AGENTS.md

Context for AI Assistants

Project Overview

This project is a complete v2 rewrite of the Terraform provider for libvirt to replace https://github.com/dmacvicar/terraform-provider-libvirt.

Core Principles

1. Close API Modeling: Follow https://developer.hashicorp.com/terraform/plugin/best-practices/hashicorp-provider-design-principles especially around modelling the underlying API closely. This means the provider will not try to simplify things but follow the libvirt XML schema closely. See https://libvirt.org/format.html

2. Modern Framework: Use the https://developer.hashicorp.com/terraform/tutorials/providers-plugin-framework/providers-plugin-framework-provider instead of the v2 SDK

3. Proven Client: Continue using the pure Go libvirt client from DigitalOcean (github.com/digitalocean/go-libvirt)

Schema Coverage Policy

We support the full libvirt XML schemas as implemented by libvirt.org/go/libvirtxml.

• Source of Truth: The official libvirt XML schemas located at /usr/share/libvirt/schemas/ (domain.rng, network.rng, storagepool.rng, etc.)
• Implementation Boundary: If libvirtxml has not added support for a schema element, we will not support it yet. We do not create custom XML structs.
• Coverage Goal: Expose all fields that libvirtxml supports in our Terraform schemas, maintaining full API fidelity
• When libvirtxml is missing features: Document the gap and consider contributing upstream to libvirtxml rather than working around it

This ensures we provide comprehensive libvirt feature coverage while maintaining clean, maintainable code that leverages the official XML marshaling library.

Feature Implementation Priority

CRITICAL: Read this section before implementing any features.

When deciding what to implement next, follow this priority order:

Priority 1: Pure Libvirt Features from Old Provider

These are the highest priority features to implement.

• Features that existed in the old provider (github.com/dmacvicar/terraform-provider-libvirt)
• AND are part of native libvirt functionality
• NOT provider-specific additions or conveniences

Examples of Priority 1 (implement these):

• Console/Serial devices (libvirtxml.DomainConsole, DomainSerial)
• Video devices (libvirtxml.DomainVideo)
• TPM devices (libvirtxml.DomainTPM)
• Emulator path (libvirtxml.DomainDeviceList.Emulator)
• SCSI disks with WWN (libvirtxml.DomainDisk)
• Block device disks (libvirtxml.DomainDisk with type="block")
• Direct network types: macvtap, vepa, passthrough (libvirtxml.DomainInterface)
• NVRAM template (libvirtxml.DomainLoader.Template)
• Metadata custom XML (libvirtxml.Domain.Metadata)
• RNG devices (libvirtxml.DomainRNG)
• Input devices (libvirtxml.DomainInput)

Examples of NOT Priority 1 (defer these):

• ❌ Cloud-init support (libvirt_cloudinit_disk resource) - provider addition, not libvirt
• ❌ URL download for volumes (source = "http://...") - provider convenience, not libvirt
• ❌ CoreOS Ignition (libvirt_ignition resource) - provider addition
• ❌ Combustion support - provider addition
• ❌ XML XSLT transforms - provider addition, against design principles

Priority 2: Advanced Libvirt Features

• CPU topology, features, NUMA (libvirtxml supports)
• Memory backing, hugepages (libvirtxml supports)
• Advanced features blocks (HyperV, KVM, SMM)
• Host device passthrough (libvirtxml.DomainHostdev)
• Advanced tuning (CPUTune, NUMATune, BlockIOTune)

Priority 3: Provider Conveniences (Maybe Never)

• Cloud-init integration
• URL download
• XSLT transforms
• Other abstractions on top of libvirt

Why this order matters:

• Users migrating from the old provider expect feature parity with pure libvirt features
• Provider-specific conveniences can be built later (or never, if they conflict with design principles)
• Focus on exposing libvirt's full API first, conveniences second

When in doubt: Check if the feature exists in libvirtxml and was in the old provider. If yes to both and it's not a provider addition, it's Priority 1.

Schema Design: Always Consult RNG Schemas First

CRITICAL: Before implementing any HCL schema or behavior, always check the libvirt RNG schemas.

The official libvirt XML schemas located at /usr/share/libvirt/schemas/ are the authoritative source for understanding:

1. Which fields are optional vs required
2. Valid values and patterns (e.g., WWN must be 16 hex digits: (0x)?[0-9a-fA-F]{16})
3. Default behavior - does libvirt auto-generate values, or is it purely optional?
4. Constraints and validation rules

How to Check RNG Schemas

# Search for a specific field (e.g., wwn)
grep -A 5 -B 5 "wwn" /usr/share/libvirt/schemas/domaincommon.rng

# Find type definitions
grep -A 10 "define name=\"wwn\"" /usr/share/libvirt/schemas/basictypes.rng

# Check what's optional vs required
# <optional> wrapping means the field is optional
# <element> without <optional> is required

Example: WWN Field

When implementing the WWN field for disks, consulting the RNG schema revealed:

1. It's optional: Wrapped in <optional> tags in domaincommon.rng
2. Format constraint: (0x)?[0-9a-fA-F]{16} (16 hex digits, optionally prefixed with "0x")
3. No auto-generation: Libvirt doesn't generate WWN values - it's purely user-specified
4. No SCSI-specific requirement: It's not required for SCSI disks, just optional

This prevented us from incorrectly implementing auto-generation logic (which would violate the "no abstraction" principle).

Key Principles

• Don't assume - Check the RNG schema to understand libvirt's actual behavior
• Don't add abstractions - If libvirt doesn't auto-generate a value, neither should we
• Match the schema - Optional in RNG = Optional: true in Terraform, etc.
• Preserve patterns - Copy validation patterns from RNG to Terraform validators where appropriate

XML to HCL Mapping Patterns

General Mapping Rules

IMPORTANT: Always use nested attributes, never blocks. Follow Terraform Plugin Framework best practices.

Per HashiCorp's guidance, blocks are primarily for backward compatibility when migrating from SDK v2. New providers should use nested attributes.

1. XML Elements → HCL Nested Attributes

   • Nested XML elements become nested attribute objects with = syntax
   • Example: <os>...</os> → os = { ... }
   • Example: <devices>...</devices> → devices = { disks = [...], interfaces = [...] }

2. XML Attributes → HCL Attributes

   • XML element attributes become attributes within nested objects
   • Example: <timer name="rtc" tickpolicy="catchup"/> → timer = { name = "rtc", tickpolicy = "catchup" }

3. Repeated Elements → HCL Lists of Objects

   • Multiple XML elements of the same type become lists of nested objects
   • Example: Multiple <timer> elements → timers = [{ name = "rtc", ... }, { name = "pit", ... }]

4. Container Elements → Nested Objects

   • Container elements become nested objects that may contain lists or other nested objects
   • Example: <clock><timer name="rtc"/></clock> → clock = { timers = [{ name = "rtc" }] }

Elements with Text Content + Attributes

For XML elements with both text content and attributes, see the "Handling Elements with Text Content and Attributes" section in README.md.

Quick reference:

• Unit only → flatten with fixed unit: memory = 512
• Unit + 1 other → flatten both: max_memory = 2048, max_memory_slots = 16
• Multiple attributes → nested object: vcpu = { value = 4, placement = "static", cpuset = "0-3" }
• Type-dependent source → nested object: source = { network = "default" }
• Multiple elements → list of objects: timers = [{ name = "rtc" }, { name = "pit" }]

Implementation Guidelines

Always use nested attributes:

• Use schema.SingleNestedAttribute for single objects
• Use schema.ListNestedAttribute for lists of objects
• Model fields should be types.Object or types.List
• Use .As(ctx, &model, basetypes.ObjectAsOptions{}) to extract from types.Object
• Use .ElementsAs(ctx, &array, false) to extract from types.List

Why nested attributes only:

• Required by Terraform Plugin Framework best practices per HashiCorp documentation
• Blocks are for backward compatibility when migrating from SDK v2
• Nested attributes provide better type safety and validation
• Clear, explicit syntax with = and array brackets [...]
• Consistent across the entire provider schema

Current Technical Debt: Some fields were incorrectly implemented as blocks and need conversion to nested attributes:

• os, features, cpu, clock (with timer sub-blocks), pm, create, destroy
• These work but violate framework best practices
• See TODO.md for tracking conversion tasks
• All new features MUST use nested attributes

Follow the libvirt XML Schema Structure

The Terraform schema must mirror the libvirt XML structure exactly. This is critical for correctness.

Example:

• XML: <domain><devices><disk>...</disk><interface>...</interface></devices></domain>
• HCL: devices = { disks = [...], interfaces = [...] }

Key principle: If libvirt XML has a container element (like <devices>), we must have a corresponding nested object in HCL.

Field Read Semantics

Terraform state reflects what the user cares about, not the entire API response.

For generated XML -> model conversions, see internal/codegen/README.md, especially the "Preserve User Intent For Optional Nested Objects" section. That generator-level rule is authoritative for optional nested object readback behavior.

For codegen overrides, prefer the policy layer in internal/codegen/policy/field_policy.go. Add exact field overrides there using named policy functions rather than adding new struct/field special cases in generator templates. Template branches should stay generic unless the behavior is truly structural and cannot be expressed as field policy.

Computed (not Optional) - Always read from API

• Examples: id, key, allocation, physical
• model.Key = types.StringValue(xml.Key)

Optional (with or without Computed) - Only read if user specified

• If user didn't specify, don't populate (libvirt defaults are irrelevant)
• Examples: on_poweroff, type, capacity (when optional)
• if !plan.Field.IsNull() { model.Field = types.StringValue(xml.Field) }

Required - Always read

• User must specify, always in state

Key insight: The Optional flag means "only populate if user cares", regardless of whether it's also Computed.

Project Structure

.
├── AGENTS.md                 # This file - context for AI assistants
├── README.md                 # Project status, roadmap, and TODO tracking
├── internal/
│   ├── provider/            # Provider implementation
│   ├── resources/           # Resource implementations
│   ├── datasources/         # Data source implementations
│   └── libvirt/             # Libvirt client wrapper
├── examples/                 # Usage examples
└── docs/                     # Generated documentation

Important References

• Old Provider: Located at ../terraform-provider-libvirt - reference for test cases and connection logic, but DO NOT copy the schema design
• Libvirt XML Schemas:
  • Online docs: https://libvirt.org/format.html
  • Local RNG schemas: /usr/share/libvirt/schemas/ (domain.rng, network.rng, storagepool.rng, etc.)
  • These are the source of truth for what features exist
• libvirtxml Library: https://pkg.go.dev/libvirt.org/go/libvirtxml - defines what we can support
• Plugin Framework Examples: https://github.com/hashicorp/terraform-provider-scaffolding-framework
• Good Plugin Framework Providers: Look at terraform-provider-docker, terraform-provider-kubernetes for patterns

Technical Decisions Made

1. Initial Connection Support: Start with qemu:///system, then port other transports from old provider
2. Resource Priority: Domain (VM) → Storage → Network
3. Go Version: 1.21+ (for modern Plugin Framework support)
4. Schema Design: Hand-crafted Terraform schemas, but use official libvirtxml for XML marshaling
5. XML Library: Using libvirt.org/go/libvirtxml for all XML operations instead of custom structs
6. Testing: Port test cases from old provider where applicable, adapt to new schema
7. Computed Fields: Preserve user input for optional+computed fields (machine type, boot devices) to avoid unnecessary diffs

Current State

Check README.md for current implementation status and the roadmap. The README contains:

• Implementation roadmap with checkboxes
• Current phase and next steps
• Pending technical decisions
• Questions for future sessions

Working with This Project

1. Check TODO.md for current tasks - single source of truth for what needs to be done
2. Keep TODO.md updated - as you complete tasks, mark items as done and update the "Current Status" section
3. Do NOT create random documentation files - use existing files (TODO.md, README.md, AGENTS.md, DOMAIN_COVERAGE_ANALYSIS.md)
4. NEVER create new .md files without explicit user authorization - ask first before creating any documentation
5. NEVER install software or modify system configuration - only work within the source directories. If dependencies are missing, inform the user.
6. NEVER use sudo or any system administration commands - no system modifications, no service restarts, no package installs
7. Run make lint before committing - all code must pass linting
8. Run make fmt to format code - use standard Go formatting
9. Preserve design principles - schema must follow libvirt XML closely
10. Reference old provider minimally - mainly for connection handling and test ideas
11. Track progress continuously - update TODO.md after completing each feature or task

Development Workflow - Work Incrementally

IMPORTANT: Always work field-by-field or feature-by-feature with commits in between. Never implement multiple complex features in one iteration.

The Pattern: Add → Test → Commit → Repeat

1. Add ONE field or small group of related fields

   • Update model struct
   • Add schema definition
   • Implement conversion functions (model ↔ XML)

2. Verify it works

   • make lint - must pass with 0 issues
   • make build - must compile
   • make testacc - acceptance tests must pass

3. Commit immediately

   • Small, focused commit message
   • Example: feat: add title and description fields
   • Keep it simple - avoid verbose explanations
   • DO NOT add promotional text, links, or "Generated with" messages
   • When referencing issues, use Resolves: #xxx format (with colon) following git conventions

4. Repeat for next field

What NOT to Do

• ❌ Don't implement 10+ fields at once
• ❌ Don't batch multiple commits
• ❌ Don't skip testing between changes
• ❌ Don't write verbose commit messages explaining everything
• ❌ Don't say "all tests passing" or obvious statements in commits

Examples

Good approach:

Commit 1: feat: add title and description fields
Commit 2: feat: add lifecycle action fields
Commit 3: feat: add iothreads field
Commit 4: fix: preserve user input for optional fields with defaults
Commit 5: feat: add input device support

Resolves: #1148

Bad approach:

Commit 1: feat: add title, description, lifecycle, iothreads, memory fields
  - Added 15 new fields
  - Updated all schemas
  - Implemented conversions
  - All tests passing
  - Linting clean
  (Then discover 20 compilation errors and test failures)

Why This Matters

• Easier to review individual changes
• Faster to identify and fix issues
• Each commit is a working state
• Can revert problematic changes without losing good work
• User can see steady progress

Testing Patterns

Acceptance Tests

Acceptance tests verify the provider works against real libvirt infrastructure. They use the Terraform Plugin Testing framework.

Test Structure:

func TestAccDomainResource_basic(t *testing.T) {
    resource.Test(t, resource.TestCase{
        PreCheck:                 func() { testAccPreCheck(t) },
        ProtoV6ProviderFactories: testAccProtoV6ProviderFactories,
        CheckDestroy:             testAccCheckDomainDestroy,
        Steps: []resource.TestStep{
            {
                Config: testAccDomainResourceConfigBasic("test-domain-basic"),
                Check: resource.ComposeAggregateTestCheckFunc(
                    resource.TestCheckResourceAttr("libvirt_domain.test", "name", "test-domain-basic"),
                ),
            },
        },
    })
}

Key Fields:

• PreCheck - Verify prerequisites (libvirt available)
• ProtoV6ProviderFactories - Provider factory for Plugin Framework
• CheckDestroy - Verify resources cleaned up after test
• Steps - Test steps (create, update, delete)

Test Sweepers

Test sweepers clean up leaked resources from failed tests. They're especially useful when tests fail before reaching the destroy phase.

Setup (required once):

Add to provider_test.go:

func TestMain(m *testing.M) {
    resource.TestMain(m)
}

Register sweepers in resource test files:

func init() {
    resource.AddTestSweepers("libvirt_domain", &resource.Sweeper{
        Name: "libvirt_domain",
        F: func(uri string) error {
            ctx := context.Background()
            client, err := libvirtclient.NewClient(ctx, uri)
            if err != nil {
                return fmt.Errorf("failed to create libvirt client: %w", err)
            }
            defer client.Close()

            // List all domains
            domains, err := client.Libvirt().Domains()
            if err != nil {
                return err
            }

            // Delete test domains (prefix: test-)
            for _, domain := range domains {
                if strings.HasPrefix(domain.Name, "test-") {
                    _ = client.Libvirt().DomainDestroy(domain)
                    _ = client.Libvirt().DomainUndefine(domain)
                }
            }
            return nil
        },
    })
}

Dependencies: Sweepers can specify dependencies to ensure cleanup order:

resource.AddTestSweepers("libvirt_domain", &resource.Sweeper{
    Name: "libvirt_domain",
    Dependencies: []string{"libvirt_volume"},  // Clean volumes first
    F: func(uri string) error { /* ... */ },
})

Running sweepers:

# List available sweepers
go test -sweep-list

# Run all sweepers for qemu:///system
go test -sweep=qemu:///system

# Run specific sweeper
go test -sweep=qemu:///system -sweep-run=libvirt_domain

# Add to Makefile
make sweep  # Should run: go test -sweep=qemu:///system -timeout 10m

Best Practices:

• Prefix all test resources with test- for easy identification
• Only delete resources matching test prefix
• Handle errors gracefully (sweeper failures shouldn't block other sweepers)
• Register sweepers for resources that may leak (domains, volumes, networks, pools)
• Set dependencies to ensure proper cleanup order

Important Notes:

• The string parameter (e.g., "qemu:///system") is provider-specific, NOT just for AWS regions
• For libvirt, it's the connection URI
• Sweepers run manually, not automatically on test failure
• Run sweepers before test runs to ensure clean state, or after to cleanup failures

Cleaning Up Test Resources:

Instead of manually running virsh undefine commands to clean up test domains, use the built-in sweeper:

# Clean up all test resources
make sweep

# Or run directly
go test -sweep=qemu:///system -timeout 10m ./internal/provider

This automatically removes all test resources (domains, volumes, networks, pools) with the test- prefix.

Key Gotchas

• The old provider simplified the libvirt API - we explicitly do NOT want that
• Plugin Framework uses different patterns than SDK v2 - check framework docs
• Libvirt XML schemas are complex - expect nested structures with many optional fields
• Use libvirtxml library: Don't create custom XML structs - use libvirt.org/go/libvirtxml
• Connection management is tricky - see old provider for proven patterns
• Testing requires libvirt daemon - tests should be skippable in CI if needed
• Libvirt normalizes values (e.g., "q35" → "pc-q35-10.1") - preserve user input to avoid diffs
• Use go-libvirt constants: Never use magic numbers for libvirt enums - always use the proper constants from golibvirt
• Domain disk <backingStore> entries are read-only for most hypervisors; configure copy-on-write layers on libvirt_volume resources instead of exposing disk-level backing store fields.

Critical Pattern: Use libvirt Constants

Problem: Using magic numbers (like 1 for "running" state) makes code unreadable and error-prone.

Solution: Always use the proper constants from the go-libvirt package (imported as golibvirt).

Import Pattern

import (
    golibvirt "github.com/digitalocean/go-libvirt"
)

Examples

Domain States

// ❌ WRONG - magic numbers
if state == 1 {  // What does 1 mean?
    // ...
}

// ✅ CORRECT - use constants
if uint32(state) == uint32(golibvirt.DomainRunning) {
    // ...
}

Domain Creation Flags

// ❌ WRONG - magic numbers
var flags uint32 = 0
if paused {
    flags |= 1  // What flag is this?
}
if autodestroy {
    flags |= 2  // And this?
}

// ✅ CORRECT - use constants
var flags uint32 = 0
if paused {
    flags |= uint32(golibvirt.DomainStartPaused)
}
if autodestroy {
    flags |= uint32(golibvirt.DomainStartAutodestroy)
}

Common Constants

Domain States:

• golibvirt.DomainRunning - Domain is running
• golibvirt.DomainShutoff - Domain is shut off
• golibvirt.DomainPaused - Domain is paused
• golibvirt.DomainCrashed - Domain has crashed

Domain Start Flags:

• golibvirt.DomainStartPaused - Start domain in paused state
• golibvirt.DomainStartAutodestroy - Destroy domain on client disconnect
• golibvirt.DomainStartBypassCache - Bypass file system cache
• golibvirt.DomainStartForceBoot - Force boot, even if saved state exists
• golibvirt.DomainStartValidate - Validate the XML before starting
• golibvirt.DomainStartResetNvram - Reset NVRAM on boot

Type Casting

The go-libvirt library uses various integer types. Always cast to the appropriate type:

// DomainGetState returns int32
state, _, err := client.Libvirt().DomainGetState(domain, 0)

// Cast to uint32 for comparison with constants
if uint32(state) == uint32(golibvirt.DomainRunning) {
    // ...
}

Where to Find Constants

Check the go-libvirt package documentation or source code:

• https://pkg.go.dev/github.com/digitalocean/go-libvirt
• Look for const declarations matching the libvirt C API enums