1 # Copyright (c) 2019 Cisco and/or its affiliates.
2 # Licensed under the Apache License, Version 2.0 (the "License");
3 # you may not use this file except in compliance with the License.
4 # You may obtain a copy of the License at:
6 # http://www.apache.org/licenses/LICENSE-2.0
8 # Unless required by applicable law or agreed to in writing, software
9 # distributed under the License is distributed on an "AS IS" BASIS,
10 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
11 # See the License for the specific language governing permissions and
12 # limitations under the License.
14 """Library for SSH connection management."""
19 from io import StringIO
20 from time import time, sleep
22 from paramiko import RSAKey, SSHClient, AutoAddPolicy
23 from paramiko.ssh_exception import SSHException, NoValidConnectionsError
24 from robot.api import logger
25 from scp import SCPClient, SCPException
27 from resources.libraries.python.OptionString import OptionString
30 u"exec_cmd", u"exec_cmd_no_error", u"SSH", u"SSHTimeout", u"scp_node"
36 class SSHTimeout(Exception):
37 """This exception is raised when a timeout occurs."""
41 """Contains methods for managing and using SSH connections."""
43 __MAX_RECV_BUF = 10 * 1024 * 1024
44 __existing_connections = dict()
52 """Get IP address and port hash from node dictionary.
54 :param node: Node in topology.
56 :returns: IP address and port for the specified node.
59 return hash(frozenset([node[u"host"], node[u"port"]]))
61 def connect(self, node, attempts=5):
62 """Connect to node prior to running exec_command or scp.
64 If there already is a connection to the node, this method reuses it.
66 :param node: Node in topology.
67 :param attempts: Number of reconnect attempts.
70 :raises IOError: If cannot connect to host.
73 node_hash = self._node_hash(node)
74 if node_hash in SSH.__existing_connections:
75 self._ssh = SSH.__existing_connections[node_hash]
76 if self._ssh.get_transport().is_active():
77 logger.debug(f"Reusing SSH: {self._ssh}")
80 self._reconnect(attempts-1)
82 raise IOError(f"Cannot connect to {node['host']}")
87 if u"priv_key" in node:
88 pkey = RSAKey.from_private_key(StringIO(node[u"priv_key"]))
90 self._ssh = SSHClient()
91 self._ssh.set_missing_host_key_policy(AutoAddPolicy())
94 node[u"host"], username=node[u"username"],
95 password=node.get(u"password"), pkey=pkey,
99 self._ssh.get_transport().set_keepalive(10)
101 SSH.__existing_connections[node_hash] = self._ssh
103 f"New SSH to {self._ssh.get_transport().getpeername()} "
104 f"took {time() - start} seconds: {self._ssh}"
106 except SSHException as exc:
107 raise IOError(f"Cannot connect to {node[u'host']}") from exc
108 except NoValidConnectionsError as err:
110 f"Unable to connect to port {node[u'port']} on "
114 def disconnect(self, node=None):
115 """Close SSH connection to the node.
117 :param node: The node to disconnect from. None means last connected.
118 :type node: dict or None
124 node_hash = self._node_hash(node)
125 if node_hash in SSH.__existing_connections:
127 f"Disconnecting peer: {node[u'host']}, {node[u'port']}"
129 ssh = SSH.__existing_connections.pop(node_hash)
132 def _reconnect(self, attempts=0):
133 """Close the SSH connection and open it again.
135 :param attempts: Number of reconnect attempts.
139 self.disconnect(node)
140 self.connect(node, attempts)
142 f"Reconnecting peer done: {node[u'host']}, {node[u'port']}"
145 def exec_command(self, cmd, timeout=10, log_stdout_err=True):
146 """Execute SSH command on a new channel on the connected Node.
148 :param cmd: Command to run on the Node.
149 :param timeout: Maximal time in seconds to wait until the command is
150 done. If set to None then wait forever.
151 :param log_stdout_err: If True, stdout and stderr are logged. stdout
152 and stderr are logged also if the return code is not zero
153 independently of the value of log_stdout_err.
154 :type cmd: str or OptionString
156 :type log_stdout_err: bool
157 :returns: return_code, stdout, stderr
158 :rtype: tuple(int, str, str)
159 :raises SSHTimeout: If command is not finished in timeout time.
161 if isinstance(cmd, (list, tuple)):
162 cmd = OptionString(cmd)
167 chan = self._ssh.get_transport().open_session(timeout=5)
168 peer = self._ssh.get_transport().getpeername()
169 except (AttributeError, SSHException):
171 chan = self._ssh.get_transport().open_session(timeout=5)
172 peer = self._ssh.get_transport().getpeername()
173 chan.settimeout(timeout)
175 logger.trace(f"exec_command on {peer} with timeout {timeout}: {cmd}")
178 chan.exec_command(cmd)
179 while not chan.exit_status_ready() and timeout is not None:
180 if chan.recv_ready():
181 s_out = chan.recv(self.__MAX_RECV_BUF)
182 stdout += s_out.decode(encoding=u'utf-8', errors=u'ignore') \
183 if isinstance(s_out, bytes) else s_out
185 if chan.recv_stderr_ready():
186 s_err = chan.recv_stderr(self.__MAX_RECV_BUF)
187 stderr += s_err.decode(encoding=u'utf-8', errors=u'ignore') \
188 if isinstance(s_err, bytes) else s_err
190 if time() - start > timeout:
192 f"Timeout exception during execution of command: {cmd}\n"
193 f"Current contents of stdout buffer: "
195 f"Current contents of stderr buffer: "
200 return_code = chan.recv_exit_status()
202 while chan.recv_ready():
203 s_out = chan.recv(self.__MAX_RECV_BUF)
204 stdout += s_out.decode(encoding=u'utf-8', errors=u'ignore') \
205 if isinstance(s_out, bytes) else s_out
207 while chan.recv_stderr_ready():
208 s_err = chan.recv_stderr(self.__MAX_RECV_BUF)
209 stderr += s_err.decode(encoding=u'utf-8', errors=u'ignore') \
210 if isinstance(s_err, bytes) else s_err
213 logger.trace(f"exec_command on {peer} took {end-start} seconds")
215 logger.trace(f"return RC {return_code}")
216 if log_stdout_err or int(return_code):
218 f"return STDOUT {stdout}"
221 f"return STDERR {stderr}"
223 return return_code, stdout, stderr
225 def exec_command_sudo(
226 self, cmd, cmd_input=None, timeout=30, log_stdout_err=True):
227 """Execute SSH command with sudo on a new channel on the connected Node.
229 :param cmd: Command to be executed.
230 :param cmd_input: Input redirected to the command.
231 :param timeout: Timeout.
232 :param log_stdout_err: If True, stdout and stderr are logged.
236 :type log_stdout_err: bool
237 :returns: return_code, stdout, stderr
238 :rtype: tuple(int, str, str)
242 >>> from ssh import SSH
244 >>> ssh.connect(node)
245 >>> # Execute command without input (sudo -S cmd)
246 >>> ssh.exec_command_sudo(u"ifconfig eth0 down")
247 >>> # Execute command with input (sudo -S cmd <<< 'input')
248 >>> ssh.exec_command_sudo(u"vpp_api_test", u"dump_interface_table")
250 if isinstance(cmd, (list, tuple)):
251 cmd = OptionString(cmd)
252 if cmd_input is None:
253 command = f"sudo -E -S {cmd}"
255 command = f"sudo -E -S {cmd} <<< \"{cmd_input}\""
256 return self.exec_command(
257 command, timeout, log_stdout_err=log_stdout_err
260 def exec_command_lxc(
261 self, lxc_cmd, lxc_name, lxc_params=u"", sudo=True, timeout=30):
262 """Execute command in LXC on a new SSH channel on the connected Node.
264 :param lxc_cmd: Command to be executed.
265 :param lxc_name: LXC name.
266 :param lxc_params: Additional parameters for LXC attach.
267 :param sudo: Run in privileged LXC mode. Default: privileged
268 :param timeout: Timeout.
271 :type lxc_params: str
274 :returns: return_code, stdout, stderr
276 command = f"lxc-attach {lxc_params} --name {lxc_name} -- /bin/sh " \
280 command = f"sudo -E -S {command}"
281 return self.exec_command(command, timeout)
283 def interactive_terminal_open(self, time_out=45):
284 """Open interactive terminal on a new channel on the connected Node.
286 :param time_out: Timeout in seconds.
287 :returns: SSH channel with opened terminal.
289 .. warning:: Interruptingcow is used here, and it uses
290 signal(SIGALRM) to let the operating system interrupt program
291 execution. This has the following limitations: Python signal
292 handlers only apply to the main thread, so you cannot use this
293 from other threads. You must not use this in a program that
294 uses SIGALRM itself (this includes certain profilers)
296 chan = self._ssh.get_transport().open_session()
299 chan.settimeout(int(time_out))
300 chan.set_combine_stderr(True)
303 while not buf.endswith((u":~# ", u":~$ ", u"~]$ ", u"~]# ")):
305 chunk = chan.recv(self.__MAX_RECV_BUF)
309 if chan.exit_status_ready():
310 logger.error(u"Channel exit status ready")
312 except socket.timeout as exc:
313 raise Exception(f"Socket timeout: {buf}") from exc
316 def interactive_terminal_exec_command(self, chan, cmd, prompt):
317 """Execute command on interactive terminal.
319 interactive_terminal_open() method has to be called first!
321 :param chan: SSH channel with opened terminal.
322 :param cmd: Command to be executed.
323 :param prompt: Command prompt, sequence of characters used to
324 indicate readiness to accept commands.
325 :returns: Command output.
327 .. warning:: Interruptingcow is used here, and it uses
328 signal(SIGALRM) to let the operating system interrupt program
329 execution. This has the following limitations: Python signal
330 handlers only apply to the main thread, so you cannot use this
331 from other threads. You must not use this in a program that
332 uses SIGALRM itself (this includes certain profilers)
334 chan.sendall(f"{cmd}\n")
336 while not buf.endswith(prompt):
338 chunk = chan.recv(self.__MAX_RECV_BUF)
342 if chan.exit_status_ready():
343 logger.error(u"Channel exit status ready")
345 except socket.timeout as exc:
347 f"Socket timeout during execution of command: {cmd}\n"
348 f"Buffer content:\n{buf}"
350 tmp = buf.replace(cmd.replace(u"\n", u""), u"")
352 tmp.replace(item, u"")
356 def interactive_terminal_close(chan):
357 """Close interactive terminal SSH channel.
359 :param chan: SSH channel to be closed.
364 self, local_path, remote_path, get=False, timeout=30,
366 """Copy files from local_path to remote_path or vice versa.
368 connect() method has to be called first!
370 :param local_path: Path to local file that should be uploaded; or
371 path where to save remote file.
372 :param remote_path: Remote path where to place uploaded file; or
373 path to remote file which should be downloaded.
374 :param get: scp operation to perform. Default is put.
375 :param timeout: Timeout value in seconds.
376 :param wildcard: If path has wildcard characters. Default is false.
377 :type local_path: str
378 :type remote_path: str
385 f"SCP {local_path} to "
386 f"{self._ssh.get_transport().getpeername()}:{remote_path}"
390 f"SCP {self._ssh.get_transport().getpeername()}:{remote_path} "
393 # SCPCLient takes a paramiko transport as its only argument
395 scp = SCPClient(self._ssh.get_transport(), socket_timeout=timeout)
398 self._ssh.get_transport(), sanitize=lambda x: x,
399 socket_timeout=timeout
403 scp.put(local_path, remote_path)
405 scp.get(remote_path, local_path)
408 logger.trace(f"SCP took {end-start} seconds")
411 def exec_cmd(node, cmd, timeout=600, sudo=False, disconnect=False):
412 """Convenience function to ssh/exec/return rc, out & err.
414 Returns (rc, stdout, stderr).
416 :param node: The node to execute command on.
417 :param cmd: Command to execute.
418 :param timeout: Timeout value in seconds. Default: 600.
419 :param sudo: Sudo privilege execution flag. Default: False.
420 :param disconnect: Close the opened SSH connection if True.
422 :type cmd: str or OptionString
425 :type disconnect: bool
426 :returns: RC, Stdout, Stderr.
427 :rtype: tuple(int, str, str)
430 raise TypeError(u"Node parameter is None")
432 raise TypeError(u"Command parameter is None")
434 raise ValueError(u"Empty command parameter")
440 except SSHException as err:
441 logger.error(f"Failed to connect to node {node[u'host']}\n{err!r}")
442 return None, None, None
446 ret_code, stdout, stderr = ssh.exec_command(cmd, timeout=timeout)
448 ret_code, stdout, stderr = ssh.exec_command_sudo(
451 except SSHException as err:
452 logger.error(repr(err))
453 return None, None, None
458 return ret_code, stdout, stderr
461 def exec_cmd_no_error(
462 node, cmd, timeout=600, sudo=False, message=None, disconnect=False,
463 retries=0, include_reason=False):
464 """Convenience function to ssh/exec/return out & err.
466 Verifies that return code is zero.
467 Supports retries, timeout is related to each try separately then. There is
468 sleep(1) before each retry.
469 Disconnect (if enabled) is applied after each try.
471 :param node: DUT node.
472 :param cmd: Command to be executed.
473 :param timeout: Timeout value in seconds. Default: 600.
474 :param sudo: Sudo privilege execution flag. Default: False.
475 :param message: Error message in case of failure. Default: None.
476 :param disconnect: Close the opened SSH connection if True.
477 :param retries: How many times to retry on failure.
478 :param include_reason: Whether default info should be appended to message.
480 :type cmd: str or OptionString
484 :type disconnect: bool
486 :type include_reason: bool
487 :returns: Stdout, Stderr.
488 :rtype: tuple(str, str)
489 :raises RuntimeError: If bash return code is not 0.
491 for _ in range(retries + 1):
492 ret_code, stdout, stderr = exec_cmd(
493 node, cmd, timeout=timeout, sudo=sudo, disconnect=disconnect
499 msg = f"Command execution failed: '{cmd}'\nRC: {ret_code}\n{stderr}"
502 msg = f"{message}\n{msg}" if include_reason else message
503 raise RuntimeError(msg)
505 return stdout, stderr
509 node, local_path, remote_path, get=False, timeout=30, disconnect=False):
510 """Copy files from local_path to remote_path or vice versa.
512 :param node: SUT node.
513 :param local_path: Path to local file that should be uploaded; or
514 path where to save remote file.
515 :param remote_path: Remote path where to place uploaded file; or
516 path to remote file which should be downloaded.
517 :param get: scp operation to perform. Default is put.
518 :param timeout: Timeout value in seconds.
519 :param disconnect: Close the opened SSH connection if True.
521 :type local_path: str
522 :type remote_path: str
525 :type disconnect: bool
526 :raises RuntimeError: If SSH connection failed or SCP transfer failed.
532 except SSHException as exc:
533 raise RuntimeError(f"Failed to connect to {node[u'host']}!") from exc
535 ssh.scp(local_path, remote_path, get, timeout)
536 except SCPException as exc:
537 raise RuntimeError(f"SCP execution failed on {node[u'host']}!") from exc
Code Review / csit.git / blob