device/google/cuttlefish/host/commands/test_gce_driver/scoped_instance.cpp

//
// Copyright (C) 2022 The Android Open Source Project
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//      http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

#include "host/commands/test_gce_driver/scoped_instance.h"

#include <netinet/ip.h>

#include <random>
#include <sstream>
#include <string>

#include <android-base/file.h>
#include <android-base/result.h>

#include "common/libs/fs/shared_buf.h"

using android::base::Error;
using android::base::Result;

namespace cuttlefish {

SshCommand& SshCommand::PrivKey(const std::string& privkey_path) & {
  privkey_path_ = privkey_path;
  return *this;
}
SshCommand SshCommand::PrivKey(const std::string& privkey_path) && {
  privkey_path_ = privkey_path;
  return *this;
}

SshCommand& SshCommand::WithoutKnownHosts() & {
  without_known_hosts_ = true;
  return *this;
}
SshCommand SshCommand::WithoutKnownHosts() && {
  without_known_hosts_ = true;
  return *this;
}

SshCommand& SshCommand::Username(const std::string& username) & {
  username_ = username;
  return *this;
}
SshCommand SshCommand::Username(const std::string& username) && {
  username_ = username;
  return *this;
}

SshCommand& SshCommand::Host(const std::string& host) & {
  host_ = host;
  return *this;
}
SshCommand SshCommand::Host(const std::string& host) && {
  host_ = host;
  return *this;
}

SshCommand& SshCommand::RemotePortForward(uint16_t remote, uint16_t local) & {
  remote_port_forwards_.push_back({remote, local});
  return *this;
}
SshCommand SshCommand::RemotePortForward(uint16_t remote, uint16_t local) && {
  remote_port_forwards_.push_back({remote, local});
  return *this;
}

SshCommand& SshCommand::RemoteParameter(const std::string& param) & {
  parameters_.push_back(param);
  return *this;
}
SshCommand SshCommand::RemoteParameter(const std::string& param) && {
  parameters_.push_back(param);
  return *this;
}

Command SshCommand::Build() const {
  Command remote_cmd{"/usr/bin/ssh"};
  if (privkey_path_) {
    remote_cmd.AddParameter("-i");
    remote_cmd.AddParameter(*privkey_path_);
  }
  if (without_known_hosts_) {
    remote_cmd.AddParameter("-o");
    remote_cmd.AddParameter("StrictHostKeyChecking=no");
    remote_cmd.AddParameter("-o");
    remote_cmd.AddParameter("UserKnownHostsFile=/dev/null");
  }
  for (const auto& fwd : remote_port_forwards_) {
    remote_cmd.AddParameter("-R");
    remote_cmd.AddParameter(fwd.remote_port, ":127.0.0.1:", fwd.local_port);
  }
  if (host_) {
    remote_cmd.AddParameter(username_ ? *username_ + "@" : "", *host_);
  }
  for (const auto& param : parameters_) {
    remote_cmd.AddParameter(param);
  }
  return remote_cmd;
}

Result<std::unique_ptr<ScopedGceInstance>> ScopedGceInstance::CreateDefault(
    GceApi& gce, const std::string& zone, const std::string& instance_name,
    bool internal) {
  auto ssh_key = KeyPair::CreateRsa(4096);
  if (!ssh_key.ok()) {
    return Error() << "Could not create ssh key pair: " << ssh_key.error();
  }

  auto ssh_pubkey = (*ssh_key)->OpenSshPublicKey();
  if (!ssh_pubkey.ok()) {
    return Error() << "Could get openssh format key: " << ssh_pubkey.error();
  }

  auto default_instance_info =
      GceInstanceInfo()
          .Name(instance_name)
          .Zone(zone)
          .MachineType("zones/us-west1-a/machineTypes/n1-standard-4")
          .AddMetadata("ssh-keys", "vsoc-01:" + *ssh_pubkey)
          .AddNetworkInterface(GceNetworkInterface::Default())
          .AddDisk(
              GceInstanceDisk::EphemeralBootDisk()
                  .SourceImage(
                      "projects/cloud-android-releases/global/images/family/"
                      "cuttlefish-google")
                  .SizeGb(30))
          .AddScope("https://www.googleapis.com/auth/androidbuild.internal")
          .AddScope("https://www.googleapis.com/auth/devstorage.read_only")
          .AddScope("https://www.googleapis.com/auth/logging.write");

  auto creation = gce.Insert(default_instance_info).Future().get();
  if (!creation.ok()) {
    return Error() << "Failed to create instance: " << creation.error();
  }

  auto privkey = CF_EXPECT((*ssh_key)->PemPrivateKey());
  std::unique_ptr<TemporaryFile> privkey_file(CF_EXPECT(new TemporaryFile()));
  auto fd_dup = SharedFD::Dup(privkey_file->fd);
  CF_EXPECT(fd_dup->IsOpen());
  CF_EXPECT(WriteAll(fd_dup, privkey) == privkey.size());
  fd_dup->Close();

  std::unique_ptr<ScopedGceInstance> instance(new ScopedGceInstance(
      gce, default_instance_info, std::move(privkey_file), internal));

  auto created_info = gce.Get(default_instance_info).get();
  if (!created_info.ok()) {
    return Error() << "Failed to get instance info: " << created_info.error();
  }
  instance->instance_ = *created_info;

  auto ssh_ready = instance->EnforceSshReady();
  if (!ssh_ready.ok()) {
    return Error() << "Failed to access SSH on instance: " << ssh_ready.error();
  }
  return instance;
}

Result<void> ScopedGceInstance::EnforceSshReady() {
  std::string out;
  std::string err;
  for (int i = 0; i < 100; i++) {
    auto ssh = Ssh();
    if (!ssh.ok()) {
      return Error() << "Failed to create ssh command: " << ssh.error();
    }

    ssh->RemoteParameter("ls");
    ssh->RemoteParameter("/");
    auto command = ssh->Build();

    out = "";
    err = "";
    int ret = RunWithManagedStdio(std::move(command), nullptr, &out, &err);
    if (ret == 0) {
      return {};
    }
  }

  return Error() << "Failed to ssh to the instance. stdout=\"" << out
                 << "\", stderr = \"" << err << "\"";
}

ScopedGceInstance::ScopedGceInstance(GceApi& gce,
                                     const GceInstanceInfo& instance,
                                     std::unique_ptr<TemporaryFile> privkey,
                                     bool use_internal_address)
    : gce_(gce),
      instance_(instance),
      privkey_(std::move(privkey)),
      use_internal_address_(use_internal_address) {}

ScopedGceInstance::~ScopedGceInstance() {
  auto delete_ins = gce_.Delete(instance_).Future().get();
  if (!delete_ins.ok()) {
    LOG(ERROR) << "Failed to delete instance: " << delete_ins.error();
  }
}

Result<SshCommand> ScopedGceInstance::Ssh() {
  const auto& network_interfaces = instance_.NetworkInterfaces();
  CF_EXPECT(!network_interfaces.empty());
  auto iface = network_interfaces[0];
  auto ip = use_internal_address_ ? iface.InternalIp() : iface.ExternalIp();
  CF_EXPECT(ip.has_value());
  return SshCommand()
      .PrivKey(privkey_->path)
      .WithoutKnownHosts()
      .Username("vsoc-01")
      .Host(*ip);
}

}  // namespace cuttlefish
android 13 from xiaosuan 2025-08-25 08:28:21 +08:00			`//`
			`// Copyright (C) 2022 The Android Open Source Project`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

			`#include "host/commands/test_gce_driver/scoped_instance.h"`

			`#include <netinet/ip.h>`

			`#include <random>`
			`#include <sstream>`
			`#include <string>`

			`#include <android-base/file.h>`
			`#include <android-base/result.h>`

			`#include "common/libs/fs/shared_buf.h"`

			`using android::base::Error;`
			`using android::base::Result;`

			`namespace cuttlefish {`

			`SshCommand& SshCommand::PrivKey(const std::string& privkey_path) & {`
			`privkey_path_ = privkey_path;`
			`return *this;`
			`}`
			`SshCommand SshCommand::PrivKey(const std::string& privkey_path) && {`
			`privkey_path_ = privkey_path;`
			`return *this;`
			`}`

			`SshCommand& SshCommand::WithoutKnownHosts() & {`
			`without_known_hosts_ = true;`
			`return *this;`
			`}`
			`SshCommand SshCommand::WithoutKnownHosts() && {`
			`without_known_hosts_ = true;`
			`return *this;`
			`}`

			`SshCommand& SshCommand::Username(const std::string& username) & {`
			`username_ = username;`
			`return *this;`
			`}`
			`SshCommand SshCommand::Username(const std::string& username) && {`
			`username_ = username;`
			`return *this;`
			`}`

			`SshCommand& SshCommand::Host(const std::string& host) & {`
			`host_ = host;`
			`return *this;`
			`}`
			`SshCommand SshCommand::Host(const std::string& host) && {`
			`host_ = host;`
			`return *this;`
			`}`

			`SshCommand& SshCommand::RemotePortForward(uint16_t remote, uint16_t local) & {`
			`remote_port_forwards_.push_back({remote, local});`
			`return *this;`
			`}`
			`SshCommand SshCommand::RemotePortForward(uint16_t remote, uint16_t local) && {`
			`remote_port_forwards_.push_back({remote, local});`
			`return *this;`
			`}`

			`SshCommand& SshCommand::RemoteParameter(const std::string& param) & {`
			`parameters_.push_back(param);`
			`return *this;`
			`}`
			`SshCommand SshCommand::RemoteParameter(const std::string& param) && {`
			`parameters_.push_back(param);`
			`return *this;`
			`}`

			`Command SshCommand::Build() const {`
			`Command remote_cmd{"/usr/bin/ssh"};`
			`if (privkey_path_) {`
			`remote_cmd.AddParameter("-i");`
			`remote_cmd.AddParameter(*privkey_path_);`
			`}`
			`if (without_known_hosts_) {`
			`remote_cmd.AddParameter("-o");`
			`remote_cmd.AddParameter("StrictHostKeyChecking=no");`
			`remote_cmd.AddParameter("-o");`
			`remote_cmd.AddParameter("UserKnownHostsFile=/dev/null");`
			`}`
			`for (const auto& fwd : remote_port_forwards_) {`
			`remote_cmd.AddParameter("-R");`
			`remote_cmd.AddParameter(fwd.remote_port, ":127.0.0.1:", fwd.local_port);`
			`}`
			`if (host_) {`
			`remote_cmd.AddParameter(username_ ? username_ + "@" : "", host_);`
			`}`
			`for (const auto& param : parameters_) {`
			`remote_cmd.AddParameter(param);`
			`}`
			`return remote_cmd;`
			`}`

			`Result<std::unique_ptr<ScopedGceInstance>> ScopedGceInstance::CreateDefault(`
			`GceApi& gce, const std::string& zone, const std::string& instance_name,`
			`bool internal) {`
			`auto ssh_key = KeyPair::CreateRsa(4096);`
			`if (!ssh_key.ok()) {`
			`return Error() << "Could not create ssh key pair: " << ssh_key.error();`
			`}`

			`auto ssh_pubkey = (*ssh_key)->OpenSshPublicKey();`
			`if (!ssh_pubkey.ok()) {`
			`return Error() << "Could get openssh format key: " << ssh_pubkey.error();`
			`}`

			`auto default_instance_info =`
			`GceInstanceInfo()`
			`.Name(instance_name)`
			`.Zone(zone)`
			`.MachineType("zones/us-west1-a/machineTypes/n1-standard-4")`
			`.AddMetadata("ssh-keys", "vsoc-01:" + *ssh_pubkey)`
			`.AddNetworkInterface(GceNetworkInterface::Default())`
			`.AddDisk(`
			`GceInstanceDisk::EphemeralBootDisk()`
			`.SourceImage(`
			`"projects/cloud-android-releases/global/images/family/"`
			`"cuttlefish-google")`
			`.SizeGb(30))`
			`.AddScope("https://www.googleapis.com/auth/androidbuild.internal")`
			`.AddScope("https://www.googleapis.com/auth/devstorage.read_only")`
			`.AddScope("https://www.googleapis.com/auth/logging.write");`

			`auto creation = gce.Insert(default_instance_info).Future().get();`
			`if (!creation.ok()) {`
			`return Error() << "Failed to create instance: " << creation.error();`
			`}`

			`auto privkey = CF_EXPECT((*ssh_key)->PemPrivateKey());`
			`std::unique_ptr<TemporaryFile> privkey_file(CF_EXPECT(new TemporaryFile()));`
			`auto fd_dup = SharedFD::Dup(privkey_file->fd);`
			`CF_EXPECT(fd_dup->IsOpen());`
			`CF_EXPECT(WriteAll(fd_dup, privkey) == privkey.size());`
			`fd_dup->Close();`

			`std::unique_ptr<ScopedGceInstance> instance(new ScopedGceInstance(`
			`gce, default_instance_info, std::move(privkey_file), internal));`

			`auto created_info = gce.Get(default_instance_info).get();`
			`if (!created_info.ok()) {`
			`return Error() << "Failed to get instance info: " << created_info.error();`
			`}`
			`instance->instance_ = *created_info;`

			`auto ssh_ready = instance->EnforceSshReady();`
			`if (!ssh_ready.ok()) {`
			`return Error() << "Failed to access SSH on instance: " << ssh_ready.error();`
			`}`
			`return instance;`
			`}`

			`Result<void> ScopedGceInstance::EnforceSshReady() {`
			`std::string out;`
			`std::string err;`
			`for (int i = 0; i < 100; i++) {`
			`auto ssh = Ssh();`
			`if (!ssh.ok()) {`
			`return Error() << "Failed to create ssh command: " << ssh.error();`
			`}`

			`ssh->RemoteParameter("ls");`
			`ssh->RemoteParameter("/");`
			`auto command = ssh->Build();`

			`out = "";`
			`err = "";`
			`int ret = RunWithManagedStdio(std::move(command), nullptr, &out, &err);`
			`if (ret == 0) {`
			`return {};`
			`}`
			`}`

			`return Error() << "Failed to ssh to the instance. stdout=\"" << out`
			`<< "\", stderr = \"" << err << "\"";`
			`}`

			`ScopedGceInstance::ScopedGceInstance(GceApi& gce,`
			`const GceInstanceInfo& instance,`
			`std::unique_ptr<TemporaryFile> privkey,`
			`bool use_internal_address)`
			`: gce_(gce),`
			`instance_(instance),`
			`privkey_(std::move(privkey)),`
			`use_internal_address_(use_internal_address) {}`

			`ScopedGceInstance::~ScopedGceInstance() {`
			`auto delete_ins = gce_.Delete(instance_).Future().get();`
			`if (!delete_ins.ok()) {`
			`LOG(ERROR) << "Failed to delete instance: " << delete_ins.error();`
			`}`
			`}`

			`Result<SshCommand> ScopedGceInstance::Ssh() {`
			`const auto& network_interfaces = instance_.NetworkInterfaces();`
			`CF_EXPECT(!network_interfaces.empty());`
			`auto iface = network_interfaces[0];`
			`auto ip = use_internal_address_ ? iface.InternalIp() : iface.ExternalIp();`
			`CF_EXPECT(ip.has_value());`
			`return SshCommand()`
			`.PrivKey(privkey_->path)`
			`.WithoutKnownHosts()`
			`.Username("vsoc-01")`
			`.Host(*ip);`
			`}`

			`} // namespace cuttlefish`