// Copyright (c) Ultraviolet // SPDX-License-Identifier: Apache-2.0 package cli import ( "os" "time" "github.com/fatih/color" "github.com/spf13/cobra" "github.com/ultravioletrs/cocos/manager" ) const ( serverURL = "server-url" serverCA = "server-ca" clientKey = "client-key" clientCrt = "client-crt" caUrl = "ca-url" logLevel = "log-level" ttlFlag = "ttl" ) var ( agentCVMServerUrl string agentCVMServerCA string agentCVMClientKey string agentCVMClientCrt string agentCVMCaUrl string agentLogLevel string ttl time.Duration awsAccessKeyId string awsSecretAccessKey string awsEndpointUrl string awsRegion string aaKbsParams string ) func (c *CLI) NewCreateVMCmd() *cobra.Command { cmd := &cobra.Command{ Use: "create-vm", Short: "Create a new virtual machine", Example: `create-vm`, Args: cobra.ExactArgs(0), Run: func(cmd *cobra.Command, args []string) { if c.connectErr != nil { printError(cmd, "Failed to connect to manager: %v ❌ ", c.connectErr) return } if c.managerClient == nil { if err := c.InitializeManagerClient(cmd); err != nil { printError(cmd, "Failed to connect to manager: %v ❌ ", err) return } } defer c.Close() createReq, err := loadCerts() if err != nil { printError(cmd, "Error loading certs: %v ❌ ", err) return } createReq.AgentCvmServerUrl = agentCVMServerUrl createReq.AgentLogLevel = agentLogLevel createReq.AgentCvmCaUrl = agentCVMCaUrl createReq.AwsAccessKeyId = awsAccessKeyId createReq.AwsSecretAccessKey = awsSecretAccessKey createReq.AwsEndpointUrl = awsEndpointUrl createReq.AwsRegion = awsRegion createReq.AaKbsParams = aaKbsParams if ttl > 0 { createReq.Ttl = ttl.String() } cmd.Println("🔗 Creating a new virtual machine") res, err := c.managerClient.CreateVm(cmd.Context(), createReq) if err != nil { printError(cmd, "Error creating virtual machine: %v ❌ ", err) return } cmd.Println(color.New(color.FgGreen).Sprintf("✅ Virtual machine created successfully with id %s and port %s", res.CvmId, res.ForwardedPort)) }, } cmd.Flags().StringVar(&agentCVMServerUrl, serverURL, "", "CVM server URL") cmd.Flags().StringVar(&agentCVMServerCA, serverCA, "", "CVM server CA") cmd.Flags().StringVar(&agentCVMClientKey, clientKey, "", "CVM client key") cmd.Flags().StringVar(&agentCVMClientCrt, clientCrt, "", "CVM client crt") cmd.Flags().StringVar(&agentCVMCaUrl, caUrl, "", "CVM CA service URL") cmd.Flags().StringVar(&agentLogLevel, logLevel, "", "Agent Log level") cmd.Flags().DurationVar(&ttl, ttlFlag, 0, "TTL for the VM") cmd.Flags().StringVar(&awsAccessKeyId, "aws-access-key-id", "", "AWS Access Key ID for S3/MinIO") cmd.Flags().StringVar(&awsSecretAccessKey, "aws-secret-access-key", "", "AWS Secret Access Key for S3/MinIO") cmd.Flags().StringVar(&awsEndpointUrl, "aws-endpoint-url", "", "AWS Endpoint URL (for MinIO or custom S3)") cmd.Flags().StringVar(&awsRegion, "aws-region", "", "AWS Region") cmd.Flags().StringVar(&aaKbsParams, "aa-kbs-params", "", "Attestation Agent KBS Parameters (e.g. protocol=http,type=kbs,url=http://... or just type=sample)") if err := cmd.MarkFlagRequired(serverURL); err != nil { printError(cmd, "Error marking flag as required: %v ❌ ", err) return cmd } return cmd } func (c *CLI) NewRemoveVMCmd() *cobra.Command { return &cobra.Command{ Use: "remove-vm", Short: "Remove a virtual machine", Example: `remove-vm `, Args: cobra.ExactArgs(1), Run: func(cmd *cobra.Command, args []string) { if c.connectErr != nil { printError(cmd, "Failed to connect to manager: %v ❌ ", c.connectErr) return } if c.managerClient == nil { if err := c.InitializeManagerClient(cmd); err != nil { printError(cmd, "Failed to connect to manager: %v ❌ ", err) return } } defer c.Close() cmd.Println("🔗 Removing virtual machine") _, err := c.managerClient.RemoveVm(cmd.Context(), &manager.RemoveReq{CvmId: args[0]}) if err != nil { printError(cmd, "Error removing virtual machine: %v ❌ ", err) return } cmd.Println(color.New(color.FgGreen).Sprintf("✅ Virtual machine removed successfully")) }, } } func fileReader(path string) ([]byte, error) { if path == "" { return nil, nil } return os.ReadFile(path) } func loadCerts() (*manager.CreateReq, error) { clientKey, err := fileReader(agentCVMClientKey) if err != nil { return nil, err } clientCrt, err := fileReader(agentCVMClientCrt) if err != nil { return nil, err } serverCA, err := fileReader(agentCVMServerCA) if err != nil { return nil, err } return &manager.CreateReq{ AgentCvmServerCaCert: serverCA, AgentCvmClientKey: clientKey, AgentCvmClientCert: clientCrt, }, nil }