ConfigManager.psm1
|
Import-Module $PSScriptRoot\Utils.psm1 Import-Module $PSScriptRoot\ClusUtils.psm1 $script:CMap = @{} $script:CMap["turnKeySdnPath"] = "" $script:CMap["storePath"] = "" $script:CMap["state"] = "state.json" $script:CMap["credential"] = "cred.json" $script:CMap["workloadcredential"] = "workloadcred.json" $script:CMap["userConfigPath"] = "$PSScriptRoot\config\deployment" $script:CMap["deploymentConfigPath"] = "$PSScriptRoot\config\deployment" $script:CMap["deploymentFile"] = "deployment.json" $script:CMap["hnvpaNetworkFile"] = "networkconfig\logicalnetworks\hnvpa.json" $script:CMap["mgmtNetworkFile"] = "networkconfig\logicalnetworks\management.json" $script:CMap["greNetworkFile"] = "networkconfig\logicalnetworks\grevip.json" $script:CMap["publicVIPNetworkFile"] = "networkconfig\logicalnetworks\publicvip.json" $script:CMap["privateVIPNetworkFile"] = "networkconfig\logicalnetworks\privatevip.json" $script:CMap["macpoolFile"] = "networkconfig\macpools\defaultMacPool.json" $script:CMap["sdnConfigFile"] = "sdnconfig.json" $script:CMap["sdnExpressConfigPath"] = "$PSScriptRoot\config\sdnexpress" $script:CMap["sdnExpressTemplateFile"] = "template.psd1" $script:CMap["userWorkloadConfigPath"] = "$PSScriptRoot\config\workload" $script:CMap["workloadConfigPath"] = "$PSScriptRoot\config\workload" $script:CMap["workload"] = "workloadconfig.json" $script:CMap["vhdStore"] = "" $script:MgmtHostNicName = "TurnKeySdn-Mgmt" $script:DefaultTestVhdShare = "\\skyshare.redmond.corp.microsoft.com\Beanstalk\SDN_ADOArtifacts\TestArtifacts\mariner_workload_vhd" $script:DefaultTestVhdFile = "full-2.0.20231004.vhdx" $script:InstallStateInstalled = "installed" $script:InstallStateInstallFailed = "installFailed" $script:InstallStateInstalling = "installing" $script:InstallStateNone = "none" $script:InternetSwitchDefaultName = "turnkeysdn-internet" $script:SdnSwitchDefaultName = "turnkeysdn-sdnswitch" # Corp network routes, used on the management nic of gateway VMs to allow access to corp network $script:MSFTCorpRoutes = @("10.0.0.0/8") function Initialize-StorePath { if (-not [String]::IsNullOrEmpty($script:CMap["turnKeySdnPath"]) -and ` -not ([String]::IsNullOrEmpty($script:CMap["storePath"]))) { return } $csv = Get-CSV if ($null -ne $csv) { $script:CMap["turnKeySdnPath"] = Join-Path $csv "TurnKeySdn" $script:CMap["vhdStore"] = Join-Path $csv "TurnKeySdnVhdStore" } else { $script:CMap["turnKeySdnPath"] = Join-Path $Env:SystemDrive "TurnKeySdn" $script:CMap["vhdStore"] = Join-Path $Env:SystemDrive "TurnKeySdnVhdStore" } $script:CMap["storePath"] = Join-Path $script:CMap["turnKeySdnPath"] ".store" if (Test-IsInitialized) { $script:CMap["deploymentConfigPath"] = Join-Path $script:CMap["turnKeySdnPath"] "DeploymentConfig" $script:CMap["workloadConfigPath"] = Join-Path $script:CMap["turnKeySdnPath"] "WorkloadConfig" } if (-not $(Test-Path (Get-TurnKeySdnPath))) { New-Item (Get-TurnKeySdnPath) -ItemType Directory -ErrorAction Stop | Out-Null } if (-not $(Test-Path (Get-StorePath))) { New-Item (Get-StorePath) -ItemType Directory -ErrorAction Stop | Out-Null } } function Undo-StorePathInitialization { $script:CMap["turnKeySdnPath"] = "" $script:CMap["storePath"] = "" $script:CMap["deploymentConfigPath"] = $script:CMap["userConfigPath"] $script:CMap["workloadConfigPath"] = $script:CMap["userWorkloadConfigPath"] $script:CMap["vhdStore"] = "" } function Get-StorePath { Initialize-StorePath return $script:CMap["storePath"] } function Get-TurnKeySdnPath { Initialize-StorePath return $script:CMap["turnKeySdnPath"] } function Get-InternalDeploymentConfigPath { Initialize-StorePath return $script:CMap["deploymentConfigPath"] } function Get-InternalWorkloadConfigPath { Initialize-StorePath return $script:CMap["workloadConfigPath"] } function Get-VhdStore { Initialize-StorePath return $script:CMap["vhdStore"] } function Get-SdnExpressPath { param ( [parameter(Mandatory = $false)][switch] $SkipConfigPath ) if (-not $($SkipConfigPath.IsPresent)) { $infraconfig = Get-DeploymentConfig $sdnExpPath = $infraconfig.sdnexpressPath if (-not [String]::IsNullOrEmpty($sdnExpPath)) { $sdnExpPSM1 = Join-Path $sdnExpPath "SDNExpress.psm1" if ($(Test-Path $sdnExpPSM1)) { return $sdnExpPath } } } $sdnExpPath = Join-Path $PSScriptRoot "..\..\SDNExpress" $sdnExpPSM1 = Join-Path $sdnExpPath "SDNExpress.psm1" if ($(Test-Path $sdnExpPSM1)) { return $sdnExpPath } Import-Module -Name SdnExpress -ErrorAction SilentlyContinue $module = Get-Module SdnExpress if ($null -ne $module) { return $module.ModuleBase } return $null } function Set-SdnExpressPathInternal { param( [parameter(Mandatory = $true)][string] $sdnExpressPath ) $infraconfig = Get-DeploymentConfig $infraconfig.sdnexpressPath = $sdnExpressPath Set-DeploymentConfig -deploymentConfig $infraconfig Write-TraceLog "Set-SdnExpressPath: Updated path to $sdnExpressPath" } function Get-SdnExpressModule { $sdnExpPath = Get-SdnExpressPath $sdnexpress = Join-Path $sdnExpPath SDNExpress.psm1 return $sdnexpress } function Get-SdnExpressScript { $sdnExpPath = Get-SdnExpressPath $sdnexpress = Join-Path $sdnExpPath SDNExpress.ps1 return $sdnexpress } function Get-RestoreReplayScriptPath { param ( [parameter(Mandatory = $false)][switch] $SkipConfigPath ) if (-not $($SkipConfigPath.IsPresent)) { $infraconfig = Get-DeploymentConfig $restoreReplayScriptPath = $infraconfig.restoreReplayScriptPath if (-not [String]::IsNullOrEmpty($restoreReplayScriptPath)) { $restoreReplayScript = Join-Path $restoreReplayScriptPath RestoreReplay.ps1 if ($(Test-Path $restoreReplayScript)) { return $restoreReplayScriptPath } } } $restoreReplayScriptPath = Join-Path $PSScriptRoot "..\BCDR" $restoreReplayScript = Join-Path $restoreReplayScriptPath RestoreReplay.ps1 if ($(Test-Path $restoreReplayScript)) { return $restoreReplayScriptPath } $script = Get-InstalledScript RestoreReplay -ErrorAction SilentlyContinue if ($null -ne $script) { return $script.InstalledLocation } return $null } function Get-RestoreReplayScript { $restoreReplayScriptPath = Get-RestoreReplayScriptPath $restoreReplay = Join-Path $restoreReplayScriptPath RestoreReplay.ps1 return $restoreReplay } function Get-DefaultNetworkControllerPsModulePath { return Join-Path $env:SystemRoot "system32\WindowsPowerShell\v1.0\Modules\NetworkControllerFc" } function Get-DefaultNetworkControllerPackageLocation { return (Join-Path $env:SystemRoot "NetworkController") } function Get-DefaultNetworkControllerDBLocation { $csv = Get-CSV if ($csv -ne $null) { return (Join-Path $csv "FCNCDB") } return (Join-Path $env:SystemDrive "FCNCDB") } function Set-AddressRandmoizerSeed { param( [parameter(Mandatory = $true)][int] $seed ) $internalConfig = Get-TurnKeySdnInternalConfig -configType state $internalConfig.randomizerSeed = $seed Set-TurnKeySdnInternalConfig -configType state -config $internalConfig } function Get-AddressRandmoizerSeed { $internalConfig = Get-TurnKeySdnInternalConfig -configType state if (-not [String]::IsNullOrEmpty($internalConfig.randomizerSeed)) { return [int]$internalConfig.randomizerSeed } $curhost = (hostname) $hostIndex = $curhost.Substring($($curhost.Length - 2)) $result = 0 if (-not [int]::TryParse($hostIndex, [ref]$result)) { $result = Get-Random -Minimum 1 -Maximum 60 } return $result } function Get-RandomizedIPv4Address { param( $address, $randomizer ) $addresses = $address.Split(".") $addresses[1] = ([int]$addresses[1] + $randomizer) % 255 return $addresses -join '.' } function Update-IPv4Address { param( $Address ) $depConfig = Get-DeploymentConfig if (-not $depConfig.randomizeAddresses) { return $Address } $randomizer = Get-AddressRandmoizerSeed $addr = Get-RandomizedIPv4Address -address $Address -randomizer $randomizer return $addr } function Update-LogicalNetworkAddresses { param( $network ) $depConfig = Get-DeploymentConfig if (-not $depConfig.randomizeAddresses) { return $network } $isOneNode = $depConfig.hyperVHosts.Count -eq 1 $randomizer = Get-AddressRandmoizerSeed $network.properties.subnets | ForEach-Object { $subnetProp = $_.properties $subnetProp.addressPrefix = Get-RandomizedIPv4Address -address $subnetProp.addressPrefix -randomizer $randomizer $newGateways = @() $subnetProp.defaultGateways | ForEach-Object { $newGateways += Get-RandomizedIPv4Address -address $_ -randomizer $randomizer } $subnetProp.defaultGateways = $newGateways $subnetProp.ipPools | Foreach-Object { $poolProp = $_.Properties $poolProp.startIpAddress = Get-RandomizedIPv4Address -address $poolProp.startIpAddress -randomizer $randomizer $poolProp.endIpAddress = Get-RandomizedIPv4Address -address $poolProp.endIpAddress -randomizer $randomizer } if ($isOneNode) { $subnetProp.vlanID = $([int]$subnetProp.vlanID) + $randomizer } } return $network } function Set-TurnKeySdnInternalConfig { param( [ValidateSet("workloadcredential","credential", "state")] [parameter(Mandatory = $true)][string] $configType, [parameter(Mandatory = $true)] $config ) $configFile = Join-Path (Get-StorePath) $script:CMap[$configType] $value = $(ConvertTo-Json $config -Depth 10) Set-Content -Path $configFile -Value $value -Encoding UTF8 } function Get-TurnKeySdnInternalConfig { param( [ValidateSet("workloadcredential","credential", "state")] [parameter(Mandatory = $true)][string] $configType ) $configFile = Join-Path (Get-StorePath) $script:CMap[$configType] return $(Get-Config $configFile) } function Test-TurnKeySdnStateConfigExist { $configFile = Get-StateFileWithoutInit return $(Test-Path $configFile) } function Get-TurnKeySdnCred { if ($Global:SdnCredential -ne $null -and $Global:SdnCredential -ne [pscredential]::Empty) { return $Global:SdnCredential } $configFile = Join-Path (Get-StorePath) $script:CMap["credential"] try { $c = Get-Config $configFile } catch { } if ([String]::IsNullOrEmpty($c.username) -or [String]::IsNullOREmpty($c.password)) { Write-TraceLog "Get-TurnKeySdnCred: Failed to get credentials, defaulting to empty cred" return [pscredential]::Empty } $cred = [pscredential]::new($c.username, $($c.password | ConvertTo-SecureString -ErrorAction Stop)) return $cred } function Get-TurnKeySdnWorkloadVmCred { # todo: find a better way to store workload credentials # $configFile = Join-Path (Get-StorePath) $script:CMap["workloadcredential"] # $c = Get-Config $configFile # if([string]::IsNullOrEmpty($c.username) -or [string]::IsNullOrEmpty($c.password)) { # throw "Workload VMcredentials is not initialized. Please make sure $Env:TURNKEY_WORKLOAD_PASSWORD is set on the machine. Then run initialize again for TurnKey SDN" # } else { # $vmUserName = $c.username # $vmUserPassword = $c.password # } $vmUserName = $Env:TURNKEY_WORKLOAD_USERNAME $vmUserPassword = $Env:TURNKEY_WORKLOAD_PASSWORD return [pscredential]::new($vmUserName, $($vmUserPassword | ConvertTo-SecureString -AsPlainText -Force)) } function Get-Config { param( [parameter(Mandatory = $true)][string] $file ) Test-FileExist -path $file $config = Get-Content $file -ErrorAction Stop | ConvertFrom-Json return $config } function Get-GreVipLogicalNetworkConfig { param( [Parameter(Mandatory = $false)][bool] $RandomizeAddress = $true ) $greNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["greNetworkFile"] $network = Get-Config $greNetworkFile if ($RandomizeAddress) { $network = Update-LogicalNetworkAddresses $network } return $network } function Set-GreVipNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $greNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["greNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $greNetworkFile -Force } function Get-HnvPaNetworkConfig { param( [Parameter(Mandatory = $false)][bool] $RandomizeAddress = $true ) $hnvpaNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["hnvpaNetworkFile"] $hnvPaNetwork = Get-Config $hnvpaNetworkFile if ($RandomizeAddress) { $hnvPaNetwork = Update-LogicalNetworkAddresses $hnvPaNetwork } return $hnvPaNetwork } function Set-HnvPaNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $hnvpaNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["hnvpaNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $hnvpaNetworkFile -Force } function Get-MgmtNetworkConfig { param( [Parameter(Mandatory = $false)][bool] $RandomizeAddress = $true ) $mgmtNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["mgmtNetworkFile"] $mgmtNetwork = Get-Config $mgmtNetworkFile if ($RandomizeAddress) { $mgmtNetwork = Update-LogicalNetworkAddresses $mgmtNetwork } return $mgmtNetwork } function Set-MgmtNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $mgmtNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["mgmtNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $mgmtNetworkFile -Force } function Get-PublicVipNetworkConfig { $publicVipNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["publicVipNetworkFile"] $publicVipNetwork = Get-Config $publicVipNetworkFile return $publicVipNetwork } function Set-PublicVipNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $publicVipNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["publicVipNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $publicVipNetworkFile -Force } function Get-PrivateVipNetworkConfig { $privateVipNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["privateVipNetworkFile"] $privateVipNetwork = Get-Config $privateVipNetworkFile return $privateVipNetwork } function Set-PrivateVipNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $privateVipNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["privateVipNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $privateVipNetworkFile -Force } function Get-DeploymentConfig { $config = Get-Config $(Get-DeploymentFile) # config upgrade for productkey $p = $config | Get-Member -Name productKey -ErrorAction SilentlyContinue if ($null -eq $p) { $config | add-member -NotePropertyName productKey -NotePropertyValue "" } return $config } function Get-TorVmConfig { $config = Get-DeploymentConfig return $config.torVmConfig } function Set-TorVmConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Config ) $depConfig = Get-DeploymentConfig $depConfig.torVmConfig = $Config Set-DeploymentConfig -deploymentConfig $depConfig } function Update-MacAddress { param($mac) $net = Get-MgmtNetworkConfig # Generate a mac address based on the managment network. $prefixElements = $net.properties.subnets[0].properties.addressPrefix.Split("/") $prefixLen = [int]$prefixElements[1] $ip = $prefixElements[0] if ($prefixLen -gt 24) { $secLast_hex = "{0:X2}" -f [int]($ip.Split('.')[-2]) $last_hex = "{0:X2}" -f [int]($ip.Split('.')[-1]) } elseif ($prefixLen -gt 8 -and $prefixLen -le 24) { $secLast_hex = "{0:X2}" -f [int]($ip.Split('.')[-3]) $last_hex = "{0:X2}" -f [int]($ip.Split('.')[-2]) } else { $secLast_hex = "{0:X2}" -f [int]($ip.Split('.')[-4]) $last_hex = "{0:X2}" -f [int]($ip.Split('.')[-3]) } $macEle = $mac.Split("-") $macEle[3] = $secLast_hex $macEle[4] = $last_hex $result = $macEle -join '-' return $result } function Get-DefaultMacPoolConfig { $configFileName = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["macpoolFile"] $config = Get-Config $configFileName # Always randomize mac addresses, if needed expose a separate flag to disable. $config.properties.startMacAddress = Update-MacAddress -mac $config.properties.startMacAddress $config.properties.endMacAddress = Update-MacAddress -mac $config.properties.endMacAddress return $config } function Set-MacPoolConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Config ) $configFileName = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["macpoolFile"] $Config | ConvertTo-Json -Depth 100 | Out-File $configFileName -Force } function Get-SdnConfig { $configFileName = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["sdnConfigFile"] $config = Get-Config $configFileName return $config } function Test-ValidDepId { param( [parameter(Mandatory = $true)][string] $id ) if ($id.Length -gt 9) { Write-TraceLog "Test-ValidDepId failed, id $id must be less than 9 characters" return $false } $names = @("NC-$id", "$id-$(Get-RouterVMSuffix)", "$id-$(Get-NCVMSuffix)0", "$id-$(Get-MUXVMSuffix)0", "$id-$(Get-GWVMSuffix)0") foreach($name in $names) { $result = (Resolve-DnsName $name -ErrorAction SilentlyContinue) if ($result -ne $null) { Write-TraceLog "Test-ValidDepId failed, another deployment with id $id already exists" return $false } } Write-TraceLog "Test-ValidDepId $id passed all validations" return $true } function Get-NewDepId { while($true) { $id = ((New-Guid).guid).split("-")[0] # Skip if the name is already in use if ($(Test-ValidDepId -id $id)) { return $id } } } function Set-DeploymentId { param( [parameter(Mandatory = $false)][string] $id ) $internalConfig = Get-TurnKeySdnInternalConfig -configType state $internalConfig.depId = $id if ([String]::IsNullOrEmpty($internalConfig.torId)) { $internalConfig.torId = $id } Set-TurnKeySdnInternalConfig -configType state -config $internalConfig } function Get-TurnKeySdnDeploymentId { $configFileName = Join-Path (Get-StorePath) $script:CMap["state"] $config = Get-Config $configFileName return $config.depId } function Get-TorId { $configFileName = Join-Path (Get-StorePath) $script:CMap["state"] $config = Get-Config $configFileName return $config.torId } function Get-StateFileWithoutInit { $csv = Get-CSV if ($csv -ne $null) { $installPath = Join-Path $csv "TurnKeySdn" } else { $installPath = Join-Path $Env:SystemDrive "TurnKeySdn" } $storePath = Join-Path $installPath ".store" $configFileName = Join-Path $storePath $script:CMap["state"] return $configFileName } function Remove-TurnKeySdnStore { param ( [parameter(Mandatory = $false)][switch] $SkipStore ) try { $depConfig = Get-DeploymentConfig $deployFolder = $depConfig.vmLocation if (-not [string]::IsNullOrEmpty($deployFolder)) { Write-TraceLog "Remove-TurnKeySdnStore removing deployment folder $deployFolder" Remove-Item $depConfig.vmLocation -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove vmLocation $deployFolder, error $_" } try { $workloadConfig = Get-TurnKeySdnWorkloadConfig $workloadDeployFolder = $workloadConfig.deploymentpath if (-not [String]::IsNullOrEmpty($workloadDeployFolder)) { Write-TraceLog "Remove-TurnKeySdnStore removing workload folder $workloadDeployFolder" Remove-Item $workloadDeployFolder -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove deploymentpath $workloadDeployFolder, error $_" } if (Test-IsInitialized) { try { $inernalWorkConfig = Get-InternalWorkloadConfigPath if (-not [String]::IsNullOrEmpty($inernalWorkConfig)) { Write-TraceLog "Remove-TurnKeySdnStore removing workload config folder $inernalWorkConfig" Remove-Item $inernalWorkConfig -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove deploymentpath $inernalWorkConfig, error $_" } try { $inernalDepConfig = Get-InternalDeploymentConfigPath if (-not [String]::IsNullOrEmpty($inernalDepConfig)) { Write-TraceLog "Remove-TurnKeySdnStore removing deployment config folder $inernalDepConfig" Remove-Item $inernalDepConfig -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove deploymentpath $inernalDepConfig, error $_" } } $configPresent = Test-TurnKeySdnStateConfigExist if ($($SkipStore.IsPresent) -and $configPresent) { Write-TraceLog "Remove-TurnKeySdnStore: Resetting install states" $state = Get-StateInternal $state.depId = "" $state.initialized = $false $state.installState = $script:InstallStateNone $state.mgmtIPOffset = "0" Set-TurnKeySdnInternalConfig -configType state -config $state Write-TraceLog "Remove-TurnKeySdnStore: Skipping store path removal" return } try { $storePath = Get-TurnKeySdnPath if (-not [String]::IsNullOrEmpty($storePath)) { Write-TraceLog "Remove-TurnKeySdnStore removing storePath $storePath" Remove-Item $storePath -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove storePath $storePath, error $_" } } function Get-TurnKeySdnRestEndpoint { $sdnConfig = Get-SdnConfig $endpoint = $sdnConfig.networkController.restName if (-not [String]::IsNullOrEmpty($endpoint)) { return $endpoint } if ([String]::IsNullOrEmpty($sdnConfig.networkController.restIpAddress)) { throw "Invalid sdn configuration, both restname and IP are empty" } return $sdnConfig.networkController.restIpAddress.split("/")[0] } function Get-TurnKeySdnNCRuntime() { $sdnConfig = Get-SdnConfig return $sdnConfig.networkController.runtime } function Set-TurnKeySdnConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$sdnConfig ) $configString = $sdnConfig | ConvertTo-Json -Depth 10 $configFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["sdnConfigFile"] Set-Content -Path $configFile -Value $configString -Encoding UTF8 } function Set-DeploymentConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$deploymentConfig ) $configString = $deploymentConfig | ConvertTo-Json -Depth 10 Set-Content -Path $(Get-DeploymentFile) -Value $configString -Encoding UTF8 } function LoadSdnExpressConfig { $sdnexpress = Import-LocalizedData ` -BaseDirectory $script:CMap["sdnExpressConfigPath"] ` -FileName $script:CMap["sdnExpressTemplateFile"] return $sdnexpress } function Get-WorkloadConfigPath { param( [ValidateSet("LoadBalancer", "VNET", "LogicalNetwork", "Gateway", "None", "HLK")] [Parameter(Mandatory = $false)] $WorkloadType, [Parameter(Mandatory = $false)] $WorkloadFolder ) if ($WorkloadType -eq "None" -or [String]::IsNullOrEmpty($WorkloadType)) { $WorkloadType = "LoadBalancer" } if ([String]::IsNullOrEmpty($WorkloadFolder)) { $WorkloadFolder = $WorkloadType } $path = Join-Path(Get-InternalWorkloadConfigPath) $WorkloadFolder if (-not (Test-Path $path)) { throw "Workload $WorkloadType not found at $path" } return $path } function Get-TurnKeySdnWorkloadConfig { $workloadConfigFile = Join-Path (Get-InternalWorkloadConfigPath) $script:CMap["workload"] $workloadConfig = Get-Config $workloadConfigFile return $workloadConfig } function Get-SdnWorkloadDeploymentPath { $workloadConfig = Get-TurnKeySdnWorkloadConfig if (-not [String]::isnullorempty($workloadConfig.deploymentpath)) { return $workloadConfig.deploymentpath } } function Set-TurnKeySdnWorkloadConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$config ) $configString = $config | ConvertTo-Json -Depth 10 $configFile = Join-Path (Get-InternalWorkloadConfigPath) $script:CMap["workload"] Set-Content -Path $configFile -Value $configString -Encoding UTF8 } function Get-SdnWorkloadVirtualGateways { param( [Parameter(Mandatory = $true)] $WorkloadConfigPath ) $jsonPath = Join-Path $workloadConfigPath "jsons\virtualgateways" if (-not $(Test-Path $jsonPath)) { return $null } Get-ChildItem $jsonPath } function Get-SdnWorkloadLogicalNetworks { param( [Parameter(Mandatory = $true)] $WorkloadConfigPath ) $jsonPath = Join-Path $workloadConfigPath "jsons\logicalnetworks" if (-not $(Test-Path $jsonPath)) { return $null } Get-ChildItem $jsonPath } function Get-SdnWorkloadNetworkInterfaces { param( [Parameter(Mandatory = $true)] $WorkloadConfigPath ) $nicJsonPath = Join-Path $workloadConfigPath "jsons\networkinterfaces" if (-not $(Test-Path $nicJsonPath)) { return $null } Get-ChildItem $nicJsonPath } function Get-SdnWorkloadLoadbalancers { param( [Parameter(Mandatory=$true)] $WorkloadConfigPath ) $lbJsonPath = Join-Path $workloadConfigPath "jsons\loadbalancers" if (-not $(Test-Path $lbJsonPath)) { return $null } Get-ChildItem $lbJsonPath } function Get-TurnKeySdnHyperVHosts { $depConfig = Get-DeploymentConfig if ($depConfig.hyperVHosts.Count -gt 0) { return $depConfig.hyperVHosts } if (Test-IsCluster) { Write-TraceLog "Get-TurnKeySdnHyperVHosts: No hosts found, defaulting to clusternodes" $hypervHosts = (get-cluster | get-clusternode).Name } else { Write-TraceLog "Get-TurnKeySdnHyperVHosts: No hosts found, defaulting to local host" $hypervHosts = @($(hostname)) } return $hypervHosts } function Get-SdnSwitchName { $depConfig = Get-DeploymentConfig return $depConfig.sdnSwitchName } function Initialize-TurnKeySdnDeploymentId { $config = Get-TurnKeySdnInternalConfig -configType state $updated = $false if ([String]::IsNullOrEmpty($config.depId)) { $config.depId = Get-NewDepId $updated = $true } if ([String]::IsNullOrEmpty($config.torId)) { $config.torId = $config.depId $updated = $true } if ([String]::IsNullOrEmpty($config.randomizerSeed)) { $config.randomizerSeed = Get-AddressRandmoizerSeed $updated = $true } if ($updated) { Set-TurnKeySdnInternalConfig -configType state -config $config } } function Initialize-Store { Initialize-StorePath $script:CMap["deploymentConfigPath"] = Join-Path $script:CMap["turnKeySdnPath"] "DeploymentConfig" $script:CMap["workloadConfigPath"] = Join-Path $script:CMap["turnKeySdnPath"] "WorkloadConfig" $internalConfigPath = $script:CMap["deploymentConfigPath"] $internalWorkloadConfigPath = $script:CMap["workloadConfigPath"] if (-not (Test-Path $internalConfigPath)) { New-Item $internalConfigPath -ItemType Directory -ErrorAction Stop | Out-Null } if (-not (Test-Path $internalWorkloadConfigPath)) { New-Item $internalWorkloadConfigPath -ItemType Directory -ErrorAction Stop | Out-Null } $userConfigPath = $script:CMap["userConfigPath"] Write-TraceLog "Copying user config from $userConfigPath to $internalConfigPath" robocopy $userConfigPath $script:CMap["deploymentConfigPath"] /E /XO /NC /NS /NP /NFL /NDL /NJH /NJS $userWorkloadConfigPath = $script:CMap["userWorkloadConfigPath"] Write-TraceLog "Copying user workload config from $userWorkloadConfigPath to $internalWorkloadConfigPath" robocopy $userWorkloadConfigPath $internalWorkloadConfigPath /E /XO /NC /NS /NP /NFL /NDL /NJH /NJS $vhdStore = Get-VhdStore if (-not (Test-Path $vhdStore)) { New-Item $vhdStore -ItemType Directory -ErrorAction Stop | Out-Null } $credFile = Join-Path (Get-StorePath) $script:CMap["credential"] if (-not $(Test-Path $credFile)) { $cred = @{} $cred["username"] = "" $cred["password"] = "" Set-TurnKeySdnInternalConfig -configType credential -config $cred } $stateFile = Join-Path (Get-StorePath) $script:CMap["state"] if (-not $(Test-Path $stateFile)) { $state = @{} $state["depId"] = "" $state["torId"] = "" $state["randomizerSeed"] = "" $state["initialized"] = $false $state["installState"] = $script:InstallStateNone $state["mgmtIPOffset"] = "0" Set-TurnKeySdnInternalConfig -configType state -config $state } Initialize-TurnKeySdnDeploymentId } function Get-DeploymentFile { return Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["deploymentFile"] } function Get-MgmtNicName { return $script:MgmtHostNicName } function Get-DefaultWorkloadVhdShare { return $script:DefaultTestVhdShare } function Get-DefaultWorkloadVhdFile { return $script:DefaultTestVhdFile } function Get-StateInternal { $stateFile = Get-StateFileWithoutInit $config = Get-Config $stateFile return $config } function Set-InstallState { param( [ValidateSet("installed", "installFailed", "installing", "none")] [parameter(Mandatory = $true)][string] $state ) $config = Get-StateInternal $config.installState = $state Set-TurnKeySdnInternalConfig -configType state -config $config } function Test-IsInstalled { try { $config = Get-StateInternal } catch { return $false } return $config.installState -ieq "installed" } function Test-IsInitialized { try { $config = Get-StateInternal } catch { return $false } return $config.initialized } function Set-Initialized { $config = Get-TurnKeySdnInternalConfig -configType state $config.initialized = $true Set-TurnKeySdnInternalConfig -configType state -config $config } function Get-NextManagementIPOffset { $config = Get-StateInternal [int]$offset = $config.mgmtIPOffset $config.mgmtIPOffset = $offset + 1 Set-TurnKeySdnInternalConfig -configType state -config $config return $offset } function Initialize-ManagementIPOffset { $config = Get-StateInternal $config.mgmtIPOffset = 0 Set-TurnKeySdnInternalConfig -configType state -config $config } function Get-MsftCorpRoutes { return $script:MSFTCorpRoutes } function Test-RRASRouterEnabled { $depConfig = Get-DeploymentConfig return $depConfig.useRRASRouter } function Get-DefaultInternetSwitchName { return $script:InternetSwitchDefaultName } function Get-DefaultSdnSwitchName { return $script:SdnSwitchDefaultName } function Get-RouterVMSuffix { "-TOR" } function Get-NCVMSuffix { "-NC" } function Get-MUXVMSuffix { "-MUX" } function Get-GWVMSuffix { "-GW" } function Get-DefaultCtsTrafficFolder { if (-not (Test-IsCluster)) { return "$env:SystemDrive\Tools" } $csvPath = Get-CSV return $(Join-Path -Path $csvPath -ChildPath "WorkloadTools") } function Get-DefaultCtsTrafficFile { return $(Join-Path -Path (Get-DefaultCtsTrafficFolder) -ChildPath "CtsTraffic.exe") } function Get-CtsTrafficGitHubUri { return "https://github.com/microsoft/ctsTraffic/raw/master/Releases/2.0.3.2/x64/ctsTraffic.exe" } function Copy-OrGetCtsTraffficExe { param( [parameter(Mandatory = $false)][string] $SourceFolder ) $defaultCtsTrafficFolder = Get-DefaultCtsTrafficFolder if (-not (Test-Path $defaultCtsTrafficFolder)) { New-item -Path $defaultCtsTrafficFolder -ItemType Directory -Force -ErrorAction Stop | Out-Null } $ctsTraffic = Get-DefaultCtsTrafficFile $source = Join-Path $SourceFolder "CtsTraffic.exe" if (-not $(Test-Path $source) -and -not $(Test-Path $ctsTraffic)) { Write-TraceLog "Copy-OrGetCtsTraffficExe: Ctstraffic not found at $source, downloading from github and copying to $ctsTraffic" Start-BitsTransfer $(Get-CtsTrafficGitHubUri) $ctsTraffic return } if ($(Test-Path $source)) { Write-TraceLog "Copy-OrGetCtsTraffficExe: Ctstraffic found locally at $source, copying to $ctsTraffic" Copy-Item -Path $source -Destination $ctsTraffic -Force return } Write-TraceLog "Copy-OrGetCtsTraffficExe: Using existing ctstraffic from $ctsTraffic" } # SIG # Begin signature block # MIInwQYJKoZIhvcNAQcCoIInsjCCJ64CAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCCW3JVOnEuvazGM # zuXikmqpeKrmNdzDh4nlxPq1SClPgKCCDXYwggX0MIID3KADAgECAhMzAAADrzBA # DkyjTQVBAAAAAAOvMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p # bmcgUENBIDIwMTEwHhcNMjMxMTE2MTkwOTAwWhcNMjQxMTE0MTkwOTAwWjB0MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB # AQDOS8s1ra6f0YGtg0OhEaQa/t3Q+q1MEHhWJhqQVuO5amYXQpy8MDPNoJYk+FWA # hePP5LxwcSge5aen+f5Q6WNPd6EDxGzotvVpNi5ve0H97S3F7C/axDfKxyNh21MG # 0W8Sb0vxi/vorcLHOL9i+t2D6yvvDzLlEefUCbQV/zGCBjXGlYJcUj6RAzXyeNAN # xSpKXAGd7Fh+ocGHPPphcD9LQTOJgG7Y7aYztHqBLJiQQ4eAgZNU4ac6+8LnEGAL # go1ydC5BJEuJQjYKbNTy959HrKSu7LO3Ws0w8jw6pYdC1IMpdTkk2puTgY2PDNzB # tLM4evG7FYer3WX+8t1UMYNTAgMBAAGjggFzMIIBbzAfBgNVHSUEGDAWBgorBgEE # AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQURxxxNPIEPGSO8kqz+bgCAQWGXsEw # RQYDVR0RBD4wPKQ6MDgxHjAcBgNVBAsTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEW # MBQGA1UEBRMNMjMwMDEyKzUwMTgyNjAfBgNVHSMEGDAWgBRIbmTlUAXTgqoXNzci # tW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3JsMGEG # CCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu # Y29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3J0 # MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIBAISxFt/zR2frTFPB45Yd # mhZpB2nNJoOoi+qlgcTlnO4QwlYN1w/vYwbDy/oFJolD5r6FMJd0RGcgEM8q9TgQ # 2OC7gQEmhweVJ7yuKJlQBH7P7Pg5RiqgV3cSonJ+OM4kFHbP3gPLiyzssSQdRuPY # 1mIWoGg9i7Y4ZC8ST7WhpSyc0pns2XsUe1XsIjaUcGu7zd7gg97eCUiLRdVklPmp # XobH9CEAWakRUGNICYN2AgjhRTC4j3KJfqMkU04R6Toyh4/Toswm1uoDcGr5laYn # TfcX3u5WnJqJLhuPe8Uj9kGAOcyo0O1mNwDa+LhFEzB6CB32+wfJMumfr6degvLT # e8x55urQLeTjimBQgS49BSUkhFN7ois3cZyNpnrMca5AZaC7pLI72vuqSsSlLalG # OcZmPHZGYJqZ0BacN274OZ80Q8B11iNokns9Od348bMb5Z4fihxaBWebl8kWEi2O # PvQImOAeq3nt7UWJBzJYLAGEpfasaA3ZQgIcEXdD+uwo6ymMzDY6UamFOfYqYWXk # ntxDGu7ngD2ugKUuccYKJJRiiz+LAUcj90BVcSHRLQop9N8zoALr/1sJuwPrVAtx # HNEgSW+AKBqIxYWM4Ev32l6agSUAezLMbq5f3d8x9qzT031jMDT+sUAoCw0M5wVt # CUQcqINPuYjbS1WgJyZIiEkBMIIHejCCBWKgAwIBAgIKYQ6Q0gAAAAAAAzANBgkq # hkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x # EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv # bjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5 # IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEwOTA5WjB+MQswCQYDVQQG # EwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwG # A1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYDVQQDEx9NaWNyb3NvZnQg # Q29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC # CgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+laUKq4BjgaBEm6f8MMHt03 # a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc6Whe0t+bU7IKLMOv2akr # rnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4Ddato88tt8zpcoRb0Rrrg # OGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+lD3v++MrWhAfTVYoonpy # 4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nkkDstrjNYxbc+/jLTswM9 # sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6A4aN91/w0FK/jJSHvMAh # dCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmdX4jiJV3TIUs+UsS1Vz8k # A/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL5zmhD+kjSbwYuER8ReTB # w3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zdsGbiwZeBe+3W7UvnSSmn # Eyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3T8HhhUSJxAlMxdSlQy90 # lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS4NaIjAsCAwEAAaOCAe0w # ggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRIbmTlUAXTgqoXNzcitW2o # ynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMCAYYwDwYD # VR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBDuRQFTuHqp8cx0SOJNDBa # BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL2Ny # bC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3JsMF4GCCsG # AQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3dy5taWNyb3NvZnQuY29t # L3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3J0MIGfBgNV # HSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEFBQcCARYzaHR0cDovL3d3 # dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1hcnljcHMuaHRtMEAGCCsG # AQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkAYwB5AF8AcwB0AGEAdABl # AG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn8oalmOBUeRou09h0ZyKb # C5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7v0epo/Np22O/IjWll11l # hJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0bpdS1HXeUOeLpZMlEPXh6 # I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/KmtYSWMfCWluWpiW5IP0 # wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvyCInWH8MyGOLwxS3OW560 # STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBpmLJZiWhub6e3dMNABQam # ASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJihsMdYzaXht/a8/jyFqGa # J+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYbBL7fQccOKO7eZS/sl/ah # XJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbSoqKfenoi+kiVH6v7RyOA # 9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sLgOppO6/8MO0ETI7f33Vt # Y5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtXcVZOSEXAQsmbdlsKgEhr # /Xmfwb1tbWrJUnMTDXpQzTGCGaEwghmdAgEBMIGVMH4xCzAJBgNVBAYTAlVTMRMw # EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVN # aWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNp # Z25pbmcgUENBIDIwMTECEzMAAAOvMEAOTKNNBUEAAAAAA68wDQYJYIZIAWUDBAIB # BQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYKKwYBBAGCNwIBCzEO # MAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIFCBMh5T6j26VvUYfpPi0Dq/ # CL6NQuWI9l2YG541Eqi8MEIGCisGAQQBgjcCAQwxNDAyoBSAEgBNAGkAYwByAG8A # cwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20wDQYJKoZIhvcNAQEB # BQAEggEAGonV4u0gfrJ4iKcWaSXiSbGlsTpLHeKE8iQUM227cbEEsSqgMdQhd/h2 # qcCYlBtyhfMhnhPg4GumDeUfOLCtPT0pEZmkwj+lsRdkTsjpz/lWy+G73U/b6LWL # 4SCIg3Wq71tQayQ/AGkmxKso0WcoySAtXAVE3se9G/4UdqyTcQwamkc/Cf3ilM77 # tOSGVE4gW4cVsETUppR/K8yMkKkduZ3QryP7qExZ8hmdfvr53jBMR+iZWb8FwfKm # 4ggndHpqVdqmPgwjMDzrd1qch6Y4Q9vs54TKWQWERzt9pVMzzrw0Bvo1nD4ZCLhB # 7W83geAk7V/K5n5SEE/JxHPlody/1KGCFyswghcnBgorBgEEAYI3AwMBMYIXFzCC # FxMGCSqGSIb3DQEHAqCCFwQwghcAAgEDMQ8wDQYJYIZIAWUDBAIBBQAwggFZBgsq # hkiG9w0BCRABBKCCAUgEggFEMIIBQAIBAQYKKwYBBAGEWQoDATAxMA0GCWCGSAFl # AwQCAQUABCBO6jwHs75uUTyBpYuM1MYceYnoY9TTUdkjTwAVaPHE9AIGZnLdTNQN # GBMyMDI0MDcwMjIyMjYwMi45MDhaMASAAgH0oIHYpIHVMIHSMQswCQYDVQQGEwJV # UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE # ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMS0wKwYDVQQLEyRNaWNyb3NvZnQgSXJl # bGFuZCBPcGVyYXRpb25zIExpbWl0ZWQxJjAkBgNVBAsTHVRoYWxlcyBUU1MgRVNO # OjE3OUUtNEJCMC04MjQ2MSUwIwYDVQQDExxNaWNyb3NvZnQgVGltZS1TdGFtcCBT # ZXJ2aWNloIIRejCCBycwggUPoAMCAQICEzMAAAHg1PwfExUffl0AAQAAAeAwDQYJ # KoZIhvcNAQELBQAwfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x # EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv # bjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTAwHhcNMjMx # MDEyMTkwNzE5WhcNMjUwMTEwMTkwNzE5WjCB0jELMAkGA1UEBhMCVVMxEzARBgNV # BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv # c29mdCBDb3Jwb3JhdGlvbjEtMCsGA1UECxMkTWljcm9zb2Z0IElyZWxhbmQgT3Bl # cmF0aW9ucyBMaW1pdGVkMSYwJAYDVQQLEx1UaGFsZXMgVFNTIEVTTjoxNzlFLTRC # QjAtODI0NjElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAgU2VydmljZTCC # AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKyHnPOhxbvRATnGjb/6fuBh # h3ZLzotAxAgdLaZ/zkRFUdeSKzyNt3tqorMK7GDvcXdKs+qIMUbvenlH+w53ssPa # 6rYP760ZuFrABrfserf0kFayNXVzwT7jarJOEjnFMBp+yi+uwQ2TnJuxczceG5FD # HrII6sF6F879lP6ydY0BBZkZ9t39e/svNRieA5gUnv/YcM/bIMY/QYmd9F0B+ebF # Yi+PH4AkXahNkFgK85OIaRrDGvhnxOa/5zGL7Oiii7+J9/QHkdJGlfnRfbQ3QXM/ # 5/umBOKG4JoFY1niZ5RVH5PT0+uCjwcqhTbnvUtfK+N+yB2b9rEZvp2Tv4ZwYzEd # 9A9VsYMuZiCSbaFMk77LwVbklpnw4aHWJXJkEYmJvxRbcThE8FQyOoVkSuKc5OWZ # 2+WM/j50oblA0tCU53AauvUOZRoQBh89nHK+m5pOXKXdYMJ+ceuLYF8h5y/cXLQM # OmqLJz5l7MLqGwU0zHV+MEO8L1Fo2zEEQ4iL4BX8YknKXonHGQacSCaLZot2kyJV # RsFSxn0PlPvHVp0YdsCMzdeiw9jAZ7K9s1WxsZGEBrK/obipX6uxjEpyUA9mbVPl # jlb3R4MWI0E2xI/NM6F4Ac8Ceax3YWLT+aWCZeqiIMLxyyWZg+i1KY8ZEzMeNTKC # EI5wF1wxqr6T1/MQo+8tAgMBAAGjggFJMIIBRTAdBgNVHQ4EFgQUcF4XP26dV+8S # usoA1XXQ2TDSmdIwHwYDVR0jBBgwFoAUn6cVXQBeYl2D9OXSZacbUzUZ6XIwXwYD # VR0fBFgwVjBUoFKgUIZOaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9j # cmwvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUyMDIwMTAoMSkuY3JsMGwG # CCsGAQUFBwEBBGAwXjBcBggrBgEFBQcwAoZQaHR0cDovL3d3dy5taWNyb3NvZnQu # Y29tL3BraW9wcy9jZXJ0cy9NaWNyb3NvZnQlMjBUaW1lLVN0YW1wJTIwUENBJTIw # MjAxMCgxKS5jcnQwDAYDVR0TAQH/BAIwADAWBgNVHSUBAf8EDDAKBggrBgEFBQcD # CDAOBgNVHQ8BAf8EBAMCB4AwDQYJKoZIhvcNAQELBQADggIBAMATzg6R/A0ldO7M # qGxD1VJji5yVA1hHb0Hc0Yjtv7WkxQ8iwfflulX5Us64tD3+3NT1JkphWzaAWf2w # KdAw35RxtQG1iON3HEZ0X23nde4Kg/Wfbx5rEHkZ9bzKnR/2N5A16+w/1pbwJzdf # RcnJT3cLyawr/kYjMWd63OP0Glq70ua4WUE/Po5pU7rQRbWEoQozY24hAqOcwuRc # m6Cb0JBeTOCeRBntEKgjKep4pRaQt7b9vusT97WeJcfaVosmmPtsZsawgnpIjbBa # 55tHfuk0vDkZtbIXjU4mr5dns9dnanBdBS2PY3N3hIfCPEOszquwHLkfkFZ/9bxw # 8/eRJldtoukHo16afE/AqP/smmGJh5ZR0pmgW6QcX+61rdi5kDJTzCFaoMyYzUS0 # SEbyrDZ/p2KOuKAYNngljiOlllct0uJVz2agfczGjjsKi2AS1WaXvOhgZNmGw42S # FB1qaloa8Kaux9Q2HHLE8gee/5rgOnx9zSbfVUc7IcRNodq6R7v+Rz+P6XKtOgyC # qW/+rhPmp/n7Fq2BGTRkcy//hmS32p6qyglr2K4OoJDJXxFs6lwc8D86qlUeGjUy # o7hVy5VvyA+y0mGnEAuA85tsOcUPlzwWF5sv+B5fz35OW3X4Spk5SiNulnLFRPM5 # XCsSHqvcbC8R3qwj2w1evPhZxDuNMIIHcTCCBVmgAwIBAgITMwAAABXF52ueAptJ # mQAAAAAAFTANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgT # Cldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29m # dCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNh # dGUgQXV0aG9yaXR5IDIwMTAwHhcNMjEwOTMwMTgyMjI1WhcNMzAwOTMwMTgzMjI1 # WjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH # UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQD # Ex1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDCCAiIwDQYJKoZIhvcNAQEB # BQADggIPADCCAgoCggIBAOThpkzntHIhC3miy9ckeb0O1YLT/e6cBwfSqWxOdcjK # NVf2AX9sSuDivbk+F2Az/1xPx2b3lVNxWuJ+Slr+uDZnhUYjDLWNE893MsAQGOhg # fWpSg0S3po5GawcU88V29YZQ3MFEyHFcUTE3oAo4bo3t1w/YJlN8OWECesSq/XJp # rx2rrPY2vjUmZNqYO7oaezOtgFt+jBAcnVL+tuhiJdxqD89d9P6OU8/W7IVWTe/d # vI2k45GPsjksUZzpcGkNyjYtcI4xyDUoveO0hyTD4MmPfrVUj9z6BVWYbWg7mka9 # 7aSueik3rMvrg0XnRm7KMtXAhjBcTyziYrLNueKNiOSWrAFKu75xqRdbZ2De+JKR # Hh09/SDPc31BmkZ1zcRfNN0Sidb9pSB9fvzZnkXftnIv231fgLrbqn427DZM9itu # qBJR6L8FA6PRc6ZNN3SUHDSCD/AQ8rdHGO2n6Jl8P0zbr17C89XYcz1DTsEzOUyO # ArxCaC4Q6oRRRuLRvWoYWmEBc8pnol7XKHYC4jMYctenIPDC+hIK12NvDMk2ZItb # oKaDIV1fMHSRlJTYuVD5C4lh8zYGNRiER9vcG9H9stQcxWv2XFJRXRLbJbqvUAV6 # bMURHXLvjflSxIUXk8A8FdsaN8cIFRg/eKtFtvUeh17aj54WcmnGrnu3tz5q4i6t # AgMBAAGjggHdMIIB2TASBgkrBgEEAYI3FQEEBQIDAQABMCMGCSsGAQQBgjcVAgQW # BBQqp1L+ZMSavoKRPEY1Kc8Q/y8E7jAdBgNVHQ4EFgQUn6cVXQBeYl2D9OXSZacb # UzUZ6XIwXAYDVR0gBFUwUzBRBgwrBgEEAYI3TIN9AQEwQTA/BggrBgEFBQcCARYz # aHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9Eb2NzL1JlcG9zaXRvcnku # aHRtMBMGA1UdJQQMMAoGCCsGAQUFBwMIMBkGCSsGAQQBgjcUAgQMHgoAUwB1AGIA # QwBBMAsGA1UdDwQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFNX2 # VsuP6KJcYmjRPZSQW9fOmhjEMFYGA1UdHwRPME0wS6BJoEeGRWh0dHA6Ly9jcmwu # bWljcm9zb2Z0LmNvbS9wa2kvY3JsL3Byb2R1Y3RzL01pY1Jvb0NlckF1dF8yMDEw # LTA2LTIzLmNybDBaBggrBgEFBQcBAQROMEwwSgYIKwYBBQUHMAKGPmh0dHA6Ly93 # d3cubWljcm9zb2Z0LmNvbS9wa2kvY2VydHMvTWljUm9vQ2VyQXV0XzIwMTAtMDYt # MjMuY3J0MA0GCSqGSIb3DQEBCwUAA4ICAQCdVX38Kq3hLB9nATEkW+Geckv8qW/q # XBS2Pk5HZHixBpOXPTEztTnXwnE2P9pkbHzQdTltuw8x5MKP+2zRoZQYIu7pZmc6 # U03dmLq2HnjYNi6cqYJWAAOwBb6J6Gngugnue99qb74py27YP0h1AdkY3m2CDPVt # I1TkeFN1JFe53Z/zjj3G82jfZfakVqr3lbYoVSfQJL1AoL8ZthISEV09J+BAljis # 9/kpicO8F7BUhUKz/AyeixmJ5/ALaoHCgRlCGVJ1ijbCHcNhcy4sa3tuPywJeBTp # kbKpW99Jo3QMvOyRgNI95ko+ZjtPu4b6MhrZlvSP9pEB9s7GdP32THJvEKt1MMU0 # sHrYUP4KWN1APMdUbZ1jdEgssU5HLcEUBHG/ZPkkvnNtyo4JvbMBV0lUZNlz138e # W0QBjloZkWsNn6Qo3GcZKCS6OEuabvshVGtqRRFHqfG3rsjoiV5PndLQTHa1V1QJ # sWkBRH58oWFsc/4Ku+xBZj1p/cvBQUl+fpO+y/g75LcVv7TOPqUxUYS8vwLBgqJ7 # Fx0ViY1w/ue10CgaiQuPNtq6TPmb/wrpNPgkNWcr4A245oyZ1uEi6vAnQj0llOZ0 # dFtq0Z4+7X6gMTN9vMvpe784cETRkPHIqzqKOghif9lwY1NNje6CbaUFEMFxBmoQ # tB1VM1izoXBm8qGCAtYwggI/AgEBMIIBAKGB2KSB1TCB0jELMAkGA1UEBhMCVVMx # EzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoT # FU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEtMCsGA1UECxMkTWljcm9zb2Z0IElyZWxh # bmQgT3BlcmF0aW9ucyBMaW1pdGVkMSYwJAYDVQQLEx1UaGFsZXMgVFNTIEVTTjox # NzlFLTRCQjAtODI0NjElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAgU2Vy # dmljZaIjCgEBMAcGBSsOAwIaAxUAbfPR1fBX6HxYfyPx8zYzJU5fIQyggYMwgYCk # fjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH # UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQD # Ex1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDANBgkqhkiG9w0BAQUFAAIF # AOoufekwIhgPMjAyNDA3MDIyMTIzNTNaGA8yMDI0MDcwMzIxMjM1M1owdjA8Bgor # BgEEAYRZCgQBMS4wLDAKAgUA6i596QIBADAJAgEAAgECAgH/MAcCAQACAhIZMAoC # BQDqL89pAgEAMDYGCisGAQQBhFkKBAIxKDAmMAwGCisGAQQBhFkKAwKgCjAIAgEA # AgMHoSChCjAIAgEAAgMBhqAwDQYJKoZIhvcNAQEFBQADgYEAJAjZFsKlBqXWf/v/ # ypBGkTvJ8hI7xaQbehgwQ+4gWtD9R7AWyeag/+e4Tbnv9cUn9h6v4c2lzyih2Oh4 # 38+6oyqHH59+KOXWXeMP65t0jfmJiXvQvw+dAmpFrD8dn9UhwuRBoCM9lc3vu0Gg # rDJrmvAfHIuO+VVaLkHTFz+UJzUxggQNMIIECQIBATCBkzB8MQswCQYDVQQGEwJV # UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE # ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGlt # ZS1TdGFtcCBQQ0EgMjAxMAITMwAAAeDU/B8TFR9+XQABAAAB4DANBglghkgBZQME # AgEFAKCCAUowGgYJKoZIhvcNAQkDMQ0GCyqGSIb3DQEJEAEEMC8GCSqGSIb3DQEJ # BDEiBCAnmCAouk6BdrhjgdYsn/ffG+BYoROCLTIcjHJOMyB0BjCB+gYLKoZIhvcN # AQkQAi8xgeowgecwgeQwgb0EIOPuUr/yOeVtOM+9zvsMIJJvhNkClj2cmbnCGwr/ # aQrBMIGYMIGApH4wfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x # EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv # bjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTACEzMAAAHg # 1PwfExUffl0AAQAAAeAwIgQg0oO+hJlXL0qvG9bF7avS9Hpa/KYmCehMWfxEjb9n # vGgwDQYJKoZIhvcNAQELBQAEggIAdDxMwjyRzmWgLqpFu6tqZ6dOmvGdjJZnSQvf # HU9A3qhHjVjCyaRBbax0/3vtESbEaneaz8JUqx4Bgq9odmS0026h6LDuZQspXmWy # ioHAwYuIm3cHYw8rxzMeW77zceWs9SoT2EgWXMN41s6j/diKObia6vsmxn5s3LA6 # GDSxNV65H7Cmy/0vK8Zkai2AxJJZoxCxNJncfQkCzQECyp5d3edWsMEDDgwVn9Hg # e1yg2AjBkQXUcO8RIlpYiwayQZMzyZOyoARzqOvWaSp/83AsWni9eLcMFtdNamB/ # AN6qUy1SU+MAiLJMkbTLuJuzkIB/Dhg5rBTtQwaxkWiF7YXGq9r4391Hi+6N0EB8 # WRDUj6Y3LP3pjZ44OVPwz0gkRN+7QZV346tdzvXBHib4TW50vWzKDceSMiNQrg9n # lc2GE5vLPJfk83j5wD6KpPv9b137n6GxO8K8YPxorPGCNdGW8yK3YgMM1cEccFmi # sPiUHP0q1mfT2LEZpj4mMMcNPfWRIFicOLY0QO7DfNb+axPuC+6CDytIW3F0KUg3 # wZFNAO0+5GpEDfy58Fuv/njOzjW3bZd7T89eHkkUFAsZ3uUrBRXaLcJgxflxSjs8 # UIp7WZPofsLGbuUh0nkq8sVTYKIpU++wNYVI8ln/V+/7g/Q7WgtuZG223N5qQjUP # CBZQhlQ= # SIG # End signature block |