Class: Bosh::Cli::Command::Ssh

Inherits:
Base show all
Includes:
DeploymentHelper
Defined in:
lib/cli/commands/ssh.rb

Constant Summary collapse

CMD_UPLOAD = 
"upload"
CMD_DOWNLOAD = 
"download"
CMD_EXEC = 
"exec"
SSH_USER_PREFIX = 
"bosh_"
SSH_DEFAULT_PASSWORD = 
"bosh"
SSH_DSA_PUB = 
File.expand_path("~/.ssh/id_dsa.pub")
SSH_RSA_PUB = 
File.expand_path("~/.ssh/id_rsa.pub")

Constants inherited from Base

Base::BLOBS_DIR, Base::BLOBS_INDEX_FILE

Instance Attribute Summary

Attributes inherited from Base

#cache, #config, #options, #out, #usage, #work_dir

Instance Method Summary collapse

Methods included from DeploymentHelper

#deployment_changed?, #inspect_deployment_changes, #prepare_deployment_manifest

Methods inherited from Base

#blob_manager, #blobstore, command, #confirmed?, #director, #dry_run?, #exit_code, #full_target_name, #initialize, #interactive?, #logged_in?, #non_interactive?, #redirect, #release, #run, #show_usage, #target_name, #target_version, #task_report, #verbose?

Constructor Details

This class inherits a constructor from Bosh::Cli::Command::Base

Instance Method Details

#cleanup(*args) ⇒ Object 



258
259
260
261
262
263
264
265
266
267
268
269
270
 
# File 'lib/cli/commands/ssh.rb', line 258

def cleanup(*args)
  job = args.shift
  options = parse_options(args)
  manifest_name = prepare_deployment_manifest["name"]
  results = nil
  if options["index"]
    results = []
    results << { "index" => options["index"] }
  end
  say "Cleaning up ssh artifacts from job #{job}, index #{options["index"]}"
  director.cleanup_ssh(manifest_name, job, "^#{SSH_USER_PREFIX}",
                       [options["index"]])
end

#encrypt_password(plain_text) ⇒ Object 



77
78
79
80
81
82
83
84
85
 
# File 'lib/cli/commands/ssh.rb', line 77

def encrypt_password(plain_text)
  return unless plain_text
  @salt_charset ||= get_salt_charset
  salt = ""
  8.times do
    salt << @salt_charset[rand(@salt_charset.size)]
  end
  plain_text.crypt(salt)
end

#execute_command(command, job, options, args) ⇒ Object 



213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
 
# File 'lib/cli/commands/ssh.rb', line 213

def execute_command(command, job, options, args)
  setup_ssh(job, options["index"], nil, options) do |results, user|
    with_gateway(options["gateway_host"],
                 options["gateway_user"]) do |gateway|
      results.each do | result|
        unless result["status"] && result["status"] == "success" &&
               result["ip"]
          err("Failed to setup ssh on index #{options["index"]}, " +
              "error: #{result.inspect}")
        end
        with_ssh(gateway, result["ip"], user) do |ssh|
          case command
          when CMD_EXEC
            say("\nJob #{job} index #{result["index"]}")
            puts ssh.exec!(args.join(" "))
          when CMD_UPLOAD
            ssh.scp.upload!(args[0], args[1])
          when CMD_DOWNLOAD
            file = File.basename(args[0])
            path = "#{args[1]}/#{file}.#{job}.#{result["index"]}"
            ssh.scp.download!(args[0], path)
            say("Downloaded file to #{path}")
          end
        end
      end
    end
  end
end

#get_free_portObject 



125
126
127
128
129
130
131
132
133
 
# File 'lib/cli/commands/ssh.rb', line 125

def get_free_port
  socket = Socket.new(Socket::AF_INET, Socket::SOCK_STREAM, 0)
  socket.bind(Addrinfo.tcp("127.0.0.1", 0))
  port = socket.local_address.ip_port
  socket.close

  # The port could get used in the interim, but unlikely in real life
  port
end

#get_public_key(options) ⇒ Object 



39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
 
# File 'lib/cli/commands/ssh.rb', line 39

def get_public_key(options)
  # Get public key
  public_key = nil
  if options["public_key"]
    unless File.file?(options["public_key"])
      err("Please specify a valid public key file")
    end
    public_key = File.read(options["public_key"])
  else
    # See if ssh-add can be used
    %x[ssh-add -L 1>/dev/null 2>&1]
    if $?.exitstatus == 0
      keys = %x[ssh-add -L]
      public_key = keys.split("\n")[0]
    else
      # Pick up public key from home dir
      [SSH_DSA_PUB, SSH_RSA_PUB].each do |key_file|
        if File.file?(key_file)
          public_key = File.read(key_file)
          break
        end
      end
    end
  end
  err("Please specify a public key file") if public_key.nil?
  public_key
end

#get_salt_charsetObject 



67
68
69
70
71
72
73
74
75
 
# File 'lib/cli/commands/ssh.rb', line 67

def get_salt_charset
  charset = []
  charset.concat(("a".."z").to_a)
  charset.concat(("A".."Z").to_a)
  charset.concat(("0".."9").to_a)
  charset << "."
  charset << "/"
  charset
end

#parse_options(args) ⇒ Object 



14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
 
# File 'lib/cli/commands/ssh.rb', line 14

def parse_options(args)
  options = {}

  # Check if index is supplied on the command line
  begin
    # Ruby 1.8.7 treats Integer(nil) as 0, hence the if check
    if args.size > 0
      options["index"] = Integer(args[0])
      args.shift
    end
  rescue ArgumentError, TypeError
    # No index given
  end

  %w(public_key gateway_host gateway_user).each do |option|
    pos = args.index("--#{option}")
    if pos
      options[option] = args[pos + 1]
      args.delete_at(pos + 1)
      args.delete_at(pos)
    end
  end
  options
end

#scp(*args) ⇒ Object 



242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
 
# File 'lib/cli/commands/ssh.rb', line 242

def scp(*args)
  job = args.shift
  options = parse_options(args)
  upload = args.delete("--upload")
  download = args.delete("--download")
  if upload.nil? && download.nil?
    err("Please specify one of --upload or --download")
  end

  if args.empty? || args.size < 2
    err("Please enter valid source and destination paths")
  end
  say("Executing file operations on job #{job}")
  execute_command(upload ? CMD_UPLOAD : CMD_DOWNLOAD, job, options, args)
end

#setup_interactive_shell(job, password, options) ⇒ Object 



135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
 
# File 'lib/cli/commands/ssh.rb', line 135

def setup_interactive_shell(job, password, options)
  index = options["index"]
  err("Please specify a job index") if index.nil?

  if password.nil?
    password_retries = 0
    while password.blank? && password_retries < 3
      password = ask("Enter password " +
                 "(use it to sudo on remote host): ") { |q| q.echo = "*" }
      password_retries += 1
    end
    err("Please provide ssh password") if password.blank?
  end

  setup_ssh(job, index, password, options) do |results, user|
    result = results.first
    unless result["status"] && result["status"] == "success" && result["ip"]
      err("Failed to setup ssh on index #{index} #{results.inspect}")
    end

    say("Starting interactive shell on job #{job}, index #{index}")
    # Start interactive session
    if options["gateway_host"]
      local_port = get_free_port
      say("Connecting to local port #{local_port}")
      # Create the ssh tunnel
      fork do
        gateway = (options["gateway_user"] ?
            "#{options["gateway_user"]}@" : "") +
            options["gateway_host"]
        # Tunnel will close after 30 seconds,
        # so no need to worry about cleaning it up
        exec("ssh -f -L#{local_port}:#{result["ip"]}:22 #{gateway} " +
             "sleep 30")
      end
      result["ip"] = "localhost -p #{local_port}"
      # Wait for tunnel to get established
      sleep 3
    end
    ssh_session = fork do
      exec("ssh #{user}@#{result["ip"]}")
    end
    Process.waitpid(ssh_session)
  end
end

#setup_ssh(job, index, password, options, &block) ⇒ Object 



87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
 
# File 'lib/cli/commands/ssh.rb', line 87

def setup_ssh(job, index, password, options, &block)
  # Get public key
  public_key = get_public_key(options)

  # Generate a random user name
  user = SSH_USER_PREFIX + rand(36**9).to_s(36)

  # Get deployment name
  manifest_name = prepare_deployment_manifest["name"]

  say "Target deployment is #{manifest_name}"
  results = director.setup_ssh(manifest_name, job, index, user, public_key,
                               encrypt_password(password))

  unless results && results.kind_of?(Array) && !results.empty?
    err("Error setting up ssh, #{results.inspect}, " +
        "check task logs for more details")
  end

  results.each do |result|
    unless result.kind_of?(Hash)
      err("Unexpected results #{results.inspect}, " +
          "check task logs for more details")
    end
  end

  if block_given?
    yield results, user
  end
ensure
  if results
    say("Cleaning up ssh artifacts")
    indexes = results.map {|result| result["index"]}
    # Cleanup only this one 'user'
    director.cleanup_ssh(manifest_name, job, "^#{user}$", indexes)
  end
end

#shell(*args) ⇒ Object 



181
182
183
184
185
186
187
188
189
190
191
192
 
# File 'lib/cli/commands/ssh.rb', line 181

def shell(*args)
  job = args.shift
  password = args.delete("--default_password") && SSH_DEFAULT_PASSWORD
  options = parse_options(args)

  if args.size == 0
    setup_interactive_shell(job, password, options)
  else
    say("Executing command '#{args.join(" ")}' on job #{job}")
    execute_command(CMD_EXEC, job, options, args)
  end
end

#with_gateway(host, user, &block) ⇒ Object 



206
207
208
209
210
211
 
# File 'lib/cli/commands/ssh.rb', line 206

def with_gateway(host, user, &block)
  gateway = Net::SSH::Gateway.new(host, user || ENV['USER']) if host
  yield(gateway ||= nil)
ensure
  gateway.shutdown! if gateway
end

#with_ssh(gateway, ip, user, &block) ⇒ Object 



194
195
196
197
198
199
200
201
202
203
204
 
# File 'lib/cli/commands/ssh.rb', line 194

def with_ssh(gateway, ip, user, &block)
  if gateway
    gateway.ssh(ip, user) do |ssh|
      yield(ssh)
    end
  else
    Net::SSH.start(ip, user) do |ssh|
      yield(ssh)
    end
  end
end