package ssh import ( "context" "fmt" "os" "os/exec" "os/signal" "strings" "syscall" "github.com/aws/aws-sdk-go-v2/service/ec2" "github.com/aws/aws-sdk-go-v2/service/ec2/types" "github.com/aws/aws-sdk-go/aws" "github.com/integrii/flaggy" "go.uber.org/zap" "github.com/aws/eks-hybrid/internal/cli" "github.com/aws/eks-hybrid/test/e2e" "github.com/aws/eks-hybrid/test/e2e/constants" "github.com/aws/eks-hybrid/test/e2e/peered" ) type Command struct { flaggy *flaggy.Subcommand instanceIDOrName string } func NewCommand() *Command { cmd := Command{} setupCmd := flaggy.NewSubcommand("ssh") setupCmd.Description = "SSH into a E2E Hybrid Node running in the peered VPC through the jumpbox" setupCmd.AddPositionalValue(&cmd.instanceIDOrName, "INSTANCE_ID_OR_NAME", 1, true, "The instance ID or name of the node to SSH into") cmd.flaggy = setupCmd return &cmd } func (c *Command) Flaggy() *flaggy.Subcommand { return c.flaggy } func (c *Command) Commands() []cli.Command { return []cli.Command{c} } func (s *Command) Run(log *zap.Logger, opts *cli.GlobalOptions) error { ctx := context.Background() cfg, err := e2e.NewAWSConfig(ctx) if err != nil { return fmt.Errorf("reading AWS configuration: %w", err) } ec2Client := ec2.NewFromConfig(cfg) input := &ec2.DescribeInstancesInput{} if strings.HasPrefix(s.instanceIDOrName, "i-") { input.InstanceIds = []string{s.instanceIDOrName} } else { input.Filters = []types.Filter{ { Name: aws.String("tag:Name"), Values: []string{s.instanceIDOrName}, }, { Name: aws.String("instance-state-name"), Values: []string{"running"}, }, } } instances, err := ec2Client.DescribeInstances(ctx, input) if err != nil { return fmt.Errorf("describing instance %s: %w", s.instanceIDOrName, err) } if len(instances.Reservations) == 0 || len(instances.Reservations[0].Instances) == 0 { return fmt.Errorf("no instance found with ID or Name %s", s.instanceIDOrName) } targetInstance := instances.Reservations[0].Instances[0] var clusterName string for _, tag := range targetInstance.Tags { if *tag.Key == constants.TestClusterTagKey { clusterName = *tag.Value break } } if clusterName == "" { return fmt.Errorf("no cluster name found in instance %s tags", s.instanceIDOrName) } jumpbox, err := peered.JumpboxInstance(ctx, ec2Client, clusterName) if err != nil { return err } cmd := exec.CommandContext(ctx, "aws", "ssm", "start-session", "--document", "AWS-StartInteractiveCommand", "--parameters", fmt.Sprintf("{\"command\":[\"sudo ssh %s\"]}", *targetInstance.PrivateIpAddress), "--target", *jumpbox.InstanceId, ) cmd.Stdout = os.Stdout cmd.Stderr = os.Stderr cmd.Stdin = os.Stdin signalCtx, cancel := context.WithCancel(ctx) defer cancel() sig := make(chan os.Signal, 1) signal.Notify(sig, syscall.SIGHUP, syscall.SIGINT, syscall.SIGTERM, syscall.SIGQUIT) go func(sig chan os.Signal, cmd *exec.Cmd) { defer signal.Stop(sig) for { select { case triggeredSignal := <-sig: if err := cmd.Process.Signal(triggeredSignal); err != nil { log.Error(fmt.Sprintf("failed to signal ssm start-session command: %s", err)) } case <-signalCtx.Done(): return } } }(sig, cmd) if err := cmd.Run(); err != nil { return fmt.Errorf("running ssm start-session command: %w", err) } return nil }