RubyGems - motherbrain - Versions diffs - 0.0.0.placeholder → 0.13.1 - Mend

motherbrain 0.0.0.placeholder → 0.13.1

Files changed (259) hide show

checksums.yaml +7 -0
data/.gitignore +9 -0
data/.ruby-version +1 -0
data/.travis.yml +9 -0
data/CHANGELOG.md +196 -0
data/COMMANDS.md +9 -0
data/CONTRIBUTING.md +24 -0
data/Dockerfile +26 -0
data/Gemfile +60 -2
data/Guardfile +30 -0
data/LICENSE +10 -0
data/MANIFESTS.md +90 -0
data/OPERATORS_GUIDE.md +195 -0
data/PLUGINS.md +268 -0
data/README.md +304 -16
data/Thorfile +123 -0
data/VAGRANT.md +116 -0
data/bin/boot +9 -0
data/bin/mb +5 -0
data/bin/mbsrv +5 -0
data/config.json +32 -0
data/features/cli/bootstrap_command/configurable_scripts.feature +32 -0
data/features/cli/configure_command.feature +57 -0
data/features/cli/environment_command/create_command.feature +22 -0
data/features/cli/environment_command/destroy_command.feature +33 -0
data/features/cli/environment_command/from_command.feature +29 -0
data/features/cli/environment_command/list_command.feature +0 -0
data/features/cli/node_limiting.feature +47 -0
data/features/cli/plugin_command/list_command.feature +46 -0
data/features/cli/service_command/service_command.feature +21 -0
data/features/cli/template_command.feature +10 -0
data/features/cli/validate_config.feature +46 -0
data/features/step_definitions/bootstrap_steps.rb +57 -0
data/features/step_definitions/chef_server_steps.rb +3 -0
data/features/step_definitions/configuration_steps.rb +18 -0
data/features/step_definitions/core_cli_steps.rb +33 -0
data/features/step_definitions/environment_steps.rb +43 -0
data/features/step_definitions/node_steps.rb +3 -0
data/features/step_definitions/plugin_steps.rb +15 -0
data/features/step_definitions/template_steps.rb +7 -0
data/features/support/env.rb +68 -0
data/lib/mb/api.rb +8 -0
data/lib/mb/api/application.rb +7 -0
data/lib/mb/api/endpoint.rb +5 -0
data/lib/mb/api/helpers.rb +38 -0
data/lib/mb/api/v1.rb +56 -0
data/lib/mb/api/v1/config_endpoint.rb +12 -0
data/lib/mb/api/v1/environments_endpoint.rb +174 -0
data/lib/mb/api/v1/jobs_endpoint.rb +31 -0
data/lib/mb/api/v1/plugins_endpoint.rb +90 -0
data/lib/mb/api/validators.rb +5 -0
data/lib/mb/api/validators/sem_ver.rb +18 -0
data/lib/mb/application.rb +148 -0
data/lib/mb/berkshelf.rb +50 -0
data/lib/mb/bootstrap.rb +9 -0
data/lib/mb/bootstrap/manager.rb +250 -0
data/lib/mb/bootstrap/manifest.rb +131 -0
data/lib/mb/bootstrap/routine.rb +199 -0
data/lib/mb/bootstrap/template.rb +73 -0
data/lib/mb/bootstrap/worker.rb +227 -0
data/lib/mb/chef.rb +6 -0
data/lib/mb/chef/config.rb +69 -0
data/lib/mb/chef/run_list_item.rb +115 -0
data/lib/mb/chef_mutex.rb +304 -0
data/lib/mb/clean_room_base.rb +39 -0
data/lib/mb/cli.rb +50 -0
data/lib/mb/cli/base.rb +51 -0
data/lib/mb/cli/shell.rb +29 -0
data/lib/mb/cli/shell/basic.rb +11 -0
data/lib/mb/cli/shell/color.rb +11 -0
data/lib/mb/cli/shell/ext.rb +41 -0
data/lib/mb/cli/sub_command.rb +95 -0
data/lib/mb/cli/sub_command/component.rb +56 -0
data/lib/mb/cli/sub_command/plugin.rb +232 -0
data/lib/mb/cli_client.rb +178 -0
data/lib/mb/cli_gateway.rb +426 -0
data/lib/mb/cli_gateway/sub_commands.rb +3 -0
data/lib/mb/cli_gateway/sub_commands/environment.rb +124 -0
data/lib/mb/cli_gateway/sub_commands/plugin.rb +148 -0
data/lib/mb/command.rb +88 -0
data/lib/mb/command_invoker.rb +235 -0
data/lib/mb/command_invoker/worker.rb +40 -0
data/lib/mb/command_runner.rb +233 -0
data/lib/mb/component.rb +245 -0
data/lib/mb/config.rb +275 -0
data/lib/mb/config_manager.rb +75 -0
data/lib/mb/console.rb +35 -0
data/lib/mb/cookbook_metadata.rb +73 -0
data/lib/mb/core_ext.rb +3 -0
data/lib/mb/core_ext/dir.rb +37 -0
data/lib/mb/core_ext/enumerable.rb +48 -0
data/lib/mb/core_ext/file.rb +24 -0
data/lib/mb/core_ext/signal.rb +11 -0
data/lib/mb/environment_manager.rb +195 -0
data/lib/mb/error_handler.rb +212 -0
data/lib/mb/errors.rb +693 -0
data/lib/mb/file_system.rb +60 -0
data/lib/mb/file_system/tempfile.rb +25 -0
data/lib/mb/gear.rb +154 -0
data/lib/mb/gears.rb +8 -0
data/lib/mb/gears/dynamic_service.rb +218 -0
data/lib/mb/gears/jmx.rb +24 -0
data/lib/mb/gears/jmx/action.rb +46 -0
data/lib/mb/gears/mysql.rb +20 -0
data/lib/mb/gears/mysql/action.rb +190 -0
data/lib/mb/gears/service.rb +163 -0
data/lib/mb/gears/service/action.rb +58 -0
data/lib/mb/gears/service/action_runner.rb +161 -0
data/lib/mb/grape_ext.rb +3 -0
data/lib/mb/grape_ext/endpoint.rb +13 -0
data/lib/mb/group.rb +143 -0
data/lib/mb/job.rb +183 -0
data/lib/mb/job/state_machine.rb +34 -0
data/lib/mb/job/states.rb +46 -0
data/lib/mb/job_manager.rb +96 -0
data/lib/mb/job_record.rb +67 -0
data/lib/mb/job_ticket.rb +25 -0
data/lib/mb/lock_manager.rb +116 -0
data/lib/mb/logging.rb +134 -0
data/lib/mb/logging/basic_format.rb +31 -0
data/lib/mb/manifest.rb +128 -0
data/lib/mb/mixin.rb +3 -0
data/lib/mb/mixin/attribute_setting.rb +265 -0
data/lib/mb/mixin/coded_exit.rb +49 -0
data/lib/mb/mixin/locks.rb +54 -0
data/lib/mb/mixin/services.rb +100 -0
data/lib/mb/node_filter.rb +97 -0
data/lib/mb/node_querier.rb +527 -0
data/lib/mb/plugin.rb +300 -0
data/lib/mb/plugin_manager.rb +589 -0
data/lib/mb/provisioner.rb +186 -0
data/lib/mb/provisioner/manager.rb +213 -0
data/lib/mb/provisioner/manifest.rb +125 -0
data/lib/mb/provisioner/provision_data.rb +96 -0
data/lib/mb/provisioners.rb +5 -0
data/lib/mb/provisioners/aws.rb +395 -0
data/lib/mb/rest_gateway.rb +72 -0
data/lib/mb/ridley_ext.rb +5 -0
data/lib/mb/ridley_ext/cookbook_object.rb +15 -0
data/lib/mb/srv_ctl.rb +183 -0
data/lib/mb/test.rb +104 -0
data/lib/mb/thor_ext.rb +49 -0
data/lib/mb/upgrade.rb +6 -0
data/lib/mb/upgrade/manager.rb +85 -0
data/lib/mb/upgrade/worker.rb +149 -0
data/lib/mb/version.rb +1 -1
data/lib/motherbrain.rb +166 -2
data/man/man_helper.rb +81 -0
data/man/mb.1 +494 -0
data/man/mb.1.html +300 -0
data/man/mb.1.ronn.erb +62 -0
data/motherbrain.gemspec +56 -20
data/scripts/node_name.rb +14 -0
data/spec/fixtures/cb_metadata.json +7 -0
data/spec/fixtures/cb_metadata.rb +14 -0
data/spec/fixtures/fake_id_rsa +27 -0
data/spec/fixtures/fake_key.pem +27 -0
data/spec/fixtures/myface-0.1.0/metadata.rb +14 -0
data/spec/fixtures/myface-0.1.0/motherbrain.rb +0 -0
data/spec/fixtures/test_env.json +15 -0
data/spec/spec_helper.rb +67 -0
data/spec/support/actor_mocking.rb +7 -0
data/spec/support/berkshelf.rb +24 -0
data/spec/support/chef_server.rb +102 -0
data/spec/support/doubles.rb +11 -0
data/spec/support/klass.rb +10 -0
data/spec/support/matchers/each.rb +12 -0
data/spec/support/matchers/error_codes.rb +5 -0
data/spec/support/matchers/exit_codes.rb +57 -0
data/spec/support/matchers/jobs.rb +11 -0
data/spec/support/spec_helpers.rb +145 -0
data/spec/unit/mb/api/application_spec.rb +11 -0
data/spec/unit/mb/api/helpers_spec.rb +5 -0
data/spec/unit/mb/api/v1/config_endpoint_spec.rb +19 -0
data/spec/unit/mb/api/v1/environments_endpoint_spec.rb +71 -0
data/spec/unit/mb/api/v1/jobs_endpoint_spec.rb +24 -0
data/spec/unit/mb/api/v1/plugins_endpoint_spec.rb +298 -0
data/spec/unit/mb/api/v1_spec.rb +37 -0
data/spec/unit/mb/api/validators/sem_ver_spec.rb +5 -0
data/spec/unit/mb/application_spec.rb +19 -0
data/spec/unit/mb/berkshelf_spec.rb +38 -0
data/spec/unit/mb/bootstrap/manager_spec.rb +347 -0
data/spec/unit/mb/bootstrap/manifest_spec.rb +333 -0
data/spec/unit/mb/bootstrap/routine_spec.rb +393 -0
data/spec/unit/mb/bootstrap/template_spec.rb +100 -0
data/spec/unit/mb/bootstrap/worker_spec.rb +194 -0
data/spec/unit/mb/chef/config_spec.rb +33 -0
data/spec/unit/mb/chef/run_list_item_spec.rb +34 -0
data/spec/unit/mb/chef_mutex_spec.rb +314 -0
data/spec/unit/mb/clean_room_base_spec.rb +31 -0
data/spec/unit/mb/cli/base_spec.rb +43 -0
data/spec/unit/mb/cli/shell/basic_spec.rb +5 -0
data/spec/unit/mb/cli/shell/color_spec.rb +5 -0
data/spec/unit/mb/cli/shell/ext_spec.rb +11 -0
data/spec/unit/mb/cli/shell_spec.rb +38 -0
data/spec/unit/mb/cli/sub_command/base_spec.rb +102 -0
data/spec/unit/mb/cli/sub_command/component_spec.rb +5 -0
data/spec/unit/mb/cli/sub_command/plugin_spec.rb +91 -0
data/spec/unit/mb/cli/sub_command_spec.rb +43 -0
data/spec/unit/mb/cli/ui.rb +0 -0
data/spec/unit/mb/cli_client_spec.rb +51 -0
data/spec/unit/mb/cli_gateway_spec.rb +386 -0
data/spec/unit/mb/command_invoker/worker_spec.rb +43 -0
data/spec/unit/mb/command_invoker_spec.rb +230 -0
data/spec/unit/mb/command_runner_spec.rb +299 -0
data/spec/unit/mb/command_spec.rb +76 -0
data/spec/unit/mb/component_spec.rb +185 -0
data/spec/unit/mb/config_manager_spec.rb +31 -0
data/spec/unit/mb/config_spec.rb +408 -0
data/spec/unit/mb/cookbook_metadata_spec.rb +89 -0
data/spec/unit/mb/core_ext/dir_spec.rb +92 -0
data/spec/unit/mb/core_ext/enumerable_spec.rb +104 -0
data/spec/unit/mb/core_ext/file_spec.rb +58 -0
data/spec/unit/mb/core_ext/signal_spec.rb +24 -0
data/spec/unit/mb/environment_manager_spec.rb +166 -0
data/spec/unit/mb/error_handler_spec.rb +173 -0
data/spec/unit/mb/errors_spec.rb +132 -0
data/spec/unit/mb/file_system/tempfile_spec.rb +14 -0
data/spec/unit/mb/file_system_spec.rb +69 -0
data/spec/unit/mb/gear_spec.rb +125 -0
data/spec/unit/mb/gears/dynamic_service_spec.rb +187 -0
data/spec/unit/mb/gears/jmx/action_spec.rb +34 -0
data/spec/unit/mb/gears/jmx_spec.rb +32 -0
data/spec/unit/mb/gears/mysql/action_spec.rb +118 -0
data/spec/unit/mb/gears/mysql_spec.rb +21 -0
data/spec/unit/mb/gears/service/action_runner_spec.rb +182 -0
data/spec/unit/mb/gears/service/action_spec.rb +44 -0
data/spec/unit/mb/gears/service_spec.rb +124 -0
data/spec/unit/mb/group_spec.rb +280 -0
data/spec/unit/mb/job_manager_spec.rb +56 -0
data/spec/unit/mb/job_record_spec.rb +60 -0
data/spec/unit/mb/job_spec.rb +201 -0
data/spec/unit/mb/locks_manager_spec.rb +88 -0
data/spec/unit/mb/logging_spec.rb +133 -0
data/spec/unit/mb/manifest_spec.rb +105 -0
data/spec/unit/mb/mixin/attribute_setting_spec.rb +180 -0
data/spec/unit/mb/mixin/coded_exit_spec.rb +25 -0
data/spec/unit/mb/mixin/locks_spec.rb +32 -0
data/spec/unit/mb/mixin/services_spec.rb +75 -0
data/spec/unit/mb/node_filter_spec.rb +86 -0
data/spec/unit/mb/node_querier_spec.rb +532 -0
data/spec/unit/mb/plugin_manager_spec.rb +724 -0
data/spec/unit/mb/plugin_spec.rb +247 -0
data/spec/unit/mb/provisioner/manager_spec.rb +141 -0
data/spec/unit/mb/provisioner/manifest_spec.rb +182 -0
data/spec/unit/mb/provisioner/provision_data_spec.rb +113 -0
data/spec/unit/mb/provisioner_spec.rb +251 -0
data/spec/unit/mb/provisioners/aws_spec.rb +392 -0
data/spec/unit/mb/provisioners/environment_factory_spec.rb +108 -0
data/spec/unit/mb/rest_gateway_spec.rb +13 -0
data/spec/unit/mb/ridley_ext/cookbook_object_spec.rb +105 -0
data/spec/unit/mb/srv_ctl_spec.rb +142 -0
data/spec/unit/mb/upgrade/manager_spec.rb +37 -0
data/spec/unit/mb/upgrade/worker_spec.rb +219 -0
data/spec/unit/motherbrain_spec.rb +58 -0
data/templates/bootstrap.json +8 -0
data/templates/motherbrain.rb +44 -0
metadata +694 -15
data/Rakefile +0 -1

data/lib/mb/provisioner/provision_data.rb ADDED Viewed

@@ -0,0 +1,96 @@
+module MotherBrain
+  module Provisioner
+    # Handles persisting provision data to a Chef server, for use later by
+    # other provisioner actions on that environment.
+    class ProvisionData
+      include MB::Mixin::Services
+      DATA_BAG = '_motherbrain_provision_data_'
+      attr_reader :environment_name
+      # @param [Symbol] environment_name
+      def initialize(environment_name)
+        @environment_name = environment_name
+      end
+      # Returns a hash of stored instance data
+      #
+      # @return [Hash]
+      def instances
+        attributes[:instances] ||= {}
+        attributes[:instances]
+      end
+      # Returns an array of provisioner names for this environment
+      #
+      # @return [Array(Symbol)]
+      def provisioners
+        instances.keys
+      end
+      # Returns an array of instance hashes for a provisioner
+      #
+      # @param [Symbol] provisioner_name
+      #
+      # @return [Array(Hash)]
+      def instances_for_provisioner(provisioner_name)
+        instances[provisioner_name] ||= []
+        instances[provisioner_name]
+      end
+      # Adds instances to the provision data idempotently
+      #
+      # @param [Symbol] provisioner_name
+      # @param [Array(Hash)] instance_array
+      def add_instances_to_provisioner(provisioner_name, instance_array)
+        instance_array.each do |instance|
+          unless instances_for_provisioner(provisioner_name).include?(instance)
+            instances_for_provisioner(provisioner_name).push instance
+          end
+        end
+      end
+      # Removes an instance from the provisioner by matching a key/value pair
+      #
+      # @param [Symbol] provisioner_name
+      # @param [Symbol] key
+      # @param [Object] value
+      def remove_instance_from_provisioner(provisioner_name, key, value)
+        instances_for_provisioner(provisioner_name).delete_if do |instance|
+          instance[key] == value
+        end
+      end
+      # Persists the data to the Chef server
+      def save
+        data_bag_item.save
+      end
+      # Removes the data from the Chef server
+      def destroy
+        data_bag.item.delete environment_name
+      end
+      private
+        def attributes
+          data_bag_item.attributes
+        end
+        def data_bag
+          @data_bag ||=
+            ridley.data_bag.find(DATA_BAG) ||
+            ridley.data_bag.create(name: DATA_BAG)
+        end
+        def data_bag_item
+          @data_bag_item ||=
+            data_bag.item.find(environment_name) ||
+            data_bag.item.create(id: environment_name)
+        end
+    end
+  end
+end

data/lib/mb/provisioners.rb ADDED Viewed

@@ -0,0 +1,5 @@
+Dir["#{File.dirname(__FILE__)}/provisioners/*.rb"].sort.each do |path|
+  begin
+    require_relative "provisioners/#{File.basename(path, '.rb')}"
+  rescue LoadError; end
+end

data/lib/mb/provisioners/aws.rb ADDED Viewed

@@ -0,0 +1,395 @@
+require 'active_support/inflector'
+require 'fog'
+module MotherBrain
+  module Provisioner
+    # Provisioner adapter for AWS/Eucalyptus
+    class AWS < Provisioner::Base
+      register_provisioner :aws, default: true
+      # Provision nodes in the environment based on the contents of the given manifest
+      #
+      # @param [Job] job
+      #   a job to track the progress of this action
+      # @param [String] env_name
+      #   the name of the environment to put the nodes in
+      # @param [Provisioner::Manifest] manifest
+      #   a manifest describing the way the environment should look
+      # @param [Plugin] plugin
+      #
+      # @raise [MB::AWSProvisionError]
+      #   if a caught error occurs during provisioning
+      #
+      # @return [Array<Hash>]
+      def up(job, env_name, manifest, plugin, options = {})
+        job.set_status "Starting provision"
+        fog = fog_connection(manifest)
+        validate_manifest_options(job, manifest)
+        instances = create_instances(job, manifest, fog)
+        store_provision_data job, env_name, instances_as_manifest(instances)
+        verified_instances = verify_instances(job, fog, instances)
+        verify_connection(job, fog, manifest, verified_instances)
+        instances_as_manifest(verified_instances)
+      end
+      # Terminate instances for the given environment
+      #
+      # @param [Job] job
+      #   a job to track the progress of this action
+      # @param [String] environment
+      # @param [Hash] options
+      def down(job, environment, options = {})
+        job.set_status "Searching for instances to terminate"
+        instance_ids = instance_ids_for_environment(environment)
+        terminate_instance_ids job, instance_ids
+        remove_provision_data job, environment, instance_ids
+      end
+      private
+        # Given an environment, return the instance IDs for either Eucalyptus
+        # or Amazon EC2.
+        #
+        # @param [String] environment
+        #   The Chef environment to search for nodes in
+        #
+        # @return [Array(String)]
+        #   The instance IDs for any cloud nodes
+        def instance_ids_for_environment(environment)
+          provision_data = ProvisionData.new(environment)
+          instances = provision_data.instances_for_provisioner(:aws)
+          instances.collect { |instance| instance[:instance_id] }
+        end
+        # Terminates instances by their IDs.
+        #
+        # @param [Job] job
+        # @param [Array(String)] instance_ids
+        def terminate_instance_ids(job, instance_ids)
+          fog = fog_connection
+          instance_count = instance_ids.count
+          job.set_status "Terminating #{instance_count} #{'instance'.pluralize(instance_count)}"
+          instance_ids.each do |instance_id|
+            job.set_status "Terminating instance: #{instance_id}"
+            begin
+              fog.terminate_instances instance_id
+            rescue => error
+              job.set_status "Unable to terminate instance: #{instance_id}"
+              log.error error
+            end
+          end
+        end
+        # Find an appropriate AWS/Euca access key
+        # Will look in manifest (if provided), and common environment
+        # variables used by AWS and Euca tools
+        #
+        # @param [Provisioner::Manifest] manifest
+        #
+        # @raise [MB::InvalidProvisionManifest]
+        #   if keys cannot be found
+        #
+        # @return [String]
+        def access_key(manifest = nil)
+          if manifest && manifest.options[:access_key]
+            manifest.options[:access_key]
+          elsif ENV['AWS_ACCESS_KEY']
+            ENV['AWS_ACCESS_KEY']
+          elsif ENV['EC2_ACCESS_KEY']
+            ENV['EC2_ACCESS_KEY']
+          elsif Application.config.aws.access_key
+            Application.config.aws.access_key
+          else
+            abort ConfigOptionMissing.new("The configuration needs a key 'access_key', or the AWS_ACCESS_KEY or EC2_ACCESS_KEY variables need to be set")
+          end
+        end
+        # Find an appropriate AWS/Euca secret key
+        # Will look in manifest (if provided), and common environment
+        # variables used by AWS and Euca tools
+        #
+        # @param [Provisioner::Manifest] manifest
+        #
+        # @raise [MB::InvalidProvisionManifest]
+        #   if keys cannot be found
+        #
+        # @return [String]
+        def secret_key(manifest = nil)
+          if manifest && manifest.options[:secret_key]
+            manifest.options[:secret_key]
+          elsif ENV['AWS_SECRET_KEY']
+            ENV['AWS_SECRET_KEY']
+          elsif ENV['EC2_SECRET_KEY']
+            ENV['EC2_SECRET_KEY']
+          elsif Application.config.aws.secret_key
+            Application.config.aws.secret_key
+          else
+            abort ConfigOptionMissing.new("The configuration needs a key 'secret_key', or the AWS_SECRET_KEY or EC2_SECRET_KEY variables need to be set")
+          end
+        end
+        # @param [Hash] manifest_options
+        #   accesses ssh.user key from the hash
+        #
+        # @raise [MB::InvalidProvisionManifest]
+        #   if keys cannot be found
+        #
+        # @return [Array]
+        def ssh_username(manifest_options)
+          manifest_ssh = manifest_options[:ssh] && manifest_options[:ssh][:user]
+          config_ssh = Application.config[:ssh] && Application.config[:ssh][:user]
+          manifest_ssh || config_ssh || abort(InvalidProvisionManifest.new("Manifest or configuration needs an `ssh` hash with a `user` key."))
+        end
+        # @param [Hash] manifest_options
+        #   accesses ssh.keys key from the hash
+        #
+        # @raise [MB::InvalidProvisionManifest]
+        #   if keys cannot be found
+        #
+        # @return [Array]
+        def ssh_keys(manifest_options)
+          manifest_ssh = manifest_options[:ssh] && manifest_options[:ssh][:keys]
+          config_ssh = Application.config[:ssh] && Application.config[:ssh][:keys]
+          manifest_ssh || config_ssh || abort(InvalidProvisionManifest.new("Manifest or configuration needs an `ssh` hash with a `keys` array."))
+        end
+        # Find an appropriate AWS/Euca endpoint
+        # Will look in manifest (if provided), and common environment
+        # variables used by AWS and Euca tools
+        #
+        # @param [Provisioner::Manifest] manifest
+        #
+        # @return [String, nil]
+        def endpoint(manifest = nil)
+          manifest_options = manifest ? manifest.options : {}
+          manifest_options[:endpoint] ||
+            ENV['EC2_URL'] ||
+            Application.config.aws.endpoint
+        end
+        # @param [Provisioner::Manifest] manifest
+        #
+        # @return [Fog::Compute]
+        def fog_connection(manifest = nil)
+          Fog::Compute.new(
+            provider: 'aws',
+            aws_access_key_id: access_key(manifest),
+            aws_secret_access_key: secret_key(manifest),
+            endpoint: endpoint(manifest)
+          )
+        end
+        # @param [Job] job
+        # @param [Provisioner::Manifest] manifest
+        #
+        # @raise [MB::InvalidProvisionManifest]
+        #
+        # @return [Boolean]
+        def validate_manifest_options(job, manifest)
+          job.set_status "Validating manifest options"
+          [ :image_id, :key_name, :availability_zone ].each do |key|
+            unless manifest.options[key]
+              abort InvalidProvisionManifest.new("The provisioner manifest options hash needs a key '#{key}' with the AWS #{key.to_s.camelize}")
+            end
+          end
+          if manifest.options[:security_groups] && !manifest.options[:security_groups].is_a?(Array)
+            abort InvalidProvisionManifest.new("The provisioner manifest options hash key 'security_groups' needs an array of security group names")
+          end
+          true
+        end
+        # @param [Provisioner::Manifest] manifest
+        #
+        # @return [Hash]
+        def instance_counts(manifest)
+          manifest[:nodes].inject({}) do |result, element|
+            result[element[:type]] ||= 0
+            result[element[:type]] += element[:count].to_i
+            result
+          end
+        end
+        # @param [Job] job
+        # @param [Provisioner::Manifest] manifest
+        # @param [AWS::Compute] fog
+        #
+        # @return [Hash]
+        def create_instances(job, manifest, fog)
+          job.set_status "Creating instances"
+          instances = {}
+          instance_counts(manifest).each do |instance_type, count|
+            run_instances job, fog, instances, instance_type, count, manifest.options
+          end
+          instances
+        end
+        # @param [Job] job
+        # @param [AWS::Compute] fog
+        # @param [Hash] instances
+        # @param [String] instance_type
+        # @param [Fixnum] count
+        #
+        # @option options [String] :image_id
+        # @option options [String] :availability_zone
+        # @option options [String] :key_name
+        #
+        # @return [Hash]
+        def run_instances(job, fog, instances, instance_type, count, options)
+          job.set_status "Creating #{count} #{instance_type} instance#{count > 1 ? 's' : ''} on #{fog.instance_variable_get(:@host)}"
+          begin
+            response = fog.run_instances options[:image_id], count, count, {
+              'InstanceType' => instance_type,
+              'Placement.AvailabilityZone' => options[:availability_zone],
+              'KeyName' => options[:key_name]
+            }
+            log.debug response.inspect
+          rescue Fog::Compute::AWS::Error => e
+            abort AWSRunInstancesError.new(e)
+          end
+          if response.status == 200
+            response.body["instancesSet"].each do |i|
+              instances[i["instanceId"]] = {type: i["instanceType"], ipaddress: nil, status: i["instanceState"]["code"]}
+            end
+          else
+            abort AWSRunInstancesError.new(response.error)
+          end
+          instances
+        end
+        # @param [Hash] instances
+        #
+        # @return [Array]
+        def pending_instances(instances)
+          instances.select { |i,d| d[:status].to_i != 16 }.keys
+        end
+        # @param [Job] job
+        # @param [AWS::Compute] fog
+        # @param [Hash] instances
+        # @param [Fixnum] tries
+        #
+        # @return [Hash]
+        def verify_instances(job, fog, instances, tries = 45)
+          if tries <= 0
+            log.debug "Giving up. instances: #{instances.inspect}"
+            abort AWSInstanceTimeoutError.new("giving up on instances :-(")
+          end
+          pending = pending_instances(instances)
+          return if pending.empty?
+          job.set_status "Waiting for #{pending.size} instance#{pending.size > 1 ? 's' : ''} to be ready"
+          log.info "pending instances: #{pending.join(',')}"
+          begin
+            response = fog.describe_instances('instance-id'=> pending)
+            log.debug response.inspect
+            if response.status == 200 && response.body["reservationSet"]
+              reserved_instances = response.body["reservationSet"].collect {|x| x["instancesSet"] }.flatten
+              reserved_instances.each do |i|
+                instances[i["instanceId"]][:status]    = i["instanceState"]["code"]
+                instances[i["instanceId"]][:ipaddress] = i["ipAddress"]
+              end
+              log.debug "instances: #{instances}"
+              still_pending = pending_instances(instances)
+              return instances if still_pending.empty?
+              sleep 10
+            else
+              sleep 1
+            end
+          rescue Fog::Compute::AWS::NotFound
+            sleep 10
+          end
+          verify_instances(job, fog, instances, tries-1)
+        end
+        # @param [Job] job
+        # @param [AWS::Compute] fog
+        # @param [Hash] instances
+        def verify_connection(job, fog, manifest, instances)
+          # TODO: remember working ones, only keep checking pending ones
+          # TODO: windows support
+          servers = instances.collect {|i,d| fog.servers.get(i) }
+          manifest_options = manifest ? manifest.options : {}
+          Fog.wait_for do
+            job.set_status "Waiting for instances to be SSH-able"
+            servers.all? do |s|
+              s.username = ssh_username(manifest_options)
+              s.private_key_path = ssh_keys(manifest_options).first
+              s.sshable?
+            end
+          end
+        end
+        # @param [Hash] instances
+        #
+        # @return [Hash]
+        def instances_as_manifest(instances)
+          instances.collect { |instance_id, instance|
+            {
+              instance_id: instance_id,
+              instance_type: instance[:type],
+              public_hostname: instance[:ipaddress]
+            }
+          }
+        end
+        # @param [String] env_name
+        #
+        # @return [Array]
+        def instance_ids(env_name)
+          # TODO: throw up hands if AWS and Euca nodes in same env
+          nodes = ridley.search(:node, "chef_environment:#{env_name}")
+          nodes.collect do |node|
+            instance_id = nil
+            [:ec2, :eucalyptus].each do |k|
+              instance_id = node.automatic[k][:instance_id] if node.automatic.has_key?(k)
+            end
+            instance_id
+          end
+        end
+        def store_provision_data(job, environment_name, instances)
+          job.set_status "Storing provision data"
+          provision_data = ProvisionData.new(environment_name)
+          provision_data.add_instances_to_provisioner :aws, instances
+          provision_data.save
+        end
+        def remove_provision_data(job, environment_name, instance_ids)
+          job.set_status "Cleaning up provision data"
+          provision_data = ProvisionData.new(environment_name)
+          instance_ids.each do |instance_id|
+            provision_data.remove_instance_from_provisioner(
+              :aws, :instance_id, instance_id
+            )
+          end
+          provision_data.save
+        end
+    end
+  end
+  class AWSProvisionError < ProvisionError
+    error_code(5200)
+  end
+  class AWSRunInstancesError < AWSProvisionError
+    error_code(5201)
+  end
+  class AWSInstanceTimeoutError < AWSRunInstancesError
+    error_code(5202)
+  end
+end