RubyGems - bosh_cli_plugin_aws - Versions diffs - 1.5.0.pre.1113 - Mend

bosh_cli_plugin_aws 1.5.0.pre.1113

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (36) hide show

data/lib/bosh/cli/commands/aws.rb +464 -0
data/lib/bosh_cli_plugin_aws/aws_config.rb +141 -0
data/lib/bosh_cli_plugin_aws/aws_provider.rb +53 -0
data/lib/bosh_cli_plugin_aws/bat_manifest.rb +40 -0
data/lib/bosh_cli_plugin_aws/bootstrap.rb +31 -0
data/lib/bosh_cli_plugin_aws/bosh_bootstrap.rb +158 -0
data/lib/bosh_cli_plugin_aws/bosh_manifest.rb +71 -0
data/lib/bosh_cli_plugin_aws/ec2.rb +265 -0
data/lib/bosh_cli_plugin_aws/elb.rb +132 -0
data/lib/bosh_cli_plugin_aws/micro_bosh_bootstrap.rb +64 -0
data/lib/bosh_cli_plugin_aws/microbosh_manifest.rb +117 -0
data/lib/bosh_cli_plugin_aws/migration.rb +40 -0
data/lib/bosh_cli_plugin_aws/migration_helper.rb +150 -0
data/lib/bosh_cli_plugin_aws/migrator.rb +137 -0
data/lib/bosh_cli_plugin_aws/rds.rb +182 -0
data/lib/bosh_cli_plugin_aws/route53.rb +103 -0
data/lib/bosh_cli_plugin_aws/s3.rb +93 -0
data/lib/bosh_cli_plugin_aws/version.rb +5 -0
data/lib/bosh_cli_plugin_aws/vpc.rb +181 -0
data/lib/bosh_cli_plugin_aws.rb +31 -0
data/migrations/20130412000811_create_key_pairs.rb +8 -0
data/migrations/20130412004642_create_vpc.rb +65 -0
data/migrations/20130412181302_create_route53_records.rb +37 -0
data/migrations/20130412183544_create_rds_dbs.rb +35 -0
data/migrations/20130412192351_create_s3.rb +4 -0
data/migrations/20130529212130_create_more_unique_s3_buckets.rb +33 -0
data/migrations/20130531180445_create_bosh_rds_db.rb +30 -0
data/migrations/20130826150635_update_elb_for_websockets.rb +97 -0
data/migrations/20130827000001_add_secondary_az_to_vpc.rb +34 -0
data/templates/aws_configuration_template.yml.erb +187 -0
data/templates/aws_migration.erb +5 -0
data/templates/aws_migration_spec.erb +12 -0
data/templates/bat.yml.erb +84 -0
data/templates/bosh.yml.erb +198 -0
data/templates/micro_bosh.yml.erb +82 -0
metadata +163 -0

data/lib/bosh_cli_plugin_aws/route53.rb ADDED Viewed

@@ -0,0 +1,103 @@
+module Bosh
+  module Aws
+    class Route53
+      def initialize(credentials)
+        @aws_provider = AwsProvider.new(credentials)
+      end
+      def create_zone(zone)
+        zone = "#{zone}." unless zone =~ /\.$/
+        aws_route53.client.create_hosted_zone(:name => zone, :caller_reference => generate_unique_name)
+        true
+      end
+      def delete_zone(zone)
+        zone = "#{zone}." unless zone =~ /\.$/
+        aws_route53.client.delete_hosted_zone(:id => get_zone_id(zone))
+        true
+      end
+      def add_record(host, zone, addresses, options={})
+        host = "\\052" if host == "*"
+        zone = "#{zone}." unless zone =~ /\.$/
+        addresses = [addresses] unless addresses.kind_of?(Array)
+        type = options[:type] || "A"
+        ttl = options[:ttl] || 3600
+        aws_route53.client.change_resource_record_sets(
+          hosted_zone_id: get_zone_id(zone),
+          change_batch: {
+            changes: [
+              {
+                action: "CREATE",
+                resource_record_set: {
+                  name: "#{host}.#{zone}",
+                  type: type,
+                  ttl: ttl,
+                  resource_records: addresses.map {|address| { value: address} }
+                }
+              }
+            ]
+          }
+        )
+        true
+      end
+      def delete_record(host, zone, options={})
+        host = "\\052" if host == "*"
+        zone = "#{zone}." unless zone =~ /\.$/
+        record_name = "#{host}.#{zone}"
+        record_type = options[:type] || "A"
+        zone_response = aws_route53.client.list_resource_record_sets(:hosted_zone_id => get_zone_id(zone))
+        resource_record_set = zone_response.data[:resource_record_sets].find do |rr|
+          rr[:name] == record_name && rr[:type] == record_type
+        end
+        unless resource_record_set
+          raise "no #{record_type} record found for #{record_name}"
+        end
+        aws_route53.client.change_resource_record_sets(
+          hosted_zone_id: get_zone_id(zone),
+          change_batch: {
+            changes: [
+              {
+                action: "DELETE",
+                resource_record_set: resource_record_set
+              }
+            ]
+          }
+        )
+        true
+      end
+      def delete_all_records(options = {})
+        omit_types = options[:omit_types] || []
+        aws_route53.hosted_zones.each do |zone|
+          zone.rrsets.each do |rs|
+            rs.delete unless omit_types.include?(rs.type)
+          end
+        end
+      end
+      private
+      attr_reader :aws_provider
+      def aws_route53
+        aws_provider.route53
+      end
+      def get_zone_id(name)
+        zones_response = aws_route53.client.list_hosted_zones
+        zone = zones_response.data[:hosted_zones].find { |zone| zone[:name] == name }
+        raise "Zone not found for #{name} in route53 zones response #{zones_response.inspect}" if zone.nil?
+        zone.fetch(:id)
+      end
+      def generate_unique_name
+        SecureRandom.uuid
+      end
+    end
+  end
+end

data/lib/bosh_cli_plugin_aws/s3.rb ADDED Viewed

@@ -0,0 +1,93 @@
+module Bosh
+  module Aws
+    class S3
+      def initialize(credentials)
+        @aws_provider = AwsProvider.new(credentials)
+      end
+      def create_bucket(bucket_name)
+        aws_s3.buckets.create(bucket_name)
+      end
+      def move_bucket(old_bucket, new_bucket)
+        fetch_bucket(old_bucket).objects.each do |object|
+          object.move_to(object.key, :bucket_name => new_bucket)
+        end
+      end
+      def delete_bucket(bucket_name)
+        bucket = fetch_bucket(bucket_name)
+        bucket.clear!
+        bucket.delete
+      rescue AWS::S3::Errors::NoSuchBucket
+      end
+      def empty
+        aws_s3.buckets.each do |bucket|
+          begin
+            bucket.delete!
+          rescue AWS::S3::Errors::NoSuchBucket
+            # when the bucket goes away while going through the list
+          end
+        end
+      end
+      def bucket_names
+        aws_s3.buckets.map &:name
+      end
+      def bucket_exists?(bucket_name)
+        bucket_names.include?(bucket_name)
+      end
+      def upload_to_bucket(bucket_name, object_name, io)
+        bucket = fetch_bucket(bucket_name)
+        bucket.objects[object_name].write(io)
+      end
+      def objects_in_bucket(bucket_name)
+        fetch_bucket(bucket_name).objects.map { |object| object.key }
+      end
+      def fetch_object_contents(bucket_name, object_name)
+        bucket = fetch_bucket(bucket_name)
+        Bosh::Common.retryable(on: AWS::S3::Errors::NoSuchBucket, tries: 10) do
+          bucket.objects[object_name].read
+        end
+      rescue AWS::S3::Errors::NoSuchKey
+        nil
+      end
+      def copy_remote_file(bucket_name, remote_file, file_name)
+        say("Fetching remote file #{remote_file} from #{bucket_name} bucket")
+        bucket = aws_s3.buckets[bucket_name]
+        object = bucket.objects[remote_file]
+        release_file = Tempfile.new file_name
+        Bosh::Cli::FileWithProgressBar.open(release_file, 'wb') do |f|
+          f.size=object.content_length
+          object.read do |chunk|
+            f.write chunk
+          end
+        end
+        release_file
+      rescue AWS::S3::Errors::NoSuchKey => e
+        new_exception = Exception.new("Can't find #{remote_file} in bucket #{bucket_name}")
+        new_exception.set_backtrace(e.backtrace)
+        raise new_exception
+      end
+      private
+      attr_reader :aws_provider
+      def fetch_bucket(bucket_name)
+        aws_s3.buckets[bucket_name]
+      end
+      def aws_s3
+        aws_provider.s3
+      end
+    end
+  end
+end

data/lib/bosh_cli_plugin_aws/version.rb ADDED Viewed

@@ -0,0 +1,5 @@
+module Bosh
+  module Aws
+    VERSION = '1.5.0.pre.1113'
+  end
+end

data/lib/bosh_cli_plugin_aws/vpc.rb ADDED Viewed

@@ -0,0 +1,181 @@
+module Bosh
+  module Aws
+    class VPC
+      DEFAULT_CIDR = "10.0.0.0/16"
+      DEFAULT_ROUTE = "0.0.0.0/0"
+      NAT_INSTANCE_DEFAULTS = {
+          :image_id => "ami-f619c29f",
+          :instance_type => "m1.small"
+      }
+      def initialize(ec2, aws_vpc)
+        @ec2 = ec2
+        @aws_vpc = aws_vpc
+      end
+      def self.create(ec2, cidr = DEFAULT_CIDR, instance_tenancy = nil)
+        vpc_options = instance_tenancy ? {instance_tenancy: instance_tenancy} : {}
+        self.new(ec2, ec2.vpcs.create(cidr, vpc_options))
+      end
+      def self.find(ec2, vpc_id)
+        self.new(ec2, ec2.vpcs[vpc_id])
+      end
+      def make_internet_gateway_default_route_for_subnet(subnet)
+        route_table = @aws_vpc.route_tables.create
+        route_table.create_route(DEFAULT_ROUTE, internet_gateway: @aws_vpc.internet_gateway)
+        subnet.route_table = route_table
+      end
+      def make_nat_instance_default_route_for_subnet(subnet, nat_instance)
+        route_table = @aws_vpc.route_tables.create
+        route_table.create_route(DEFAULT_ROUTE, instance: nat_instance)
+        subnet.route_table = route_table
+      end
+      def vpc_id
+        @aws_vpc.id
+      end
+      def cidr_block
+        @aws_vpc.cidr_block
+      end
+      def instances_count
+        @aws_vpc.instances.count
+      end
+      def dhcp_options
+        @aws_vpc.dhcp_options
+      end
+      def state
+        @aws_vpc.state
+      end
+      def subnets
+        Hash[@aws_vpc.subnets.map { |subnet| [subnet.tags["Name"], subnet.id] }]
+      end
+      def delete_vpc
+        @aws_vpc.delete
+        Bosh::Common.retryable(tries: 30, sleep: 5, on: []) do
+          begin
+            false if @aws_vpc.state
+          rescue AWS::EC2::Errors::InvalidVpcID::NotFound
+            true
+          end
+        end
+      rescue ::AWS::EC2::Errors::DependencyViolation
+        err "#{@aws_vpc.id} has dependencies that this tool does not delete"
+      end
+      def create_security_groups(groups_specs)
+        groups_specs.each do |group_spec|
+          if group_name_available group_spec["name"]
+            security_group = @aws_vpc.security_groups.create(group_spec["name"])
+            Bosh::AwsCloud::ResourceWait.for_sgroup(sgroup: security_group, state: true)
+            group_spec["ingress"].each do |ingress|
+              range_match = ingress["ports"].to_s.match(/(\d+)\s*-\s*(\d+)/)
+              ports = range_match ? (range_match[1].to_i)..(range_match[2].to_i) : ingress["ports"].to_i
+              security_group.authorize_ingress(ingress["protocol"], ports, ingress["sources"])
+            end
+          end
+        end
+      end
+      def delete_security_groups
+        @aws_vpc.security_groups.reject { |group| group.name == "default" }.each(&:delete)
+      end
+      def security_group_by_name(name)
+        @aws_vpc.security_groups.detect { |sg| sg.name == name }
+      end
+      def create_subnets(subnets)
+        subnets.each_pair do |name, subnet_spec|
+          yield "Making subnet #{name} #{subnet_spec["cidr"]}:" if block_given?
+          options = {}
+          options[:availability_zone] = subnet_spec["availability_zone"] if subnet_spec["availability_zone"]
+          subnet = @aws_vpc.subnets.create(subnet_spec["cidr"], options)
+          Bosh::AwsCloud::ResourceWait.for_subnet(subnet: subnet, state: :available)
+          subnet.add_tag("Name", :value => name)
+        end
+      end
+      def extract_nat_instance_specs(specs)
+        subnet_specs_with_nats = specs.select do |_, subnet_spec|
+          subnet_spec.has_key?("nat_instance")
+        end
+        subnet_specs_with_nats.map do |subnet_name, subnet_spec|
+          nat_instance_spec = subnet_spec["nat_instance"]
+          nat_instance_spec["subnet_id"] = subnets[subnet_name]
+          nat_instance_spec
+        end
+      end
+      def create_nat_instances(subnets)
+        extract_nat_instance_specs(subnets).each do |subnet_spec|
+          @ec2.create_nat_instance(subnet_spec)
+        end
+      end
+      def setup_subnet_routes(subnet_specs)
+        subnet_specs.each_pair do |name, subnet_spec|
+          if subnet_spec["default_route"]
+            subnet = @aws_vpc.subnets[subnets[name]]
+            yield "  Making routing table for #{name}" if block_given?
+            yield "  Binding default route to #{subnet_spec["default_route"]}" if block_given?
+            if subnet_spec["default_route"] == "igw"
+              make_internet_gateway_default_route_for_subnet(subnet)
+            else
+              make_nat_instance_default_route_for_subnet(subnet, @ec2.get_running_instance_by_name(subnet_spec["default_route"]))
+            end
+          end
+        end
+      end
+      def delete_subnets
+        @aws_vpc.subnets.each(&:delete)
+      end
+      def delete_route_tables
+        @aws_vpc.route_tables.reject(&:main?).each(&:delete)
+      end
+      def delete_network_interfaces
+        @aws_vpc.network_interfaces.each(&:delete)
+      end
+      def create_dhcp_options(options)
+        default_dhcp_opts = @aws_vpc.dhcp_options
+        new_dhcp_options = @ec2.dhcp_options.create(options)
+        new_dhcp_options.associate(vpc_id)
+        #say "\tcreated and associated DHCP options #{new_dhcp_options.id}".make_green
+        default_dhcp_opts.delete
+      end
+      def attach_internet_gateway(gateway_id)
+        @aws_vpc.internet_gateway = gateway_id
+      end
+      private
+      def group_name_available(name)
+        @aws_vpc.security_groups.each { |group| group.delete if group.name == name }
+        true
+      rescue ::AWS::EC2::Errors::DependencyViolation => e
+        say "unable to delete security group: #{name}: #{e.message}".make_yellow
+        false
+      end
+    end
+  end
+end

data/lib/bosh_cli_plugin_aws.rb ADDED Viewed

@@ -0,0 +1,31 @@
+require 'aws-sdk'
+require 'logger'
+# since this plugin is abusing the AWS CPI, the following hack is needed so that
+# task_checkpoint & logger is available when ResourceWait.for_resource is called
+require "cloud"
+Config = Struct.new(:task_checkpoint, :logger)
+Bosh::Clouds::Config.configure(Config.new(true, Logger.new(File::NULL)))
+require "cloud/aws/resource_wait"
+require "common/ssl"
+require "bosh_cli_plugin_aws/version"
+require "bosh_cli_plugin_aws/ec2"
+require "bosh_cli_plugin_aws/route53"
+require "bosh_cli_plugin_aws/s3"
+require "bosh_cli_plugin_aws/vpc"
+require "bosh_cli_plugin_aws/rds"
+require "bosh_cli_plugin_aws/elb"
+require "bosh_cli_plugin_aws/bosh_bootstrap"
+require "bosh_cli_plugin_aws/micro_bosh_bootstrap"
+require "bosh_cli_plugin_aws/aws_config"
+require 'bosh_cli_plugin_aws/aws_provider'
+require "bosh/cli/commands/aws"
+require "bosh/cli/commands/micro"
+require "bosh_cli_plugin_aws/microbosh_manifest"
+require "bosh_cli_plugin_aws/bat_manifest"
+require "bosh_cli_plugin_aws/bosh_manifest"
+require "bosh_cli_plugin_aws/migration_helper"
+require "bosh_cli_plugin_aws/migration"
+require "bosh_cli_plugin_aws/migrator"

data/migrations/20130412000811_create_key_pairs.rb ADDED Viewed

@@ -0,0 +1,8 @@
+class CreateKeyPairs < Bosh::Aws::Migration
+  def execute
+    say "allocating #{config["key_pairs"].length} KeyPair(s)"
+    config["key_pairs"].each do |name, path|
+      ec2.force_add_key_pair(name, path)
+    end
+  end
+end

data/migrations/20130412004642_create_vpc.rb ADDED Viewed

@@ -0,0 +1,65 @@
+class CreateVpc < Bosh::Aws::Migration
+  def execute
+    receipt = {}
+    receipt["aws"] = config["aws"]
+    vpc = Bosh::Aws::VPC.create(ec2, config["vpc"]["cidr"], config["vpc"]["instance_tenancy"])
+    receipt["vpc"] = {"id" => vpc.vpc_id, "domain" => config["vpc"]["domain"]}
+    receipt["original_configuration"] = config
+    unless was_vpc_eventually_available?(vpc)
+      err "VPC #{vpc.vpc_id} was not available within 60 seconds, giving up"
+    end
+    say "creating internet gateway"
+    igw = ec2.create_internet_gateway
+    vpc.attach_internet_gateway(igw.id)
+    security_groups = config["vpc"]["security_groups"]
+    say "creating security groups: #{security_groups.map { |group| group["name"] }.join(", ")}"
+    vpc.create_security_groups(security_groups)
+    subnets = config["vpc"]["subnets"]
+    say "creating subnets: #{subnets.keys.join(", ")}"
+    vpc.create_subnets(subnets) { |msg| say "  #{msg}" }
+    vpc.create_nat_instances(subnets)
+    vpc.setup_subnet_routes(subnets) { |msg| say "  #{msg}" }
+    receipt["vpc"]["subnets"] = vpc.subnets
+    elbs = config["vpc"]["elbs"]
+    ssl_certs = config["ssl_certs"]
+    say "creating load balancers: #{elbs.keys.join(", ")}" if elbs
+    elbs.each do |name, settings|
+      settings["domain"] = config["vpc"]["domain"]
+      e = elb.create(name, vpc, settings, ssl_certs)
+      if settings["dns_record"]
+        say "adding CNAME record for #{settings["dns_record"]}.#{config["vpc"]["domain"]}"
+        route53.add_record(settings["dns_record"], config["vpc"]["domain"], [e.dns_name], {ttl: settings["ttl"], type: 'CNAME'})
+      end
+    end
+    dhcp_options = config["vpc"]["dhcp_options"]
+    say "creating DHCP options"
+    vpc.create_dhcp_options(dhcp_options)
+  rescue Bosh::Aws::ELB::BadCertificateError => e
+    err e.message
+  ensure
+    save_receipt("aws_vpc_receipt", receipt)
+  end
+  private
+  def was_vpc_eventually_available?(vpc)
+    (1..60).any? do |attempt|
+      begin
+        sleep 1 unless attempt == 1
+        vpc.state.to_s == "available"
+      rescue Exception => e
+        say("Waiting for vpc, continuing after #{e.class}: #{e.message}")
+      end
+    end
+  end
+end

data/migrations/20130412181302_create_route53_records.rb ADDED Viewed

@@ -0,0 +1,37 @@
+class CreateRoute53Records < Bosh::Aws::Migration
+  def execute
+    receipt = {}
+    elastic_ip_specs = config["elastic_ips"]
+    if elastic_ip_specs
+      receipt["elastic_ips"] = {}
+    else
+      return
+    end
+    count = elastic_ip_specs.map{|_, spec| spec["instances"]}.inject(:+)
+    say "allocating #{count} elastic IP(s)"
+    ec2.allocate_elastic_ips(count)
+    elastic_ips = ec2.elastic_ips
+    elastic_ip_specs.each do |name, job|
+      receipt["elastic_ips"][name] = {"ips" => elastic_ips.shift(job["instances"])}
+    end
+    elastic_ip_specs.each do |name, job|
+      if job["dns_record"]
+        say "adding A record for #{job["dns_record"]}.#{config["vpc"]["domain"]}"
+        route53.add_record(
+            job["dns_record"],
+            config["vpc"]["domain"],
+            receipt["elastic_ips"][name]["ips"],
+            {ttl: job["ttl"]}
+        ) # shouldn't have to get domain from config["vpc"]["domain"]; should use config["name"]
+        receipt["elastic_ips"][name]["dns_record"] = job["dns_record"]
+      end
+    end
+  ensure
+    save_receipt("aws_route53_receipt", receipt)
+  end
+end

data/migrations/20130412183544_create_rds_dbs.rb ADDED Viewed

@@ -0,0 +1,35 @@
+class CreateRdsDbs < Bosh::Aws::Migration
+  include Bosh::Aws::MigrationHelper
+  def execute
+    if !config["rds"]
+      say "rds not set in config.  Skipping"
+      return
+    end
+    vpc_receipt = load_receipt("aws_vpc_receipt")
+    db_names   = %w(ccdb uaadb)
+    db_configs = config['rds'].select {|c| db_names.include?(c['instance']) }
+    RdsDb.aws_rds = rds
+    dbs = []
+    begin
+      db_configs.each do |rds_db_conf|
+        rds_args = { vpc_receipt: vpc_receipt, rds_db_conf: rds_db_conf }
+        rds_db = RdsDb.new(rds_args)
+        dbs << rds_db
+        rds_db.create!
+      end
+      if RdsDb.was_rds_eventually_available?
+        dbs.each { |db| db.update_receipt }
+      else
+        err "RDS was not available within 60 minutes, giving up"
+      end
+    ensure
+      save_receipt("aws_rds_receipt", RdsDb.receipt)
+    end
+  end
+end

data/migrations/20130412192351_create_s3.rb ADDED Viewed

@@ -0,0 +1,4 @@
+class CreateS3 < Bosh::Aws::Migration
+  def execute
+  end
+end

data/migrations/20130529212130_create_more_unique_s3_buckets.rb ADDED Viewed

@@ -0,0 +1,33 @@
+class CreateMoreUniqueS3Buckets < Bosh::Aws::Migration
+  def s3_safe_full_domain_name
+    config['vpc']['domain'].gsub(".","-")
+  end
+  def old_prefix
+    config['name']
+  end
+  def buckets
+    {
+     "#{s3_safe_full_domain_name}-bosh-blobstore" => "#{old_prefix}-bosh-blobstore",
+     "#{s3_safe_full_domain_name}-bosh-artifacts" => "#{old_prefix}-bosh-artifacts"
+    }
+  end
+  def execute
+    return if s3_safe_full_domain_name == old_prefix
+    buckets.each_key do |bucket|
+      say "creating bucket #{bucket}"
+      s3.create_bucket(bucket)
+    end
+    buckets.each_pair do |new_bucket, old_bucket|
+      next unless s3.bucket_exists?(old_bucket)
+      say "moving contents of #{old_bucket} to #{new_bucket}"
+      s3.move_bucket(old_bucket, new_bucket)
+      say "deleting bucket #{old_bucket}"
+      s3.delete_bucket(old_bucket)
+    end
+  end
+end

data/migrations/20130531180445_create_bosh_rds_db.rb ADDED Viewed

@@ -0,0 +1,30 @@
+class CreateBoshRdsDb < Bosh::Aws::Migration
+  include Bosh::Aws::MigrationHelper
+  def execute
+    vpc_receipt = load_receipt("aws_vpc_receipt")
+    db_names   = %w(bosh)
+    db_configs = config['rds'].select {|c| db_names.include?(c['instance']) }
+    RdsDb.aws_rds = rds
+    dbs = []
+    begin
+      db_configs.each do |rds_db_conf|
+        rds_args = { vpc_receipt: vpc_receipt, rds_db_conf: rds_db_conf }
+        rds_db = RdsDb.new(rds_args)
+        dbs << rds_db
+        rds_db.create!
+      end
+      if RdsDb.was_rds_eventually_available?
+        dbs.each { |db| db.update_receipt }
+      else
+        err "RDS was not available within 60 minutes, giving up"
+      end
+    ensure
+      save_receipt("aws_rds_bosh_receipt", RdsDb.receipt)
+    end
+  end
+end