{S SrSSKJr SSKJr SSKJr SSKrSSKrSSKrSSKJ r SSK J r SSK J r SS K Jr SS K Jr SS K Jr SS K Jr SS K Jr SSK Jr SSK Jr SSK Jr SSK Jr SS KJr SSKJr SSKJr SSKJr SSKJr SSK J!r! Sr"Sr#SSS.r$Sr%Sr&Sr'Sr(S r)S!r*S"\+S#\+S$\+S%\+S&\+S'\,S(\+4S)jr-S*r.S1S+jr/\ R`\ Rb"\ RHRd5"S,S-\ Rf555r4\ R`\ Rb"\ RHRj\ RHRl5"S.S/\4555r7S0r8\8"5\7l9\8"5\4l9g)2z3Implements the command for SSHing into an instance.)absolute_import)division)unicode_literalsN) base_classes)base) completers)flags) iap_tunnel)network_troubleshooter)scope) ssh_utils)user_permission_troubleshooter)vm_boot_troubleshooter)vm_status_troubleshooter)vpc_troubleshooter) containers)ssh)log) properties)retryz Recommendation: To check for possible causes of SSH connectivity issues and get recommendations, rerun the ssh command with the --troubleshoot option. {0} z1 Or, to investigate an IAP tunneling issue: {0} alphabeta)rrzK Starting ssh troubleshooting for instance {0} in zone {1} Start time: {2} c$URSSS9 g)Nz --commandzt A command to run on the virtual machine. Runs the command on the target instance and then exits. help add_argumentparsers lib/surface/compute/ssh.py AddCommandArgr!Ds  cURSSSS9 URS[RSSS9 URS [RS S S 9 g )z>Additional flags and positional args to be passed to *ssh(1)*.z --ssh-flagappendaA Additional flags to be passed to *ssh(1)*. It is recommended that flags be passed using an assignment operator and quotes. Example: $ {command} example-instance --zone=us-central1-a --ssh-flag="-vvv" --ssh-flag="-L 80:localhost:80" This flag will replace occurences of ``%USER%'', ``%INSTANCE%'', and ``%INTERNAL%'' with their dereferenced values. For example, passing ``80:%INSTANCE%:80'' into the flag is equivalent to passing ``80:162.222.181.197:80'' to *ssh(1)* if the external IP address of 'example-instance' is 162.222.181.197. If connecting to the instance's external IP, then ``%INSTANCE%'' is replaced with that, otherwise it is replaced with the internal IP. ``%INTERNAL%'' is always replaced with the internal interface of the instance. actionr user_hostz[USER@]INSTANCEa8 Specifies the instance to SSH into. ``USER'' specifies the username with which to SSH. If omitted, the user login name is used. If using OS Login, USER will be replaced by the OS Login user. ``INSTANCE'' specifies the name of the virtual machine instance to SSH into. ) completermetavarrssh_argszW Flags and positionals passed to the underlying ssh implementation. z\ $ {command} example-instance --zone=us-central1-a -- -vvv -L 80:%INSTANCE%:80 )nargsrexampleN)rrInstancesCompleterargparse REMAINDERrs r AddSSHArgsr0Nst   * --          r"c$URSSS9 g)Nz --containera? The name or ID of a container inside of the virtual machine instance to connect to. This only applies to virtual machines that are using a Google Container-Optimized virtual machine image. For more information, see [](https://cloud.google.com/compute/docs/containers). rrrs r AddContainerArgr2s r"c(URSSSSS9 g)Nz --internal-ipF store_truead Connect to instances using their internal IP addresses rather than their external IP addresses. Use this to connect from one instance to another on the same VPC network, over a VPN connection, or between two peered VPC networks. For this connection to work, you must configure your networks and firewall to allow SSH connections to the internal IP address of the instance to which you want to connect. To learn how to use this flag, see [](https://cloud.google.com/compute/docs/instances/connecting-advanced#sshbetweeninstances). )defaultr&rr)groups r AddInternalIPArgr7s#   r"cSn[R"5(aUS- nUS- n[R"5(aUS- nUS- n[R"5(aUS- nUS-$)z0Generate the help text for troubleshot argument.z If you can't connect to a virtual machine (VM) instance using SSH, you can investigate the problem using the `--troubleshoot` flag: $ {command} VM_NAME --zone=ZONE --troubleshootz [--tunnel-through-iap]z The troubleshoot flag runs tests and returns recommendations for the following types of issues: - VM statusz! - Network connectivityzb - User permissions - Virtual Private Cloud (VPC) settings - VM bootze If you specify the `--tunnel-through-iap` flag, the tool also checks IAP port forwarding.z )r SupportIAPSupportNetworkConnectivityTest) help_texts r TroubleshootHelpr<s>) ..I )0022 $$I ) ggI  r" release_track project_name zone_name instance_name ssh_key_fileforce_key_file_overwritereturncSRXX5nU(aUSRU5- nU(aUS- nUS- n[RU5n[R"5(dU$[RUS-5nXx-$)z/Generate the recommend message for troubleshot.z3gcloud {0}compute ssh {1} --project={2} --zone={3} z--ssh-key-file={0} z--force-key-file-overwrite --troubleshootz --tunnel-through-iap)formatRECOMMEND_MESSAGErr9_RECOMMEND_IAP) r=r>r?r@rArBcommandrecommend_message recommend_iaps r RecommendMessagerLs B H HL ' $++L99G ,,G ''..w7  " "  ''2I(IJ-  **r"c6URSS[5S9 g)NrEr4r%)rr<rs r AddTroubleshootArgrNs!   r"c[R"5(a#UUUS.n[R"S0UD6nU"5 UUUUS.n[R "S0UD6nU"5 UUUUS.n[ R"S0UD6n U "5 UUUS.n [R"S0U D6n U "5 UUUS.n [R"S0U D6n U "5 g)z)Run each category of troubleshoot action.)projectzoneinstance)rPrQrRiap_tunnel_argsN) rr:r NetworkTroubleshooterrUserPermissionTroubleshooterrVPCTroubleshooterrVMStatusTroubleshooterrVMBootTroubleshooter)rPrQrRrS network_argsnetworkuser_permission_argsuser_permissionvpc_argsvpcvm_status_args vm_status vm_boot_argsvm_boots r RunTroubleshootingrds0022L %::J\JG I(  3OO/( ( ,,8x8#%. '==OO) +, # 7 7 G, G' )r"cP\rSrSrSr\R rSr\ S5r Sr Sr Sr g) Sshi z$SSH into a virtual machine instance.Fc[RRU5 [U5 [ U5 [ U5 [ U5 [R"5(a[R"U5 [R"USSS9 [R"U5 UR5n[U5 [R"5(a[R "X5 gg)zPSet up arguments for this command. Args: parser: An argparse.ArgumentParser. rRz connect to) resource_typeoperation_typeN)r BaseSSHCLIHelperArgsr!r0r2rNrr9r AddHostBasedTunnelArgsr AddZoneFlagAddVerifyInternalIpArgadd_mutually_exclusive_groupr7AddSshTunnelArgs)clsr routing_groups r rkSsh.Argss##F+&vFv  ''/ jG $$V,779M]#  !!&8!r"c URS5=(a URS5nU(aSUl[R"UR 55nUR n[ R"5nURU5 SnU(a[ R"UR5upx[R"X5n [R"5(a%[R"XR 5U5nUn Un [R "5n GOD[ R"UR5up}["R$R'U /[(R*R,UR.UR0["R2"U5S9SnUR5XN5nUR7XNR85nUR:S:XaSnOUR=XNUU5n[R"5(a:[R>"UUR 5U[ R@"USS95n[ RB"U5n URD(a[FRHRK[LROXR.=(d UR.[PRPRS555 [UUUR.=(d UR.X5 gU(dUb[FRV"S 5 [ RX"U5unnUR(a[R "S S 9n OURZR]5R_SS 9nS UR;n[R`"UUUUUUR 5UUR RbS9n U Rdn[FRV"U 5 U(aU n [ Rf"U5nO.URh(aU n U nO[ Rj"U5n U n[R"UU5n [Rl"U 5nSnSnSnUR(dLU(dURZRnnURq[ Rf"W5UR:WS9nU Rr(dU Rt(a6[Rv"WRxWR.WRz5n[R|"XX5n/nUR~(aURUR~5 UR(aURRS5OSn[R"URU5n[R"URU5n[R"U UUUUUUUUUS9 n UR(aO[FRRKSRSU RUR5555 gUR(a[ R"U 5 UR=(a [SU55(+n!U!(+=(aJ U R(+=(a2 [RRRR5n"UR(dU R(aS n#OURXIRdWWWS9n#U#(aR[ R"U UUUUS9n$[FRHRKS5 U$RURU"S9 URh(a&U(dURWRzU UUU"5 U RURU"S9n%U(a6[R"WRxWR.WRz5 U%(a[R"U%5 gg![Ra [ R"5ef=f![Ra?n&U(d1[FRHRKURUW WW55 U&eSn&A&ff=f)z$See ssh_utils.BaseSSHCLICommand.Run.r[regionTN) scope_listerrno)no_raisez@Unable to retrieve host keys from instance metadata. Continuing.F)oslogin_enabled)include_comment@)username_requestedmessages)host_keys_to_add ) remote identity_file cert_fileoptions extra_flagsremote_commandttyrS remainder identity_listc3T# UHnSU;aSRU5OUv M g7f)rz"{0}"N)rF).0args r Ssh.Run..s,C(A583JW^^C0CG(As&(c3Z# UH!oS:H=(d URS5v M# g7f)z-iz-i=N) startswith)rfs r rrs#JkI4e!44ks)+) expiration)rz!Waiting for SSH key to propagate.)putty_force_connect)bIsKnownAndSpecifiedplainrComputeApiHolder ReleaseTrackclientr rjRunGetUserAndInstancer'rRemoter9r CreateOnPremSshTunnelArgs OsloginStateinstance_flagsSSH_INSTANCE_RESOLVERResolveResources compute_scope ScopeEnumZONErQ resourcesGetInstanceZoneScopeLister GetInstance GetProjectrPstrict_host_key_checkingGetHostKeysFromGuestAttributesCreateSshTunnelArgsGetExternalInterfaceGetInternalIPAddress troubleshootrstatusPrintTROUBLESHOOT_HEADERrFdatetimenowrddebugGetSSHKeyExpirationFromArgskeys GetPublicKeyToEntryGetOsloginStater}user HostKeyAlias internal_ipGetExternalIPAddressWriteSecurityKeyskey_file GetConfigthird_party_userrequire_certificatesCertFileFromComputeInstancenameidParseAndSubstituteSSHFlagsr*extendrIsplitrGetTty containerGetRemoteCommand SSHCommanddry_runoutjoinBuildenvenable_security_keysConfirmSecurityKeyStatusanyoslogin_2fa_enabledrVALUESrGetBoolryEnsureSSHKeyExistsCreateSSHPollerPollr WaitException NetworkErrorPreliminarilyVerifyInstance CommandErrorcreateRecommendMessageDeleteCertificateFilesysexit)'selfargson_premholderr ssh_helperrSriprinstance_addressinternal_address oslogin_stater@ instance_refrRrP host_keysrexpiration_micros public_keyr| dest_addridentity_file_listrrrrr command_listrrcmdprompt_for_passwordrkeys_newly_addedpoller return_codees' r rSsh.Run)s>   + +   * dj * *4+<+<+> ?F ]]F++-JNN4O--dnn=hdzz"#f  " "$>> ##%r &&(m%88Hd#99JJ /=2277   %@@HKJKLMl''=h%%f.B.BCg & &$ . == (G5   " "$88        * *8d C  #77A   ,33 ))8|'8'8    ! ! #   7DII$B1B1B# 6 90   !&/&K&K '#j# ((? __113;; <" !DNN2++         1]]++- !! ii   ,**84   +$ $99(C$ zz)T*f..}=MIG :: "00 $$   *  ' '$%g %%)K)K11 ,, ))8;;i00 &KI }}t}}%/3ll4<<%%c*L   DNNL 9C00NN ..#% '( C || ggmmCHHC(+ *..(ACCD    ((7  KJkJJ J  @11 1 @    ! ! 5 5 = = ?  zz]22#66 ++xZ7I(()85@Bf jj:;' NN 3  5  ,,X[[&--46IKGG ..13k  l.?.?M hh{+ '$$&&'     44T=5A7L M g s$a!+b!*b c!":cc!c0[R[UR55R55nU(aUS-OSnUR=(d URnUR n[ UUUUURUR5$)Nr) rgetstrlowerrQrrLrArB)rrr@rrPr=r?r>s r rSsh.createRecommendMessages $$S):):)<%=%C%C%EFM+8MC'bM .\..I<rs :&' 7(949EE8MEGAP:3#**     . b (6++++ +  + # + +0:>'+- `D%%(()B$,,B*BJD%%++T->->-C-CD3E DN+_ !Or"