def _CreateRequests( self, args, instance_refs, compute_client, resource_parser, holder): # gcloud creates default values for some fields in Instance resource # when no value was specified on command line. # When --source-instance-template was specified, defaults are taken from # Instance Template and gcloud flags are used to override them - by default # fields should not be initialized. source_instance_template = self.GetSourceInstanceTemplate( args, resource_parser) skip_defaults = source_instance_template is not None source_machine_image = self.GetSourceMachineImage( args, resource_parser) skip_defaults = skip_defaults or source_machine_image is not None scheduling = instance_utils.GetScheduling( args, compute_client, skip_defaults, support_node_affinity=True, support_min_node_cpus=self._support_min_node_cpus, support_location_hint=self._support_location_hint) tags = instance_utils.GetTags(args, compute_client) labels = instance_utils.GetLabels(args, compute_client) metadata = instance_utils.GetMetadata(args, compute_client, skip_defaults) boot_disk_size_gb = instance_utils.GetBootDiskSizeGb(args) network_interfaces = self._GetNetworkInterfacesWithValidation( args, resource_parser, compute_client, holder, instance_refs, skip_defaults) machine_type_uris = instance_utils.GetMachineTypeUris( args, compute_client, holder, instance_refs, skip_defaults) create_boot_disk = not instance_utils.UseExistingBootDisk(args.disk or []) image_uri = self._GetImageUri( args, compute_client, create_boot_disk, instance_refs, resource_parser) shielded_instance_config = self._BuildShieldedInstanceConfigMessage( messages=compute_client.messages, args=args) if self._support_confidential_compute: confidential_instance_config = ( self._BuildConfidentialInstanceConfigMessage( messages=compute_client.messages, args=args)) # TODO(b/80138906): Release track should not be used like this. # These feature are only exposed in alpha/beta allow_rsa_encrypted = False if self.ReleaseTrack() in [base.ReleaseTrack.ALPHA, base.ReleaseTrack.BETA]: allow_rsa_encrypted = True csek_keys = csek_utils.CsekKeyStore.FromArgs(args, allow_rsa_encrypted) disks_messages = self._GetDiskMessages( args, skip_defaults, instance_refs, compute_client, resource_parser, create_boot_disk, boot_disk_size_gb, image_uri, csek_keys) project_to_sa = self._GetProjectToServiceAccountMap( args, instance_refs, compute_client, skip_defaults) requests = [] for instance_ref, machine_type_uri, disks in zip( instance_refs, machine_type_uris, disks_messages): can_ip_forward = instance_utils.GetCanIpForward(args, skip_defaults) guest_accelerators = instance_utils.GetAccelerators( args, compute_client, resource_parser, instance_ref) instance = compute_client.messages.Instance( canIpForward=can_ip_forward, deletionProtection=args.deletion_protection, description=args.description, disks=disks, guestAccelerators=guest_accelerators, hostname=args.hostname, labels=labels, machineType=machine_type_uri, metadata=metadata, minCpuPlatform=args.min_cpu_platform, name=instance_ref.Name(), networkInterfaces=network_interfaces, serviceAccounts=project_to_sa[instance_ref.project], scheduling=scheduling, tags=tags) resource_policies = getattr( args, 'resource_policies', None) if resource_policies: parsed_resource_policies = [] for policy in resource_policies: resource_policy_ref = maintenance_util.ParseResourcePolicyWithZone( resource_parser, policy, project=instance_ref.project, zone=instance_ref.zone) parsed_resource_policies.append(resource_policy_ref.SelfLink()) instance.resourcePolicies = parsed_resource_policies if shielded_instance_config: instance.shieldedInstanceConfig = shielded_instance_config if self._support_confidential_compute and confidential_instance_config: instance.confidentialInstanceConfig = confidential_instance_config if self._support_erase_vss and \ args.IsSpecified('erase_windows_vss_signature'): instance.eraseWindowsVssSignature = args.erase_windows_vss_signature request = compute_client.messages.ComputeInstancesInsertRequest( instance=instance, project=instance_ref.project, zone=instance_ref.zone) if source_instance_template: request.sourceInstanceTemplate = source_instance_template if source_machine_image: request.instance.sourceMachineImage = source_machine_image if args.IsSpecified('source_machine_image_csek_key_file'): key = instance_utils.GetSourceMachineImageKey( args, self.SOURCE_MACHINE_IMAGE, compute_client, holder) request.instance.sourceMachineImageEncryptionKey = key if self._support_machine_image_key and \ args.IsSpecified('source_machine_image_csek_key_file'): if not args.IsSpecified('source_machine_image'): raise exceptions.RequiredArgumentException( '`--source-machine-image`', '`--source-machine-image-csek-key-file` requires ' '`--source-machine-image` to be specified`') if args.IsSpecified('enable_display_device'): request.instance.displayDevice = compute_client.messages.DisplayDevice( enableDisplay=args.enable_display_device) request.instance.reservationAffinity = instance_utils.GetReservationAffinity( args, compute_client) requests.append( (compute_client.apitools_client.instances, 'Insert', request)) return requests
def _CreateRequests( self, args, instance_refs, compute_client, resource_parser, holder): # gcloud creates default values for some fields in Instance resource # when no value was specified on command line. # When --source-instance-template was specified, defaults are taken from # Instance Template and gcloud flags are used to override them - by default # fields should not be initialized. source_instance_template = self.GetSourceInstanceTemplate( args, resource_parser) skip_defaults = source_instance_template is not None # This feature is only exposed in alpha/beta allow_rsa_encrypted = self.ReleaseTrack() in [base.ReleaseTrack.ALPHA, base.ReleaseTrack.BETA] csek_keys = csek_utils.CsekKeyStore.FromArgs(args, allow_rsa_encrypted) scheduling = instance_utils.GetScheduling( args, compute_client, skip_defaults) tags = instance_utils.GetTags(args, compute_client) labels = instance_utils.GetLabels(args, compute_client) metadata = instance_utils.GetMetadata(args, compute_client, skip_defaults) boot_disk_size_gb = instance_utils.GetBootDiskSizeGb(args) # Compute the shieldedVMConfig message. if self.ReleaseTrack() == base.ReleaseTrack.ALPHA: shieldedvm_config_message = self.BuildShieldedVMConfigMessage( messages=compute_client.messages, args=args) network_interfaces = self._GetNetworkInterfacesWithValidation( args, resource_parser, compute_client, holder, instance_refs, skip_defaults) machine_type_uris = instance_utils.GetMachineTypeUris( args, compute_client, holder, instance_refs, skip_defaults) create_boot_disk = not instance_utils.UseExistingBootDisk(args.disk or []) image_uri = self._GetImageUri( args, compute_client, create_boot_disk, instance_refs, resource_parser) disks_messages = self._GetDiskMessagess( args, skip_defaults, instance_refs, compute_client, resource_parser, create_boot_disk, boot_disk_size_gb, image_uri, csek_keys) project_to_sa = self._GetProjectToServiceAccountMap( args, instance_refs, compute_client, skip_defaults) requests = [] for instance_ref, machine_type_uri, disks in zip( instance_refs, machine_type_uris, disks_messages): can_ip_forward = instance_utils.GetCanIpForward(args, skip_defaults) guest_accelerators = instance_utils.GetAccelerators( args, compute_client, resource_parser, instance_ref) instance = compute_client.messages.Instance( canIpForward=can_ip_forward, deletionProtection=args.deletion_protection, description=args.description, disks=disks, guestAccelerators=guest_accelerators, labels=labels, machineType=machine_type_uri, metadata=metadata, minCpuPlatform=args.min_cpu_platform, name=instance_ref.Name(), networkInterfaces=network_interfaces, serviceAccounts=project_to_sa[instance_ref.project], scheduling=scheduling, tags=tags) if self.ReleaseTrack() in [base.ReleaseTrack.ALPHA]: instance.shieldedVmConfig = shieldedvm_config_message sole_tenancy_host = self._GetGetSoleTenancyHost( args, resource_parser, instance_ref) if sole_tenancy_host: instance.host = sole_tenancy_host request = compute_client.messages.ComputeInstancesInsertRequest( instance=instance, project=instance_ref.project, zone=instance_ref.zone) if source_instance_template: request.sourceInstanceTemplate = source_instance_template requests.append( (compute_client.apitools_client.instances, 'Insert', request)) return requests
def _CreateRequests(self, args, holder, compute_client, resource_parser, project, location, scope): # gcloud creates default values for some fields in Instance resource # when no value was specified on command line. # When --source-instance-template was specified, defaults are taken from # Instance Template and gcloud flags are used to override them - by default # fields should not be initialized. name_pattern = args.name_pattern instance_names = args.predefined_names or [] instance_count = args.count or len(instance_names) per_instance_props = encoding.DictToAdditionalPropertyMessage( {el: {} for el in instance_names}, compute_client.messages. BulkInsertInstanceResource.PerInstancePropertiesValue) location_policy = self.GetLocationPolicy(args, compute_client.messages) instance_min_count = instance_count if args.IsSpecified('min_count'): instance_min_count = args.min_count source_instance_template = self.GetSourceInstanceTemplate( args, resource_parser) skip_defaults = source_instance_template is not None scheduling = instance_utils.GetScheduling( args, compute_client, skip_defaults, support_node_affinity=False, support_min_node_cpu=self._support_min_node_cpu, support_host_error_timeout_seconds=self. _support_host_error_timeout_seconds, support_max_run_duration=self._support_max_run_duration) tags = instance_utils.GetTags(args, compute_client) labels = instance_utils.GetLabels(args, compute_client, instance_properties=True) metadata = instance_utils.GetMetadata(args, compute_client, skip_defaults) network_interfaces = create_utils.GetBulkNetworkInterfaces( args=args, resource_parser=resource_parser, compute_client=compute_client, holder=holder, project=project, location=location, scope=scope, skip_defaults=skip_defaults) create_boot_disk = not ( instance_utils.UseExistingBootDisk((args.disk or []) + (args.create_disk or []))) image_uri = create_utils.GetImageUri(args, compute_client, create_boot_disk, project, resource_parser) shielded_instance_config = create_utils.BuildShieldedInstanceConfigMessage( messages=compute_client.messages, args=args) confidential_vm = False if self._support_confidential_compute: confidential_instance_config = ( create_utils.BuildConfidentialInstanceConfigMessage( messages=compute_client.messages, args=args)) confidential_vm = (args.IsSpecified('confidential_compute') and args.confidential_compute) service_accounts = create_utils.GetProjectServiceAccount( args, project, compute_client, skip_defaults) boot_disk_size_gb = instance_utils.GetBootDiskSizeGb(args) disks = [] if create_utils.CheckSpecifiedDiskArgs(args=args, support_disks=False, skip_defaults=skip_defaults): # Disks in bulk insert should be in READ_ONLY mode for disk in args.disk or []: disk['mode'] = 'ro' disks = create_utils.CreateDiskMessages( args=args, project=project, location=location, scope=scope, compute_client=compute_client, resource_parser=resource_parser, image_uri=image_uri, create_boot_disk=create_boot_disk, boot_disk_size_gb=boot_disk_size_gb, support_kms=True, support_nvdimm=self._support_nvdimm, support_source_snapshot_csek=self. _support_source_snapshot_csek, support_boot_snapshot_uri=self._support_boot_snapshot_uri, support_image_csek=self._support_image_csek, support_create_disk_snapshots=self. _support_create_disk_snapshots, use_disk_type_uri=False) machine_type_name = None if instance_utils.CheckSpecifiedMachineTypeArgs(args, skip_defaults): machine_type_name = instance_utils.CreateMachineTypeName( args, confidential_vm) # Check to see if the custom machine type ratio is supported instance_utils.CheckCustomCpuRamRatio(compute_client, project, location, machine_type_name) can_ip_forward = instance_utils.GetCanIpForward(args, skip_defaults) guest_accelerators = create_utils.GetAcceleratorsForInstanceProperties( args=args, compute_client=compute_client) # Create an AdvancedMachineFeatures message if any arguments are supplied # that require one. advanced_machine_features = None if (args.enable_nested_virtualization is not None or args.threads_per_core is not None or (self._support_numa_node_count and args.numa_node_count is not None) or (self._support_visible_core_count and args.visible_core_count is not None) or args.enable_uefi_networking is not None): visible_core_count = args.visible_core_count if self._support_visible_core_count else None advanced_machine_features = ( instance_utils.CreateAdvancedMachineFeaturesMessage( compute_client.messages, args.enable_nested_virtualization, args.threads_per_core, args.numa_node_count if self._support_numa_node_count else None, visible_core_count, args.enable_uefi_networking)) parsed_resource_policies = [] resource_policies = getattr(args, 'resource_policies', None) if resource_policies: for policy in resource_policies: resource_policy_ref = maintenance_util.ParseResourcePolicyWithScope( resource_parser, policy, project=project, location=location, scope=scope) parsed_resource_policies.append(resource_policy_ref.Name()) display_device = None if self._support_display_device and args.IsSpecified( 'enable_display_device'): display_device = compute_client.messages.DisplayDevice( enableDisplay=args.enable_display_device) reservation_affinity = instance_utils.GetReservationAffinity( args, compute_client) instance_properties = compute_client.messages.InstanceProperties( canIpForward=can_ip_forward, description=args.description, disks=disks, guestAccelerators=guest_accelerators, labels=labels, machineType=machine_type_name, metadata=metadata, minCpuPlatform=args.min_cpu_platform, networkInterfaces=network_interfaces, serviceAccounts=service_accounts, scheduling=scheduling, tags=tags, resourcePolicies=parsed_resource_policies, shieldedInstanceConfig=shielded_instance_config, reservationAffinity=reservation_affinity, advancedMachineFeatures=advanced_machine_features) if self._support_secure_tags and args.secure_tags: instance_properties.secureTags = secure_tags_utils.GetSecureTags( args.secure_tags) if args.resource_manager_tags: ret_resource_manager_tags = resource_manager_tags_utils.GetResourceManagerTags( args.resource_manager_tags) if ret_resource_manager_tags is not None: properties_message = compute_client.messages.InstanceProperties instance_properties.resourceManagerTags = properties_message.ResourceManagerTagsValue( additionalProperties=[ properties_message.ResourceManagerTagsValue. AdditionalProperty(key=key, value=value) for key, value in sorted( six.iteritems(ret_resource_manager_tags)) ]) if self._support_display_device and display_device: instance_properties.displayDevice = display_device if self._support_confidential_compute and confidential_instance_config: instance_properties.confidentialInstanceConfig = confidential_instance_config if self._support_erase_vss and args.IsSpecified( 'erase_windows_vss_signature'): instance_properties.eraseWindowsVssSignature = args.erase_windows_vss_signature if self._support_post_key_revocation_action_type and args.IsSpecified( 'post_key_revocation_action_type'): instance_properties.postKeyRevocationActionType = arg_utils.ChoiceToEnum( args.post_key_revocation_action_type, compute_client.messages. Instance.PostKeyRevocationActionTypeValueValuesEnum) if args.IsSpecified('network_performance_configs'): instance_properties.networkPerformanceConfig = ( instance_utils.GetNetworkPerformanceConfig( args, compute_client)) bulk_instance_resource = compute_client.messages.BulkInsertInstanceResource( count=instance_count, instanceProperties=instance_properties, minCount=instance_min_count, perInstanceProperties=per_instance_props, sourceInstanceTemplate=source_instance_template, namePattern=name_pattern, locationPolicy=location_policy) if scope == compute_scopes.ScopeEnum.ZONE: instance_service = compute_client.apitools_client.instances request_message = compute_client.messages.ComputeInstancesBulkInsertRequest( bulkInsertInstanceResource=bulk_instance_resource, project=project, zone=location) elif scope == compute_scopes.ScopeEnum.REGION: instance_service = compute_client.apitools_client.regionInstances request_message = compute_client.messages.ComputeRegionInstancesBulkInsertRequest( bulkInsertInstanceResource=bulk_instance_resource, project=project, region=location) return instance_service, request_message
def _CreateRequests(self, args, instance_refs, project, zone, compute_client, resource_parser, holder): # gcloud creates default values for some fields in Instance resource # when no value was specified on command line. # When --source-instance-template was specified, defaults are taken from # Instance Template and gcloud flags are used to override them - by default # fields should not be initialized. source_instance_template = self.GetSourceInstanceTemplate( args, resource_parser) skip_defaults = source_instance_template is not None source_machine_image = self.GetSourceMachineImage( args, resource_parser) skip_defaults = skip_defaults or source_machine_image is not None scheduling = instance_utils.GetScheduling( args, compute_client, skip_defaults, support_node_affinity=True, support_min_node_cpu=self._support_min_node_cpu, support_location_hint=self._support_location_hint) tags = instance_utils.GetTags(args, compute_client) labels = instance_utils.GetLabels(args, compute_client) metadata = instance_utils.GetMetadata(args, compute_client, skip_defaults) boot_disk_size_gb = instance_utils.GetBootDiskSizeGb(args) network_interfaces = create_utils.GetNetworkInterfacesWithValidation( args=args, resource_parser=resource_parser, compute_client=compute_client, holder=holder, project=project, location=zone, scope=compute_scopes.ScopeEnum.ZONE, skip_defaults=skip_defaults, support_public_dns=self._support_public_dns) create_boot_disk = not instance_utils.UseExistingBootDisk(args.disk or []) image_uri = create_utils.GetImageUri(args, compute_client, create_boot_disk, project, resource_parser) shielded_instance_config = create_utils.BuildShieldedInstanceConfigMessage( messages=compute_client.messages, args=args) if self._support_confidential_compute: confidential_instance_config = ( create_utils.BuildConfidentialInstanceConfigMessage( messages=compute_client.messages, args=args)) csek_keys = csek_utils.CsekKeyStore.FromArgs( args, self._support_rsa_encrypted) project_to_sa = create_utils.GetProjectToServiceAccountMap( args, instance_refs, compute_client, skip_defaults) requests = [] for instance_ref in instance_refs: disks = [] if create_utils.CheckSpecifiedDiskArgs( args=args, skip_defaults=skip_defaults, support_kms=self._support_kms): disks = create_utils.CreateDiskMessages( args=args, instance_name=instance_ref.Name(), project=instance_ref.project, location=instance_ref.zone, scope=compute_scopes.ScopeEnum.ZONE, compute_client=compute_client, resource_parser=resource_parser, boot_disk_size_gb=boot_disk_size_gb, image_uri=image_uri, create_boot_disk=create_boot_disk, csek_keys=csek_keys, support_kms=self._support_kms, support_nvdimm=self._support_nvdimm, support_disk_resource_policy=self. _support_disk_resource_policy, support_source_snapshot_csek=self. _support_source_snapshot_csek, support_boot_snapshot_uri=self._support_boot_snapshot_uri, support_image_csek=self._support_image_csek, support_create_disk_snapshots=self. _support_create_disk_snapshots) machine_type_uri = None if instance_utils.CheckSpecifiedMachineTypeArgs( args, skip_defaults): machine_type_uri = instance_utils.CreateMachineTypeUri( args=args, compute_client=compute_client, resource_parser=resource_parser, project=instance_ref.project, location=instance_ref.zone, scope=compute_scopes.ScopeEnum.ZONE) can_ip_forward = instance_utils.GetCanIpForward( args, skip_defaults) guest_accelerators = create_utils.GetAccelerators( args=args, compute_client=compute_client, resource_parser=resource_parser, project=instance_ref.project, location=instance_ref.zone, scope=compute_scopes.ScopeEnum.ZONE) instance = compute_client.messages.Instance( canIpForward=can_ip_forward, deletionProtection=args.deletion_protection, description=args.description, disks=disks, guestAccelerators=guest_accelerators, hostname=args.hostname, labels=labels, machineType=machine_type_uri, metadata=metadata, minCpuPlatform=args.min_cpu_platform, name=instance_ref.Name(), networkInterfaces=network_interfaces, serviceAccounts=project_to_sa[instance_ref.project], scheduling=scheduling, tags=tags) if args.private_ipv6_google_access_type is not None: instance.privateIpv6GoogleAccess = ( instances_flags.GetPrivateIpv6GoogleAccessTypeFlagMapper( compute_client.messages).GetEnumForChoice( args.private_ipv6_google_access_type)) resource_policies = getattr(args, 'resource_policies', None) if resource_policies: parsed_resource_policies = [] for policy in resource_policies: resource_policy_ref = maintenance_util.ParseResourcePolicyWithZone( resource_parser, policy, project=instance_ref.project, zone=instance_ref.zone) parsed_resource_policies.append( resource_policy_ref.SelfLink()) instance.resourcePolicies = parsed_resource_policies if shielded_instance_config: instance.shieldedInstanceConfig = shielded_instance_config if self._support_confidential_compute and confidential_instance_config: instance.confidentialInstanceConfig = confidential_instance_config if self._support_erase_vss and \ args.IsSpecified('erase_windows_vss_signature'): instance.eraseWindowsVssSignature = args.erase_windows_vss_signature if self._support_post_key_revocation_action_type and args.IsSpecified( 'post_key_revocation_action_type'): instance.postKeyRevocationActionType = arg_utils.ChoiceToEnum( args.post_key_revocation_action_type, compute_client.messages.Instance. PostKeyRevocationActionTypeValueValuesEnum) request = compute_client.messages.ComputeInstancesInsertRequest( instance=instance, project=instance_ref.project, zone=instance_ref.zone) if source_instance_template: request.sourceInstanceTemplate = source_instance_template if source_machine_image: request.instance.sourceMachineImage = source_machine_image if args.IsSpecified('source_machine_image_csek_key_file'): key = instance_utils.GetSourceMachineImageKey( args, self.SOURCE_MACHINE_IMAGE, compute_client, holder) request.instance.sourceMachineImageEncryptionKey = key if self._support_machine_image_key and \ args.IsSpecified('source_machine_image_csek_key_file'): if not args.IsSpecified('source_machine_image'): raise exceptions.RequiredArgumentException( '`--source-machine-image`', '`--source-machine-image-csek-key-file` requires ' '`--source-machine-image` to be specified`') if args.IsSpecified('enable_display_device'): request.instance.displayDevice = compute_client.messages.DisplayDevice( enableDisplay=args.enable_display_device) request.instance.reservationAffinity = instance_utils.GetReservationAffinity( args, compute_client) requests.append( (compute_client.apitools_client.instances, 'Insert', request)) return requests
def _CreateRequests(self, args, instance_refs, compute_client, resource_parser, holder): # gcloud creates default values for some fields in Instance resource # when no value was specified on command line. # When --source-instance-template was specified, defaults are taken from # Instance Template and gcloud flags are used to override them - by default # fields should not be initialized. source_instance_template = self.GetSourceInstanceTemplate( args, resource_parser) skip_defaults = source_instance_template is not None source_machine_image = self.GetSourceMachineImage( args, resource_parser) skip_defaults = skip_defaults or source_machine_image is not None scheduling = instance_utils.GetScheduling(args, compute_client, skip_defaults, support_node_affinity=True) tags = instance_utils.GetTags(args, compute_client) labels = instance_utils.GetLabels(args, compute_client) metadata = instance_utils.GetMetadata(args, compute_client, skip_defaults) boot_disk_size_gb = instance_utils.GetBootDiskSizeGb(args) network_interfaces = self._GetNetworkInterfacesWithValidation( args, resource_parser, compute_client, holder, instance_refs, skip_defaults) machine_type_uris = instance_utils.GetMachineTypeUris( args, compute_client, holder, instance_refs, skip_defaults) create_boot_disk = not instance_utils.UseExistingBootDisk(args.disk or []) image_uri = self._GetImageUri(args, compute_client, create_boot_disk, instance_refs, resource_parser) # TODO(b/80138906): Release track should not be used like this. # These feature are only exposed in alpha/beta shielded_vm_config = None allow_rsa_encrypted = False if self.ReleaseTrack() in [ base.ReleaseTrack.ALPHA, base.ReleaseTrack.BETA ]: allow_rsa_encrypted = True shielded_vm_config = self._BuildShieldedVMConfigMessage( messages=compute_client.messages, args=args) csek_keys = csek_utils.CsekKeyStore.FromArgs(args, allow_rsa_encrypted) disks_messages = self._GetDiskMessages(args, skip_defaults, instance_refs, compute_client, resource_parser, create_boot_disk, boot_disk_size_gb, image_uri, csek_keys) project_to_sa = self._GetProjectToServiceAccountMap( args, instance_refs, compute_client, skip_defaults) requests = [] for instance_ref, machine_type_uri, disks in zip( instance_refs, machine_type_uris, disks_messages): can_ip_forward = instance_utils.GetCanIpForward( args, skip_defaults) guest_accelerators = instance_utils.GetAccelerators( args, compute_client, resource_parser, instance_ref) instance = compute_client.messages.Instance( canIpForward=can_ip_forward, deletionProtection=args.deletion_protection, description=args.description, disks=disks, guestAccelerators=guest_accelerators, labels=labels, machineType=machine_type_uri, metadata=metadata, minCpuPlatform=args.min_cpu_platform, name=instance_ref.Name(), networkInterfaces=network_interfaces, serviceAccounts=project_to_sa[instance_ref.project], scheduling=scheduling, tags=tags) if hasattr(args, 'hostname'): instance.hostname = args.hostname # TODO(b/80138906): These features are only exposed in alpha. if self.ReleaseTrack() == base.ReleaseTrack.ALPHA: instance.allocationAffinity = instance_utils.GetAllocationAffinity( args, compute_client) resource_policies = getattr(args, 'resource_policies', None) if resource_policies: parsed_resource_policies = [] for policy in resource_policies: resource_policy_ref = maintenance_util.ParseResourcePolicyWithZone( resource_parser, policy, project=instance_ref.project, zone=instance_ref.zone) parsed_resource_policies.append( resource_policy_ref.SelfLink()) instance.resourcePolicies = parsed_resource_policies if shielded_vm_config: instance.shieldedVmConfig = shielded_vm_config request = compute_client.messages.ComputeInstancesInsertRequest( instance=instance, project=instance_ref.project, zone=instance_ref.zone) if source_instance_template: request.sourceInstanceTemplate = source_instance_template if source_machine_image: request.instance.sourceMachineImage = source_machine_image requests.append( (compute_client.apitools_client.instances, 'Insert', request)) return requests
def _CreateRequests(self, args, holder, compute_client, resource_parser, project, location, scope): # gcloud creates default values for some fields in Instance resource # when no value was specified on command line. # When --source-instance-template was specified, defaults are taken from # Instance Template and gcloud flags are used to override them - by default # fields should not be initialized. name_pattern = args.name_pattern instance_names = args.predefined_names or [] instance_count = args.count or len(instance_names) per_instance_props = encoding.DictToAdditionalPropertyMessage( {el: {} for el in instance_names}, compute_client.messages. BulkInsertInstanceResource.PerInstancePropertiesValue) location_policy = self.GetLocationPolicy(args, compute_client.messages) instance_min_count = instance_count if args.IsSpecified('min_count'): instance_min_count = args.min_count source_instance_template = self.GetSourceInstanceTemplate( args, resource_parser) skip_defaults = source_instance_template is not None scheduling = instance_utils.GetScheduling( args, compute_client, skip_defaults, support_node_affinity=False, support_min_node_cpu=self._support_min_node_cpu, support_location_hint=self._support_location_hint) tags = instance_utils.GetTags(args, compute_client) labels = instance_utils.GetLabels(args, compute_client, instance_properties=True) metadata = instance_utils.GetMetadata(args, compute_client, skip_defaults) network_interfaces = create_utils.GetBulkNetworkInterfaces( args=args, resource_parser=resource_parser, compute_client=compute_client, holder=holder, project=project, location=location, scope=scope, skip_defaults=skip_defaults) create_boot_disk = True image_uri = create_utils.GetImageUri(args, compute_client, create_boot_disk, project, resource_parser) shielded_instance_config = create_utils.BuildShieldedInstanceConfigMessage( messages=compute_client.messages, args=args) if self._support_confidential_compute: confidential_instance_config = ( create_utils.BuildConfidentialInstanceConfigMessage( messages=compute_client.messages, args=args)) service_accounts = create_utils.GetProjectServiceAccount( args, project, compute_client, skip_defaults) boot_disk_size_gb = instance_utils.GetBootDiskSizeGb(args) disks = [] if create_utils.CheckSpecifiedDiskArgs(args=args, support_disks=False, skip_defaults=skip_defaults): disks = create_utils.CreateDiskMessages( args=args, project=project, location=location, scope=scope, compute_client=compute_client, resource_parser=resource_parser, image_uri=image_uri, create_boot_disk=create_boot_disk, boot_disk_size_gb=boot_disk_size_gb, support_nvdimm=self._support_nvdimm, support_disk_resource_policy=self. _support_disk_resource_policy, support_source_snapshot_csek=self. _support_source_snapshot_csek, support_boot_snapshot_uri=self._support_boot_snapshot_uri, support_image_csek=self._support_image_csek, support_create_disk_snapshots=self. _support_create_disk_snapshots, support_persistent_attached_disks=False, use_disk_type_uri=False) machine_type = 'n1-standard-1' if args.IsSpecified('machine_type'): machine_type = args.machine_type can_ip_forward = instance_utils.GetCanIpForward(args, skip_defaults) guest_accelerators = create_utils.GetAcceleratorsForInstanceProperties( args=args, compute_client=compute_client) # If either nested or threads_per_core are given, make an # AdvancedMachineFeatures message. advanced_machine_features = None if ((self._support_enable_nested_virtualization and args.enable_nested_virtualization is not None) or (self._support_threads_per_core and args.threads_per_core is not None)): advanced_machine_features = ( instance_utils.CreateAdvancedMachineFeaturesMessage( compute_client.messages, args.enable_nested_virtualization, args.threads_per_core)) parsed_resource_policies = [] resource_policies = getattr(args, 'resource_policies', None) if resource_policies: for policy in resource_policies: resource_policy_ref = maintenance_util.ParseResourcePolicyWithScope( resource_parser, policy, project=project, location=location, scope=scope) parsed_resource_policies.append(resource_policy_ref.SelfLink()) display_device = None if args.IsSpecified('enable_display_device'): display_device = compute_client.messages.DisplayDevice( enableDisplay=args.enable_display_device) reservation_affinity = instance_utils.GetReservationAffinity( args, compute_client) instance_properties = compute_client.messages.InstanceProperties( canIpForward=can_ip_forward, description=args.description, disks=disks, guestAccelerators=guest_accelerators, labels=labels, machineType=machine_type, metadata=metadata, minCpuPlatform=args.min_cpu_platform, networkInterfaces=network_interfaces, serviceAccounts=service_accounts, scheduling=scheduling, tags=tags, resourcePolicies=parsed_resource_policies, shieldedInstanceConfig=shielded_instance_config, displayDevice=display_device, reservationAffinity=reservation_affinity, advancedMachineFeatures=advanced_machine_features) if self._support_confidential_compute and confidential_instance_config: instance_properties.confidentialInstanceConfig = confidential_instance_config if self._support_erase_vss and \ args.IsSpecified('erase_windows_vss_signature'): instance_properties.eraseWindowsVssSignature = args.erase_windows_vss_signature if self._support_post_key_revocation_action_type and args.IsSpecified( 'post_key_revocation_action_type'): instance_properties.postKeyRevocationActionType = arg_utils.ChoiceToEnum( args.post_key_revocation_action_type, compute_client.messages. Instance.PostKeyRevocationActionTypeValueValuesEnum) bulk_instance_resource = compute_client.messages.BulkInsertInstanceResource( count=instance_count, instanceProperties=instance_properties, minCount=instance_min_count, perInstanceProperties=per_instance_props, sourceInstanceTemplate=source_instance_template, namePattern=name_pattern, locationPolicy=location_policy) if scope == compute_scopes.ScopeEnum.ZONE: instance_service = compute_client.apitools_client.instances request_message = compute_client.messages.ComputeInstancesBulkInsertRequest( bulkInsertInstanceResource=bulk_instance_resource, project=project, zone=location) elif scope == compute_scopes.ScopeEnum.REGION: instance_service = compute_client.apitools_client.regionInstances request_message = compute_client.messages.ComputeRegionInstancesBulkInsertRequest( bulkInsertInstanceResource=bulk_instance_resource, project=project, region=location) return instance_service, request_message
def _CreateRequests(self, args, instance_refs, project, zone, compute_client, resource_parser, holder): # gcloud creates default values for some fields in Instance resource # when no value was specified on command line. # When --source-instance-template was specified, defaults are taken from # Instance Template and gcloud flags are used to override them - by default # fields should not be initialized. source_instance_template = self.GetSourceInstanceTemplate( args, resource_parser) skip_defaults = source_instance_template is not None source_machine_image = self.GetSourceMachineImage( args, resource_parser) skip_defaults = skip_defaults or source_machine_image is not None scheduling = instance_utils.GetScheduling( args, compute_client, skip_defaults, support_node_affinity=True, support_node_project=self._support_node_project, support_host_error_timeout_seconds=self. _support_host_error_timeout_seconds, support_max_run_duration=self._support_max_run_duration) tags = instance_utils.GetTags(args, compute_client) labels = instance_utils.GetLabels(args, compute_client) metadata = instance_utils.GetMetadata(args, compute_client, skip_defaults) boot_disk_size_gb = instance_utils.GetBootDiskSizeGb(args) network_interfaces = create_utils.GetNetworkInterfacesWithValidation( args=args, resource_parser=resource_parser, compute_client=compute_client, holder=holder, project=project, location=zone, scope=compute_scopes.ScopeEnum.ZONE, skip_defaults=skip_defaults, support_public_dns=self._support_public_dns, support_ipv6_assignment=self._support_ipv6_assignment) confidential_vm = (args.IsSpecified('confidential_compute') and args.confidential_compute) create_boot_disk = not ( instance_utils.UseExistingBootDisk((args.disk or []) + (args.create_disk or []))) image_uri = create_utils.GetImageUri( args, compute_client, create_boot_disk, project, resource_parser, confidential_vm, image_family_scope=args.image_family_scope, support_image_family_scope=True) shielded_instance_config = create_utils.BuildShieldedInstanceConfigMessage( messages=compute_client.messages, args=args) confidential_instance_config = ( create_utils.BuildConfidentialInstanceConfigMessage( messages=compute_client.messages, args=args)) csek_keys = csek_utils.CsekKeyStore.FromArgs( args, self._support_rsa_encrypted) project_to_sa = create_utils.GetProjectToServiceAccountMap( args, instance_refs, compute_client, skip_defaults) requests = [] for instance_ref in instance_refs: disks = [] if create_utils.CheckSpecifiedDiskArgs( args=args, skip_defaults=skip_defaults, support_kms=self._support_kms): disks = create_utils.CreateDiskMessages( args=args, instance_name=instance_ref.Name(), project=instance_ref.project, location=instance_ref.zone, scope=compute_scopes.ScopeEnum.ZONE, compute_client=compute_client, resource_parser=resource_parser, boot_disk_size_gb=boot_disk_size_gb, image_uri=image_uri, create_boot_disk=create_boot_disk, csek_keys=csek_keys, holder=holder, support_kms=self._support_kms, support_nvdimm=self._support_nvdimm, support_source_snapshot_csek=self. _support_source_snapshot_csek, support_boot_snapshot_uri=self._support_boot_snapshot_uri, support_image_csek=self._support_image_csek, support_create_disk_snapshots=self. _support_create_disk_snapshots, support_replica_zones=self._support_replica_zones, support_multi_writer=self._support_multi_writer, support_disk_architecture=self._support_disk_architecture) machine_type_uri = None if instance_utils.CheckSpecifiedMachineTypeArgs( args, skip_defaults): machine_type_uri = instance_utils.CreateMachineTypeUri( args=args, compute_client=compute_client, resource_parser=resource_parser, project=instance_ref.project, location=instance_ref.zone, scope=compute_scopes.ScopeEnum.ZONE, confidential_vm=confidential_vm) can_ip_forward = instance_utils.GetCanIpForward( args, skip_defaults) guest_accelerators = create_utils.GetAccelerators( args=args, compute_client=compute_client, resource_parser=resource_parser, project=instance_ref.project, location=instance_ref.zone, scope=compute_scopes.ScopeEnum.ZONE) instance = compute_client.messages.Instance( canIpForward=can_ip_forward, deletionProtection=args.deletion_protection, description=args.description, disks=disks, guestAccelerators=guest_accelerators, hostname=args.hostname, labels=labels, machineType=machine_type_uri, metadata=metadata, minCpuPlatform=args.min_cpu_platform, name=instance_ref.Name(), networkInterfaces=network_interfaces, serviceAccounts=project_to_sa[instance_ref.project], scheduling=scheduling, tags=tags) if self._support_instance_kms and args.CONCEPTS.instance_kms_key: instance.instanceEncryptionKey = kms_utils.MaybeGetKmsKey( args, compute_client.messages, instance.instanceEncryptionKey, instance_prefix=True) if self._support_secure_tag and args.secure_tags: instance.secureTags = secure_tags_utils.GetSecureTags( args.secure_tags) if args.resource_manager_tags: ret_resource_manager_tags = resource_manager_tags_utils.GetResourceManagerTags( args.resource_manager_tags) if ret_resource_manager_tags is not None: params = compute_client.messages.InstanceParams instance.params = params( resourceManagerTags=params.ResourceManagerTagsValue( additionalProperties=[ params.ResourceManagerTagsValue. AdditionalProperty(key=key, value=value) for key, value in sorted( six.iteritems(ret_resource_manager_tags)) ])) if args.private_ipv6_google_access_type is not None: instance.privateIpv6GoogleAccess = ( instances_flags.GetPrivateIpv6GoogleAccessTypeFlagMapper( compute_client.messages).GetEnumForChoice( args.private_ipv6_google_access_type)) has_visible_core_count = (self._support_visible_core_count and args.visible_core_count is not None) if (args.enable_nested_virtualization is not None or args.threads_per_core is not None or (self._support_numa_node_count and args.numa_node_count is not None) or has_visible_core_count or args.enable_uefi_networking is not None): visible_core_count = args.visible_core_count if has_visible_core_count else None instance.advancedMachineFeatures = ( instance_utils.CreateAdvancedMachineFeaturesMessage( compute_client.messages, args.enable_nested_virtualization, args.threads_per_core, args.numa_node_count if self._support_numa_node_count else None, visible_core_count, args.enable_uefi_networking)) resource_policies = getattr(args, 'resource_policies', None) if resource_policies: parsed_resource_policies = [] for policy in resource_policies: resource_policy_ref = maintenance_util.ParseResourcePolicyWithZone( resource_parser, policy, project=instance_ref.project, zone=instance_ref.zone) parsed_resource_policies.append( resource_policy_ref.SelfLink()) instance.resourcePolicies = parsed_resource_policies if shielded_instance_config: instance.shieldedInstanceConfig = shielded_instance_config if confidential_instance_config: instance.confidentialInstanceConfig = confidential_instance_config if self._support_erase_vss and args.IsSpecified( 'erase_windows_vss_signature'): instance.eraseWindowsVssSignature = args.erase_windows_vss_signature if self._support_post_key_revocation_action_type and args.IsSpecified( 'post_key_revocation_action_type'): instance.postKeyRevocationActionType = arg_utils.ChoiceToEnum( args.post_key_revocation_action_type, compute_client.messages.Instance. PostKeyRevocationActionTypeValueValuesEnum) if self._support_key_revocation_action_type and args.IsSpecified( 'key_revocation_action_type'): instance.keyRevocationActionType = arg_utils.ChoiceToEnum( args.key_revocation_action_type, compute_client.messages. Instance.KeyRevocationActionTypeValueValuesEnum) if args.IsSpecified('network_performance_configs'): instance.networkPerformanceConfig = instance_utils.GetNetworkPerformanceConfig( args, compute_client) request = compute_client.messages.ComputeInstancesInsertRequest( instance=instance, project=instance_ref.project, zone=instance_ref.zone) if source_instance_template: request.sourceInstanceTemplate = source_instance_template if source_machine_image: request.instance.sourceMachineImage = source_machine_image if args.IsSpecified('source_machine_image_csek_key_file'): key = instance_utils.GetSourceMachineImageKey( args, self.SOURCE_MACHINE_IMAGE, compute_client, holder) request.instance.sourceMachineImageEncryptionKey = key if self._support_machine_image_key and args.IsSpecified( 'source_machine_image_csek_key_file'): if not args.IsSpecified('source_machine_image'): raise exceptions.RequiredArgumentException( '`--source-machine-image`', '`--source-machine-image-csek-key-file` requires ' '`--source-machine-image` to be specified`') if args.IsSpecified('enable_display_device'): request.instance.displayDevice = compute_client.messages.DisplayDevice( enableDisplay=args.enable_display_device) request.instance.reservationAffinity = instance_utils.GetReservationAffinity( args, compute_client) requests.append( (compute_client.apitools_client.instances, 'Insert', request)) return requests