mirror of
https://github.com/edgelesssys/constellation.git
synced 2025-01-26 23:37:08 -05:00
262 lines
9.0 KiB
Go
262 lines
9.0 KiB
Go
package cmd
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
"io/fs"
|
|
|
|
"github.com/edgelesssys/constellation/cli/internal/azure"
|
|
"github.com/edgelesssys/constellation/cli/internal/cloudcmd"
|
|
"github.com/edgelesssys/constellation/cli/internal/gcp"
|
|
"github.com/edgelesssys/constellation/internal/cloud/cloudprovider"
|
|
"github.com/edgelesssys/constellation/internal/constants"
|
|
"github.com/edgelesssys/constellation/internal/file"
|
|
"github.com/edgelesssys/constellation/internal/state"
|
|
"github.com/spf13/afero"
|
|
"github.com/spf13/cobra"
|
|
)
|
|
|
|
// NewCreateCmd returns a new cobra.Command for the create command.
|
|
func NewCreateCmd() *cobra.Command {
|
|
cmd := &cobra.Command{
|
|
Use: "create {aws|azure|gcp}",
|
|
Short: "Create instances on a cloud platform for your Constellation cluster",
|
|
Long: "Create instances on a cloud platform for your Constellation cluster.",
|
|
Args: cobra.MatchAll(
|
|
cobra.ExactArgs(1),
|
|
isCloudProvider(0),
|
|
warnAWS(0),
|
|
),
|
|
ValidArgsFunction: createCompletion,
|
|
RunE: runCreate,
|
|
}
|
|
cmd.Flags().String("name", "constell", "create the cluster with the specified name")
|
|
cmd.Flags().BoolP("yes", "y", false, "create the cluster without further confirmation")
|
|
cmd.Flags().IntP("control-plane-nodes", "c", 0, "number of control-plane nodes (required)")
|
|
must(cobra.MarkFlagRequired(cmd.Flags(), "control-plane-nodes"))
|
|
cmd.Flags().IntP("worker-nodes", "w", 0, "number of worker nodes (required)")
|
|
must(cobra.MarkFlagRequired(cmd.Flags(), "worker-nodes"))
|
|
cmd.Flags().StringP("instance-type", "t", "", "instance type of cluster nodes")
|
|
must(cmd.RegisterFlagCompletionFunc("instance-type", instanceTypeCompletion))
|
|
|
|
cmd.SetHelpTemplate(cmd.HelpTemplate() + fmt.Sprintf(`
|
|
Azure Confidential VM instance types:
|
|
%v
|
|
|
|
Azure Trusted Launch instance types:
|
|
%v
|
|
|
|
GCP instance types:
|
|
%v
|
|
`, formatInstanceTypes(azure.CVMInstanceTypes), formatInstanceTypes(azure.TrustedLaunchInstanceTypes), formatInstanceTypes(gcp.InstanceTypes)))
|
|
|
|
return cmd
|
|
}
|
|
|
|
func runCreate(cmd *cobra.Command, args []string) error {
|
|
provider := cloudprovider.FromString(args[0])
|
|
fileHandler := file.NewHandler(afero.NewOsFs())
|
|
creator := cloudcmd.NewCreator(cmd.OutOrStdout())
|
|
|
|
return create(cmd, creator, fileHandler, provider)
|
|
}
|
|
|
|
func create(cmd *cobra.Command, creator cloudCreator, fileHandler file.Handler, provider cloudprovider.Provider,
|
|
) (retErr error) {
|
|
flags, err := parseCreateFlags(cmd, provider)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if err := checkDirClean(fileHandler); err != nil {
|
|
return err
|
|
}
|
|
|
|
config, err := readConfig(cmd.OutOrStdout(), fileHandler, flags.configPath, provider)
|
|
if err != nil {
|
|
return fmt.Errorf("reading and validating config: %w", err)
|
|
}
|
|
|
|
if config.IsImageDebug() {
|
|
cmd.Println("Configured image does not look like a released production image. Double check image before deploying to production.")
|
|
}
|
|
|
|
if config.IsAzureNonCVM() {
|
|
cmd.Println("Disabling Confidential VMs is insecure. Use only for evaluation purposes.")
|
|
}
|
|
|
|
if !flags.yes {
|
|
// Ask user to confirm action.
|
|
cmd.Printf("The following Constellation cluster will be created:\n")
|
|
cmd.Printf("%d control-planes nodes of type %s will be created.\n", flags.controllerCount, flags.insType)
|
|
cmd.Printf("%d worker nodes of type %s will be created.\n", flags.workerCount, flags.insType)
|
|
ok, err := askToConfirm(cmd, "Do you want to create this cluster?")
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if !ok {
|
|
cmd.Println("The creation of the cluster was aborted.")
|
|
return nil
|
|
}
|
|
}
|
|
|
|
state, err := creator.Create(cmd.Context(), provider, config, flags.name, flags.insType, flags.controllerCount, flags.workerCount)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if err := fileHandler.WriteJSON(constants.StateFilename, state, file.OptNone); err != nil {
|
|
return err
|
|
}
|
|
|
|
if err := writeIPtoIDFile(fileHandler, state); err != nil {
|
|
return err
|
|
}
|
|
|
|
cmd.Println("Your Constellation cluster was created successfully.")
|
|
return nil
|
|
}
|
|
|
|
// parseCreateFlags parses the flags of the create command.
|
|
func parseCreateFlags(cmd *cobra.Command, provider cloudprovider.Provider) (createFlags, error) {
|
|
controllerCount, err := cmd.Flags().GetInt("control-plane-nodes")
|
|
if err != nil {
|
|
return createFlags{}, fmt.Errorf("parsing number of control-plane nodes: %w", err)
|
|
}
|
|
if controllerCount < constants.MinControllerCount {
|
|
return createFlags{}, fmt.Errorf("number of control-plane nodes must be at least %d", constants.MinControllerCount)
|
|
}
|
|
|
|
workerCount, err := cmd.Flags().GetInt("worker-nodes")
|
|
if err != nil {
|
|
return createFlags{}, fmt.Errorf("parsing number of worker nodes: %w", err)
|
|
}
|
|
if workerCount < constants.MinWorkerCount {
|
|
return createFlags{}, fmt.Errorf("number of worker nodes must be at least %d", constants.MinWorkerCount)
|
|
}
|
|
|
|
insType, err := cmd.Flags().GetString("instance-type")
|
|
if err != nil {
|
|
return createFlags{}, fmt.Errorf("parsing instance type argument: %w", err)
|
|
}
|
|
if insType == "" {
|
|
insType = defaultInstanceType(provider)
|
|
}
|
|
if err := validInstanceTypeForProvider(cmd, insType, provider); err != nil {
|
|
return createFlags{}, err
|
|
}
|
|
|
|
name, err := cmd.Flags().GetString("name")
|
|
if err != nil {
|
|
return createFlags{}, fmt.Errorf("parsing name argument: %w", err)
|
|
}
|
|
if len(name) > constants.ConstellationNameLength {
|
|
return createFlags{}, fmt.Errorf(
|
|
"name for Constellation cluster too long, maximum length is %d, got %d: %s",
|
|
constants.ConstellationNameLength, len(name), name,
|
|
)
|
|
}
|
|
|
|
yes, err := cmd.Flags().GetBool("yes")
|
|
if err != nil {
|
|
return createFlags{}, fmt.Errorf("%w; Set '-yes' without a value to automatically confirm", err)
|
|
}
|
|
|
|
configPath, err := cmd.Flags().GetString("config")
|
|
if err != nil {
|
|
return createFlags{}, fmt.Errorf("parsing config path argument: %w", err)
|
|
}
|
|
|
|
return createFlags{
|
|
controllerCount: controllerCount,
|
|
workerCount: workerCount,
|
|
insType: insType,
|
|
name: name,
|
|
configPath: configPath,
|
|
yes: yes,
|
|
}, nil
|
|
}
|
|
|
|
// createFlags contains the parsed flags of the create command.
|
|
type createFlags struct {
|
|
controllerCount int
|
|
workerCount int
|
|
insType string
|
|
name string
|
|
configPath string
|
|
yes bool
|
|
}
|
|
|
|
// defaultInstanceType returns the default instance type for the given provider.
|
|
func defaultInstanceType(provider cloudprovider.Provider) string {
|
|
switch provider {
|
|
case cloudprovider.GCP:
|
|
return gcp.InstanceTypes[0]
|
|
case cloudprovider.Azure:
|
|
return azure.CVMInstanceTypes[0]
|
|
default:
|
|
return ""
|
|
}
|
|
}
|
|
|
|
// checkDirClean checks if files of a previous Constellation are left in the current working dir.
|
|
func checkDirClean(fileHandler file.Handler) error {
|
|
if _, err := fileHandler.Stat(constants.StateFilename); !errors.Is(err, fs.ErrNotExist) {
|
|
return fmt.Errorf("file '%s' already exists in working directory, run 'constellation terminate' before creating a new one", constants.StateFilename)
|
|
}
|
|
if _, err := fileHandler.Stat(constants.AdminConfFilename); !errors.Is(err, fs.ErrNotExist) {
|
|
return fmt.Errorf("file '%s' already exists in working directory, run 'constellation terminate' before creating a new one", constants.AdminConfFilename)
|
|
}
|
|
if _, err := fileHandler.Stat(constants.MasterSecretFilename); !errors.Is(err, fs.ErrNotExist) {
|
|
return fmt.Errorf("file '%s' already exists in working directory. Constellation won't overwrite previous master secrets. Move it somewhere or delete it before creating a new cluster", constants.MasterSecretFilename)
|
|
}
|
|
if _, err := fileHandler.Stat(constants.ClusterIDsFileName); !errors.Is(err, fs.ErrNotExist) {
|
|
return fmt.Errorf("file '%s' already exists in working directory. Constellation won't overwrite previous cluster IDs. Move it somewhere or delete it before creating a new cluster", constants.ClusterIDsFileName)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func writeIPtoIDFile(fileHandler file.Handler, state state.ConstellationState) error {
|
|
ip := state.LoadBalancerIP
|
|
if ip == "" {
|
|
return fmt.Errorf("bootstrapper ip not found")
|
|
}
|
|
idFile := clusterIDsFile{IP: ip}
|
|
return fileHandler.WriteJSON(constants.ClusterIDsFileName, idFile, file.OptNone)
|
|
}
|
|
|
|
// createCompletion handles the completion of the create command. It is frequently called
|
|
// while the user types arguments of the command to suggest completion.
|
|
func createCompletion(cmd *cobra.Command, args []string, toComplete string) ([]string, cobra.ShellCompDirective) {
|
|
switch len(args) {
|
|
case 0:
|
|
return []string{"aws", "gcp", "azure"}, cobra.ShellCompDirectiveNoFileComp
|
|
default:
|
|
return []string{}, cobra.ShellCompDirectiveError
|
|
}
|
|
}
|
|
|
|
func must(err error) {
|
|
if err != nil {
|
|
panic(err)
|
|
}
|
|
}
|
|
|
|
func instanceTypeCompletion(cmd *cobra.Command, args []string, toComplete string) ([]string, cobra.ShellCompDirective) {
|
|
if len(args) != 1 {
|
|
return []string{}, cobra.ShellCompDirectiveError
|
|
}
|
|
switch args[0] {
|
|
case "gcp":
|
|
return gcp.InstanceTypes, cobra.ShellCompDirectiveNoFileComp
|
|
case "azure":
|
|
var azureInstanceTypes []string
|
|
azureInstanceTypes = append(azureInstanceTypes, azure.CVMInstanceTypes...)
|
|
azureInstanceTypes = append(azureInstanceTypes, azure.TrustedLaunchInstanceTypes...)
|
|
return azureInstanceTypes, cobra.ShellCompDirectiveNoFileComp
|
|
default:
|
|
return []string{}, cobra.ShellCompDirectiveError
|
|
}
|
|
}
|