#
# (c) Jan Gehring <jan.gehring@gmail.com>
#
# vim: set ts=2 sw=2 tw=0:
# vim: set expandtab:
#
# Some of the code is based on Net::Amazon::EC2
#
package Rex::Cloud::Amazon;
use strict;
use warnings;
our $VERSION = '1.7.0'; # VERSION
use Rex::Logger;
use Rex::Cloud::Base;
use AWS::Signature4;
use HTTP::Request::Common;
use Digest::HMAC_SHA1;
use base qw(Rex::Cloud::Base);
use LWP::UserAgent;
use XML::Simple;
use Carp;
BEGIN {
use Rex::Require;
HTTP::Date->use(qw(time2isoz));
MIME::Base64->use(qw(encode_base64 decode_base64));
}
use Data::Dumper;
sub new {
my $that = shift;
my $proto = ref($that) || $that;
my $self = {@_};
bless( $self, $proto );
#$self->{"__version"} = "2009-11-30";
$self->{"__version"} = "2011-05-15";
$self->{"__signature_version"} = 1;
$self->{"__endpoint"} = "us-east-1.ec2.amazonaws.com";
Rex::Logger::debug(
"Creating new Amazon Object, with endpoint: " . $self->{"__endpoint"} );
Rex::Logger::debug( "Using API Version: " . $self->{"__version"} );
return $self;
}
sub signer {
my ($self) = @_;
return AWS::Signature4->new(
-access_key => $self->{__access_key},
-secret_key => $self->{__secret_access_key}
);
}
sub set_auth {
my ( $self, $access_key, $secret_access_key ) = @_;
$self->{"__access_key"} = $access_key;
$self->{"__secret_access_key"} = $secret_access_key;
}
sub set_endpoint {
my ( $self, $endpoint ) = @_;
Rex::Logger::debug("Setting new endpoint to $endpoint");
$self->{'__endpoint'} = $endpoint;
}
sub timestamp {
my $t = time2isoz();
chop($t);
$t .= ".000Z";
$t =~ s/\s+/T/g;
return $t;
}
sub run_instance {
my ( $self, %data ) = @_;
Rex::Logger::debug("Trying to start a new Amazon instance with data:");
Rex::Logger::debug( " $_ -> " . ( $data{$_} ? $data{$_} : "undef" ) )
for keys %data;
my $security_groups;
if ( ref( $data{security_group} ) eq "ARRAY" ) {
$security_groups = $data{security_group};
}
elsif ( exists $data{security_groups} ) {
$security_groups = $data{security_groups};
}
else {
$security_groups = $data{security_group};
}
my %security_group = ();
if ( ref($security_groups) eq "ARRAY" ) {
my $i = 0;
for my $sg ( @{$security_groups} ) {
$security_group{"SecurityGroup.$i"} = $sg;
$i++;
}
}
elsif ( !exists $data{options}->{SubnetId} ) {
$security_group{SecurityGroup} = $security_groups || "default";
}
my %more_options = %{ $data{options} || {} };
my $xml = $self->_request(
"RunInstances",
ImageId => $data{"image_id"},
MinCount => 1,
MaxCount => 1,
KeyName => $data{"key"},
InstanceType => $data{"type"} || "m1.small",
"Placement.AvailabilityZone" => $data{"zone"} || "",
%security_group,
%more_options,
);
my $ref = $self->_xml($xml);
if ( exists $data{"name"} ) {
$self->add_tag(
id => $ref->{"instancesSet"}->{"item"}->{"instanceId"},
name => "Name",
value => $data{"name"}
);
}
my ($info) =
grep { $_->{"id"} eq $ref->{"instancesSet"}->{"item"}->{"instanceId"} }
$self->list_instances();
while ( $info->{"state"} ne "running" ) {
Rex::Logger::debug("Waiting for instance to be created...");
($info) =
grep { $_->{"id"} eq $ref->{"instancesSet"}->{"item"}->{"instanceId"} }
$self->list_instances();
sleep 1;
}
if ( exists $data{"volume"} ) {
$self->attach_volume(
volume_id => $data{"volume"},
instance_id => $ref->{"instancesSet"}->{"item"}->{"instanceId"},
name => "/dev/sdh", # default for new instances
);
}
return $info;
}
sub attach_volume {
my ( $self, %data ) = @_;
Rex::Logger::debug("Trying to attach a new volume");
$self->_request(
"AttachVolume",
VolumeId => $data{"volume_id"},
InstanceId => $data{"instance_id"},
Device => $data{"name"} || "/dev/sdh"
);
}
sub detach_volume {
my ( $self, %data ) = @_;
Rex::Logger::debug("Trying to detach a volume");
$self->_request( "DetachVolume", VolumeId => $data{"volume_id"}, );
}
sub delete_volume {
my ( $self, %data ) = @_;
Rex::Logger::debug("Trying to delete a volume");
$self->_request( "DeleteVolume", VolumeId => $data{"volume_id"}, );
}
sub terminate_instance {
my ( $self, %data ) = @_;
Rex::Logger::debug("Trying to terminate an instance");
$self->_request( "TerminateInstances",
"InstanceId.1" => $data{"instance_id"} );
}
sub start_instance {
my ( $self, %data ) = @_;
Rex::Logger::debug("Trying to start an instance");
$self->_request( "StartInstances", "InstanceId.1" => $data{instance_id} );
my ($info) =
grep { $_->{"id"} eq $data{"instance_id"} } $self->list_instances();
while ( $info->{"state"} ne "running" ) {
Rex::Logger::debug("Waiting for instance to be started...");
($info) =
grep { $_->{"id"} eq $data{"instance_id"} } $self->list_instances();
sleep 5;
}
}
sub stop_instance {
my ( $self, %data ) = @_;
Rex::Logger::debug("Trying to stop an instance");
$self->_request( "StopInstances", "InstanceId.1" => $data{instance_id} );
my ($info) =
grep { $_->{"id"} eq $data{"instance_id"} } $self->list_instances();
while ( $info->{"state"} ne "stopped" ) {
Rex::Logger::debug("Waiting for instance to be stopped...");
($info) =
grep { $_->{"id"} eq $data{"instance_id"} } $self->list_instances();
sleep 5;
}
}
sub add_tag {
my ( $self, %data ) = @_;
Rex::Logger::debug( "Adding a new tag: "
. $data{id} . " -> "
. $data{name} . " -> "
. $data{value} );
$self->_request(
"CreateTags",
"ResourceId.1" => $data{"id"},
"Tag.1.Key" => $data{"name"},
"Tag.1.Value" => $data{"value"}
);
}
sub create_volume {
my ( $self, %data ) = @_;
Rex::Logger::debug("Creating a new volume");
my $xml = $self->_request(
"CreateVolume",
"Size" => $data{"size"} || 1,
"AvailabilityZone" => $data{"zone"},
);
my $ref = $self->_xml($xml);
return $ref->{"volumeId"};
my ($info) = grep { $_->{"id"} eq $ref->{"volumeId"} } $self->list_volumes();
while ( $info->{"status"} ne "available" ) {
Rex::Logger::debug("Waiting for volume to become ready...");
($info) = grep { $_->{"id"} eq $ref->{"volumeId"} } $self->list_volumes();
sleep 1;
}
}
sub list_volumes {
my ($self) = @_;
my $xml = $self->_request("DescribeVolumes");
my $ref = $self->_xml($xml);
return unless ($ref);
return unless ( exists $ref->{"volumeSet"}->{"item"} );
if ( ref( $ref->{"volumeSet"}->{"item"} ) eq "HASH" ) {
$ref->{"volumeSet"}->{"item"} = [ $ref->{"volumeSet"}->{"item"} ];
}
my @volumes;
for my $vol ( @{ $ref->{"volumeSet"}->{"item"} } ) {
push(
@volumes,
{
id => $vol->{"volumeId"},
status => $vol->{"status"},
zone => $vol->{"availabilityZone"},
size => $vol->{"size"},
attached_to => $vol->{"attachmentSet"}->{"item"}->{"instanceId"},
}
);
}
return @volumes;
}
sub _make_instance_map {
my ( $self, $instance_set ) = @_;
return (
ip => $_[1]->{"ipAddress"},
id => $_[1]->{"instanceId"},
image_id => $_[1]->{"imageId"},
architecture => $_[1]->{"architecture"},
type => $_[1]->{"instanceType"},
dns_name => $_[1]->{"dnsName"},
state => $_[1]->{"instanceState"}->{"name"},
launch_time => $_[1]->{"launchTime"},
(
name => exists( $instance_set->{"tagSet"}->{"item"}->{"value"} )
? $instance_set->{"tagSet"}->{"item"}->{"value"}
: $instance_set->{"tagSet"}->{"item"}->{"Name"}->{"value"}
),
private_ip => $_[1]->{"privateIpAddress"},
(
security_group => ref $_[1]->{"groupSet"}->{"item"} eq 'ARRAY' ? join ',',
map { $_->{groupName} } @{ $_[1]->{"groupSet"}->{"item"} }
: $_[1]->{"groupSet"}->{"item"}->{"groupName"}
),
(
security_groups => ref $_[1]->{"groupSet"}->{"item"} eq 'ARRAY'
? [ map { $_->{groupName} } @{ $_[1]->{"groupSet"}->{"item"} } ]
: [ $_[1]->{"groupSet"}->{"item"}->{"groupName"} ]
),
(
tags => {
map {
if ( ref $instance_set->{"tagSet"}->{"item"}->{$_} eq 'HASH' ) {
$_ => $instance_set->{"tagSet"}->{"item"}->{$_}->{value};
}
else {
$instance_set->{"tagSet"}->{"item"}->{key} =>
$instance_set->{"tagSet"}->{"item"}->{value};
}
} keys %{ $instance_set->{"tagSet"}->{"item"} }
}
),
);
}
sub list_instances {
my ($self) = @_;
my @ret;
my $xml = $self->_request("DescribeInstances");
my $ref = $self->_xml($xml);
return unless ($ref);
return unless ( exists $ref->{"reservationSet"} );
return unless ( exists $ref->{"reservationSet"}->{"item"} );
if ( ref $ref->{"reservationSet"}->{"item"} eq "HASH" ) {
# if only one instance is returned, turn it to an array
$ref->{"reservationSet"}->{"item"} = [ $ref->{"reservationSet"}->{"item"} ];
}
for my $instance_set ( @{ $ref->{"reservationSet"}->{"item"} } ) {
# push(@ret, $instance_set);
my $isi = $instance_set->{"instancesSet"}->{"item"};
if ( ref $isi eq 'HASH' ) {
push( @ret, { $self->_make_instance_map($isi) } );
}
elsif ( ref $isi eq 'ARRAY' ) {
for my $iset (@$isi) {
push( @ret, { $self->_make_instance_map($iset) } );
}
}
}
return @ret;
}
sub list_running_instances {
my ($self) = @_;
return grep { $_->{"state"} eq "running" } $self->list_instances();
}
sub get_regions {
my ($self) = @_;
my $content = $self->_request("DescribeRegions");
my %items =
( $content =~
m/<regionName>([^<]+)<\/regionName>\s+<regionEndpoint>([^<]+)<\/regionEndpoint>/gsim
);
return %items;
}
sub get_availability_zones {
my ($self) = @_;
my $xml = $self->_request("DescribeAvailabilityZones");
my $ref = $self->_xml($xml);
my @zones;
for my $item ( @{ $ref->{"availabilityZoneInfo"}->{"item"} } ) {
push(
@zones,
{
zone_name => $item->{"zoneName"},
region_name => $item->{"regionName"},
zone_state => $item->{"zoneState"},
}
);
}
return @zones;
}
sub _request {
my ( $self, $action, %args ) = @_;
my $ua = LWP::UserAgent->new;
$ua->timeout(300);
$ua->env_proxy;
my %param = $self->_sign( $action, %args );
Rex::Logger::debug( "Sending request to: https://" . $self->{'__endpoint'} );
Rex::Logger::debug( " $_ -> " . $param{$_} ) for keys %param;
my $req = POST( "https://" . $self->{__endpoint}, [%param] );
$self->signer->sign($req);
#my $res = $ua->post( "https://" . $self->{'__endpoint'}, \%param );
my $res = $ua->request($req);
if ( $res->code >= 500 ) {
Rex::Logger::info( "Error on request", "warn" );
Rex::Logger::debug( $res->content );
return;
}
else {
my $ret;
eval {
no warnings;
$ret = $res->content;
Rex::Logger::debug($ret);
use warnings;
};
return $ret;
}
}
sub _sign {
my ( $self, $action, %o_args ) = @_;
my %args;
for my $key ( keys %o_args ) {
next unless $key;
next unless $o_args{$key};
$args{$key} = $o_args{$key};
}
$args{Action} = $action;
$args{Version} = $self->{__version};
return %args;
my %sign_hash = (
AWSAccessKeyId => $self->{"__access_key"},
Action => $action,
Timestamp => $self->timestamp(),
Version => $self->{"__version"},
SignatureVersion => $self->{"__signature_version"},
%args
);
my $sign_this;
foreach my $key ( sort { lc($a) cmp lc($b) } keys %sign_hash ) {
$sign_this .= $key . $sign_hash{$key};
}
Rex::Logger::debug("Signed: $sign_this");
my $encoded = $self->_hash($sign_this);
my %params = (
Action => $action,
SignatureVersion => $self->{"__signature_version"},
AWSAccessKeyId => $self->{"__access_key"},
Timestamp => $self->timestamp(),
Version => $self->{"__version"},
Signature => $encoded,
%args
);
return %params;
}
sub _hash {
my ( $self, $query_string ) = @_;
my $hashed = Digest::HMAC_SHA1->new( $self->{"__secret_access_key"} );
$hashed->add($query_string);
return encode_base64( $hashed->digest, "" );
}
sub _xml {
my ( $self, $xml ) = @_;
my $x = XML::Simple->new;
my $res = $x->XMLin($xml);
if ( defined $res->{"Errors"} ) {
if ( ref( $res->{"Errors"} ) ne "ARRAY" ) {
$res->{"Errors"} = [ $res->{"Errors"} ];
}
my @error_msg = ();
for my $error ( @{ $res->{"Errors"} } ) {
push( @error_msg,
$error->{"Error"}->{"Message"}
. " (Code: "
. $error->{"Error"}->{"Code"}
. ")" );
}
confess( join( "\n", @error_msg ) );
}
return $res;
}
1;