monorepo

Co-authored-by: Malte Poll <mp@edgeless.systems> Co-authored-by: katexochen <katexochen@users.noreply.github.com> Co-authored-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Thomas Tendyck <tt@edgeless.systems> Co-authored-by: Benedict Schlueter <bs@edgeless.systems> Co-authored-by: leongross <leon.gross@rub.de> Co-authored-by: Moritz Eckert <m1gh7ym0@gmail.com>
2025-12-15 16:09:39 -05:00 · 2022-03-22 16:03:15 +01:00 · 2022-03-22 16:03:15 +01:00 · 2d8fcd9bf4
commit 2d8fcd9bf4
362 changed files with 50980 additions and 0 deletions
--- a/cli/azure/scaleset.go
+++ b/cli/azure/scaleset.go
@ -0,0 +1,123 @@
+package azure
+
+import (
+	"crypto/rand"
+	"math/big"
+
+	"github.com/Azure/azure-sdk-for-go/sdk/azcore/to"
+	"github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/compute/armcompute"
+)
+
+// ScaleSet defines a Azure scale set.
+type ScaleSet struct {
+	Name                 string
+	NamePrefix           string
+	Location             string
+	InstanceType         string
+	Count                int64
+	Username             string
+	SubnetID             string
+	NetworkSecurityGroup string
+	Password             string
+	Image                string
+	UserAssignedIdentity string
+}
+
+// Azure returns the Azure representation of ScaleSet.
+func (s ScaleSet) Azure() armcompute.VirtualMachineScaleSet {
+	return armcompute.VirtualMachineScaleSet{
+		Name:     to.StringPtr(s.Name),
+		Location: to.StringPtr(s.Location),
+		SKU: &armcompute.SKU{
+			Name:     to.StringPtr(s.InstanceType),
+			Capacity: to.Int64Ptr(s.Count),
+		},
+		Properties: &armcompute.VirtualMachineScaleSetProperties{
+			Overprovision: to.BoolPtr(false),
+			UpgradePolicy: &armcompute.UpgradePolicy{
+				Mode: armcompute.UpgradeModeManual.ToPtr(),
+				AutomaticOSUpgradePolicy: &armcompute.AutomaticOSUpgradePolicy{
+					EnableAutomaticOSUpgrade: to.BoolPtr(false),
+					DisableAutomaticRollback: to.BoolPtr(false),
+				},
+			},
+			VirtualMachineProfile: &armcompute.VirtualMachineScaleSetVMProfile{
+				OSProfile: &armcompute.VirtualMachineScaleSetOSProfile{
+					ComputerNamePrefix: to.StringPtr(s.NamePrefix),
+					AdminUsername:      to.StringPtr(s.Username),
+					AdminPassword:      to.StringPtr(s.Password),
+					LinuxConfiguration: &armcompute.LinuxConfiguration{},
+				},
+				StorageProfile: &armcompute.VirtualMachineScaleSetStorageProfile{
+					ImageReference: &armcompute.ImageReference{
+						ID: to.StringPtr(s.Image),
+					},
+				},
+				NetworkProfile: &armcompute.VirtualMachineScaleSetNetworkProfile{
+					NetworkInterfaceConfigurations: []*armcompute.VirtualMachineScaleSetNetworkConfiguration{
+						{
+							Name: to.StringPtr(s.Name),
+							Properties: &armcompute.VirtualMachineScaleSetNetworkConfigurationProperties{
+								Primary:            to.BoolPtr(true),
+								EnableIPForwarding: to.BoolPtr(true),
+								IPConfigurations: []*armcompute.VirtualMachineScaleSetIPConfiguration{
+									{
+										Name: to.StringPtr(s.Name),
+										Properties: &armcompute.VirtualMachineScaleSetIPConfigurationProperties{
+											Subnet: &armcompute.APIEntityReference{
+												ID: to.StringPtr(s.SubnetID),
+											},
+											PublicIPAddressConfiguration: &armcompute.VirtualMachineScaleSetPublicIPAddressConfiguration{
+												Name: to.StringPtr(s.Name),
+												Properties: &armcompute.VirtualMachineScaleSetPublicIPAddressConfigurationProperties{
+													IdleTimeoutInMinutes: to.Int32Ptr(15), // default per https://docs.microsoft.com/en-us/azure/virtual-machine-scale-sets/virtual-machine-scale-sets-networking#creating-a-scale-set-with-public-ip-per-virtual-machine
+												},
+											},
+										},
+									},
+								},
+								NetworkSecurityGroup: &armcompute.SubResource{
+									ID: to.StringPtr(s.NetworkSecurityGroup),
+								},
+							},
+						},
+					},
+				},
+				SecurityProfile: &armcompute.SecurityProfile{
+					SecurityType: armcompute.SecurityTypesTrustedLaunch.ToPtr(),
+					UefiSettings: &armcompute.UefiSettings{VTpmEnabled: to.BoolPtr(true)},
+				},
+				DiagnosticsProfile: &armcompute.DiagnosticsProfile{
+					BootDiagnostics: &armcompute.BootDiagnostics{
+						Enabled: to.BoolPtr(true),
+					},
+				},
+			},
+		},
+		Identity: &armcompute.VirtualMachineScaleSetIdentity{
+			Type: armcompute.ResourceIdentityTypeUserAssigned.ToPtr(),
+			UserAssignedIdentities: map[string]*armcompute.VirtualMachineScaleSetIdentityUserAssignedIdentitiesValue{
+				s.UserAssignedIdentity: {},
+			},
+		},
+	}
+}
+
+// GeneratePassword is a helper function to generate a random password
+// for Azure's scale set.
+func GeneratePassword() (string, error) {
+	letters := []byte("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789")
+
+	pwLen := 16
+	pw := make([]byte, 0, pwLen)
+	for i := 0; i < pwLen; i++ {
+		n, err := rand.Int(rand.Reader, big.NewInt(int64(len(letters))))
+		if err != nil {
+			return "", err
+		}
+		pw = append(pw, letters[n.Int64()])
+	}
+	// bypass password rules
+	pw = append(pw, []byte("Aa1!")...)
+	return string(pw), nil
+}