_codes:
++                        if first:
++                            instance_string += ' \t%s' % p
++                            first = False
++                        else:
++                            instance_string += ',%s' % p
++                if instance.instance_type:
++                    instance_string += ' \t%s' % instance.instance_type
++                if instance.launch_time:
++                    instance_string += ' \t%s' % instance.launch_time
++                if instance.placement:
++                    instance_string += ' \t%s' % instance.placement
++                if instance.kernel:
++                    instance_string += ' \t%s' % instance.kernel
++                if instance.ramdisk:
++                    instance_string += ' \t%s' % instance.ramdisk
++                print 'INSTANCE\t%s' % instance_string
++
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool()
++    except Exception, e:
++        print e
++        usage()
++
++    for (name, value) in euca.opts:
++        if name in ('-h', '--help'):
++            usage(0)
++        elif name == '--version':
++            version()
++
++    instance_ids = euca.process_args()
++    try:
++        for id in instance_ids:
++            euca.validate_instance_id(id)
++    except InstanceValidationError:
++        print 'Invalid instance id'
++        sys.exit(1)
++
++    try:
++        euca_conn = euca.make_connection()
++    except ConnectionFailed, e:
++        print e.message
++        sys.exit(1)
++    try:
++        reservations = euca_conn.get_all_instances(instance_ids)
++    except Exception, ex:
++        euca.display_error_and_exit('%s' % ex)
++
++    display_reservations(reservations, instance_ids)
++
++
++if __name__ == '__main__':
++    main()
++
 === added file '.pc/print-instances-cleanup.patch/bin/euca-run-instances'
 --- .pc/print-instances-cleanup.patch/bin/euca-run-instances	1970-01-01 00:00:00 +0000
 +++ .pc/print-instances-cleanup.patch/bin/euca-run-instances	2010-11-17 22:00:42 +0000
@@ -0,0 +1,260 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import getopt
++import sys
++import os
++from euca2ools import Euca2ool, Util, ConnectionFailed
++
++usage_string = \
++    """
++Starts instances.
++
++euca-run-instances [-n, --instance-count count] [-g, --group group_name] [-k, --key keyname]
++[-d user_data] [-f user_data_file] [--addressing addressing] [-t, --instance-type instance_type]
++[-z, --availability-zone zone] [--kernel kernel_id] [--ramdisk ramdisk_id] [-b block_device_mapping]
++[--monitor] [-s, --subnet subnet_id]
++[-h, --help] [--version] [--debug] image_id
++
++REQUIRED PARAMETERS
++
++image_id				identifier for the image to run.
++
++OPTIONAL PARAMETERS
++
++-n, --instance-count			Number of instances to run.
++
++-g, --group				Security group to run the instance under.
++
++-k, --key				Name of a (previously created) keypair to associate with this reservation.
++-d, --user-data				User data for instances read from the command line.
++
++-f, --user-data-file			User data for instances as a filename.
++
++--addressing				Addressing mode (e.g., private).
++
++-t, --instance-type			VM Image type to run the instance(s) as (default: m1.small).
++
++-z, --availability-zone			Availability zone to run the instance(s) in.
++
++--kernel				Id of the kernel to be used to launch instance(s).
++
++--ramdisk				Id of the ramdisk to be used to launch instance(s).
++
++-b, --block-device-mapping      	Block device mapping for the instance(s). Option may be used multiple times.
++
++--monitor				Enable monitoring for instance.
++
++-s, --subnet				Amazon VPC subnet ID for the instance.
++
++"""
++
++
++def usage(status=1):
++    print usage_string
++    Util().usage()
++    sys.exit(status)
++
++
++def version():
++    print Util().version()
++    sys.exit()
++
++
++def display_reservations(reservation):
++    reservation_string = '%s\t%s' % (reservation.id,
++            reservation.owner_id)
++    group_delim = '\t'
++    for group in reservation.groups:
++        reservation_string += '%s%s' % (group_delim, group.id)
++        group_delim = ', '
++    print 'RESERVATION\t%s' % reservation_string
++    for instance in reservation.instances:
++        instance_string = '%s\t%s\t%s\t%s\t%s\t%s\t%s\t%s\t%s' % (
++            instance.id,
++            instance.image_id,
++            instance.public_dns_name,
++            instance.private_dns_name,
++            instance.state,
++            instance.key_name,
++            instance.launch_time,
++            instance.kernel,
++            instance.ramdisk,
++            )
++        print 'INSTANCE\t%s' % instance_string
++
++
++def read_user_data(user_data_filename):
++    USER_DATA_CHUNK_SIZE = 512
++    user_data = ''
++    user_data_file = open(user_data_filename, 'r')
++    while 1:
++        data = user_data_file.read(USER_DATA_CHUNK_SIZE)
++        if not data:
++            break
++        user_data += data
++    user_data_file.close()
++    return user_data
++
++
++def main():
++    euca = None
++    try:
++        euca = Euca2ool('k:n:t:g:d:f:z:b:', [
++            'key=',
++            'kernel=',
++            'ramdisk=',
++            'instance-count=',
++            'instance-type=',
++            'group=',
++            'user-data=',
++            'user-data-file=',
++            'addressing=',
++            'availability-zone=',
++            'block-device-mapping=',
++            'monitor',
++            'subnet_id=',
++            ])
++    except Exception, e:
++        print e
++        usage()
++
++    image_id = None
++    keyname = None
++    kernel_id = None
++    ramdisk_id = None
++    min_count = 1
++    max_count = 1
++    instance_type = 'm1.small'
++    group_names = []
++    user_data = None
++    user_data_file = None
++    addressing_type = None
++    zone = None
++    block_device_map_args = []
++    block_device_map = None
++    monitor = False
++    subnet_id = None
++    for (name, value) in euca.opts:
++        if name in ('-k', '--key'):
++            keyname = value
++        elif name == '--kernel':
++            kernel_id = value
++        elif name == '--ramdisk':
++            ramdisk_id = value
++        elif name in ('-n', '--instance-count'):
++            counts = value.split('-')
++            try:
++                if (len(counts) > 1):
++                    min_count = int(counts[0])
++                    max_count = int(counts[1])
++                else:
++                    min_count = max_count = int(counts[0])
++            except ValueError:
++                print "Invalid value for --instance-count: ", value
++                sys.exit(1)
++        elif name in ('-t', '--instance-type'):
++            instance_type = value
++        elif name in ('-g', '--group'):
++            group_names.append(value)
++        elif name in ('-d', '--user-data'):
++            user_data = value
++        elif name in ('-f', '--user-data-file'):
++            user_data_file = value
++        elif name == '--addressing':
++            addressing_type = value
++        elif name in ('-z', '--availability-zone'):
++            zone = value
++        elif name in ('-b', '--block-device-mapping'):
++            block_device_map_args.append(value)
++        elif name == '--monitor':
++            monitor = True
++        elif name in ('-s', '--subnet'):
++            subnet_id = value
++        elif name in ('-h', '--help'):
++            usage(0)
++        elif name == '--version':
++            version()
++
++    for arg in euca.args:
++        image_id = arg
++        break
++
++    if image_id:
++        if not user_data:
++            if user_data_file:
++                try:
++                    euca.validate_file(user_data_file)
++                except FileValidationError:
++                    print 'Invalid user data file path'
++                    sys.exit(1)
++                user_data = read_user_data(user_data_file)
++        try:
++            euca_conn = euca.make_connection()
++        except ConnectionFailed, e:
++            print e.message
++            sys.exit(1)
++        if block_device_map_args:
++            block_device_map = \
++                euca.parse_block_device_args(block_device_map_args)
++        try:
++            reservation = euca_conn.run_instances(
++                image_id=image_id,
++                min_count=min_count,
++                max_count=max_count,
++                key_name=keyname,
++                security_groups=group_names,
++                user_data=user_data,
++                addressing_type=addressing_type,
++                instance_type=instance_type,
++                placement=zone,
++                kernel_id=kernel_id,
++                ramdisk_id=ramdisk_id,
++                block_device_map=block_device_map,
++                monitoring_enabled=monitor,
++                subnet_id=subnet_id
++                )
++        except Exception, ex:
++            euca.display_error_and_exit('%s' % ex)
++
++        display_reservations(reservation)
++    else:
++        print 'image_id must be specified'
++        usage()
++
++
++if __name__ == '__main__':
++    main()
++
 === added directory '.pc/print-instances-cleanup.patch/euca2ools'
 === added directory '.pc/print-instances-cleanup.patch/euca2ools/euca2ools'
 === added file '.pc/print-instances-cleanup.patch/euca2ools/euca2ools/__init__.py'
 --- .pc/print-instances-cleanup.patch/euca2ools/euca2ools/__init__.py	1970-01-01 00:00:00 +0000
 +++ .pc/print-instances-cleanup.patch/euca2ools/euca2ools/__init__.py	2010-11-17 22:00:42 +0000
@@ -0,0 +1,1458 @@
++#!/usr/bin/python
++# -*- coding: utf-8 -*-
++# Software License Agreement (BSD License)
++#
++# Copyright (c) 2009, Eucalyptus Systems, Inc.
++# All rights reserved.
++#
++# Redistribution and use of this software in source and binary forms, with or
++# without modification, are permitted provided that the following conditions
++# are met:
++#
++#   Redistributions of source code must retain the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer.
++#
++#   Redistributions in binary form must reproduce the above
++#   copyright notice, this list of conditions and the
++#   following disclaimer in the documentation and/or other
++#   materials provided with the distribution.
++#
++# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
++# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
++# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
++# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
++# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
++# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
++# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
++# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
++# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
++# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
++# POSSIBILITY OF SUCH DAMAGE.
++#
++# Author: Neil Soman neil@eucalyptus.com
++
++import boto
++import getopt
++import sys
++import os
++import tarfile
++from xml.dom.minidom import Document
++from xml.dom import minidom
++from hashlib import sha1 as sha
++from M2Crypto import BN, EVP, RSA, X509
++from binascii import hexlify, unhexlify
++from subprocess import *
++import platform
++import urllib
++import re
++import shutil
++from boto.ec2.regioninfo import RegionInfo
++from boto.ec2.blockdevicemapping import BlockDeviceMapping
++from boto.ec2.blockdevicemapping import EBSBlockDeviceType
++from boto.ec2.connection import EC2Connection
++from boto.resultset import ResultSet
++import logging
++import base64
++
++BUNDLER_NAME = 'euca-tools'
++BUNDLER_VERSION = '1.3'
++VERSION = '2007-10-10'
++RELEASE = '31337'
++AES = 'AES-128-CBC'
++
++IP_PROTOCOLS = ['tcp', 'udp', 'icmp']
++
++IMAGE_IO_CHUNK = 10 * 1024
++IMAGE_SPLIT_CHUNK = IMAGE_IO_CHUNK * 1024
++MAX_LOOP_DEVS = 256
++
++METADATA_URL = 'http://169.254.169.254/latest/meta-data/'
++
++#
++# Monkey patch the SAX endElement handler in boto's
++# BlockDeviceMapping class to not break on Eucalyptus's
++# DescribeImageAttribute output.  It's impossible to test
++# this against EC2 because EC2 will not let you run a
++# DescribeImageAttribute on the blockDeviceMapping attribute,
++# even for an image you own.
++#
++def endElement(self, name, value, connection):
++    if name == 'virtualName':
++        self.current_vname = value
++    elif name == 'device' or name == 'deviceName':
++        if hasattr(self, 'current_vname') and self.current_vname:
++            self[self.current_vname] = value
++            self.current_vname = None
++        else:
++            self.current_name = value
++
++BlockDeviceMapping.endElement = endElement
++
++#
++# Monkey patch the register_image method from EC2Connection
++# The one in 1.9b required a value for the "name" parameter
++# but in fact that parameter is only required for EBS-backed
++# images.  So, an EBS image needs a name but not a location
++# and the S3 image needs a location but not a name.
++#
++def register_image(self, name=None, description=None, image_location=None,
++                   architecture=None, kernel_id=None, ramdisk_id=None,
++                   root_device_name=None, block_device_map=None):
++    """
++    Register an image.
++
++    :type name: string
++    :param name: The name of the AMI.  Valid only for EBS-based images.
++
++    :type description: string
++    :param description: The description of the AMI.
++
++    :type image_location: string
++    :param image_location: Full path to your AMI manifest in Amazon S3 storage.
++                           Only used for S3-based AMI's.
++
++    :type architecture: string
++    :param architecture: The architecture of the AMI.  Valid choices are:
++                         i386 | x86_64
++
++    :type kernel_id: string
++    :param kernel_id: The ID of the kernel with which to launch the instances
++
++    :type root_device_name: string
++    :param root_device_name: The root device name (e.g. /dev/sdh)
++
++    :type block_device_map: :class:`boto.ec2.blockdevicemapping.BlockDeviceMapping`
++    :param block_device_map: A BlockDeviceMapping data structure
++                             describing the EBS volumes associated
++                             with the Image.
++
++    :rtype: string
++    :return: The new image id
++    """
++    params = {}
++    if name:
++        params['Name'] = name
++    if description:
++        params['Description'] = description
++    if architecture:
++        params['Architecture'] = architecture
++    if kernel_id:
++        params['KernelId'] = kernel_id
++    if ramdisk_id:
++        params['RamdiskId'] = ramdisk_id
++    if image_location:
++        params['ImageLocation'] = image_location
++    if root_device_name:
++        params['RootDeviceName'] = root_device_name
++    if block_device_map:
++        block_device_map.build_list_params(params)
++    rs = self.get_object('RegisterImage', params, ResultSet)
++    image_id = getattr(rs, 'imageId', None)
++    return image_id
++
++EC2Connection.register_image = register_image
++
++class LinuxImage:
++
++    ALLOWED_FS_TYPES = ['ext2', 'ext3', 'xfs', 'jfs', 'reiserfs']
++    BANNED_MOUNTS = [
++        '/dev',
++        '/media',
++        '/mnt',
++        '/proc',
++        '/sys',
++        '/cdrom',
++        '/tmp',
++        ]
++    ESSENTIAL_DIRS = ['proc', 'tmp', 'dev', 'mnt', 'sys']
++    ESSENTIAL_DEVS = [
++        [os.path.join('dev', 'console'), 'c', '5', '1'],
++        [os.path.join('dev', 'full'), 'c', '1', '7'],
++        [os.path.join('dev', 'null'), 'c', '1', '3'],
++        [os.path.join('dev', 'zero'), 'c', '1', '5'],
++        [os.path.join('dev', 'tty'), 'c', '5', '0'],
++        [os.path.join('dev', 'tty0'), 'c', '4', '0'],
++        [os.path.join('dev', 'tty1'), 'c', '4', '1'],
++        [os.path.join('dev', 'tty2'), 'c', '4', '2'],
++        [os.path.join('dev', 'tty3'), 'c', '4', '3'],
++        [os.path.join('dev', 'tty4'), 'c', '4', '4'],
++        [os.path.join('dev', 'tty5'), 'c', '4', '5'],
++        [os.path.join('dev', 'xvc0'), 'c', '204', '191'],
++        ]
++    MAKEFS_CMD = 'mkfs.ext3'
++    NEW_FSTAB = \
++        """
++/dev/sda1 /     ext3    defaults 1 1
++/dev/sdb  /mnt  ext3    defaults 0 0
++none      /dev/pts devpts  gid=5,mode=620 0 0
++none      /proc proc    defaults 0 0
++none      /sys  sysfs   defaults 0 0
++    """
++
++    OLD_FSTAB = \
++        """/dev/sda1       /             ext3     defaults,errors=remount-ro 0 0
++/dev/sda2	/mnt	      ext3     defaults			  0 0
++/dev/sda3	swap	      swap     defaults			  0 0
++proc            /proc         proc     defaults                   0 0
++devpts          /dev/pts      devpts   gid=5,mode=620             0 0"""
++
++    def __init__(self, debug=False):
++        self.debug = debug
++
++    def create_image(self, size_in_MB, image_path):
++        dd_cmd = ['dd']
++        dd_cmd.append('if=/dev/zero')
++        dd_cmd.append('of=%s' % image_path)
++        dd_cmd.append('count=1')
++        dd_cmd.append('bs=1M')
++        dd_cmd.append('seek=%s' % (size_in_MB - 1))
++        if self.debug:
++            print 'Creating disk image...', image_path
++        Popen(dd_cmd, PIPE).communicate()[0]
++
++    def make_fs(self, image_path):
++        Util().check_prerequisite_command(self.MAKEFS_CMD)
++
++        if self.debug:
++            print 'Creating filesystem...'
++        makefs_cmd = Popen([self.MAKEFS_CMD, '-F', image_path],
++                           PIPE).communicate()[0]
++
++    def add_fstab(
++        self,
++        mount_point,
++        generate_fstab,
++        fstab_path,
++        ):
++        if not fstab_path:
++            return
++        fstab = None
++        if fstab_path == 'old':
++            if not generate_fstab:
++                return
++            fstab = self.OLD_FSTAB
++        elif fstab_path == 'new':
++            if not generate_fstab:
++                return
++            fstab = self.NEW_FSTAB
++
++        etc_file_path = os.path.join(mount_point, 'etc')
++        fstab_file_path = os.path.join(etc_file_path, 'fstab')
++        if not os.path.exists(etc_file_path):
++            os.mkdir(etc_file_path)
++        else:
++            if os.path.exists(fstab_file_path):
++                fstab_copy_path = fstab_file_path + '.old'
++                shutil.copyfile(fstab_file_path, fstab_copy_path)
++
++        if self.debug:
++            print 'Updating fstab entry'
++        fstab_file = open(fstab_file_path, 'w')
++        if fstab:
++            fstab_file.write(fstab)
++        else:
++            orig_fstab_file = open(fstab_path, 'r')
++            while 1:
++                data = orig_fstab_file.read(IMAGE_IO_CHUNK)
++                if not data:
++                    break
++                fstab_file.write(data)
++            orig_fstab_file.close()
++        fstab_file.close()
++
++    def make_essential_devs(self, image_path):
++        for entry in self.ESSENTIAL_DEVS:
++            cmd = ['mknod']
++            entry[0] = os.path.join(image_path, entry[0])
++            cmd.extend(entry)
++            Popen(cmd, stdout=PIPE, stderr=PIPE).communicate()
++
++
++class SolarisImage:
++
++    ALLOWED_FS_TYPES = ['ext2', 'ext3', 'xfs', 'jfs', 'reiserfs']
++    BANNED_MOUNTS = [
++        '/dev',
++        '/media',
++        '/mnt',
++        '/proc',
++        '/sys',
++        '/cdrom',
++        '/tmp',
++        ]
++    ESSENTIAL_DIRS = ['proc', 'tmp', 'dev', 'mnt', 'sys']
++
++    def __init__(self, debug=False):
++        self.debug = debug
++
++    def create_image(self, size_in_MB, image_path):
++        print 'Sorry. Solaris not supported yet'
++        raise UnsupportedException
++
++    def make_fs(self, image_path):
++        print 'Sorry. Solaris not supported yet'
++        raise UnsupportedException
++
++    def make_essential_devs(self, image_path):
++        print 'Sorry. Solaris not supported yet'
++        raise UnsupportedException
++
++
++class Util:
++
++    usage_string = \
++        """
++-a, --access-key		User's Access Key ID.
++
++-s, --secret-key		User's Secret Key.
++
++-U, --url			URL of the Cloud to connect to.
++
++--config			Read credentials and cloud settings from the
++				specified config file (defaults to $HOME/.eucarc or /etc/euca2ools/eucarc).
++
++-h, --help			Display this help message.
++
++--version 			Display the version of this tool.
++
++--debug 			Turn on debugging.
++
++Euca2ools will use the environment variables EC2_URL, EC2_ACCESS_KEY, EC2_SECRET_KEY, EC2_CERT, EC2_PRIVATE_KEY, S3_URL, EUCALYPTUS_CERT by default.
++    """
++
++    version_string = """    Version: 1.2 (BSD)"""
++
++    def version(self):
++        return self.version_string
++
++    def usage(self, compat=False):
++        if compat:
++            self.usage_string = self.usage_string.replace('-s,', '-S,')
++            self.usage_string = self.usage_string.replace('-a,', '-A,')
++        print self.usage_string
++
++    def check_prerequisite_command(self, command):
++        cmd = [command]
++        try:
++            output = Popen(cmd, stdout=PIPE, stderr=PIPE).communicate()
++        except OSError, e:
++            error_string = '%s' % e
++            if 'No such' in error_string:
++                print 'Command %s not found. Is it installed?' % command
++                raise NotFoundError
++            else:
++                raise OSError(e)
++
++
++class AddressValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid address'
++
++
++class InstanceValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid instance id'
++
++
++class VolumeValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid volume id'
++
++
++class SizeValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid size'
++
++
++class SnapshotValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid snapshot id'
++
++
++class ProtocolValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid protocol'
++
++
++class FileValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid file'
++
++
++class DirValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid directory'
++
++
++class BundleValidationError:
++
++    def __init__(self):
++        self.message = 'Invalid bundle id'
++
++
++class CopyError:
++
++    def __init__(self):
++        self.message = 'Unable to copy'
++
++
++class MetadataReadError:
++
++    def __init__(self):
++        self.message = 'Unable to read metadata'
++
++
++class NullHandler(logging.Handler):
++
++    def emit(self, record):
++        pass
++
++
++class NotFoundError:
++
++    def __init__(self):
++        self.message = 'Unable to find'
++
++
++class UnsupportedException:
++
++    def __init__(self):
++        self.message = 'Not supported'
++
++
++class CommandFailed:
++
++    def __init__(self):
++        self.message = 'Command failed'
++
++
++class ConnectionFailed:
++
++    def __init__(self):
++        self.message = 'Connection failed'
++
++
++class ParseError:
++
++    def __init__(self, msg):
++        self.message = msg
++
++
++class Euca2ool:
++
++    def process_args(self):
++        ids = []
++        for arg in self.args:
++            ids.append(arg)
++        return ids
++
++    def __init__(
++        self,
++        short_opts=None,
++        long_opts=None,
++        is_s3=False,
++        compat=False,
++        ):
++        self.ec2_user_access_key = None
++        self.ec2_user_secret_key = None
++        self.ec2_url = None
++        self.s3_url = None
++        self.config_file_path = None
++        self.is_s3 = is_s3
++        if compat:
++            self.secret_key_opt = 'S'
++            self.access_key_opt = 'A'
++        else:
++            self.secret_key_opt = 's'
++            self.access_key_opt = 'a'
++        if not short_opts:
++            short_opts = ''
++        if not long_opts:
++            long_opts = ['']
++        short_opts += 'hU:'
++        short_opts += '%s:' % self.secret_key_opt
++        short_opts += '%s:' % self.access_key_opt
++        long_opts += [
++            'access-key=',
++            'secret-key=',
++            'url=',
++            'help',
++            'version',
++            'debug',
++            'config=',
++            ]
++        (opts, args) = getopt.gnu_getopt(sys.argv[1:], short_opts,
++                long_opts)
++        self.opts = opts
++        self.args = args
++        self.debug = False
++        for (name, value) in opts:
++            if name in ('-%s' % self.access_key_opt, '--access-key'):
++                self.ec2_user_access_key = value
++            elif name in ('-%s' % self.secret_key_opt, '--secret-key'):
++                try:
++                    self.ec2_user_secret_key = int(value)
++                    self.ec2_user_secret_key = None
++                except ValueError:
++                    self.ec2_user_secret_key = value
++            elif name in ('-U', '--url'):
++                self.ec2_url = value
++            elif name == '--debug':
++                self.debug = True
++            elif name == '--config':
++                self.config_file_path = value
++        system_string = platform.system()
++        if system_string == 'Linux':
++            self.img = LinuxImage(self.debug)
++        elif system_string == 'SunOS':
++            self.img = SolarisImage(self.debug)
++        else:
++            self.img = 'Unsupported'
++        self.setup_environ()
++
++        h = NullHandler()
++        logging.getLogger('boto').addHandler(h)
++
++    SYSTEM_EUCARC_PATH = os.path.join('/etc', 'euca2ools', 'eucarc')
++
++    def setup_environ(self):
++        envlist = (
++            'EC2_ACCESS_KEY',
++            'EC2_SECRET_KEY',
++            'S3_URL',
++            'EC2_URL',
++            'EC2_CERT',
++            'EC2_PRIVATE_KEY',
++            'EUCALYPTUS_CERT',
++            'EC2_USER_ID',
++            )
++        self.environ = {}
++        user_eucarc = None
++        if 'HOME' in os.environ:
++            user_eucarc = os.path.join(os.getenv('HOME'), '.eucarc')
++        read_config = False
++        if self.config_file_path \
++            and os.path.exists(self.config_file_path):
++            read_config = self.config_file_path
++        elif user_eucarc is not None and os.path.exists(user_eucarc):
++            read_config = user_eucarc
++        elif os.path.exists(self.SYSTEM_EUCARC_PATH):
++            read_config = self.SYSTEM_EUCARC_PATH
++        if read_config:
++            parse_config(read_config, self.environ, envlist)
++        else:
++            for v in envlist:
++                self.environ[v] = os.getenv(v)
++
++    def get_environ(self, name):
++        if self.environ.has_key(name):
++            return self.environ[name]
++        else:
++            print '%s not found' % name
++            raise NotFoundError
++
++    def make_connection(self):
++        if not self.ec2_user_access_key:
++            self.ec2_user_access_key = self.environ['EC2_ACCESS_KEY']
++            if not self.ec2_user_access_key:
++                print 'EC2_ACCESS_KEY environment variable must be set.'
++                raise ConnectionFailed
++
++        if not self.ec2_user_secret_key:
++            self.ec2_user_secret_key = self.environ['EC2_SECRET_KEY']
++            if not self.ec2_user_secret_key:
++                print 'EC2_SECRET_KEY environment variable must be set.'
++                raise ConnectionFailed
++
++        if not self.is_s3:
++            if not self.ec2_url:
++                self.ec2_url = self.environ['EC2_URL']
++                if not self.ec2_url:
++                    self.ec2_url = \
++                        'http://localhost:8773/services/Eucalyptus'
++                    print 'EC2_URL not specified. Trying %s' \
++                        % self.ec2_url
++        else:
++            if not self.ec2_url:
++                self.ec2_url = self.environ['S3_URL']
++                if not self.ec2_url:
++                    self.ec2_url = \
++                        'http://localhost:8773/services/Walrus'
++                    print 'S3_URL not specified. Trying %s' \
++                        % self.ec2_url
++
++        self.port = None
++        self.service_path = '/'
++        if self.ec2_url.find('https://') >= 0:
++            self.ec2_url = self.ec2_url.replace('https://', '')
++            self.is_secure = True
++        else:
++            self.ec2_url = self.ec2_url.replace('http://', '')
++            self.is_secure = False
++        self.host = self.ec2_url
++        url_parts = self.ec2_url.split(':')
++        if len(url_parts) > 1:
++            self.host = url_parts[0]
++            path_parts = url_parts[1].split('/', 1)
++            if len(path_parts) > 1:
++                self.port = int(path_parts[0])
++                self.service_path = self.service_path + path_parts[1]
++            else:
++                self.port = int(url_parts[1])
++
++        if not self.is_s3:
++            return EC2Connection(
++                aws_access_key_id=self.ec2_user_access_key,
++                aws_secret_access_key=self.ec2_user_secret_key,
++                is_secure=self.is_secure,
++                region=RegionInfo(None, 'eucalyptus', self.host),
++                port=self.port,
++                path=self.service_path,
++                )
++        else:
++            return boto.s3.Connection(
++                aws_access_key_id=self.ec2_user_access_key,
++                aws_secret_access_key=self.ec2_user_secret_key,
++                is_secure=self.is_secure,
++                host=self.host,
++                port=self.port,
++                calling_format=boto.s3.connection.OrdinaryCallingFormat(),
++                path=self.service_path,
++                )
++
++    def validate_address(self, address):
++        if not re.match("[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+(\/[0-9]+)?$",
++                        address):
++            raise AddressValidationError
++
++    def validate_instance_id(self, id):
++        if not re.match('i-', id):
++            raise InstanceValidationError
++
++    def validate_volume_id(self, id):
++        if not re.match('vol-', id):
++            raise VolumeValidationError
++
++    def validate_volume_size(self, size):
++        if size < 0 or size > 1024:
++            raise SizeValidationError
++
++    def validate_snapshot_id(self, id):
++        if not re.match('snap-', id):
++            raise SnapshotValidationError
++
++    def validate_protocol(self, proto):
++        if not proto in IP_PROTOCOLS:
++            raise ProtocolValidationError
++
++    def validate_file(self, path):
++        if not os.path.exists(path) or not os.path.isfile(path):
++            raise FileValidationError
++
++    def validate_dir(self, path):
++        if not os.path.exists(path) or not os.path.isdir(path):
++            raise DirValidationError
++
++    def validate_bundle_id(self, id):
++        if not re.match('bun-', id):
++            raise BundleValidationError
++
++    def get_relative_filename(self, filename):
++        f_parts = filename.split('/')
++        return f_parts[len(f_parts) - 1]
++
++    def get_file_path(self, filename):
++        relative_filename = self.get_relative_filename(filename)
++        file_path = os.path.dirname(filename)
++        if len(file_path) == 0:
++            file_path = '.'
++        return file_path
++
++    def split_file(self, file, chunk_size):
++        parts = []
++        parts_digest = []
++        file_size = os.path.getsize(file)
++        in_file = open(file, 'rb')
++        number_parts = int(file_size / chunk_size)
++        number_parts += 1
++        bytes_read = 0
++        for i in range(0, number_parts, 1):
++            filename = '%s.%d' % (file, i)
++            part_digest = sha()
++            file_part = open(filename, 'wb')
++            print 'Part:', self.get_relative_filename(filename)
++            part_bytes_written = 0
++            while part_bytes_written < IMAGE_SPLIT_CHUNK:
++                data = in_file.read(IMAGE_IO_CHUNK)
++                file_part.write(data)
++                part_digest.update(data)
++                data_len = len(data)
++                part_bytes_written += data_len
++                bytes_read += data_len
++                if bytes_read >= file_size:
++                    break
++            file_part.close()
++            parts.append(filename)
++            parts_digest.append(hexlify(part_digest.digest()))
++
++        in_file.close()
++        return (parts, parts_digest)
++
++    def check_image(self, image_file, path):
++        print 'Checking image'
++        if not os.path.exists(path):
++            os.makedirs(path)
++        image_size = os.path.getsize(image_file)
++        if self.debug:
++            print 'Image Size:', image_size, 'bytes'
++        in_file = open(image_file, 'rb')
++        sha_image = sha()
++        while 1:
++            buf = in_file.read(IMAGE_IO_CHUNK)
++            if not buf:
++                break
++        sha_image.update(buf)
++        return (image_size, hexlify(sha_image.digest()))
++
++    def tarzip_image(
++        self,
++        prefix,
++        file,
++        path,
++        ):
++        Util().check_prerequisite_command('tar')
++
++        print 'Tarring image'
++        tar_file = '%s.tar.gz' % os.path.join(path, prefix)
++        outfile = open(tar_file, 'wb')
++        file_path = self.get_file_path(file)
++        tar_cmd = ['tar', 'ch', '-S']
++        if file_path:
++            tar_cmd.append('-C')
++            tar_cmd.append(file_path)
++            tar_cmd.append(self.get_relative_filename(file))
++        else:
++            tar_cmd.append(file)
++        p1 = Popen(tar_cmd, stdout=PIPE)
++        p2 = Popen(['gzip'], stdin=p1.stdout, stdout=outfile)
++        p2.communicate()
++        outfile.close
++        if os.path.getsize(tar_file) <= 0:
++            print 'Could not tar image'
++            raise CommandFailed
++        return tar_file
++
++    def hexToBytes(self, hexString):
++        bytes = []
++        hexString = ''.join(hexString.split(' '))
++        for i in range(0, len(hexString), 2):
++            bytes.append(chr(int(hexString[i:i + 2], 16)))
++
++        return ''.join(bytes)
++
++    def crypt_file(
++        self,
++        cipher,
++        in_file,
++        out_file,
++        ):
++        while 1:
++            buf = in_file.read(IMAGE_IO_CHUNK)
++            if not buf:
++                break
++            out_file.write(cipher.update(buf))
++        out_file.write(cipher.final())
++
++    def encrypt_image(self, file):
++        print 'Encrypting image'
++        enc_file = '%s.part' % file.replace('.tar.gz', '')
++
++        key = hex(BN.rand(16 * 8))[2:34].replace('L', 'c')
++        if self.debug:
++            print 'Key: %s' % key
++        iv = hex(BN.rand(16 * 8))[2:34].replace('L', 'c')
++        if self.debug:
++            print 'IV: %s' % iv
++
++        k = EVP.Cipher(alg='aes_128_cbc', key=unhexlify(key),
++                       iv=unhexlify(iv), op=1)
++
++        in_file = open(file)
++        out_file = open(enc_file, 'wb')
++        self.crypt_file(k, in_file, out_file)
++        in_file.close()
++        out_file.close()
++        bundled_size = os.path.getsize(enc_file)
++        return (enc_file, key, iv, bundled_size)
++
++    def split_image(self, file):
++        print 'Splitting image...'
++        return self.split_file(file, IMAGE_SPLIT_CHUNK)
++
++    def get_verification_string(self, manifest_string):
++        start_mc = manifest_string.find('<machine_configuration>')
++        end_mc = manifest_string.find('</machine_configuration>')
++        mc_config_string = manifest_string[start_mc:end_mc
++            + len('</machine_configuration>')]
++        start_image = manifest_string.find('<image>')
++        end_image = manifest_string.find('</image>')
++        image_string = manifest_string[start_image:end_image
++            + len('</image>')]
++
++        return mc_config_string + image_string
++
++    def parse_manifest(self, manifest_filename):
++        parts = []
++        encrypted_key = None
++        encrypted_iv = None
++        dom = minidom.parse(manifest_filename)
++        manifest_elem = dom.getElementsByTagName('manifest')[0]
++        parts_list = manifest_elem.getElementsByTagName('filename')
++        for part_elem in parts_list:
++            nodes = part_elem.childNodes
++            for node in nodes:
++                if node.nodeType == node.TEXT_NODE:
++                    parts.append(node.data)
++        encrypted_key_elem = \
++            manifest_elem.getElementsByTagName('user_encrypted_key')[0]
++        nodes = encrypted_key_elem.childNodes
++        for node in nodes:
++            if node.nodeType == node.TEXT_NODE:
++                encrypted_key = node.data
++        encrypted_iv_elem = \
++            manifest_elem.getElementsByTagName('user_encrypted_iv')[0]
++        nodes = encrypted_iv_elem.childNodes
++        for node in nodes:
++            if node.nodeType == node.TEXT_NODE:
++                encrypted_iv = node.data
++        return (parts, encrypted_key, encrypted_iv)
++
++    def assemble_parts(
++        self,
++        src_directory,
++        directory,
++        manifest_path,
++        parts,
++        ):
++        manifest_filename = self.get_relative_filename(manifest_path)
++        encrypted_filename = os.path.join(directory,
++                manifest_filename.replace('.manifest.xml', '.enc.tar.gz'
++                ))
++        if len(parts) > 0:
++            if not os.path.exists(directory):
++                os.makedirs(directory)
++            encrypted_file = open(encrypted_filename, 'wb')
++            for part in parts:
++                print 'Part:', self.get_relative_filename(part)
++                part_filename = os.path.join(src_directory, part)
++                part_file = open(part_filename, 'rb')
++                while 1:
++                    data = part_file.read(IMAGE_IO_CHUNK)
++                    if not data:
++                        break
++                    encrypted_file.write(data)
++                part_file.close()
++            encrypted_file.close()
++        return encrypted_filename
++
++    def decrypt_image(
++        self,
++        encrypted_filename,
++        encrypted_key,
++        encrypted_iv,
++        private_key_path,
++        ):
++        user_priv_key = RSA.load_key(private_key_path)
++        key = user_priv_key.private_decrypt(unhexlify(encrypted_key),
++                RSA.pkcs1_padding)
++        iv = user_priv_key.private_decrypt(unhexlify(encrypted_iv),
++                RSA.pkcs1_padding)
++        k = EVP.Cipher(alg='aes_128_cbc', key=unhexlify(key),
++                       iv=unhexlify(iv), op=0)
++
++        decrypted_filename = encrypted_filename.replace('.enc', '')
++        decrypted_file = open(decrypted_filename, 'wb')
++        encrypted_file = open(encrypted_filename, 'rb')
++        self.crypt_file(k, encrypted_file, decrypted_file)
++        encrypted_file.close()
++        decrypted_file.close()
++        return decrypted_filename
++
++    def decrypt_string(
++        self,
++        encrypted_string,
++        private_key_path,
++        encoded=False,
++        ):
++        user_priv_key = RSA.load_key(private_key_path)
++        string_to_decrypt = encrypted_string
++        if encoded:
++            string_to_decrypt = base64.b64decode(encrypted_string)
++        return user_priv_key.private_decrypt(string_to_decrypt,
++                RSA.pkcs1_padding)
++
++    def untarzip_image(self, path, file):
++        untarred_filename = file.replace('.tar.gz', '')
++        tar_file = tarfile.open(file, 'r|gz')
++        tar_file.extractall(path)
++        untarred_names = tar_file.getnames()
++        tar_file.close()
++        return untarred_names
++
++    def get_block_devs(self, mapping):
++        virtual = []
++        devices = []
++
++        vname = None
++        for m in mapping:
++            if not vname:
++                vname = m
++                virtual.append(vname)
++            else:
++                devices.append(m)
++                vname = None
++
++        return (virtual, devices)
++
++    def generate_manifest(
++        self,
++        path,
++        prefix,
++        parts,
++        parts_digest,
++        file,
++        key,
++        iv,
++        cert_path,
++        ec2cert_path,
++        private_key_path,
++        target_arch,
++        image_size,
++        bundled_size,
++        image_digest,
++        user,
++        kernel,
++        ramdisk,
++        mapping=None,
++        product_codes=None,
++        ancestor_ami_ids=None,
++        ):
++        user_pub_key = X509.load_cert(cert_path).get_pubkey().get_rsa()
++        cloud_pub_key = \
++            X509.load_cert(ec2cert_path).get_pubkey().get_rsa()
++
++        user_encrypted_key = hexlify(user_pub_key.public_encrypt(key,
++                RSA.pkcs1_padding))
++        user_encrypted_iv = hexlify(user_pub_key.public_encrypt(iv,
++                                    RSA.pkcs1_padding))
++
++        cloud_encrypted_key = hexlify(cloud_pub_key.public_encrypt(key,
++                RSA.pkcs1_padding))
++        cloud_encrypted_iv = hexlify(cloud_pub_key.public_encrypt(iv,
++                RSA.pkcs1_padding))
++
++        user_priv_key = RSA.load_key(private_key_path)
++
++        manifest_file = '%s.manifest.xml' % os.path.join(path, prefix)
++        if self.debug:
++            print 'Manifest: ', manifest_file
++
++        print 'Generating manifest %s' % manifest_file
++
++        manifest_out_file = open(manifest_file, 'wb')
++        doc = Document()
++
++        manifest_elem = doc.createElement('manifest')
++        doc.appendChild(manifest_elem)
++
++        # version
++
++        version_elem = doc.createElement('version')
++        version_value = doc.createTextNode(VERSION)
++        version_elem.appendChild(version_value)
++        manifest_elem.appendChild(version_elem)
++
++        # bundler info
++
++        bundler_elem = doc.createElement('bundler')
++        bundler_name_elem = doc.createElement('name')
++        bundler_name_value = doc.createTextNode(BUNDLER_NAME)
++        bundler_name_elem.appendChild(bundler_name_value)
++        bundler_version_elem = doc.createElement('version')
++        bundler_version_value = doc.createTextNode(BUNDLER_VERSION)
++        bundler_version_elem.appendChild(bundler_version_value)
++        bundler_elem.appendChild(bundler_name_elem)
++        bundler_elem.appendChild(bundler_version_elem)
++
++           # release
++
++        release_elem = doc.createElement('release')
++        release_value = doc.createTextNode(RELEASE)
++        release_elem.appendChild(release_value)
++        bundler_elem.appendChild(release_elem)
++        manifest_elem.appendChild(bundler_elem)
++
++        # machine config
++
++        machine_config_elem = doc.createElement('machine_configuration')
++        manifest_elem.appendChild(machine_config_elem)
++
++        target_arch_elem = doc.createElement('architecture')
++        target_arch_value = doc.createTextNode(target_arch)
++        target_arch_elem.appendChild(target_arch_value)
++        machine_config_elem.appendChild(target_arch_elem)
++
++        # block device mapping
++
++        if mapping:
++            block_dev_mapping_elem = \

Ubuntueuca2ools package

Merge lp:~smoser/ubuntu/natty/euca2ools/euca2ools-1.3.1 into lp:ubuntu/natty/euca2ools

Commit Message

Description of the Change

Preview Diff

Subscribers

Ubuntu
euca2ools package