host/commands/test_gce_driver/scoped_instance.cpp - device/google/cuttlefish - Git at Google

 //
 // Copyright (C) 2022 The Android Open Source Project
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.

 #include "host/commands/test_gce_driver/scoped_instance.h"

 #include <netinet/ip.h>

 #include <random>
 #include <sstream>
 #include <string>

 #include <android-base/file.h>

 #include "common/libs/fs/shared_buf.h"
 #include "common/libs/utils/result.h"
 #include "host/commands/test_gce_driver/gce_api.h"
 #include "host/commands/test_gce_driver/key_pair.h"

 namespace cuttlefish {

 SshCommand& SshCommand::PrivKey(const std::string& privkey_path) & {
   privkey_path_ = privkey_path;
   return *this;
 }
 SshCommand SshCommand::PrivKey(const std::string& privkey_path) && {
   privkey_path_ = privkey_path;
   return *this;
 }

 SshCommand& SshCommand::WithoutKnownHosts() & {
   without_known_hosts_ = true;
   return *this;
 }
 SshCommand SshCommand::WithoutKnownHosts() && {
   without_known_hosts_ = true;
   return *this;
 }

 SshCommand& SshCommand::Username(const std::string& username) & {
   username_ = username;
   return *this;
 }
 SshCommand SshCommand::Username(const std::string& username) && {
   username_ = username;
   return *this;
 }

 SshCommand& SshCommand::Host(const std::string& host) & {
   host_ = host;
   return *this;
 }
 SshCommand SshCommand::Host(const std::string& host) && {
   host_ = host;
   return *this;
 }

 SshCommand& SshCommand::RemotePortForward(uint16_t remote, uint16_t local) & {
   remote_port_forwards_.push_back({remote, local});
   return *this;
 }
 SshCommand SshCommand::RemotePortForward(uint16_t remote, uint16_t local) && {
   remote_port_forwards_.push_back({remote, local});
   return *this;
 }

 SshCommand& SshCommand::RemoteParameter(const std::string& param) & {
   parameters_.push_back(param);
   return *this;
 }
 SshCommand SshCommand::RemoteParameter(const std::string& param) && {
   parameters_.push_back(param);
   return *this;
 }

 Command SshCommand::Build() const {
   Command remote_cmd{"/usr/bin/ssh"};
   if (privkey_path_) {
     remote_cmd.AddParameter("-i");
     remote_cmd.AddParameter(*privkey_path_);
   }
   if (without_known_hosts_) {
     remote_cmd.AddParameter("-o");
     remote_cmd.AddParameter("StrictHostKeyChecking=no");
     remote_cmd.AddParameter("-o");
     remote_cmd.AddParameter("UserKnownHostsFile=/dev/null");
   }
   for (const auto& fwd : remote_port_forwards_) {
     remote_cmd.AddParameter("-R");
     remote_cmd.AddParameter(fwd.remote_port, ":127.0.0.1:", fwd.local_port);
   }
   if (host_) {
     remote_cmd.AddParameter(username_ ? *username_ + "@" : "", *host_);
   }
   for (const auto& param : parameters_) {
     remote_cmd.AddParameter(param);
   }
   return remote_cmd;
 }

 Result<std::unique_ptr<ScopedGceInstance>> ScopedGceInstance::CreateDefault(
     GceApi& gce, const std::string& zone, const std::string& instance_name,
     bool internal) {
   auto ssh_key =
       CF_EXPECT(KeyPair::CreateRsa(4096), "Could not create ssh key pair");
   auto ssh_pubkey =
       CF_EXPECT(ssh_key->OpenSshPublicKey(), "Could get openssh format key: ");

   // TODO(schuffelen): Pass this through more layers to make it more general.
   auto network_interface = GceNetworkInterface::Default();
   if (internal) {
     network_interface.Network(
         "https://www.googleapis.com/compute/v1/projects/android-treehugger/"
         "global/networks/cloud-tf-vpc");
     network_interface.Subnetwork(
         "https://www.googleapis.com/compute/v1/projects/android-treehugger/"
         "regions/us-west1/subnetworks/cloud-tf-vpc");
   }

   auto default_instance_info =
       GceInstanceInfo()
           .Name(instance_name)
           .Zone(zone)
           .MachineType("zones/us-west1-a/machineTypes/n1-standard-4")
           .AddMetadata("ssh-keys", "vsoc-01:" + ssh_pubkey)
           .AddNetworkInterface(std::move(network_interface))
           .AddDisk(
               GceInstanceDisk::EphemeralBootDisk()
                   .SourceImage(
                       "projects/cloud-android-releases/global/images/family/"
                       "cuttlefish-google")
                   .SizeGb(30))
           .AddScope("https://www.googleapis.com/auth/androidbuild.internal")
           .AddScope("https://www.googleapis.com/auth/devstorage.read_only")
           .AddScope("https://www.googleapis.com/auth/logging.write");

   CF_EXPECT(gce.Insert(default_instance_info).Future().get(),
             "Failed to create instance");

   auto privkey = CF_EXPECT(ssh_key->PemPrivateKey());
   std::unique_ptr<TemporaryFile> privkey_file(CF_EXPECT(new TemporaryFile()));
   auto fd_dup = SharedFD::Dup(privkey_file->fd);
   CF_EXPECT(fd_dup->IsOpen());
   CF_EXPECT(WriteAll(fd_dup, privkey) == privkey.size());
   fd_dup->Close();

   std::unique_ptr<ScopedGceInstance> instance(new ScopedGceInstance(
       gce, default_instance_info, std::move(privkey_file), internal));

   auto created_info = CF_EXPECT(gce.Get(default_instance_info).get(),
                                 "Failed to get instance info: ");

   CF_EXPECT(instance->EnforceSshReady(), "Failed to access SSH on instance");
   return instance;
 }

 Result<void> ScopedGceInstance::EnforceSshReady() {
   std::string out;
   std::string err;
   for (int i = 0; i < 100; i++) {
     auto ssh = CF_EXPECT(Ssh(), "Failed to create ssh command");

     ssh.RemoteParameter("ls");
     ssh.RemoteParameter("/");
     auto command = ssh.Build();

     out = "";
     err = "";
     int ret = RunWithManagedStdio(std::move(command), nullptr, &out, &err);
     if (ret == 0) {
       return {};
     }
   }

   return CF_ERR("Failed to ssh to the instance. stdout=\""
                 << out << "\", stderr = \"" << err << "\"");
 }

 ScopedGceInstance::ScopedGceInstance(GceApi& gce,
                                      const GceInstanceInfo& instance,
                                      std::unique_ptr<TemporaryFile> privkey,
                                      bool use_internal_address)
     : gce_(gce),
       instance_(instance),
       privkey_(std::move(privkey)),
       use_internal_address_(use_internal_address) {}

 ScopedGceInstance::~ScopedGceInstance() {
   auto delete_ins = gce_.Delete(instance_).Future().get();
   if (!delete_ins.ok()) {
     LOG(ERROR) << "Failed to delete instance: "
                << delete_ins.error().FormatForEnv();
   }
 }

 Result<SshCommand> ScopedGceInstance::Ssh() {
   const auto& network_interfaces = instance_.NetworkInterfaces();
   CF_EXPECT(!network_interfaces.empty());
   auto iface = network_interfaces[0];
   auto ip = use_internal_address_ ? iface.InternalIp() : iface.ExternalIp();
   CF_EXPECT(ip.has_value());
   return SshCommand()
       .PrivKey(privkey_->path)
       .WithoutKnownHosts()
       .Username("vsoc-01")
       .Host(*ip);
 }

 }  // namespace cuttlefish
	//
	// Copyright (C) 2022 The Android Open Source Project
	//
	// Licensed under the Apache License, Version 2.0 (the "License");
	// you may not use this file except in compliance with the License.
	// You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing, software
	// distributed under the License is distributed on an "AS IS" BASIS,
	// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	// See the License for the specific language governing permissions and
	// limitations under the License.

	#include "host/commands/test_gce_driver/scoped_instance.h"

	#include <netinet/ip.h>

	#include <random>
	#include <sstream>
	#include <string>

	#include <android-base/file.h>

	#include "common/libs/fs/shared_buf.h"
	#include "common/libs/utils/result.h"
	#include "host/commands/test_gce_driver/gce_api.h"
	#include "host/commands/test_gce_driver/key_pair.h"

	namespace cuttlefish {

	SshCommand& SshCommand::PrivKey(const std::string& privkey_path) & {
	privkey_path_ = privkey_path;
	return *this;
	}
	SshCommand SshCommand::PrivKey(const std::string& privkey_path) && {
	privkey_path_ = privkey_path;
	return *this;
	}

	SshCommand& SshCommand::WithoutKnownHosts() & {
	without_known_hosts_ = true;
	return *this;
	}
	SshCommand SshCommand::WithoutKnownHosts() && {
	without_known_hosts_ = true;
	return *this;
	}

	SshCommand& SshCommand::Username(const std::string& username) & {
	username_ = username;
	return *this;
	}
	SshCommand SshCommand::Username(const std::string& username) && {
	username_ = username;
	return *this;
	}

	SshCommand& SshCommand::Host(const std::string& host) & {
	host_ = host;
	return *this;
	}
	SshCommand SshCommand::Host(const std::string& host) && {
	host_ = host;
	return *this;
	}

	SshCommand& SshCommand::RemotePortForward(uint16_t remote, uint16_t local) & {
	remote_port_forwards_.push_back({remote, local});
	return *this;
	}
	SshCommand SshCommand::RemotePortForward(uint16_t remote, uint16_t local) && {
	remote_port_forwards_.push_back({remote, local});
	return *this;
	}

	SshCommand& SshCommand::RemoteParameter(const std::string& param) & {
	parameters_.push_back(param);
	return *this;
	}
	SshCommand SshCommand::RemoteParameter(const std::string& param) && {
	parameters_.push_back(param);
	return *this;
	}

	Command SshCommand::Build() const {
	Command remote_cmd{"/usr/bin/ssh"};
	if (privkey_path_) {
	remote_cmd.AddParameter("-i");
	remote_cmd.AddParameter(*privkey_path_);
	}
	if (without_known_hosts_) {
	remote_cmd.AddParameter("-o");
	remote_cmd.AddParameter("StrictHostKeyChecking=no");
	remote_cmd.AddParameter("-o");
	remote_cmd.AddParameter("UserKnownHostsFile=/dev/null");
	}
	for (const auto& fwd : remote_port_forwards_) {
	remote_cmd.AddParameter("-R");
	remote_cmd.AddParameter(fwd.remote_port, ":127.0.0.1:", fwd.local_port);
	}
	if (host_) {
	remote_cmd.AddParameter(username_ ? username_ + "@" : "", host_);
	}
	for (const auto& param : parameters_) {
	remote_cmd.AddParameter(param);
	}
	return remote_cmd;
	}

	Result<std::unique_ptr<ScopedGceInstance>> ScopedGceInstance::CreateDefault(
	GceApi& gce, const std::string& zone, const std::string& instance_name,
	bool internal) {
	auto ssh_key =
	CF_EXPECT(KeyPair::CreateRsa(4096), "Could not create ssh key pair");
	auto ssh_pubkey =
	CF_EXPECT(ssh_key->OpenSshPublicKey(), "Could get openssh format key: ");

	// TODO(schuffelen): Pass this through more layers to make it more general.
	auto network_interface = GceNetworkInterface::Default();
	if (internal) {
	network_interface.Network(
	"https://www.googleapis.com/compute/v1/projects/android-treehugger/"
	"global/networks/cloud-tf-vpc");
	network_interface.Subnetwork(
	"https://www.googleapis.com/compute/v1/projects/android-treehugger/"
	"regions/us-west1/subnetworks/cloud-tf-vpc");
	}

	auto default_instance_info =
	GceInstanceInfo()
	.Name(instance_name)
	.Zone(zone)
	.MachineType("zones/us-west1-a/machineTypes/n1-standard-4")
	.AddMetadata("ssh-keys", "vsoc-01:" + ssh_pubkey)
	.AddNetworkInterface(std::move(network_interface))
	.AddDisk(
	GceInstanceDisk::EphemeralBootDisk()
	.SourceImage(
	"projects/cloud-android-releases/global/images/family/"
	"cuttlefish-google")
	.SizeGb(30))
	.AddScope("https://www.googleapis.com/auth/androidbuild.internal")
	.AddScope("https://www.googleapis.com/auth/devstorage.read_only")
	.AddScope("https://www.googleapis.com/auth/logging.write");

	CF_EXPECT(gce.Insert(default_instance_info).Future().get(),
	"Failed to create instance");

	auto privkey = CF_EXPECT(ssh_key->PemPrivateKey());
	std::unique_ptr<TemporaryFile> privkey_file(CF_EXPECT(new TemporaryFile()));
	auto fd_dup = SharedFD::Dup(privkey_file->fd);
	CF_EXPECT(fd_dup->IsOpen());
	CF_EXPECT(WriteAll(fd_dup, privkey) == privkey.size());
	fd_dup->Close();

	std::unique_ptr<ScopedGceInstance> instance(new ScopedGceInstance(
	gce, default_instance_info, std::move(privkey_file), internal));

	auto created_info = CF_EXPECT(gce.Get(default_instance_info).get(),
	"Failed to get instance info: ");

	CF_EXPECT(instance->EnforceSshReady(), "Failed to access SSH on instance");
	return instance;
	}

	Result<void> ScopedGceInstance::EnforceSshReady() {
	std::string out;
	std::string err;
	for (int i = 0; i < 100; i++) {
	auto ssh = CF_EXPECT(Ssh(), "Failed to create ssh command");

	ssh.RemoteParameter("ls");
	ssh.RemoteParameter("/");
	auto command = ssh.Build();

	out = "";
	err = "";
	int ret = RunWithManagedStdio(std::move(command), nullptr, &out, &err);
	if (ret == 0) {
	return {};
	}
	}

	return CF_ERR("Failed to ssh to the instance. stdout=\""
	<< out << "\", stderr = \"" << err << "\"");
	}

	ScopedGceInstance::ScopedGceInstance(GceApi& gce,
	const GceInstanceInfo& instance,
	std::unique_ptr<TemporaryFile> privkey,
	bool use_internal_address)
	: gce_(gce),
	instance_(instance),
	privkey_(std::move(privkey)),
	use_internal_address_(use_internal_address) {}

	ScopedGceInstance::~ScopedGceInstance() {
	auto delete_ins = gce_.Delete(instance_).Future().get();
	if (!delete_ins.ok()) {
	LOG(ERROR) << "Failed to delete instance: "
	<< delete_ins.error().FormatForEnv();
	}
	}

	Result<SshCommand> ScopedGceInstance::Ssh() {
	const auto& network_interfaces = instance_.NetworkInterfaces();
	CF_EXPECT(!network_interfaces.empty());
	auto iface = network_interfaces[0];
	auto ip = use_internal_address_ ? iface.InternalIp() : iface.ExternalIp();
	CF_EXPECT(ip.has_value());
	return SshCommand()
	.PrivKey(privkey_->path)
	.WithoutKnownHosts()
	.Username("vsoc-01")
	.Host(*ip);
	}

	} // namespace cuttlefish