Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Select subnet based on az machine type availability #373

Merged
merged 7 commits into from
Apr 26, 2023
Merged

Select subnet based on az machine type availability #373

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
7c33286
builder: consider machine type for picking subnet
lbajolet-hashicorp Apr 21, 2023
2d79117
step_network_info: add tests for AZ/subnet select
lbajolet-hashicorp Apr 21, 2023
55cf4bc
network: don't fail when getting default VPC fails
lbajolet-hashicorp Apr 21, 2023
43c7309
builder: fix message in acceptance tests
lbajolet-hashicorp Apr 21, 2023
e2b2c19
network: don't fail if can't pick AZ by capability
lbajolet-hashicorp Apr 24, 2023
1a6fb30
network: fix test verbosity, and add a few more
lbajolet-hashicorp Apr 24, 2023
8f64933
run_config: add documentation on extra permissions
lbajolet-hashicorp Apr 24, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 6 additions & 0 deletions builder/common/run_config.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -105,6 +105,12 @@ type RunConfig struct {
//
// * ec2:DescribeVpcs
// * ec2:DescribeSubnets
//
// Additionally, since we filter subnets/AZs by their capability to host
// an instance of the selected type, you may also want to define the
// `ec2:DescribeInstanceTypeOfferings` action to the role running the build.
// Otherwise, Packer will pick the most available subnet in the VPC selected,
// which may not be able to host the instance type you provided.
AssociatePublicIpAddress confighelper.Trilean `mapstructure:"associate_public_ip_address" required:"false"`
// Destination availability zone to launch
// instance in. Leave this empty to allow Amazon to auto-assign.
Expand Down
205 changes: 148 additions & 57 deletions builder/common/step_network_info.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ import (

"github.com/aws/aws-sdk-go/aws"
"github.com/aws/aws-sdk-go/service/ec2"
"github.com/aws/aws-sdk-go/service/ec2/ec2iface"
"github.com/hashicorp/packer-plugin-sdk/multistep"
packersdk "github.com/hashicorp/packer-plugin-sdk/packer"
confighelper "github.com/hashicorp/packer-plugin-sdk/template/config"
Expand All @@ -31,6 +32,10 @@ type StepNetworkInfo struct {
AvailabilityZone string
SecurityGroupIds []string
SecurityGroupFilter SecurityGroupFilterOptions
// RequestedMachineType is the machine type of the instance we want to create.
// This is used for selecting a subnet/AZ which supports the type of instance
// selected, and not just the most available / random one.
RequestedMachineType string
}

type subnetsSort []*ec2.Subnet
Expand All @@ -49,7 +54,7 @@ func mostFreeSubnet(subnets []*ec2.Subnet) *ec2.Subnet {
}

func (s *StepNetworkInfo) Run(ctx context.Context, state multistep.StateBag) multistep.StepAction {
ec2conn := state.Get("ec2").(*ec2.EC2)
ec2conn := state.Get("ec2").(ec2iface.EC2API)
ui := state.Get("ui").(packersdk.Ui)

// Set VpcID if none was specified but filters are defined in the template.
Expand Down Expand Up @@ -145,64 +150,12 @@ func (s *StepNetworkInfo) Run(ctx context.Context, state multistep.StateBag) mul
// Set VPC/Subnet if we explicitely enable or disable public IP assignment to the instance
// and we did not set or get a subnet ID before
if s.AssociatePublicIpAddress != confighelper.TriUnset && s.SubnetId == "" {
ui.Say(fmt.Sprintf("Setting public IP address to %t on instance without a subnet ID",
*s.AssociatePublicIpAddress.ToBoolPointer()))

if s.VpcId == "" {
ui.Say("No VPC ID provided, Packer will use the default VPC")
vpcs, err := ec2conn.DescribeVpcs(&ec2.DescribeVpcsInput{
Filters: []*ec2.Filter{
{
Name: aws.String("is-default"),
Values: []*string{aws.String("true")},
},
},
})
if err != nil {
err := fmt.Errorf("Failed to describe VPCs: %s", err)
state.Put("error", err)
ui.Error(err.Error())
return multistep.ActionHalt
}

if len(vpcs.Vpcs) != 1 {
err := fmt.Errorf("No default VPC found")
state.Put("error", err)
ui.Error(err.Error())
return multistep.ActionHalt
}
defaultVPC := vpcs.Vpcs[0]

s.VpcId = *defaultVPC.VpcId
}

var err error

ui.Say(fmt.Sprintf("Inferring subnet from the selected VPC %q", s.VpcId))
params := &ec2.DescribeSubnetsInput{}
filters := map[string]string{
"vpc-id": s.VpcId,
"state": "available",
}
params.Filters, err = buildEc2Filters(filters)
err := s.GetDefaultVPCAndSubnet(ui, ec2conn, state)
if err != nil {
err := fmt.Errorf("Failed to prepare subnet filters: %s", err)
state.Put("error", err)
ui.Error(err.Error())
return multistep.ActionHalt
}
subnets, err := ec2conn.DescribeSubnets(params)
if err != nil {
err := fmt.Errorf("Failed to describe subnets: %s", err)
state.Put("error", err)
ui.Error(err.Error())
return multistep.ActionHalt
ui.Say("associate_public_ip_address is set without a subnet_id.")
ui.Say(fmt.Sprintf("Packer attempted to infer a subnet from default VPC (if unspecified), but failed due to: %s", err))
ui.Say("The associate_public_ip_address will be ignored for the remainder of the build, and a public IP will only be associated if the VPC chosen enables it by default.")
}

subnet := mostFreeSubnet(subnets.Subnets)
s.SubnetId = *subnet.SubnetId

ui.Say(fmt.Sprintf("Set subnet as %q", s.SubnetId))
}

// Try to find AZ and VPC Id from Subnet if they are not yet found/given
Expand Down Expand Up @@ -231,4 +184,142 @@ func (s *StepNetworkInfo) Run(ctx context.Context, state multistep.StateBag) mul
return multistep.ActionContinue
}

func (s *StepNetworkInfo) GetDefaultVPCAndSubnet(ui packersdk.Ui, ec2conn ec2iface.EC2API, state multistep.StateBag) error {
ui.Say(fmt.Sprintf("Setting public IP address to %t on instance without a subnet ID",
*s.AssociatePublicIpAddress.ToBoolPointer()))

var vpc = s.VpcId
if vpc == "" {
ui.Say("No VPC ID provided, Packer will use the default VPC")
vpcs, err := ec2conn.DescribeVpcs(&ec2.DescribeVpcsInput{
Filters: []*ec2.Filter{
{
Name: aws.String("is-default"),
Values: []*string{aws.String("true")},
},
},
})
if err != nil {
return fmt.Errorf("Failed to describe VPCs: %s", err)
}

if len(vpcs.Vpcs) != 1 {
return fmt.Errorf("No default VPC found")
JenGoldstrich marked this conversation as resolved.
Show resolved Hide resolved
}
vpc = *vpcs.Vpcs[0].VpcId
}

var err error

ui.Say(fmt.Sprintf("Inferring subnet from the selected VPC %q", vpc))
params := &ec2.DescribeSubnetsInput{}
filters := map[string]string{
"vpc-id": vpc,
"state": "available",
}
params.Filters, err = buildEc2Filters(filters)
if err != nil {
return fmt.Errorf("Failed to prepare subnet filters: %s", err)
}
subnetOut, err := ec2conn.DescribeSubnets(params)
if err != nil {
return fmt.Errorf("Failed to describe subnets: %s", err)
}

subnets := subnetOut.Subnets

// Filter by AZ with support for machine type
azs := getAZFromSubnets(subnets)
azs, err = filterAZByMachineType(azs, s.RequestedMachineType, ec2conn)
if err == nil {
subnets = filterSubnetsByAZ(subnets, azs)
if subnets == nil {
return fmt.Errorf("Failed to get subnets for the filtered AZs")
}
} else {
ui.Say(fmt.Sprintf(
"Failed to filter subnets/AZ for the requested machine type %q: %s",
s.RequestedMachineType, err))
ui.Say("This may result in Packer picking a subnet/AZ that can't host the requested machine type")
ui.Say("Please check that you have the permissions required to run DescribeInstanceTypeOfferings and try again.")
}

subnet := mostFreeSubnet(subnets)

s.SubnetId = *subnet.SubnetId
s.VpcId = vpc
s.AvailabilityZone = *subnet.AvailabilityZone

lbajolet-hashicorp marked this conversation as resolved.
Show resolved Hide resolved
ui.Say(fmt.Sprintf("Set subnet as %q", s.SubnetId))

return nil
}

func getAZFromSubnets(subnets []*ec2.Subnet) []string {
azs := map[string]struct{}{}
for _, sub := range subnets {
azs[*sub.AvailabilityZone] = struct{}{}
}

retAZ := make([]string, 0, len(azs))
for az := range azs {
retAZ = append(retAZ, az)
}

return retAZ
}

func filterAZByMachineType(azs []string, machineType string, ec2conn ec2iface.EC2API) ([]string, error) {
var retAZ []string

for _, az := range azs {
resp, err := ec2conn.DescribeInstanceTypeOfferings(&ec2.DescribeInstanceTypeOfferingsInput{
LocationType: aws.String("availability-zone"),
Filters: []*ec2.Filter{
{
Name: aws.String("location"),
Values: []*string{&az},
},
{
Name: aws.String("instance-type"),
Values: []*string{&machineType},
},
},
})
if err != nil {
err = fmt.Errorf("failed to get offerings for AZ %q: %s", az, err)
return nil, err
}

for _, off := range resp.InstanceTypeOfferings {
if *off.InstanceType == machineType {
retAZ = append(retAZ, az)
break
}
}
}

if retAZ == nil {
return nil, fmt.Errorf("no AZ match the requested machine type %q", machineType)
}

return retAZ, nil
}

func filterSubnetsByAZ(subnets []*ec2.Subnet, azs []string) []*ec2.Subnet {
var retSubs []*ec2.Subnet

outLoop:
for _, sub := range subnets {
for _, az := range azs {
if *sub.AvailabilityZone == az {
retSubs = append(retSubs, sub)
continue outLoop
}
}
}

return retSubs
}

func (s *StepNetworkInfo) Cleanup(multistep.StateBag) {}
Loading