checktheroads-hyperglass/hyperglass/execution/drivers/ssh.py

"""Common Classes or Utilities for SSH Drivers."""

# Standard Library
from typing import Callable

# Project
from hyperglass.log import log
from hyperglass.exceptions import ScrapeError
from hyperglass.configuration import params
from hyperglass.compat._sshtunnel import BaseSSHTunnelForwarderError, open_tunnel

# Local
from ._common import Connection


class SSHConnection(Connection):
    """Base class for SSH drivers."""

    def setup_proxy(self) -> Callable:
        """Return a preconfigured sshtunnel.SSHTunnelForwarder instance."""

        proxy = self.device.proxy

        def opener():
            """Set up an SSH tunnel according to a device's configuration."""
            tunnel_kwargs = {
                "ssh_username": proxy.credential.username,
                "remote_bind_address": (self.device._target, self.device.port),
                "local_bind_address": ("localhost", 0),
                "skip_tunnel_checkup": False,
                "gateway_timeout": params.request_timeout - 2,
            }
            if proxy.credential._method == "password":
                # Use password auth if no key is defined.
                tunnel_kwargs[
                    "ssh_password"
                ] = proxy.credential.password.get_secret_value()
            else:
                # Otherwise, use key auth.
                tunnel_kwargs["ssh_pkey"] = proxy.credential.key.as_posix()
                if proxy.credential._method == "encrypted_key":
                    # If the key is encrypted, use the password field as the
                    # private key password.
                    tunnel_kwargs[
                        "ssh_private_key_password"
                    ] = proxy.credential.password.get_secret_value()
            try:
                return open_tunnel(proxy._target, proxy.port, **tunnel_kwargs)

            except BaseSSHTunnelForwarderError as scrape_proxy_error:
                log.error(
                    f"Error connecting to device {self.device.name} via "
                    f"proxy {proxy.name}"
                )
                raise ScrapeError(
                    params.messages.connection_error,
                    device_name=self.device.name,
                    proxy=proxy.name,
                    error=str(scrape_proxy_error),
                )

        return opener
Improve driver layout 2020-07-23 17:47:54 -07:00			`"""Common Classes or Utilities for SSH Drivers."""`
Refactor connection handling to support any transport drivers with a common API 2020-07-23 09:20:04 -07:00
			`# Standard Library`
Improve driver layout 2020-07-23 17:47:54 -07:00			`from typing import Callable`
Refactor connection handling to support any transport drivers with a common API 2020-07-23 09:20:04 -07:00
			`# Project`
			`from hyperglass.log import log`
Improve driver layout 2020-07-23 17:47:54 -07:00			`from hyperglass.exceptions import ScrapeError`
Refactor connection handling to support any transport drivers with a common API 2020-07-23 09:20:04 -07:00			`from hyperglass.configuration import params`
			`from hyperglass.compat._sshtunnel import BaseSSHTunnelForwarderError, open_tunnel`
move execution module to relative imports 2020-10-05 12:10:27 -07:00
import formatting imporvements 2020-10-11 13:14:57 -07:00			`# Local`
move execution module to relative imports 2020-10-05 12:10:27 -07:00			`from ._common import Connection`
Refactor connection handling to support any transport drivers with a common API 2020-07-23 09:20:04 -07:00

			`class SSHConnection(Connection):`
Improve driver layout 2020-07-23 17:47:54 -07:00			`"""Base class for SSH drivers."""`
Refactor connection handling to support any transport drivers with a common API 2020-07-23 09:20:04 -07:00
			`def setup_proxy(self) -> Callable:`
			`"""Return a preconfigured sshtunnel.SSHTunnelForwarder instance."""`

			`proxy = self.device.proxy`

			`def opener():`
			`"""Set up an SSH tunnel according to a device's configuration."""`
add ssh key authentication support, closes #81 2020-10-11 14:39:17 -07:00			`tunnel_kwargs = {`
			`"ssh_username": proxy.credential.username,`
			`"remote_bind_address": (self.device._target, self.device.port),`
			`"local_bind_address": ("localhost", 0),`
			`"skip_tunnel_checkup": False,`
			`"gateway_timeout": params.request_timeout - 2,`
			`}`
			`if proxy.credential._method == "password":`
			`# Use password auth if no key is defined.`
			`tunnel_kwargs[`
			`"ssh_password"`
			`] = proxy.credential.password.get_secret_value()`
			`else:`
			`# Otherwise, use key auth.`
			`tunnel_kwargs["ssh_pkey"] = proxy.credential.key.as_posix()`
			`if proxy.credential._method == "encrypted_key":`
			`# If the key is encrypted, use the password field as the`
			`# private key password.`
			`tunnel_kwargs[`
			`"ssh_private_key_password"`
			`] = proxy.credential.password.get_secret_value()`
Refactor connection handling to support any transport drivers with a common API 2020-07-23 09:20:04 -07:00			`try:`
add ssh key authentication support, closes #81 2020-10-11 14:39:17 -07:00			`return open_tunnel(proxy._target, proxy.port, **tunnel_kwargs)`
Refactor connection handling to support any transport drivers with a common API 2020-07-23 09:20:04 -07:00
			`except BaseSSHTunnelForwarderError as scrape_proxy_error:`
			`log.error(`
			`f"Error connecting to device {self.device.name} via "`
			`f"proxy {proxy.name}"`
			`)`
			`raise ScrapeError(`
			`params.messages.connection_error,`
consolidate name & display name fields, closes #115 2021-02-10 00:43:40 -07:00			`device_name=self.device.name,`
Refactor connection handling to support any transport drivers with a common API 2020-07-23 09:20:04 -07:00			`proxy=proxy.name,`
			`error=str(scrape_proxy_error),`
			`)`

			`return opener`