2015-01-16 03:29:16 +03:00
|
|
|
// Copyright 2015 The Go Authors. All rights reserved.
|
|
|
|
|
// Use of this source code is governed by a BSD-style
|
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
|
|
|
|
|
package buildlet
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"crypto/tls"
|
|
|
|
|
"errors"
|
|
|
|
|
"fmt"
|
|
|
|
|
"net/http"
|
|
|
|
|
"strings"
|
|
|
|
|
"time"
|
|
|
|
|
|
2015-01-21 09:25:37 +03:00
|
|
|
"golang.org/x/build/dashboard"
|
2015-01-16 03:29:16 +03:00
|
|
|
"golang.org/x/oauth2"
|
|
|
|
|
"google.golang.org/api/compute/v1"
|
|
|
|
|
)
|
|
|
|
|
|
2015-01-16 20:54:03 +03:00
|
|
|
// VMOpts control how new VMs are started.
|
2015-01-16 03:29:16 +03:00
|
|
|
type VMOpts struct {
|
|
|
|
|
// Zone is the GCE zone to create the VM in. Required.
|
|
|
|
|
Zone string
|
|
|
|
|
|
|
|
|
|
// ProjectID is the GCE project ID. Required.
|
|
|
|
|
ProjectID string
|
|
|
|
|
|
|
|
|
|
// TLS optionally specifies the TLS keypair to use.
|
|
|
|
|
// If zero, http without auth is used.
|
|
|
|
|
TLS KeyPair
|
|
|
|
|
|
|
|
|
|
// Optional description of the VM.
|
|
|
|
|
Description string
|
|
|
|
|
|
|
|
|
|
// Optional metadata to put on the instance.
|
|
|
|
|
Meta map[string]string
|
|
|
|
|
|
|
|
|
|
// DeleteIn optionally specifies a duration at which
|
2015-01-16 23:59:14 +03:00
|
|
|
|
2015-01-16 03:29:16 +03:00
|
|
|
// to delete the VM.
|
|
|
|
|
DeleteIn time.Duration
|
|
|
|
|
|
|
|
|
|
// OnInstanceRequested optionally specifies a hook to run synchronously
|
|
|
|
|
// after the computeService.Instances.Insert call, but before
|
|
|
|
|
// waiting for its operation to proceed.
|
|
|
|
|
OnInstanceRequested func()
|
|
|
|
|
|
|
|
|
|
// OnInstanceCreated optionally specifies a hook to run synchronously
|
|
|
|
|
// after the instance operation succeeds.
|
|
|
|
|
OnInstanceCreated func()
|
|
|
|
|
|
|
|
|
|
// OnInstanceCreated optionally specifies a hook to run synchronously
|
|
|
|
|
// after the computeService.Instances.Get call.
|
|
|
|
|
OnGotInstanceInfo func()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// StartNewVM boots a new VM on GCE and returns a buildlet client
|
|
|
|
|
// configured to speak to it.
|
|
|
|
|
func StartNewVM(ts oauth2.TokenSource, instName, builderType string, opts VMOpts) (*Client, error) {
|
|
|
|
|
computeService, _ := compute.New(oauth2.NewClient(oauth2.NoContext, ts))
|
|
|
|
|
|
|
|
|
|
conf, ok := dashboard.Builders[builderType]
|
|
|
|
|
if !ok {
|
|
|
|
|
return nil, fmt.Errorf("invalid builder type %q", builderType)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
zone := opts.Zone
|
|
|
|
|
if zone == "" {
|
|
|
|
|
// TODO: automatic? maybe that's not useful.
|
|
|
|
|
// For now just return an error.
|
|
|
|
|
return nil, errors.New("buildlet: missing required Zone option")
|
|
|
|
|
}
|
|
|
|
|
projectID := opts.ProjectID
|
|
|
|
|
if projectID == "" {
|
|
|
|
|
return nil, errors.New("buildlet: missing required ProjectID option")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
prefix := "https://www.googleapis.com/compute/v1/projects/" + projectID
|
|
|
|
|
machType := prefix + "/zones/" + zone + "/machineTypes/" + conf.MachineType()
|
|
|
|
|
|
|
|
|
|
instance := &compute.Instance{
|
|
|
|
|
Name: instName,
|
|
|
|
|
Description: opts.Description,
|
|
|
|
|
MachineType: machType,
|
|
|
|
|
Disks: []*compute.AttachedDisk{
|
|
|
|
|
{
|
|
|
|
|
AutoDelete: true,
|
|
|
|
|
Boot: true,
|
|
|
|
|
Type: "PERSISTENT",
|
|
|
|
|
InitializeParams: &compute.AttachedDiskInitializeParams{
|
|
|
|
|
DiskName: instName,
|
|
|
|
|
SourceImage: "https://www.googleapis.com/compute/v1/projects/" + projectID + "/global/images/" + conf.VMImage,
|
|
|
|
|
DiskType: "https://www.googleapis.com/compute/v1/projects/" + projectID + "/zones/" + zone + "/diskTypes/pd-ssd",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
Tags: &compute.Tags{
|
|
|
|
|
// Warning: do NOT list "http-server" or "allow-ssh" (our
|
|
|
|
|
// project's custom tag to allow ssh access) here; the
|
|
|
|
|
// buildlet provides full remote code execution.
|
|
|
|
|
// The https-server is authenticated, though.
|
|
|
|
|
Items: []string{"https-server"},
|
|
|
|
|
},
|
2015-01-16 23:59:14 +03:00
|
|
|
Metadata: &compute.Metadata{},
|
2015-01-16 03:29:16 +03:00
|
|
|
NetworkInterfaces: []*compute.NetworkInterface{
|
|
|
|
|
&compute.NetworkInterface{
|
|
|
|
|
AccessConfigs: []*compute.AccessConfig{
|
|
|
|
|
&compute.AccessConfig{
|
|
|
|
|
Type: "ONE_TO_ONE_NAT",
|
|
|
|
|
Name: "External NAT",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
Network: prefix + "/global/networks/default",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
2015-01-16 23:59:14 +03:00
|
|
|
addMeta := func(key, value string) {
|
|
|
|
|
instance.Metadata.Items = append(instance.Metadata.Items, &compute.MetadataItems{
|
|
|
|
|
Key: key,
|
|
|
|
|
Value: value,
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
// The buildlet-binary-url is the URL of the buildlet binary
|
|
|
|
|
// which the VMs are configured to download at boot and run.
|
|
|
|
|
// This lets us/ update the buildlet more easily than
|
|
|
|
|
// rebuilding the whole VM image.
|
|
|
|
|
addMeta("buildlet-binary-url",
|
|
|
|
|
"http://storage.googleapis.com/go-builder-data/buildlet."+conf.GOOS()+"-"+conf.GOARCH())
|
|
|
|
|
addMeta("builder-type", builderType)
|
|
|
|
|
if !opts.TLS.IsZero() {
|
|
|
|
|
addMeta("tls-cert", opts.TLS.CertPEM)
|
|
|
|
|
addMeta("tls-key", opts.TLS.KeyPEM)
|
|
|
|
|
addMeta("password", opts.TLS.Password())
|
|
|
|
|
}
|
2015-01-16 03:29:16 +03:00
|
|
|
|
|
|
|
|
if opts.DeleteIn != 0 {
|
|
|
|
|
// In case the VM gets away from us (generally: if the
|
|
|
|
|
// coordinator dies while a build is running), then we
|
|
|
|
|
// set this attribute of when it should be killed so
|
|
|
|
|
// we can kill it later when the coordinator is
|
|
|
|
|
// restarted. The cleanUpOldVMs goroutine loop handles
|
|
|
|
|
// that killing.
|
2015-01-16 23:59:14 +03:00
|
|
|
addMeta("delete-at", fmt.Sprint(time.Now().Add(opts.DeleteIn).Unix()))
|
2015-01-16 03:29:16 +03:00
|
|
|
}
|
2015-01-16 23:59:14 +03:00
|
|
|
|
2015-01-16 03:29:16 +03:00
|
|
|
for k, v := range opts.Meta {
|
2015-01-16 23:59:14 +03:00
|
|
|
addMeta(k, v)
|
2015-01-16 03:29:16 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
op, err := computeService.Instances.Insert(projectID, zone, instance).Do()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("Failed to create instance: %v", err)
|
|
|
|
|
}
|
2015-01-16 20:54:03 +03:00
|
|
|
condRun(opts.OnInstanceRequested)
|
2015-01-16 03:29:16 +03:00
|
|
|
createOp := op.Name
|
|
|
|
|
|
|
|
|
|
// Wait for instance create operation to succeed.
|
|
|
|
|
OpLoop:
|
|
|
|
|
for {
|
|
|
|
|
time.Sleep(2 * time.Second)
|
|
|
|
|
op, err := computeService.ZoneOperations.Get(projectID, zone, createOp).Do()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("Failed to get op %s: %v", createOp, err)
|
|
|
|
|
}
|
|
|
|
|
switch op.Status {
|
|
|
|
|
case "PENDING", "RUNNING":
|
|
|
|
|
continue
|
|
|
|
|
case "DONE":
|
|
|
|
|
if op.Error != nil {
|
|
|
|
|
for _, operr := range op.Error.Errors {
|
|
|
|
|
return nil, fmt.Errorf("Error creating instance: %+v", operr)
|
|
|
|
|
}
|
|
|
|
|
return nil, errors.New("Failed to start.")
|
|
|
|
|
}
|
|
|
|
|
break OpLoop
|
|
|
|
|
default:
|
|
|
|
|
return nil, fmt.Errorf("Unknown create status %q: %+v", op.Status, op)
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-01-16 20:54:03 +03:00
|
|
|
condRun(opts.OnInstanceCreated)
|
2015-01-16 03:29:16 +03:00
|
|
|
|
|
|
|
|
inst, err := computeService.Instances.Get(projectID, zone, instName).Do()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("Error getting instance %s details after creation: %v", instName, err)
|
|
|
|
|
}
|
|
|
|
|
|
2015-01-16 23:59:14 +03:00
|
|
|
// Finds its internal and/or external IP addresses.
|
|
|
|
|
intIP, extIP := instanceIPs(inst)
|
2015-01-16 03:29:16 +03:00
|
|
|
|
|
|
|
|
// Wait for it to boot and its buildlet to come up.
|
|
|
|
|
var buildletURL string
|
|
|
|
|
var ipPort string
|
2015-01-16 23:59:14 +03:00
|
|
|
if !opts.TLS.IsZero() {
|
|
|
|
|
if extIP == "" {
|
|
|
|
|
return nil, errors.New("didn't find its external IP address")
|
|
|
|
|
}
|
|
|
|
|
buildletURL = "https://" + extIP
|
|
|
|
|
ipPort = extIP + ":443"
|
2015-01-16 03:29:16 +03:00
|
|
|
} else {
|
2015-01-16 23:59:14 +03:00
|
|
|
if intIP == "" {
|
|
|
|
|
return nil, errors.New("didn't find its internal IP address")
|
|
|
|
|
}
|
|
|
|
|
buildletURL = "http://" + intIP
|
|
|
|
|
ipPort = intIP + ":80"
|
2015-01-16 03:29:16 +03:00
|
|
|
}
|
2015-01-16 20:54:03 +03:00
|
|
|
condRun(opts.OnGotInstanceInfo)
|
2015-01-16 03:29:16 +03:00
|
|
|
|
|
|
|
|
const timeout = 90 * time.Second
|
|
|
|
|
var alive bool
|
|
|
|
|
impatientClient := &http.Client{
|
|
|
|
|
Timeout: 5 * time.Second,
|
|
|
|
|
Transport: &http.Transport{
|
|
|
|
|
TLSClientConfig: &tls.Config{
|
|
|
|
|
InsecureSkipVerify: true,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
deadline := time.Now().Add(timeout)
|
|
|
|
|
try := 0
|
|
|
|
|
for time.Now().Before(deadline) {
|
|
|
|
|
try++
|
|
|
|
|
res, err := impatientClient.Get(buildletURL)
|
|
|
|
|
if err != nil {
|
|
|
|
|
time.Sleep(1 * time.Second)
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
res.Body.Close()
|
|
|
|
|
if res.StatusCode != 200 {
|
|
|
|
|
return nil, fmt.Errorf("buildlet returned HTTP status code %d on try number %d", res.StatusCode, try)
|
|
|
|
|
}
|
|
|
|
|
alive = true
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
if !alive {
|
|
|
|
|
return nil, fmt.Errorf("buildlet didn't come up in %v", timeout)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return NewClient(ipPort, opts.TLS), nil
|
|
|
|
|
}
|
2015-01-16 23:59:14 +03:00
|
|
|
|
|
|
|
|
// DestroyVM sends a request to delete a VM. Actual VM description is
|
|
|
|
|
// currently (2015-01-19) very slow for no good reason. This function
|
|
|
|
|
// returns once it's been requested, not when it's done.
|
|
|
|
|
func DestroyVM(ts oauth2.TokenSource, proj, zone, instance string) error {
|
|
|
|
|
computeService, _ := compute.New(oauth2.NewClient(oauth2.NoContext, ts))
|
|
|
|
|
_, err := computeService.Instances.Delete(proj, zone, instance).Do()
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type VM struct {
|
|
|
|
|
// Name is the name of the GCE VM instance.
|
|
|
|
|
// For example, it's of the form "mote-bradfitz-plan9-386-foo",
|
|
|
|
|
// and not "plan9-386-foo".
|
|
|
|
|
Name string
|
|
|
|
|
IPPort string
|
|
|
|
|
TLS KeyPair
|
|
|
|
|
Type string
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ListVMs lists all VMs.
|
|
|
|
|
func ListVMs(ts oauth2.TokenSource, proj, zone string) ([]VM, error) {
|
|
|
|
|
var vms []VM
|
|
|
|
|
computeService, _ := compute.New(oauth2.NewClient(oauth2.NoContext, ts))
|
|
|
|
|
|
|
|
|
|
// TODO(bradfitz): paging over results if more than 500
|
|
|
|
|
list, err := computeService.Instances.List(proj, zone).Do()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
for _, inst := range list.Items {
|
|
|
|
|
if inst.Metadata == nil {
|
|
|
|
|
// Defensive. Not seen in practice.
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
meta := map[string]string{}
|
|
|
|
|
for _, it := range inst.Metadata.Items {
|
|
|
|
|
meta[it.Key] = it.Value
|
|
|
|
|
}
|
|
|
|
|
builderType := meta["builder-type"]
|
|
|
|
|
if builderType == "" {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
vm := VM{
|
|
|
|
|
Name: inst.Name,
|
|
|
|
|
Type: builderType,
|
|
|
|
|
TLS: KeyPair{
|
|
|
|
|
CertPEM: meta["tls-cert"],
|
|
|
|
|
KeyPEM: meta["tls-key"],
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
_, extIP := instanceIPs(inst)
|
|
|
|
|
if extIP == "" || vm.TLS.IsZero() {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
vm.IPPort = extIP + ":443"
|
|
|
|
|
vms = append(vms, vm)
|
|
|
|
|
}
|
|
|
|
|
return vms, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func instanceIPs(inst *compute.Instance) (intIP, extIP string) {
|
|
|
|
|
for _, iface := range inst.NetworkInterfaces {
|
|
|
|
|
if strings.HasPrefix(iface.NetworkIP, "10.") {
|
|
|
|
|
intIP = iface.NetworkIP
|
|
|
|
|
}
|
|
|
|
|
for _, accessConfig := range iface.AccessConfigs {
|
|
|
|
|
if accessConfig.Type == "ONE_TO_ONE_NAT" {
|
|
|
|
|
extIP = accessConfig.NatIP
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
