ConfigManager.psm1
|
Import-Module $PSScriptRoot\Utils.psm1 Import-Module $PSScriptRoot\ClusUtils.psm1 $script:CMap = @{} $script:CMap["turnKeySdnPath"] = "" $script:CMap["storePath"] = "" $script:CMap["state"] = "state.json" $script:CMap["credential"] = "cred.json" $script:CMap["workloadcredential"] = "workloadcred.json" $script:CMap["userConfigPath"] = "$PSScriptRoot\config\deployment" $script:CMap["deploymentConfigPath"] = "$PSScriptRoot\config\deployment" $script:CMap["deploymentFile"] = "deployment.json" $script:CMap["hnvpaNetworkFile"] = "networkconfig\logicalnetworks\hnvpa.json" $script:CMap["mgmtNetworkFile"] = "networkconfig\logicalnetworks\management.json" $script:CMap["greNetworkFile"] = "networkconfig\logicalnetworks\grevip.json" $script:CMap["publicVIPNetworkFile"] = "networkconfig\logicalnetworks\publicvip.json" $script:CMap["privateVIPNetworkFile"] = "networkconfig\logicalnetworks\privatevip.json" $script:CMap["macpoolFile"] = "networkconfig\macpools\defaultMacPool.json" $script:CMap["sdnConfigFile"] = "sdnconfig.json" $script:CMap["sdnExpressConfigPath"] = "$PSScriptRoot\config\sdnexpress" $script:CMap["sdnExpressTemplateFile"] = "template.psd1" $script:CMap["userWorkloadConfigPath"] = "$PSScriptRoot\config\workload" $script:CMap["workloadConfigPath"] = "$PSScriptRoot\config\workload" $script:CMap["workload"] = "workloadconfig.json" $script:CMap["vhdStore"] = "" $script:MgmtHostNicName = "TurnKeySdn-Mgmt" $script:DefaultTestVhdShare = "\\skyshare.redmond.corp.microsoft.com\Beanstalk\SDN_ADOArtifacts\TestArtifacts\mariner_workload_vhd" $script:DefaultTestVhdFile = "full-2.0.20231004.vhdx" $script:InstallStateInstalled = "installed" $script:InstallStateInstallFailed = "installFailed" $script:InstallStateInstalling = "installing" $script:InstallStateNone = "none" $script:InternetSwitchDefaultName = "turnkeysdn-internet" $script:SdnSwitchDefaultName = "turnkeysdn-sdnswitch" # Corp network routes, used on the management nic of gateway VMs to allow access to corp network $script:MSFTCorpRoutes = @("10.0.0.0/8") function Initialize-StorePath { if (-not [String]::IsNullOrEmpty($script:CMap["turnKeySdnPath"]) -and ` -not ([String]::IsNullOrEmpty($script:CMap["storePath"]))) { return } $csv = Get-CSV if ($null -ne $csv) { $script:CMap["turnKeySdnPath"] = Join-Path $csv "TurnKeySdn" $script:CMap["vhdStore"] = Join-Path $csv "TurnKeySdnVhdStore" } else { $script:CMap["turnKeySdnPath"] = Join-Path $Env:SystemDrive "TurnKeySdn" $script:CMap["vhdStore"] = Join-Path $Env:SystemDrive "TurnKeySdnVhdStore" } $script:CMap["storePath"] = Join-Path $script:CMap["turnKeySdnPath"] ".store" if (Test-IsInitialized) { $script:CMap["deploymentConfigPath"] = Join-Path $script:CMap["turnKeySdnPath"] "DeploymentConfig" $script:CMap["workloadConfigPath"] = Join-Path $script:CMap["turnKeySdnPath"] "WorkloadConfig" } if (-not $(Test-Path (Get-TurnKeySdnPath))) { New-Item (Get-TurnKeySdnPath) -ItemType Directory -ErrorAction Stop | Out-Null } if (-not $(Test-Path (Get-StorePath))) { New-Item (Get-StorePath) -ItemType Directory -ErrorAction Stop | Out-Null } } function Undo-StorePathInitialization { $script:CMap["turnKeySdnPath"] = "" $script:CMap["storePath"] = "" $script:CMap["deploymentConfigPath"] = $script:CMap["userConfigPath"] $script:CMap["workloadConfigPath"] = $script:CMap["userWorkloadConfigPath"] $script:CMap["vhdStore"] = "" } function Get-StorePath { Initialize-StorePath return $script:CMap["storePath"] } function Get-TurnKeySdnPath { Initialize-StorePath return $script:CMap["turnKeySdnPath"] } function Get-InternalDeploymentConfigPath { Initialize-StorePath return $script:CMap["deploymentConfigPath"] } function Get-InternalWorkloadConfigPath { Initialize-StorePath return $script:CMap["workloadConfigPath"] } function Get-VhdStore { Initialize-StorePath return $script:CMap["vhdStore"] } function Get-SdnExpressPath { param ( [parameter(Mandatory = $false)][switch] $SkipConfigPath ) if (-not $($SkipConfigPath.IsPresent)) { $infraconfig = Get-DeploymentConfig $sdnExpPath = $infraconfig.sdnexpressPath if (-not [String]::IsNullOrEmpty($sdnExpPath)) { $sdnExpPSM1 = Join-Path $sdnExpPath "SDNExpress.psm1" if ($(Test-Path $sdnExpPSM1)) { return $sdnExpPath } } } $sdnExpPath = Join-Path $PSScriptRoot "..\..\SDNExpress" $sdnExpPSM1 = Join-Path $sdnExpPath "SDNExpress.psm1" if ($(Test-Path $sdnExpPSM1)) { return $sdnExpPath } Import-Module -Name SdnExpress -ErrorAction SilentlyContinue $module = Get-Module SdnExpress if ($null -ne $module) { return $module.ModuleBase } return $null } function Set-SdnExpressPathInternal { param( [parameter(Mandatory = $true)][string] $sdnExpressPath ) $infraconfig = Get-DeploymentConfig $infraconfig.sdnexpressPath = $sdnExpressPath Set-DeploymentConfig -deploymentConfig $infraconfig Write-TraceLog "Set-SdnExpressPath: Updated path to $sdnExpressPath" } function Get-SdnExpressModule { $sdnExpPath = Get-SdnExpressPath $sdnexpress = Join-Path $sdnExpPath SDNExpress.psm1 return $sdnexpress } function Get-SdnExpressScript { $sdnExpPath = Get-SdnExpressPath $sdnexpress = Join-Path $sdnExpPath SDNExpress.ps1 return $sdnexpress } function Get-RestoreReplayScriptPath { param ( [parameter(Mandatory = $false)][switch] $SkipConfigPath ) if (-not $($SkipConfigPath.IsPresent)) { $infraconfig = Get-DeploymentConfig $restoreReplayScriptPath = $infraconfig.restoreReplayScriptPath if (-not [String]::IsNullOrEmpty($restoreReplayScriptPath)) { $restoreReplayScript = Join-Path $restoreReplayScriptPath RestoreReplay.ps1 if ($(Test-Path $restoreReplayScript)) { return $restoreReplayScriptPath } } } $restoreReplayScriptPath = Join-Path $PSScriptRoot "..\BCDR" $restoreReplayScript = Join-Path $restoreReplayScriptPath RestoreReplay.ps1 if ($(Test-Path $restoreReplayScript)) { return $restoreReplayScriptPath } $script = Get-InstalledScript RestoreReplay -ErrorAction SilentlyContinue if ($null -ne $script) { return $script.InstalledLocation } return $null } function Get-RestoreReplayScript { $restoreReplayScriptPath = Get-RestoreReplayScriptPath $restoreReplay = Join-Path $restoreReplayScriptPath RestoreReplay.ps1 return $restoreReplay } function Get-DefaultNetworkControllerPsModulePath { return Join-Path $env:SystemRoot "system32\WindowsPowerShell\v1.0\Modules\NetworkControllerFc" } function Get-DefaultNetworkControllerPackageLocation { return (Join-Path $env:SystemRoot "NetworkController") } function Get-DefaultNetworkControllerDBLocation { $csv = Get-CSV if ($csv -ne $null) { return (Join-Path $csv "FCNCDB") } return (Join-Path $env:SystemDrive "FCNCDB") } function Set-AddressRandmoizerSeed { param( [parameter(Mandatory = $true)][int] $seed ) $internalConfig = Get-TurnKeySdnInternalConfig -configType state $internalConfig.randomizerSeed = $seed Set-TurnKeySdnInternalConfig -configType state -config $internalConfig } function Get-AddressRandmoizerSeed { $internalConfig = Get-TurnKeySdnInternalConfig -configType state if (-not [String]::IsNullOrEmpty($internalConfig.randomizerSeed)) { return [int]$internalConfig.randomizerSeed } $curhost = (hostname) $hostIndex = $curhost.Substring($($curhost.Length - 2)) $result = 0 if (-not [int]::TryParse($hostIndex, [ref]$result)) { $result = Get-Random -Minimum 1 -Maximum 60 } return $result } function Get-RandomizedIPv4Address { param( $address, $randomizer ) $addresses = $address.Split(".") $addresses[1] = ([int]$addresses[1] + $randomizer) % 255 return $addresses -join '.' } function Update-IPv4Address { param( $Address ) $depConfig = Get-DeploymentConfig if (-not $depConfig.randomizeAddresses) { return $Address } $randomizer = Get-AddressRandmoizerSeed $addr = Get-RandomizedIPv4Address -address $Address -randomizer $randomizer return $addr } function Update-LogicalNetworkAddresses { param( $network ) $depConfig = Get-DeploymentConfig if (-not $depConfig.randomizeAddresses) { return $network } $isOneNode = $depConfig.hyperVHosts.Count -eq 1 $randomizer = Get-AddressRandmoizerSeed $network.properties.subnets | ForEach-Object { $subnetProp = $_.properties $subnetProp.addressPrefix = Get-RandomizedIPv4Address -address $subnetProp.addressPrefix -randomizer $randomizer $newGateways = @() $subnetProp.defaultGateways | ForEach-Object { $newGateways += Get-RandomizedIPv4Address -address $_ -randomizer $randomizer } $subnetProp.defaultGateways = $newGateways $subnetProp.ipPools | Foreach-Object { $poolProp = $_.Properties $poolProp.startIpAddress = Get-RandomizedIPv4Address -address $poolProp.startIpAddress -randomizer $randomizer $poolProp.endIpAddress = Get-RandomizedIPv4Address -address $poolProp.endIpAddress -randomizer $randomizer } if ($isOneNode) { $subnetProp.vlanID = $([int]$subnetProp.vlanID) + $randomizer } } return $network } function Set-TurnKeySdnInternalConfig { param( [ValidateSet("workloadcredential","credential", "state")] [parameter(Mandatory = $true)][string] $configType, [parameter(Mandatory = $true)] $config ) $configFile = Join-Path (Get-StorePath) $script:CMap[$configType] $value = $(ConvertTo-Json $config -Depth 10) Set-Content -Path $configFile -Value $value -Encoding UTF8 } function Get-TurnKeySdnInternalConfig { param( [ValidateSet("workloadcredential","credential", "state")] [parameter(Mandatory = $true)][string] $configType ) $configFile = Join-Path (Get-StorePath) $script:CMap[$configType] return $(Get-Config $configFile) } function Test-TurnKeySdnStateConfigExist { $configFile = Get-StateFileWithoutInit return $(Test-Path $configFile) } function Get-TurnKeySdnCred { if ($Global:SdnCredential -ne $null -and $Global:SdnCredential -ne [pscredential]::Empty) { return $Global:SdnCredential } $configFile = Join-Path (Get-StorePath) $script:CMap["credential"] try { $c = Get-Config $configFile } catch { } if ([String]::IsNullOrEmpty($c.username) -or [String]::IsNullOREmpty($c.password)) { Write-TraceLog "Get-TurnKeySdnCred: Failed to get credentials, defaulting to empty cred" return [pscredential]::Empty } $cred = [pscredential]::new($c.username, $($c.password | ConvertTo-SecureString -ErrorAction Stop)) return $cred } function Get-TurnKeySdnWorkloadVmCred { # todo: find a better way to store workload credentials # $configFile = Join-Path (Get-StorePath) $script:CMap["workloadcredential"] # $c = Get-Config $configFile # if([string]::IsNullOrEmpty($c.username) -or [string]::IsNullOrEmpty($c.password)) { # throw "Workload VMcredentials is not initialized. Please make sure $Env:TURNKEY_WORKLOAD_PASSWORD is set on the machine. Then run initialize again for TurnKey SDN" # } else { # $vmUserName = $c.username # $vmUserPassword = $c.password # } $vmUserName = $Env:TURNKEY_WORKLOAD_USERNAME $vmUserPassword = $Env:TURNKEY_WORKLOAD_PASSWORD return [pscredential]::new($vmUserName, $($vmUserPassword | ConvertTo-SecureString -AsPlainText -Force)) } function Get-Config { param( [parameter(Mandatory = $true)][string] $file ) Test-FileExist -path $file $config = Get-Content $file -ErrorAction Stop | ConvertFrom-Json return $config } function Get-GreVipLogicalNetworkConfig { param( [Parameter(Mandatory = $false)][bool] $RandomizeAddress = $true ) $greNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["greNetworkFile"] $network = Get-Config $greNetworkFile if ($RandomizeAddress) { $network = Update-LogicalNetworkAddresses $network } return $network } function Set-GreVipNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $greNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["greNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $greNetworkFile -Force } function Get-HnvPaNetworkConfig { param( [Parameter(Mandatory = $false)][bool] $RandomizeAddress = $true ) $hnvpaNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["hnvpaNetworkFile"] $hnvPaNetwork = Get-Config $hnvpaNetworkFile if ($RandomizeAddress) { $hnvPaNetwork = Update-LogicalNetworkAddresses $hnvPaNetwork } return $hnvPaNetwork } function Set-HnvPaNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $hnvpaNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["hnvpaNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $hnvpaNetworkFile -Force } function Get-MgmtNetworkConfig { param( [Parameter(Mandatory = $false)][bool] $RandomizeAddress = $true ) $mgmtNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["mgmtNetworkFile"] $mgmtNetwork = Get-Config $mgmtNetworkFile if ($RandomizeAddress) { $mgmtNetwork = Update-LogicalNetworkAddresses $mgmtNetwork } return $mgmtNetwork } function Set-MgmtNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $mgmtNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["mgmtNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $mgmtNetworkFile -Force } function Get-PublicVipNetworkConfig { $publicVipNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["publicVipNetworkFile"] $publicVipNetwork = Get-Config $publicVipNetworkFile return $publicVipNetwork } function Set-PublicVipNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $publicVipNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["publicVipNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $publicVipNetworkFile -Force } function Get-PrivateVipNetworkConfig { $privateVipNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["privateVipNetworkFile"] $privateVipNetwork = Get-Config $privateVipNetworkFile return $privateVipNetwork } function Set-PrivateVipNetworkConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Network ) $privateVipNetworkFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["privateVipNetworkFile"] $Network | ConvertTo-Json -Depth 100 | Out-File $privateVipNetworkFile -Force } function Get-DeploymentConfig { $config = Get-Config $(Get-DeploymentFile) # config upgrade for productkey $p = $config | Get-Member -Name productKey -ErrorAction SilentlyContinue if ($null -eq $p) { $config | add-member -NotePropertyName productKey -NotePropertyValue "" } return $config } function Get-TorVmConfig { $config = Get-DeploymentConfig return $config.torVmConfig } function Set-TorVmConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Config ) $depConfig = Get-DeploymentConfig $depConfig.torVmConfig = $Config Set-DeploymentConfig -deploymentConfig $depConfig } function Update-MacAddress { param($mac) $net = Get-MgmtNetworkConfig # Generate a mac address based on the managment network. $prefixElements = $net.properties.subnets[0].properties.addressPrefix.Split("/") $prefixLen = [int]$prefixElements[1] $ip = $prefixElements[0] if ($prefixLen -gt 24) { $secLast_hex = "{0:X2}" -f [int]($ip.Split('.')[-2]) $last_hex = "{0:X2}" -f [int]($ip.Split('.')[-1]) } elseif ($prefixLen -gt 8 -and $prefixLen -le 24) { $secLast_hex = "{0:X2}" -f [int]($ip.Split('.')[-3]) $last_hex = "{0:X2}" -f [int]($ip.Split('.')[-2]) } else { $secLast_hex = "{0:X2}" -f [int]($ip.Split('.')[-4]) $last_hex = "{0:X2}" -f [int]($ip.Split('.')[-3]) } $macEle = $mac.Split("-") $macEle[3] = $secLast_hex $macEle[4] = $last_hex $result = $macEle -join '-' return $result } function Get-DefaultMacPoolConfig { $configFileName = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["macpoolFile"] $config = Get-Config $configFileName # Always randomize mac addresses, if needed expose a separate flag to disable. $config.properties.startMacAddress = Update-MacAddress -mac $config.properties.startMacAddress $config.properties.endMacAddress = Update-MacAddress -mac $config.properties.endMacAddress return $config } function Set-MacPoolConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$Config ) $configFileName = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["macpoolFile"] $Config | ConvertTo-Json -Depth 100 | Out-File $configFileName -Force } function Get-SdnConfig { $configFileName = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["sdnConfigFile"] $config = Get-Config $configFileName return $config } function Test-ValidDepId { param( [parameter(Mandatory = $true)][string] $id ) if ($id.Length -gt 9) { Write-TraceLog "Test-ValidDepId failed, id $id must be less than 9 characters" return $false } $names = @("NC-$id", "$id-$(Get-RouterVMSuffix)", "$id-$(Get-NCVMSuffix)0", "$id-$(Get-MUXVMSuffix)0", "$id-$(Get-GWVMSuffix)0") foreach($name in $names) { $result = (Resolve-DnsName $name -ErrorAction SilentlyContinue) if ($result -ne $null) { Write-TraceLog "Test-ValidDepId failed, another deployment with id $id already exists" return $false } } Write-TraceLog "Test-ValidDepId $id passed all validations" return $true } function Get-NewDepId { while($true) { $id = ((New-Guid).guid).split("-")[0] # Skip if the name is already in use if ($(Test-ValidDepId -id $id)) { return $id } } } function Set-DeploymentId { param( [parameter(Mandatory = $false)][string] $id ) $internalConfig = Get-TurnKeySdnInternalConfig -configType state $internalConfig.depId = $id if ([String]::IsNullOrEmpty($internalConfig.torId)) { $internalConfig.torId = $id } Set-TurnKeySdnInternalConfig -configType state -config $internalConfig } function Get-TurnKeySdnDeploymentId { $configFileName = Join-Path (Get-StorePath) $script:CMap["state"] $config = Get-Config $configFileName return $config.depId } function Get-TorId { $configFileName = Join-Path (Get-StorePath) $script:CMap["state"] $config = Get-Config $configFileName return $config.torId } function Get-StateFileWithoutInit { $csv = Get-CSV if ($csv -ne $null) { $installPath = Join-Path $csv "TurnKeySdn" } else { $installPath = Join-Path $Env:SystemDrive "TurnKeySdn" } $storePath = Join-Path $installPath ".store" $configFileName = Join-Path $storePath $script:CMap["state"] return $configFileName } function Remove-TurnKeySdnStore { param ( [parameter(Mandatory = $false)][switch] $SkipStore ) try { $depConfig = Get-DeploymentConfig $deployFolder = $depConfig.vmLocation if (-not [string]::IsNullOrEmpty($deployFolder)) { Write-TraceLog "Remove-TurnKeySdnStore removing deployment folder $deployFolder" Remove-Item $depConfig.vmLocation -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove vmLocation $deployFolder, error $_" } try { $workloadConfig = Get-TurnKeySdnWorkloadConfig $workloadDeployFolder = $workloadConfig.deploymentpath if (-not [String]::IsNullOrEmpty($workloadDeployFolder)) { Write-TraceLog "Remove-TurnKeySdnStore removing workload folder $workloadDeployFolder" Remove-Item $workloadDeployFolder -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove deploymentpath $workloadDeployFolder, error $_" } if (Test-IsInitialized) { try { $inernalWorkConfig = Get-InternalWorkloadConfigPath if (-not [String]::IsNullOrEmpty($inernalWorkConfig)) { Write-TraceLog "Remove-TurnKeySdnStore removing workload config folder $inernalWorkConfig" Remove-Item $inernalWorkConfig -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove deploymentpath $inernalWorkConfig, error $_" } try { $inernalDepConfig = Get-InternalDeploymentConfigPath if (-not [String]::IsNullOrEmpty($inernalDepConfig)) { Write-TraceLog "Remove-TurnKeySdnStore removing deployment config folder $inernalDepConfig" Remove-Item $inernalDepConfig -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove deploymentpath $inernalDepConfig, error $_" } } $configPresent = Test-TurnKeySdnStateConfigExist if ($($SkipStore.IsPresent) -and $configPresent) { Write-TraceLog "Remove-TurnKeySdnStore: Resetting install states" $state = Get-StateInternal $state.depId = "" $state.initialized = $false $state.installState = $script:InstallStateNone $state.mgmtIPOffset = "0" Set-TurnKeySdnInternalConfig -configType state -config $state Write-TraceLog "Remove-TurnKeySdnStore: Skipping store path removal" return } try { $storePath = Get-TurnKeySdnPath if (-not [String]::IsNullOrEmpty($storePath)) { Write-TraceLog "Remove-TurnKeySdnStore removing storePath $storePath" Remove-Item $storePath -Recurse -Force -ErrorAction SilentlyContinue } } catch { Write-TraceLog "Remove-TurnKeySdnStore: Failed to remove storePath $storePath, error $_" } } function Get-TurnKeySdnRestEndpoint { $sdnConfig = Get-SdnConfig $endpoint = $sdnConfig.networkController.restName if (-not [String]::IsNullOrEmpty($endpoint)) { return $endpoint } if ([String]::IsNullOrEmpty($sdnConfig.networkController.restIpAddress)) { throw "Invalid sdn configuration, both restname and IP are empty" } return $sdnConfig.networkController.restIpAddress.split("/")[0] } function Get-TurnKeySdnNCRuntime() { $sdnConfig = Get-SdnConfig return $sdnConfig.networkController.runtime } function Set-TurnKeySdnConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$sdnConfig ) $configString = $sdnConfig | ConvertTo-Json -Depth 10 $configFile = Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["sdnConfigFile"] Set-Content -Path $configFile -Value $configString -Encoding UTF8 } function Set-DeploymentConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$deploymentConfig ) $configString = $deploymentConfig | ConvertTo-Json -Depth 10 Set-Content -Path $(Get-DeploymentFile) -Value $configString -Encoding UTF8 } function LoadSdnExpressConfig { $sdnexpress = Import-LocalizedData ` -BaseDirectory $script:CMap["sdnExpressConfigPath"] ` -FileName $script:CMap["sdnExpressTemplateFile"] return $sdnexpress } function Get-WorkloadConfigPath { param( [ValidateSet("LoadBalancer", "VNET", "LogicalNetwork", "Gateway", "None", "HLK")] [Parameter(Mandatory = $false)] $WorkloadType, [Parameter(Mandatory = $false)] $WorkloadFolder ) if ($WorkloadType -eq "None" -or [String]::IsNullOrEmpty($WorkloadType)) { $WorkloadType = "LoadBalancer" } if ([String]::IsNullOrEmpty($WorkloadFolder)) { $WorkloadFolder = $WorkloadType } $path = Join-Path(Get-InternalWorkloadConfigPath) $WorkloadFolder if (-not (Test-Path $path)) { throw "Workload $WorkloadType not found at $path" } return $path } function Get-TurnKeySdnWorkloadConfig { $workloadConfigFile = Join-Path (Get-InternalWorkloadConfigPath) $script:CMap["workload"] $workloadConfig = Get-Config $workloadConfigFile return $workloadConfig } function Get-SdnWorkloadDeploymentPath { $workloadConfig = Get-TurnKeySdnWorkloadConfig if (-not [String]::isnullorempty($workloadConfig.deploymentpath)) { return $workloadConfig.deploymentpath } } function Set-TurnKeySdnWorkloadConfig { param( [parameter(Mandatory = $true)][PSCustomObject]$config ) $configString = $config | ConvertTo-Json -Depth 10 $configFile = Join-Path (Get-InternalWorkloadConfigPath) $script:CMap["workload"] Set-Content -Path $configFile -Value $configString -Encoding UTF8 } function Get-SdnWorkloadVirtualGateways { param( [Parameter(Mandatory = $true)] $WorkloadConfigPath ) $jsonPath = Join-Path $workloadConfigPath "jsons\virtualgateways" if (-not $(Test-Path $jsonPath)) { return $null } Get-ChildItem $jsonPath } function Get-SdnWorkloadLogicalNetworks { param( [Parameter(Mandatory = $true)] $WorkloadConfigPath ) $jsonPath = Join-Path $workloadConfigPath "jsons\logicalnetworks" if (-not $(Test-Path $jsonPath)) { return $null } Get-ChildItem $jsonPath } function Get-SdnWorkloadNetworkInterfaces { param( [Parameter(Mandatory = $true)] $WorkloadConfigPath ) $nicJsonPath = Join-Path $workloadConfigPath "jsons\networkinterfaces" if (-not $(Test-Path $nicJsonPath)) { return $null } Get-ChildItem $nicJsonPath } function Get-SdnWorkloadLoadbalancers { param( [Parameter(Mandatory=$true)] $WorkloadConfigPath ) $lbJsonPath = Join-Path $workloadConfigPath "jsons\loadbalancers" if (-not $(Test-Path $lbJsonPath)) { return $null } Get-ChildItem $lbJsonPath } function Get-TurnKeySdnHyperVHosts { $depConfig = Get-DeploymentConfig if ($depConfig.hyperVHosts.Count -gt 0) { return $depConfig.hyperVHosts } if (Test-IsCluster) { Write-TraceLog "Get-TurnKeySdnHyperVHosts: No hosts found, defaulting to clusternodes" $hypervHosts = (get-cluster | get-clusternode).Name } else { Write-TraceLog "Get-TurnKeySdnHyperVHosts: No hosts found, defaulting to local host" $hypervHosts = @($(hostname)) } return $hypervHosts } function Get-SdnSwitchName { $depConfig = Get-DeploymentConfig return $depConfig.sdnSwitchName } function Initialize-TurnKeySdnDeploymentId { $config = Get-TurnKeySdnInternalConfig -configType state $updated = $false if ([String]::IsNullOrEmpty($config.depId)) { $config.depId = Get-NewDepId $updated = $true } if ([String]::IsNullOrEmpty($config.torId)) { $config.torId = $config.depId $updated = $true } if ([String]::IsNullOrEmpty($config.randomizerSeed)) { $config.randomizerSeed = Get-AddressRandmoizerSeed $updated = $true } if ($updated) { Set-TurnKeySdnInternalConfig -configType state -config $config } } function Initialize-Store { Initialize-StorePath $script:CMap["deploymentConfigPath"] = Join-Path $script:CMap["turnKeySdnPath"] "DeploymentConfig" $script:CMap["workloadConfigPath"] = Join-Path $script:CMap["turnKeySdnPath"] "WorkloadConfig" $internalConfigPath = $script:CMap["deploymentConfigPath"] $internalWorkloadConfigPath = $script:CMap["workloadConfigPath"] if (-not (Test-Path $internalConfigPath)) { New-Item $internalConfigPath -ItemType Directory -ErrorAction Stop | Out-Null } if (-not (Test-Path $internalWorkloadConfigPath)) { New-Item $internalWorkloadConfigPath -ItemType Directory -ErrorAction Stop | Out-Null } $userConfigPath = $script:CMap["userConfigPath"] Write-TraceLog "Copying user config from $userConfigPath to $internalConfigPath" robocopy $userConfigPath $script:CMap["deploymentConfigPath"] /E /XO /NC /NS /NP /NFL /NDL /NJH /NJS $userWorkloadConfigPath = $script:CMap["userWorkloadConfigPath"] Write-TraceLog "Copying user workload config from $userWorkloadConfigPath to $internalWorkloadConfigPath" robocopy $userWorkloadConfigPath $internalWorkloadConfigPath /E /XO /NC /NS /NP /NFL /NDL /NJH /NJS $vhdStore = Get-VhdStore if (-not (Test-Path $vhdStore)) { New-Item $vhdStore -ItemType Directory -ErrorAction Stop | Out-Null } $credFile = Join-Path (Get-StorePath) $script:CMap["credential"] if (-not $(Test-Path $credFile)) { $cred = @{} $cred["username"] = "" $cred["password"] = "" Set-TurnKeySdnInternalConfig -configType credential -config $cred } $stateFile = Join-Path (Get-StorePath) $script:CMap["state"] if (-not $(Test-Path $stateFile)) { $state = @{} $state["depId"] = "" $state["torId"] = "" $state["randomizerSeed"] = "" $state["initialized"] = $false $state["installState"] = $script:InstallStateNone $state["mgmtIPOffset"] = "0" Set-TurnKeySdnInternalConfig -configType state -config $state } Initialize-TurnKeySdnDeploymentId } function Get-DeploymentFile { return Join-Path (Get-InternalDeploymentConfigPath) $script:CMap["deploymentFile"] } function Get-MgmtNicName { return $script:MgmtHostNicName } function Get-DefaultWorkloadVhdShare { return $script:DefaultTestVhdShare } function Get-DefaultWorkloadVhdFile { return $script:DefaultTestVhdFile } function Get-StateInternal { $stateFile = Get-StateFileWithoutInit $config = Get-Config $stateFile return $config } function Set-InstallState { param( [ValidateSet("installed", "installFailed", "installing", "none")] [parameter(Mandatory = $true)][string] $state ) $config = Get-StateInternal $config.installState = $state Set-TurnKeySdnInternalConfig -configType state -config $config } function Test-IsInstalled { try { $config = Get-StateInternal } catch { return $false } return $config.installState -ieq "installed" } function Test-IsInitialized { try { $config = Get-StateInternal } catch { return $false } return $config.initialized } function Set-Initialized { $config = Get-TurnKeySdnInternalConfig -configType state $config.initialized = $true Set-TurnKeySdnInternalConfig -configType state -config $config } function Get-NextManagementIPOffset { $config = Get-StateInternal [int]$offset = $config.mgmtIPOffset $config.mgmtIPOffset = $offset + 1 Set-TurnKeySdnInternalConfig -configType state -config $config return $offset } function Initialize-ManagementIPOffset { $config = Get-StateInternal $config.mgmtIPOffset = 0 Set-TurnKeySdnInternalConfig -configType state -config $config } function Get-MsftCorpRoutes { return $script:MSFTCorpRoutes } function Test-RRASRouterEnabled { $depConfig = Get-DeploymentConfig return $depConfig.useRRASRouter } function Get-DefaultInternetSwitchName { return $script:InternetSwitchDefaultName } function Get-DefaultSdnSwitchName { return $script:SdnSwitchDefaultName } function Get-RouterVMSuffix { "-TOR" } function Get-NCVMSuffix { "-NC" } function Get-MUXVMSuffix { "-MUX" } function Get-GWVMSuffix { "-GW" } function Get-DefaultCtsTrafficFolder { if (-not (Test-IsCluster)) { return "$env:SystemDrive\Tools" } $csvPath = Get-CSV return $(Join-Path -Path $csvPath -ChildPath "WorkloadTools") } function Get-DefaultCtsTrafficFile { return $(Join-Path -Path (Get-DefaultCtsTrafficFolder) -ChildPath "CtsTraffic.exe") } function Get-CtsTrafficGitHubUri { return "https://github.com/microsoft/ctsTraffic/raw/master/Releases/2.0.3.2/x64/ctsTraffic.exe" } function Copy-OrGetCtsTraffficExe { param( [parameter(Mandatory = $false)][string] $SourceFolder ) $defaultCtsTrafficFolder = Get-DefaultCtsTrafficFolder if (-not (Test-Path $defaultCtsTrafficFolder)) { New-item -Path $defaultCtsTrafficFolder -ItemType Directory -Force -ErrorAction Stop | Out-Null } $ctsTraffic = Get-DefaultCtsTrafficFile $source = Join-Path $SourceFolder "CtsTraffic.exe" if (-not $(Test-Path $source) -and -not $(Test-Path $ctsTraffic)) { Write-TraceLog "Copy-OrGetCtsTraffficExe: Ctstraffic not found at $source, downloading from github and copying to $ctsTraffic" Start-BitsTransfer $(Get-CtsTrafficGitHubUri) $ctsTraffic return } if ($(Test-Path $source)) { Write-TraceLog "Copy-OrGetCtsTraffficExe: Ctstraffic found locally at $source, copying to $ctsTraffic" Copy-Item -Path $source -Destination $ctsTraffic -Force return } Write-TraceLog "Copy-OrGetCtsTraffficExe: Using existing ctstraffic from $ctsTraffic" } # SIG # Begin signature block # MIIoKgYJKoZIhvcNAQcCoIIoGzCCKBcCAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCCW3JVOnEuvazGM # zuXikmqpeKrmNdzDh4nlxPq1SClPgKCCDXYwggX0MIID3KADAgECAhMzAAADrzBA # DkyjTQVBAAAAAAOvMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p # bmcgUENBIDIwMTEwHhcNMjMxMTE2MTkwOTAwWhcNMjQxMTE0MTkwOTAwWjB0MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB # AQDOS8s1ra6f0YGtg0OhEaQa/t3Q+q1MEHhWJhqQVuO5amYXQpy8MDPNoJYk+FWA # hePP5LxwcSge5aen+f5Q6WNPd6EDxGzotvVpNi5ve0H97S3F7C/axDfKxyNh21MG # 0W8Sb0vxi/vorcLHOL9i+t2D6yvvDzLlEefUCbQV/zGCBjXGlYJcUj6RAzXyeNAN # xSpKXAGd7Fh+ocGHPPphcD9LQTOJgG7Y7aYztHqBLJiQQ4eAgZNU4ac6+8LnEGAL # go1ydC5BJEuJQjYKbNTy959HrKSu7LO3Ws0w8jw6pYdC1IMpdTkk2puTgY2PDNzB # tLM4evG7FYer3WX+8t1UMYNTAgMBAAGjggFzMIIBbzAfBgNVHSUEGDAWBgorBgEE # AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQURxxxNPIEPGSO8kqz+bgCAQWGXsEw # RQYDVR0RBD4wPKQ6MDgxHjAcBgNVBAsTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEW # MBQGA1UEBRMNMjMwMDEyKzUwMTgyNjAfBgNVHSMEGDAWgBRIbmTlUAXTgqoXNzci # tW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3JsMGEG # CCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu # Y29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3J0 # MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIBAISxFt/zR2frTFPB45Yd # mhZpB2nNJoOoi+qlgcTlnO4QwlYN1w/vYwbDy/oFJolD5r6FMJd0RGcgEM8q9TgQ # 2OC7gQEmhweVJ7yuKJlQBH7P7Pg5RiqgV3cSonJ+OM4kFHbP3gPLiyzssSQdRuPY # 1mIWoGg9i7Y4ZC8ST7WhpSyc0pns2XsUe1XsIjaUcGu7zd7gg97eCUiLRdVklPmp # XobH9CEAWakRUGNICYN2AgjhRTC4j3KJfqMkU04R6Toyh4/Toswm1uoDcGr5laYn # TfcX3u5WnJqJLhuPe8Uj9kGAOcyo0O1mNwDa+LhFEzB6CB32+wfJMumfr6degvLT # e8x55urQLeTjimBQgS49BSUkhFN7ois3cZyNpnrMca5AZaC7pLI72vuqSsSlLalG # OcZmPHZGYJqZ0BacN274OZ80Q8B11iNokns9Od348bMb5Z4fihxaBWebl8kWEi2O # PvQImOAeq3nt7UWJBzJYLAGEpfasaA3ZQgIcEXdD+uwo6ymMzDY6UamFOfYqYWXk # ntxDGu7ngD2ugKUuccYKJJRiiz+LAUcj90BVcSHRLQop9N8zoALr/1sJuwPrVAtx # HNEgSW+AKBqIxYWM4Ev32l6agSUAezLMbq5f3d8x9qzT031jMDT+sUAoCw0M5wVt # CUQcqINPuYjbS1WgJyZIiEkBMIIHejCCBWKgAwIBAgIKYQ6Q0gAAAAAAAzANBgkq # hkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x # EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv # bjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5 # IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEwOTA5WjB+MQswCQYDVQQG # EwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwG # A1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYDVQQDEx9NaWNyb3NvZnQg # Q29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC # CgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+laUKq4BjgaBEm6f8MMHt03 # a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc6Whe0t+bU7IKLMOv2akr # rnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4Ddato88tt8zpcoRb0Rrrg # OGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+lD3v++MrWhAfTVYoonpy # 4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nkkDstrjNYxbc+/jLTswM9 # sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6A4aN91/w0FK/jJSHvMAh # dCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmdX4jiJV3TIUs+UsS1Vz8k # A/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL5zmhD+kjSbwYuER8ReTB # w3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zdsGbiwZeBe+3W7UvnSSmn # Eyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3T8HhhUSJxAlMxdSlQy90 # lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS4NaIjAsCAwEAAaOCAe0w # ggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRIbmTlUAXTgqoXNzcitW2o # ynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMCAYYwDwYD # VR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBDuRQFTuHqp8cx0SOJNDBa # BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL2Ny # bC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3JsMF4GCCsG # AQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3dy5taWNyb3NvZnQuY29t # L3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3J0MIGfBgNV # HSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEFBQcCARYzaHR0cDovL3d3 # dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1hcnljcHMuaHRtMEAGCCsG # AQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkAYwB5AF8AcwB0AGEAdABl # AG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn8oalmOBUeRou09h0ZyKb # C5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7v0epo/Np22O/IjWll11l # hJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0bpdS1HXeUOeLpZMlEPXh6 # I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/KmtYSWMfCWluWpiW5IP0 # wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvyCInWH8MyGOLwxS3OW560 # STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBpmLJZiWhub6e3dMNABQam # ASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJihsMdYzaXht/a8/jyFqGa # J+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYbBL7fQccOKO7eZS/sl/ah # XJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbSoqKfenoi+kiVH6v7RyOA # 9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sLgOppO6/8MO0ETI7f33Vt # Y5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtXcVZOSEXAQsmbdlsKgEhr # /Xmfwb1tbWrJUnMTDXpQzTGCGgowghoGAgEBMIGVMH4xCzAJBgNVBAYTAlVTMRMw # EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVN # aWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNp # Z25pbmcgUENBIDIwMTECEzMAAAOvMEAOTKNNBUEAAAAAA68wDQYJYIZIAWUDBAIB # BQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYKKwYBBAGCNwIBCzEO # MAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIFCBMh5T6j26VvUYfpPi0Dq/ # CL6NQuWI9l2YG541Eqi8MEIGCisGAQQBgjcCAQwxNDAyoBSAEgBNAGkAYwByAG8A # cwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20wDQYJKoZIhvcNAQEB # BQAEggEAGonV4u0gfrJ4iKcWaSXiSbGlsTpLHeKE8iQUM227cbEEsSqgMdQhd/h2 # qcCYlBtyhfMhnhPg4GumDeUfOLCtPT0pEZmkwj+lsRdkTsjpz/lWy+G73U/b6LWL # 4SCIg3Wq71tQayQ/AGkmxKso0WcoySAtXAVE3se9G/4UdqyTcQwamkc/Cf3ilM77 # tOSGVE4gW4cVsETUppR/K8yMkKkduZ3QryP7qExZ8hmdfvr53jBMR+iZWb8FwfKm # 4ggndHpqVdqmPgwjMDzrd1qch6Y4Q9vs54TKWQWERzt9pVMzzrw0Bvo1nD4ZCLhB # 7W83geAk7V/K5n5SEE/JxHPlody/1KGCF5QwgheQBgorBgEEAYI3AwMBMYIXgDCC # F3wGCSqGSIb3DQEHAqCCF20wghdpAgEDMQ8wDQYJYIZIAWUDBAIBBQAwggFSBgsq # hkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGEWQoDATAxMA0GCWCGSAFl # AwQCAQUABCBO6jwHs75uUTyBpYuM1MYceYnoY9TTUdkjTwAVaPHE9AIGZmrsaz3i # GBMyMDI0MDcwOTE3MTYxNC4xNThaMASAAgH0oIHRpIHOMIHLMQswCQYDVQQGEwJV # UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE # ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1l # cmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046QTAwMC0w # NUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2Wg # ghHqMIIHIDCCBQigAwIBAgITMwAAAevgGGy1tu847QABAAAB6zANBgkqhkiG9w0B # AQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE # BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYD # VQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDAeFw0yMzEyMDYxODQ1 # MzRaFw0yNTAzMDUxODQ1MzRaMIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2Fz # aGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENv # cnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25z # MScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046QTAwMC0wNUUwLUQ5NDcxJTAjBgNV # BAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2UwggIiMA0GCSqGSIb3DQEB # AQUAA4ICDwAwggIKAoICAQDBFWgh2lbgV3eJp01oqiaFBuYbNc7hSKmktvJ15NrB # /DBboUow8WPOTPxbn7gcmIOGmwJkd+TyFx7KOnzrxnoB3huvv91fZuUugIsKTnAv # g2BU/nfN7Zzn9Kk1mpuJ27S6xUDH4odFiX51ICcKl6EG4cxKgcDAinihT8xroJWV # ATL7p8bbfnwsc1pihZmcvIuYGnb1TY9tnpdChWr9EARuCo3TiRGjM2Lp4piT2lD5 # hnd3VaGTepNqyakpkCGV0+cK8Vu/HkIZdvy+z5EL3ojTdFLL5vJ9IAogWf3XAu3d # 7SpFaaoeix0e1q55AD94ZwDP+izqLadsBR3tzjq2RfrCNL+Tmi/jalRto/J6bh4f # PhHETnDC78T1yfXUQdGtmJ/utI/ANxi7HV8gAPzid9TYjMPbYqG8y5xz+gI/SFyj # +aKtHHWmKzEXPttXzAcexJ1EH7wbuiVk3sErPK9MLg1Xb6hM5HIWA0jEAZhKEyd5 # hH2XMibzakbp2s2EJQWasQc4DMaF1EsQ1CzgClDYIYG6rUhudfI7k8L9KKCEufRb # K5ldRYNAqddr/ySJfuZv3PS3+vtD6X6q1H4UOmjDKdjoW3qs7JRMZmH9fkFkMzb6 # YSzr6eX1LoYm3PrO1Jea43SYzlB3Tz84OvuVSV7NcidVtNqiZeWWpVjfavR+Jj/J # OQIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFHSeBazWVcxu4qT9O5jT2B+qAerhMB8G # A1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8GA1UdHwRYMFYwVKBSoFCG # Tmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY3JsL01pY3Jvc29mdCUy # MFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBsBggrBgEFBQcBAQRgMF4w # XAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY2Vy # dHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUyMDIwMTAoMSkuY3J0MAwG # A1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUHAwgwDgYDVR0PAQH/BAQD # AgeAMA0GCSqGSIb3DQEBCwUAA4ICAQCDdN8voPd8C+VWZP3+W87c/QbdbWK0sOt9 # Z4kEOWng7Kmh+WD2LnPJTJKIEaxniOct9wMgJ8yQywR8WHgDOvbwqdqsLUaM4Nre # rtI6FI9rhjheaKxNNnBZzHZLDwlkL9vCEDe9Rc0dGSVd5Bg3CWknV3uvVau14F55 # ESTWIBNaQS9Cpo2Opz3cRgAYVfaLFGbArNcRvSWvSUbeI2IDqRxC4xBbRiNQ+1qH # XDCPn0hGsXfL+ynDZncCfszNrlgZT24XghvTzYMHcXioLVYo/2Hkyow6dI7uULJb # KxLX8wHhsiwriXIDCnjLVsG0E5bR82QgcseEhxbU2d1RVHcQtkUE7W9zxZqZ6/jP # maojZgXQO33XjxOHYYVa/BXcIuu8SMzPjjAAbujwTawpazLBv997LRB0ZObNckJY # yQQpETSflN36jW+z7R/nGyJqRZ3HtZ1lXW1f6zECAeP+9dy6nmcCrVcOqbQHX7Zr # 8WPcghHJAADlm5ExPh5xi1tNRk+i6F2a9SpTeQnZXP50w+JoTxISQq7vBij2nitA # sSLaVeMqoPi+NXlTUNZ2NdtbFr6Iir9ZK9ufaz3FxfvDZo365vLOozmQOe/Z+pu4 # vY5zPmtNiVIcQnFy7JZOiZVDI5bIdwQRai2quHKJ6ltUdsi3HjNnieuE72fT4eWh # xtmnN5HYCDCCB3EwggVZoAMCAQICEzMAAAAVxedrngKbSZkAAAAAABUwDQYJKoZI # hvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAw # DgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24x # MjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmljYXRlIEF1dGhvcml0eSAy # MDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIyNVowfDELMAkGA1UEBhMC # VVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNV # BAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRp # bWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC # AQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXIyjVX9gF/bErg4r25Phdg # M/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjoYH1qUoNEt6aORmsHFPPF # dvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1yaa8dq6z2Nr41JmTamDu6 # GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v3byNpOORj7I5LFGc6XBp # Dco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pGve2krnopN6zL64NF50Zu # yjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viSkR4dPf0gz3N9QZpGdc3E # XzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYrbqgSUei/BQOj0XOmTTd0 # lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlMjgK8QmguEOqEUUbi0b1q # GFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSLW6CmgyFdXzB0kZSU2LlQ # +QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AFemzFER1y7435UsSFF5PA # PBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIurQIDAQABo4IB3TCCAdkw # EgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIEFgQUKqdS/mTEmr6CkTxG # NSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMFwGA1UdIARV # MFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEWM2h0dHA6Ly93d3cubWlj # cm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5Lmh0bTATBgNVHSUEDDAK # BggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMC # AYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV9lbLj+iiXGJo0T2UkFvX # zpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20v # cGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAxMC0wNi0yMy5jcmwwWgYI # KwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2LTIzLmNydDANBgkqhkiG # 9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv6lwUtj5OR2R4sQaTlz0x # M7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZnOlNN3Zi6th542DYunKmC # VgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1bSNU5HhTdSRXud2f8449 # xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4rPf5KYnDvBewVIVCs/wM # nosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU6ZGyqVvfSaN0DLzskYDS # PeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDFNLB62FD+CljdQDzHVG2d # Y3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/HltEAY5aGZFrDZ+kKNxn # GSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdUCbFpAUR+fKFhbHP+Crvs # QWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKiexcdFYmNcP7ntdAoGokL # jzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTmdHRbatGePu1+oDEzfbzL # 6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZqELQdVTNYs6FwZvKhggNN # MIICNQIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hp # bmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jw # b3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJpY2EgT3BlcmF0aW9uczEn # MCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOkEwMDAtMDVFMC1EOTQ3MSUwIwYDVQQD # ExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMKAQEwBwYFKw4DAhoDFQCA # Bol1u1wwwYgUtUowMnqYvbul3qCBgzCBgKR+MHwxCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1w # IFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA6jev0zAiGA8yMDI0MDcwOTEyNDcx # NVoYDzIwMjQwNzEwMTI0NzE1WjB0MDoGCisGAQQBhFkKBAExLDAqMAoCBQDqN6/T # AgEAMAcCAQACAknPMAcCAQACAhKdMAoCBQDqOQFTAgEAMDYGCisGAQQBhFkKBAIx # KDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSChCjAIAgEAAgMBhqAwDQYJKoZI # hvcNAQELBQADggEBABdSP0jLmBMGbEtIMVGQxql+QNvqKyFd87gY+u+Na05e3qrZ # p9YyMFZS0+YZQ8IJ2TGMGUaV8rmUL8e0KMibuCidov6em+/ITIBp7qib6k6MKgaC # XWfO/SwNwFQD+uVlMASiK6HQ3EMGyJ16s0zA4F3mHMvTQF9FOIodPlizeH94s9Mz # 50Xiqa+D4gH2UWRv0SKvKp8iMWiIGQlEWs5XGiQ3o+IHnnxVMtEjyUo9zdU2TNpz # A/zGGScEvJ6co8F4VL60JW4YSPpHXRym0RGaaGaF92A8BeSWDBSQ2qBEb8aZYjdi # p4B8uXFGaF7hj9PBsvem5G9b0X1WwrBKZWl1U18xggQNMIIECQIBATCBkzB8MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNy # b3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAAAevgGGy1tu847QABAAAB6zAN # BglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkDMQ0GCyqGSIb3DQEJEAEEMC8G # CSqGSIb3DQEJBDEiBCDceeN40gORRJ76aV2troYhLAu+iyOAeJYi9z0KNwBBgTCB # +gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIM63a75faQPhf8SBDTtk2DSUgIbd # izXsz76h1JdhLCz4MIGYMIGApH4wfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldh # c2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD # b3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIw # MTACEzMAAAHr4BhstbbvOO0AAQAAAeswIgQgmsE08gJdHwTaYZbz2CP3ZJ2KwFUN # rw/sg0CTk7bZzPIwDQYJKoZIhvcNAQELBQAEggIADddeiIV41zaHz0Mye+LQssoI # jUqs+3y49sSyjb10ebPkSxR4edrxaERELuGh7eF2DCIg7Le/SD9EhevRzieEMF0P # IRnQDkDZrpj4i3LxCj/DcobW5YkmPcSW3HfjLuaAz5sjmRNnlx0FoPHObDX6sKZC # 0l8a3DAh8UXu+xnEtWXZ/O2qf5jBXHF4w4L3/zoepWNLVhctsLTzAKWKZcX9NQOn # 4jEtBt/pYwRKHSHmCq0ZhcPZnZtCEZoQ/XWNcXaL9SrqirUzZ6DnGCmjpcwzjcNP # 8Q4e269n0DOlzIJmCZ8YjTDEkYjGMi+mPh8dx9nO0yX93CkFh5+ftJXDdpkn2v5w # V/PL3RgN4Zj8hb7CXSs28KhNzlhGObwazm4kB8KavAbLWoP30Su5GuwDSAYBnfDG # t4ff0E1TcWX2jnflo/xY0j1Vo/2Cg9PqwAHZMJrD+8TblyYD+IsVe0sNPxur/e2N # baWjBil/qt1pwITwBrCsiZkTUICGT/MuDEgSTTBMbPBguf8tUT7alzeWDalNsL1L # LXYxSy548IBincUgTboxpDSQ+sCD7IKTh/4TJipTxu280a7SaNHA+hj0JHfbNFcF # 3E1CQPcu7UloYhA3YPxtG6mvSrs4TWUHNlrSH1HDHUd+UtiYZUb4sqWsGUV1R8vG # LoohqtO4l15RjXgTW8o= # SIG # End signature block |