Use terraform in CLI to create QEMU cluster (#172)

* Use terraform in CLI to create QEMU cluster * Dont allow qemu creation on os/arch other than linux/amd64 * Allow usage of --name flag for QEMU resources Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2025-05-02 22:34:56 -04:00 · 2022-09-26 15:52:31 +02:00 · 2022-09-26 15:52:31 +02:00 · 804c173d52
commit 804c173d52
parent 2b32b79026
41 changed files with 1066 additions and 182 deletions
--- a/cli/internal/terraform/terraform_test.go
+++ b/cli/internal/terraform/terraform_test.go
@ -0,0 +1,235 @@
+/*
+Copyright (c) Edgeless Systems GmbH
+
+SPDX-License-Identifier: AGPL-3.0-only
+*/
+
+package terraform
+
+import (
+	"context"
+	"errors"
+	"io/fs"
+	"testing"
+
+	"github.com/edgelesssys/constellation/v2/internal/cloud/cloudprovider"
+	"github.com/edgelesssys/constellation/v2/internal/file"
+	"github.com/hashicorp/terraform-exec/tfexec"
+	tfjson "github.com/hashicorp/terraform-json"
+	"github.com/spf13/afero"
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+	"go.uber.org/multierr"
+)
+
+func TestCreateInstances(t *testing.T) {
+	someErr := errors.New("error")
+	getState := func() *tfjson.State {
+		workingState := tfjson.State{
+			Values: &tfjson.StateValues{
+				Outputs: map[string]*tfjson.StateOutput{
+					"ip": {
+						Value: "192.0.2.100",
+					},
+				},
+			},
+		}
+
+		return &workingState
+	}
+
+	testCases := map[string]struct {
+		provider cloudprovider.Provider
+		input    CreateClusterInput
+		tf       *stubTerraform
+		fs       afero.Fs
+		wantErr  bool
+	}{
+		"works": {
+			provider: cloudprovider.QEMU,
+			tf: &stubTerraform{
+				showState: getState(),
+			},
+			fs: afero.NewMemMapFs(),
+		},
+		"init fails": {
+			provider: cloudprovider.QEMU,
+			tf: &stubTerraform{
+				initErr:   someErr,
+				showState: getState(),
+			},
+			fs:      afero.NewMemMapFs(),
+			wantErr: true,
+		},
+		"apply fails": {
+			provider: cloudprovider.QEMU,
+			tf: &stubTerraform{
+				applyErr:  someErr,
+				showState: getState(),
+			},
+			fs:      afero.NewMemMapFs(),
+			wantErr: true,
+		},
+		"show fails": {
+			provider: cloudprovider.QEMU,
+			tf: &stubTerraform{
+				showErr: someErr,
+			},
+			fs:      afero.NewMemMapFs(),
+			wantErr: true,
+		},
+		"no ip": {
+			provider: cloudprovider.QEMU,
+			tf: &stubTerraform{
+				showState: &tfjson.State{
+					Values: &tfjson.StateValues{
+						Outputs: map[string]*tfjson.StateOutput{},
+					},
+				},
+			},
+			fs:      afero.NewMemMapFs(),
+			wantErr: true,
+		},
+		"prepare workspace fails": {
+			provider: cloudprovider.QEMU,
+			tf: &stubTerraform{
+				showState: getState(),
+			},
+			fs:      afero.NewReadOnlyFs(afero.NewMemMapFs()),
+			wantErr: true,
+		},
+	}
+
+	for name, tc := range testCases {
+		t.Run(name, func(t *testing.T) {
+			assert := assert.New(t)
+
+			c := &Client{
+				provider: tc.provider,
+				tf:       tc.tf,
+				file:     file.NewHandler(tc.fs),
+			}
+
+			err := c.CreateCluster(context.Background(), "test", tc.input)
+			if tc.wantErr {
+				assert.Error(err)
+				return
+			}
+
+			assert.NoError(err)
+		})
+	}
+}
+
+func TestDestroyInstances(t *testing.T) {
+	testCases := map[string]struct {
+		tf      *stubTerraform
+		wantErr bool
+	}{
+		"works": {
+			tf: &stubTerraform{},
+		},
+		"destroy fails": {
+			tf: &stubTerraform{
+				destroyErr: errors.New("error"),
+			},
+			wantErr: true,
+		},
+	}
+
+	for name, tc := range testCases {
+		t.Run(name, func(t *testing.T) {
+			assert := assert.New(t)
+
+			c := &Client{
+				provider: cloudprovider.QEMU,
+				tf:       tc.tf,
+			}
+
+			err := c.DestroyCluster(context.Background())
+			if tc.wantErr {
+				assert.Error(err)
+				return
+			}
+
+			assert.NoError(err)
+		})
+	}
+}
+
+func TestCleanupWorkspace(t *testing.T) {
+	someContent := []byte("some content")
+
+	testCases := map[string]struct {
+		provider  cloudprovider.Provider
+		prepareFS func(file.Handler) error
+		wantErr   bool
+	}{
+		"files are cleaned up": {
+			provider: cloudprovider.QEMU,
+			prepareFS: func(f file.Handler) error {
+				var err error
+				err = multierr.Append(err, f.Write("terraform.tfvars", someContent))
+				err = multierr.Append(err, f.Write("terraform.tfstate", someContent))
+				return multierr.Append(err, f.Write("terraform.tfstate.backup", someContent))
+			},
+		},
+		"no error if files do not exist": {
+			provider:  cloudprovider.QEMU,
+			prepareFS: func(f file.Handler) error { return nil },
+		},
+	}
+
+	for name, tc := range testCases {
+		t.Run(name, func(t *testing.T) {
+			assert := assert.New(t)
+			require := require.New(t)
+
+			file := file.NewHandler(afero.NewMemMapFs())
+			require.NoError(tc.prepareFS(file))
+
+			c := &Client{
+				provider: tc.provider,
+				file:     file,
+				tf:       &stubTerraform{},
+			}
+
+			err := c.CleanUpWorkspace()
+			if tc.wantErr {
+				assert.Error(err)
+				return
+			}
+			assert.NoError(err)
+			_, err = file.Stat("terraform.tfvars")
+			assert.ErrorIs(err, fs.ErrNotExist)
+			_, err = file.Stat("terraform.tfstate")
+			assert.ErrorIs(err, fs.ErrNotExist)
+			_, err = file.Stat("terraform.tfstate.backup")
+			assert.ErrorIs(err, fs.ErrNotExist)
+		})
+	}
+}
+
+type stubTerraform struct {
+	applyErr   error
+	destroyErr error
+	initErr    error
+	showErr    error
+	showState  *tfjson.State
+}
+
+func (s *stubTerraform) Apply(context.Context, ...tfexec.ApplyOption) error {
+	return s.applyErr
+}
+
+func (s *stubTerraform) Destroy(context.Context, ...tfexec.DestroyOption) error {
+	return s.destroyErr
+}
+
+func (s *stubTerraform) Init(context.Context, ...tfexec.InitOption) error {
+	return s.initErr
+}
+
+func (s *stubTerraform) Show(context.Context, ...tfexec.ShowOption) (*tfjson.State, error) {
+	return s.showState, s.showErr
+}