Add "ssh server" command (#3475)

## Changes
1. "ssh" and "ssh setup" commands PR:
#3470
2. "ssh connect" PR: #3471

This PR is based on the above, it adds "ssh server" command and related
logic and finishes the "ssh" implementation by adding `ssh` command
group to the root `cmd` (it's still hidden from the --help output).

Server overview:
- The server itself is started by the client running the
`ssh-server-bootsrap.py` job
- The client passes inputs to this file as jobs API args, and the python
logic gets the values using dbutils widgets
- One interesting part is `setup_subreaper` method, which ensures no
child process leave the parent process group. This is necessary in order
to prevent background processes being reparented to pid 1 when their
parent ssh server session terminates, after which they loose access to
wsfs and dbfs fuse mounts (as access is based on process groups). All
major IDEs usually try to spawn their server processes as a background
processes (by double forking for example).
- Server creates one sshd config for all future sshd processes in the
home folder
- It spawns sshd with `-i` flag, making it run as in non-daemon mode and
communicating with it through stdin and our (and so sshd doesn't listen
on any ports)
- Separate sshd process is spawned for each new websocket connection
(but the sshd config is re-used), there are limit of 10 connections (for
no particular reason)
- The server start a shutdown timer when there are not active
connections, after which it terminates itself, which terminates the job,
and the cluster idle timeout can start ticking after that
- The server also places jupyter-init.py file to the
`$HOME/.ipython/profile_default/startup`. This file makes jupyter
kernels a bit more similar to webapp notebooks - it provides spark and
dbutils globals, plus handles %sql and %pip magic commands

WIP: unit tests

## Tests
Manual and unit

Author: ilia-db

cmd/cmd.go

@@ -5,6 +5,7 @@ import (
 	"strings"
 
 	"github.com/databricks/cli/cmd/psql"
+	"github.com/databricks/cli/cmd/ssh"
 
 	"github.com/databricks/cli/cmd/account"
 	"github.com/databricks/cli/cmd/api"
@@ -77,6 +78,7 @@ func New(ctx context.Context) *cobra.Command {
 	cli.AddCommand(version.New())
 	cli.AddCommand(selftest.New())
 	cli.AddCommand(pipelines.InstallPipelinesCLI())
+	cli.AddCommand(ssh.New())
 
 	// Add workspace command groups, filtering out empty groups or groups with only hidden commands.
 	allGroups := workspace.Groups()

cmd/ssh/server.go

@@ -0,0 +1,60 @@
+package ssh
+
+import (
+	"time"
+
+	"github.com/databricks/cli/cmd/root"
+	"github.com/databricks/cli/libs/cmdctx"
+	"github.com/databricks/cli/libs/ssh"
+	"github.com/spf13/cobra"
+)
+
+func newServerCommand() *cobra.Command {
+	cmd := &cobra.Command{
+		Use:   "server",
+		Short: "Run SSH tunnel server",
+		Long: `Run SSH tunnel server.
+
+This command starts an SSH tunnel server that accepts WebSocket connections
+and proxies them to local SSH daemon processes.
+
+` + disclaimer,
+		// This is an internal command spawned by the SSH client running the "ssh-server-bootstrap.py" job
+		Hidden: true,
+	}
+
+	var maxClients int
+	var shutdownDelay time.Duration
+	var clusterID string
+	var version string
+
+	cmd.Flags().StringVar(&clusterID, "cluster", "", "Databricks cluster ID")
+	cmd.MarkFlagRequired("cluster")
+	cmd.Flags().IntVar(&maxClients, "max-clients", 10, "Maximum number of SSH clients")
+	cmd.Flags().DurationVar(&shutdownDelay, "shutdown-delay", 10*time.Minute, "Delay before shutting down after no pings from clients")
+	cmd.Flags().StringVar(&version, "version", "", "Client version of the Databricks CLI")
+
+	cmd.PreRunE = root.MustWorkspaceClient
+	cmd.RunE = func(cmd *cobra.Command, args []string) error {
+		ctx := cmd.Context()
+		client := cmdctx.WorkspaceClient(ctx)
+		opts := ssh.ServerOptions{
+			ClusterID:            clusterID,
+			MaxClients:           maxClients,
+			ShutdownDelay:        shutdownDelay,
+			Version:              version,
+			ConfigDir:            ".ssh-tunnel",
+			ServerPrivateKeyName: "server-private-key",
+			ServerPublicKeyName:  "server-public-key",
+			DefaultPort:          7772,
+			PortRange:            100,
+		}
+		err := ssh.RunServer(ctx, client, opts)
+		if err != nil && ssh.IsNormalClosure(err) {
+			return nil
+		}
+		return err
+	}
+
+	return cmd
+}

cmd/ssh/ssh.go

@@ -29,6 +29,7 @@ Common workflows:
 
 	cmd.AddCommand(newSetupCommand())
 	cmd.AddCommand(newConnectCommand())
+	cmd.AddCommand(newServerCommand())
 
 	return cmd
 }

libs/ssh/jupyter-init.py

@@ -0,0 +1,185 @@
+from typing import List, Optional
+from IPython.core.getipython import get_ipython
+from IPython.display import display as ip_display
+from dbruntime import UserNamespaceInitializer
+
+
+def _log_exceptions(func):
+    from functools import wraps
+
+    @wraps(func)
+    def wrapper(*args, **kwargs):
+        try:
+            print(f"Executing {func.__name__}")
+            return func(*args, **kwargs)
+        except Exception as e:
+            print(f"Error in {func.__name__}: {e}")
+
+    return wrapper
+
+
+_user_namespace_initializer = UserNamespaceInitializer.getOrCreate()
+_entry_point = _user_namespace_initializer.get_spark_entry_point()
+_globals = _user_namespace_initializer.get_namespace_globals()
+for name, value in _globals.items():
+    print(f"Registering global: {name} = {value}")
+    if name not in globals():
+        globals()[name] = value
+
+
+# 'display' from the runtime uses custom widgets that don't work in Jupyter.
+# We use the IPython display instead (in combination with the html formatter for DataFrames).
+globals()["display"] = ip_display
+
+
+@_log_exceptions
+def _register_runtime_hooks():
+    from dbruntime.monkey_patches import apply_dataframe_display_patch
+    from dbruntime.IPythonShellHooks import load_ipython_hooks, IPythonShellHook
+    from IPython.core.interactiveshell import ExecutionInfo
+
+    # Setting executing_raw_cell before cell execution is required to make dbutils.library.restartPython() work
+    class PreRunHook(IPythonShellHook):
+        def pre_run_cell(self, info: ExecutionInfo) -> None:
+            get_ipython().executing_raw_cell = info.raw_cell
+
+    load_ipython_hooks(get_ipython(), PreRunHook())
+    apply_dataframe_display_patch(ip_display)
+
+
+def _warn_for_dbr_alternative(magic: str):
+    import warnings
+
+    """Warn users about magics that have Databricks alternatives."""
+    local_magic_dbr_alternative = {"%%sh": "%sh"}
+    if magic in local_magic_dbr_alternative:
+        warnings.warn(
+            f"\\n{magic} is not supported on Databricks. This notebook might fail when running on a Databricks cluster.\\n"
+            f"Consider using %{local_magic_dbr_alternative[magic]} instead."
+        )
+
+
+def _throw_if_not_supported(magic: str):
+    """Throw an error for magics that are not supported locally."""
+    unsupported_dbr_magics = ["%r", "%scala"]
+    if magic in unsupported_dbr_magics:
+        raise NotImplementedError(f"{magic} is not supported for local Databricks Notebooks.")
+
+
+def _get_cell_magic(lines: List[str]) -> Optional[str]:
+    """Extract cell magic from the first line if it exists."""
+    if len(lines) == 0:
+        return None
+    if lines[0].strip().startswith("%%"):
+        return lines[0].split(" ")[0].strip()
+    return None
+
+
+def _get_line_magic(lines: List[str]) -> Optional[str]:
+    """Extract line magic from the first line if it exists."""
+    if len(lines) == 0:
+        return None
+    if lines[0].strip().startswith("%"):
+        return lines[0].split(" ")[0].strip().strip("%")
+    return None
+
+
+def _handle_cell_magic(lines: List[str]) -> List[str]:
+    """Process cell magic commands."""
+    cell_magic = _get_cell_magic(lines)
+    if cell_magic is None:
+        return lines
+
+    _warn_for_dbr_alternative(cell_magic)
+    _throw_if_not_supported(cell_magic)
+    return lines
+
+
+def _handle_line_magic(lines: List[str]) -> List[str]:
+    """Process line magic commands and transform them appropriately."""
+    lmagic = _get_line_magic(lines)
+    if lmagic is None:
+        return lines
+
+    _warn_for_dbr_alternative(lmagic)
+    _throw_if_not_supported(lmagic)
+
+    if lmagic in ["md", "md-sandbox"]:
+        lines[0] = "%%markdown" + lines[0].partition("%" + lmagic)[2]
+        return lines
+
+    if lmagic == "sh":
+        lines[0] = "%%sh" + lines[0].partition("%" + lmagic)[2]
+        return lines
+
+    if lmagic == "sql":
+        lines = lines[1:]
+        spark_string = "global _sqldf\n" + "_sqldf = spark.sql('''" + "".join(lines).replace("'", "\\'") + "''')\n" + "display(_sqldf)\n"
+        return spark_string.splitlines(keepends=True)
+
+    if lmagic == "python":
+        return lines[1:]
+
+    return lines
+
+
+def _strip_hash_magic(lines: List[str]) -> List[str]:
+    if len(lines) == 0:
+        return lines
+    if lines[0].startswith("# MAGIC"):
+        return [line.partition("# MAGIC ")[2] for line in lines]
+    return lines
+
+
+def _parse_line_for_databricks_magics(lines: List[str]) -> List[str]:
+    """Main parser function for Databricks magic commands."""
+    if len(lines) == 0:
+        return lines
+
+    lines_to_ignore = ("# Databricks notebook source", "# COMMAND ----------", "# DBTITLE")
+    lines = [line for line in lines if not line.strip().startswith(lines_to_ignore)]
+    lines = "".join(lines).strip().splitlines(keepends=True)
+    lines = _strip_hash_magic(lines)
+
+    if _get_cell_magic(lines):
+        return _handle_cell_magic(lines)
+
+    if _get_line_magic(lines):
+        return _handle_line_magic(lines)
+
+    return lines
+
+
+@_log_exceptions
+def _register_magics():
+    """Register the magic command parser with IPython."""
+    from dbruntime.DatasetInfo import UserNamespaceDict
+    from dbruntime.PipMagicOverrides import PipMagicOverrides
+
+    user_ns = UserNamespaceDict(
+        _user_namespace_initializer.get_namespace_globals(),
+        _entry_point.getDriverConf(),
+        _entry_point,
+    )
+    ip = get_ipython()
+    ip.input_transformers_cleanup.append(_parse_line_for_databricks_magics)
+    ip.register_magics(PipMagicOverrides(_entry_point, _globals["sc"]._conf, user_ns))
+
+
+@_log_exceptions
+def _register_formatters():
+    from pyspark.sql import DataFrame
+    from pyspark.sql.connect.dataframe import DataFrame as SparkConnectDataframe
+
+    def df_html(df: DataFrame) -> str:
+        return df.toPandas().to_html()
+
+    ip = get_ipython()
+    html_formatter = ip.display_formatter.formatters["text/html"]
+    html_formatter.for_type(SparkConnectDataframe, df_html)
+    html_formatter.for_type(DataFrame, df_html)
+
+
+_register_magics()
+_register_formatters()
+_register_runtime_hooks()

libs/ssh/keys.go

@@ -13,6 +13,7 @@ import (
 	"strings"
 
 	"github.com/databricks/cli/libs/cmdio"
+	"github.com/databricks/databricks-sdk-go"
 	"golang.org/x/crypto/ssh"
 )
 
@@ -128,3 +129,41 @@ func checkAndGenerateSSHKeyPair(ctx context.Context, keyPath string) (string, st
 
 	return keyPath, strings.TrimSpace(string(publicKeyBytes)), nil
 }
+
+func checkAndGenerateSSHKeyPairFromSecrets(ctx context.Context, client *databricks.WorkspaceClient, clusterID, privateKeyName, publicKeyName string) ([]byte, []byte, error) {
+	secretsScopeName, err := createSecretsScope(ctx, client, clusterID)
+	if err != nil {
+		return nil, nil, fmt.Errorf("failed to create secrets scope: %w", err)
+	}
+
+	privateKeyBytes, err := getSecret(ctx, client, secretsScopeName, privateKeyName)
+	if err != nil {
+		cmdio.LogString(ctx, "SSH key pair not found in secrets scope, generating a new one...")
+
+		privateKeyBytes, publicKeyBytes, err := generateSSHKeyPair()
+		if err != nil {
+			return nil, nil, fmt.Errorf("failed to generate SSH key pair: %w", err)
+		}
+
+		err = putSecret(ctx, client, secretsScopeName, privateKeyName, string(privateKeyBytes))
+		if err != nil {
+			return nil, nil, err
+		}
+
+		err = putSecret(ctx, client, secretsScopeName, publicKeyName, string(publicKeyBytes))
+		if err != nil {
+			return nil, nil, err
+		}
+
+		return privateKeyBytes, publicKeyBytes, nil
+	} else {
+		cmdio.LogString(ctx, "Using SSH key pair from secrets scope")
+
+		publicKeyBytes, err := getSecret(ctx, client, secretsScopeName, publicKeyName)
+		if err != nil {
+			return nil, nil, fmt.Errorf("failed to get public key from secrets scope: %w", err)
+		}
+
+		return privateKeyBytes, publicKeyBytes, nil
+	}
+}

libs/ssh/proxy.go

@@ -180,7 +180,7 @@ func (pc *proxyConnection) Close() error {
 	// Keep in mind that pc.sendMessage blocks during handover
 	err := pc.sendMessage(websocket.CloseMessage, websocket.FormatCloseMessage(websocket.CloseNormalClosure, ""))
 	if err != nil {
-		if websocket.IsCloseError(err, websocket.CloseNormalClosure) {
+		if IsNormalClosure(err) {
 			return nil
 		} else {
 			return fmt.Errorf("failed to send close message: %w", err)

libs/ssh/secrets.go

@@ -2,6 +2,7 @@ package ssh
 
 import (
 	"context"
+	"encoding/base64"
 	"errors"
 	"fmt"
 
@@ -24,6 +25,22 @@ func createSecretsScope(ctx context.Context, client *databricks.WorkspaceClient,
 	return secretsScope, nil
 }
 
+func getSecret(ctx context.Context, client *databricks.WorkspaceClient, scope, key string) ([]byte, error) {
+	resp, err := client.Secrets.GetSecret(ctx, workspace.GetSecretRequest{
+		Scope: scope,
+		Key:   key,
+	})
+	if err != nil {
+		return nil, fmt.Errorf("failed to get secret %s from scope %s: %w", key, scope, err)
+	}
+
+	value, err := base64.StdEncoding.DecodeString(resp.Value)
+	if err != nil {
+		return nil, fmt.Errorf("failed to decode secret key from base64: %w", err)
+	}
+	return value, nil
+}
+
 func putSecret(ctx context.Context, client *databricks.WorkspaceClient, scope, key, value string) error {
 	err := client.Secrets.PutSecret(ctx, workspace.PutSecret{
 		Scope:       scope,