cocos/cmd/cli/main.go

// Copyright (c) Ultraviolet
// SPDX-License-Identifier: Apache-2.0
package main

import (
	"fmt"
	"os"
	"os/signal"
	"path"
	"syscall"

	"github.com/caarlos0/env/v11"
	"github.com/fatih/color"
	"github.com/spf13/cobra"
	"github.com/spf13/pflag"
	"github.com/ultravioletrs/cocos/cli"
	"github.com/ultravioletrs/cocos/pkg/attestation/cmdconfig"
	"github.com/ultravioletrs/cocos/pkg/clients"
	cmd "github.com/virtee/sev-snp-measure-go/sevsnpmeasure/cmd"
)

const (
	svcName              = "cli"
	envPrefixAgentGRPC   = "AGENT_GRPC_"
	envPrefixManagerGRPC = "MANAGER_GRPC_"
	completion           = "completion"
	filePermision        = 0o755
	cocosDirectory       = ".cocos"
)

type config struct {
	LogLevel       string `env:"AGENT_LOG_LEVEL" envDefault:"info"`
	IgvmBinaryPath string `env:"IGVM_BINARY_PATH" envDefault:"./build/igvmmeasure"`
}

func main() {
	rootCmd := &cobra.Command{
		Use:   "cocos-cli [command]",
		Short: "CLI application for CoCos Service API",
		Run: func(cmd *cobra.Command, args []string) {
			fmt.Printf("CLI application for CoCos Service API\n\n")
			fmt.Printf("Usage:\n  %s [command]\n\n", cmd.CommandPath())
			fmt.Printf("Available Commands:\n")

			// Filter out "completion" command
			availableCommands := make([]*cobra.Command, 0)
			for _, subCmd := range cmd.Commands() {
				if subCmd.Name() != completion {
					availableCommands = append(availableCommands, subCmd)
				}
			}

			for _, subCmd := range availableCommands {
				fmt.Printf("  %-15s%s\n", subCmd.Name(), subCmd.Short)
			}

			fmt.Printf("\nFlags:\n")
			cmd.Flags().VisitAll(func(flag *pflag.Flag) {
				fmt.Printf("  -%s, --%s %s\n", flag.Shorthand, flag.Name, flag.Usage)
			})
			fmt.Printf("\nUse \"%s [command] --help\" for more information about a command.\n", cmd.CommandPath())
		},
	}

	signalChan := make(chan os.Signal, 1)
	signal.Notify(signalChan, syscall.SIGINT, syscall.SIGTERM)

	go func() {
		<-signalChan
		fmt.Println()
		rootCmd.Println(color.New(color.FgRed).Sprint("Operation aborted by user!"))
		os.Exit(2)
	}()

	var cfg config
	if err := env.Parse(&cfg); err != nil {
		message := color.New(color.FgRed).Sprintf("failed to load %s configuration : %s", svcName, err)
		rootCmd.Println(message)
		return
	}

	homePath, err := os.UserHomeDir()
	if err != nil {
		message := color.New(color.FgRed).Sprintf("failed to fetch user home directory: %s", err)
		rootCmd.Println(message)
		return
	}

	directoryCachePath := path.Join(homePath, cocosDirectory)

	if err := os.MkdirAll(directoryCachePath, filePermision); err != nil {
		message := color.New(color.FgRed).Sprintf("failed to create directory %s : %s", directoryCachePath, err)
		rootCmd.Println(message)
		return
	}

	agentGRPCConfig := clients.AttestedClientConfig{}
	if err := env.ParseWithOptions(&agentGRPCConfig, env.Options{Prefix: envPrefixAgentGRPC}); err != nil {
		message := color.New(color.FgRed).Sprintf("failed to load %s gRPC client configuration : %s", svcName, err)
		rootCmd.Println(message)
		return
	}

	managerGRPCConfig := clients.StandardClientConfig{}
	if err := env.ParseWithOptions(&managerGRPCConfig, env.Options{Prefix: envPrefixManagerGRPC}); err != nil {
		message := color.New(color.FgRed).Sprintf("failed to load %s gRPC client configuration : %s", svcName, err)
		rootCmd.Println(message)
		return
	}

	options := cmdconfig.IgvmMeasureOptions
	measurement, err := cmdconfig.NewCmdConfig(cfg.IgvmBinaryPath, options, os.Stderr)
	if err != nil {
		message := color.New(color.FgRed).Sprintf("failed to initialize measurement: %s", err) // Use %s instead of %w
		rootCmd.Println(message)
		return
	}

	cliSVC := cli.New(agentGRPCConfig, managerGRPCConfig, measurement)

	if err := cliSVC.InitializeAgentSDK(rootCmd); err == nil {
		defer cliSVC.Close()
	}

	rootCmd.PersistentFlags().BoolVarP(&cliSVC.Verbose, "verbose", "v", false, "Enable verbose output")

	keysCmd := cliSVC.NewKeysCmd()
	attestationCmd := cliSVC.NewAttestationCmd()
	attestationPolicyCmd := cliSVC.NewAttestationPolicyCmd()

	// Agent Commands
	rootCmd.AddCommand(cliSVC.NewAlgorithmCmd())
	rootCmd.AddCommand(cliSVC.NewDatasetsCmd())
	rootCmd.AddCommand(cliSVC.NewResultsCmd())
	rootCmd.AddCommand(attestationCmd)
	rootCmd.AddCommand(cliSVC.NewFileHashCmd())
	rootCmd.AddCommand(attestationPolicyCmd)
	rootCmd.AddCommand(keysCmd)
	rootCmd.AddCommand(cliSVC.NewCABundleCmd(directoryCachePath, nil))
	rootCmd.AddCommand(cliSVC.NewCreateVMCmd())
	rootCmd.AddCommand(cliSVC.NewRemoveVMCmd())
	rootCmd.AddCommand(cliSVC.NewIMAMeasurementsCmd())

	// Attestation commands
	attestationCmd.AddCommand(cliSVC.NewGetAttestationCmd())
	attestationCmd.AddCommand(cliSVC.NewValidateAttestationValidationCmd())

	// measure.
	rootCmd.AddCommand(cmd.NewRootCmd())
	rootCmd.AddCommand(cliSVC.NewMeasureCmd(cfg.IgvmBinaryPath))

	// Flags
	keysCmd.PersistentFlags().StringVarP(
		&cliSVC.KeyType,
		"key-type",
		"k",
		"rsa",
		"User Key type",
	)

	// Attestation Policy commands
	// Legacy JSON policy commands removed in favor of CoRIM.
	// attestationPolicyCmd.AddCommand(cliSVC.NewAddMeasurementCmd())
	// attestationPolicyCmd.AddCommand(cliSVC.NewAddHostDataCmd())
	// attestationPolicyCmd.AddCommand(cliSVC.NewGCPAttestationPolicy())
	attestationPolicyCmd.AddCommand(cliSVC.NewDownloadGCPOvmfFile())
	// attestationPolicyCmd.AddCommand(cliSVC.NewAzureAttestationPolicy())
	// attestationPolicyCmd.AddCommand(cliSVC.NewExtendWithManifestCmd())

	if err := rootCmd.Execute(); err != nil {
		logErrorCmd(*rootCmd, err)
		return
	}
}

func logErrorCmd(cmd cobra.Command, err error) {
	boldRed := color.New(color.FgRed, color.Bold)
	boldRed.Fprintf(cmd.ErrOrStderr(), "\nerror: ")

	fmt.Fprintf(cmd.ErrOrStderr(), "%s\n\n", color.RedString(err.Error()))
}