Merge lp:~dimitern/goamz/vpc-api-calls into lp:goamz
- vpc-api-calls
- Merge into trunk
| Status: | Merged |
|---|---|
| Merged at revision: | 46 |
| Proposed branch: | lp:~dimitern/goamz/vpc-api-calls |
| Merge into: | lp:goamz |
| Prerequisite: | lp:~dimitern/goamz/lp-1275406-lpcalserversuite-testinstanceinfo |
| Diff against target: |
758 lines (+526/-25) 7 files modified
ec2/ec2.go (+14/-2) ec2/ec2_test.go (+7/-7) ec2/ec2t_test.go (+50/-11) ec2/ec2test/server.go (+121/-4) ec2/responses_test.go (+42/-1) ec2/vpc.go (+120/-0) ec2/vpc_test.go (+172/-0) |
| To merge this branch: | bzr merge lp:~dimitern/goamz/vpc-api-calls |
| Related bugs: |
| Reviewer | Review Type | Date Requested | Status |
|---|---|---|---|
| Dimiter Naydenov (community) | Approve | ||
|
Review via email:
|
|||
Commit message
Description of the change
ec2: Add support for AWS VPCs
Added the following new API calls:
- CreateVPC
- DeleteVPC
- VPCs
(and the associated types/responses).
Most new code is in vpc.go and vpc_test.go.
These are needed in order to support VPC-related
operations on EC2, which will come in later follow-ups.
Implementation complexity in ec2test package for the
new calls is minimal.
Some changes were needed in order to support these
and the upcoming API calls. For the new ones, AWS API
version 2013-10-15 (latest) is used, while for the
existing calls use the previous API version, as before
(2011-12-15).
Added tests, updated test doubles and tested live on
EC2.
After running the EC2 live tests numerous times, I
realized some tests are leaking security groups, so
I added a deleteGroups() tests helper that retries
to ensure all groups are deleted. Also improved the
VPC tests to include retrying as well, so the live
tests are more stable and clean up after themselves.
| Dimiter Naydenov (dimitern) wrote : | # |
| Martin Packman (gz) wrote : | # |
LGTM, a couple of comments.
https:/
File ec2/ec2.go (right):
https:/
ec2/ec2.go:925: func (ec2 *EC2) CreateVpc(cidrBlock string) (resp
*CreateVpcResp, err error) {
Do want to take and pass through the instanceTenancy argument here even
if we don't need it ourselves?
https:/
File ec2/ec2t_test.go (right):
https:/
ec2/ec2t_
Is this a safe cidr to be using?
https:/
ec2/ec2t_
This feels race/eventual consistency prone, perhaps not an issue for
vpcs or delete calls specifically?
https:/
File ec2/ec2test/
https:/
ec2/ec2test/
Do we want an error not implemented type of thing rather than just not
matching?
https:/
File ec2/responses_
https:/
ec2/responses_
xmlns="http://
We probably don't want to mix and match schema versions in our example
output unless we really don't have a feature we need in an older schema.
- 48. By Dimiter Naydenov
-
Changes after review
| Dimiter Naydenov (dimitern) wrote : | # |
Please take a look.
https:/
File ec2/ec2.go (right):
https:/
ec2/ec2.go:925: func (ec2 *EC2) CreateVpc(cidrBlock string) (resp
*CreateVpcResp, err error) {
On 2014/02/03 21:40:54, gz wrote:
> Do want to take and pass through the instanceTenancy argument here
even if we
> don't need it ourselves?
It's not supported as an argument in API version 2011-12-15.
https:/
File ec2/ec2t_test.go (right):
https:/
ec2/ec2t_
On 2014/02/03 21:40:54, gz wrote:
> Is this a safe cidr to be using?
Yes, it passes even live tests :)
https:/
ec2/ec2t_
On 2014/02/03 21:40:54, gz wrote:
> This feels race/eventual consistency prone, perhaps not an issue for
vpcs or
> delete calls specifically?
I run them multiple times live without issues so far.
https:/
File ec2/ec2test/
https:/
ec2/ec2test/
On 2014/02/03 21:40:54, gz wrote:
> Do we want an error not implemented type of thing rather than just not
matching?
It's technically not an error, but since this is just a test double, I
don't think it's a big deal to error out.
https:/
File ec2/responses_
https:/
ec2/responses_
xmlns="http://
On 2014/02/03 21:40:54, gz wrote:
> We probably don't want to mix and match schema versions in our example
output
> unless we really don't have a feature we need in an older schema.
You're right. I found the API docs for version 2011-12-15 and updated
the example responses, as well as the code to conform to that (i.e. not
IsDefault and no InstanceTenancy fields anymore).
- 49. By Dimiter Naydenov
-
Split VPC calls/tests in a separate file
| Dimiter Naydenov (dimitern) wrote : | # |
Please take a look.
- 50. By Dimiter Naydenov
-
Simplified & refactored a bit; naming fixed, API version updated
| Dimiter Naydenov (dimitern) wrote : | # |
Please take a look.
| Dimiter Naydenov (dimitern) wrote : | # |
Please take a look.
| Roger Peppe (rogpeppe) wrote : | # |
LGTM with some suggestions, mostly documentation related.
https:/
File ec2/ec2test/
https:/
ec2/ec2test/
tag-value filters not implemented")
fmt.Errorf("%s filter not implemented", attr)
?
https:/
File ec2/ec2.go (right):
https:/
ec2/ec2.go:122: if params["Version"] == "" {
Given that makeParams now always creates the Version
entry, why bother with this?
https:/
ec2/ec2.go:183: func makeParamsVPC(
I'm not sure this really justifies itself over
just calling makeParamsForVe
when necessary.
https:/
ec2/ec2.go:187: func makeParamsForVe
map[string]string {
makeParamsWithV
?
then makeParamsWithV
(i *think* that With is more appropriate than For in this case).
https:/
File ec2/ec2test/
https:/
ec2/ec2test/
string) map[string]bool {
doc comment?
https:/
File ec2/vpc.go (right):
https:/
ec2/vpc.go:26: // AWS API version used for VPC-related calls.
Do we actually want to export this?
https:/
ec2/vpc.go:53: // The smallest VPC you can create uses a /28 netmask (16
IP
s/you can create/that can be created/
https:/
ec2/vpc.go:57: // The supported tenancy options for instances launched
into the
// The instanceTenancy value holds the tenancy options for
// instances launched into the VPC - either DefaultTenancy
// or DedicatedTenancy.
//
// See http://
?
I think the details of the tenancy semantics can reasonably
be left to the amazon docs.
We should also document that instanceTenancy may be empty
or (my preference) just leave the description unchanged,
and lose the special case for instanceTenancy == "".
https:/
ec2/vpc.go:79: // DeleteVPC deletes the specified VPC. You must detach
or delete all
I'm not keen on the "you" phrasing (it might not be
the reader that's responsible for doing it).
I'd prefer something like this:
// DeleteVPC deletes the VPC with the specified id.
// All gateways and resources that are associated with
// the VPC must have been previously deleted,
// including instances running in the VPC, and non-default security
// groups a...
- 51. By Dimiter Naydenov
-
Changes after review; tests improvements
- 52. By Dimiter Naydenov
-
Changed CIDRs of VPC for easier tracking of leaky tests
| Dimiter Naydenov (dimitern) wrote : | # |
Please take a look.
https:/
File ec2/ec2test/
https:/
ec2/ec2test/
tag-value filters not implemented")
On 2014/02/05 14:29:14, rog wrote:
> fmt.Errorf("%s filter not implemented", attr)
> ?
It was changed in later patch sets.
https:/
File ec2/ec2.go (right):
https:/
ec2/ec2.go:122: if params["Version"] == "" {
On 2014/02/05 14:29:14, rog wrote:
> Given that makeParams now always creates the Version
> entry, why bother with this?
Just to be on the safe side, but fair enough. Removed.
https:/
ec2/ec2.go:183: func makeParamsVPC(
On 2014/02/05 14:29:14, rog wrote:
> I'm not sure this really justifies itself over
> just calling makeParamsForVe
> when necessary.
I'd prefer to leave it, because it's shorter to write - it's just a
helper anyway.
https:/
ec2/ec2.go:187: func makeParamsForVe
map[string]string {
On 2014/02/05 14:29:14, rog wrote:
> makeParamsWithV
> ?
> then makeParamsWithV
> (i *think* that With is more appropriate than For in this case).
Done.
https:/
File ec2/ec2test/
https:/
ec2/ec2test/
string) map[string]bool {
On 2014/02/05 14:29:14, rog wrote:
> doc comment?
Done.
https:/
File ec2/vpc.go (right):
https:/
ec2/vpc.go:26: // AWS API version used for VPC-related calls.
On 2014/02/05 14:29:14, rog wrote:
> Do we actually want to export this?
Not really. Done.
https:/
ec2/vpc.go:53: // The smallest VPC you can create uses a /28 netmask (16
IP
On 2014/02/05 14:29:14, rog wrote:
> s/you can create/that can be created/
Done.
https:/
ec2/vpc.go:57: // The supported tenancy options for instances launched
into the
On 2014/02/05 14:29:14, rog wrote:
> // The instanceTenancy value holds the tenancy options for
> // instances launched into the VPC - either DefaultTenancy
> // or DedicatedTenancy.
> //
> // See http://
> ?
> I think the details of the tenancy semantics can reasonably
> be left to the amazon docs.
> We should also document that instanceTenancy may be empty
> or (my preference) just leave the description unchanged,
> and lose the special case for instanceTenancy == "".
I'll change...
| Roger Peppe (rogpeppe) wrote : | # |
LGTM with a few further suggestions below.
https:/
File ec2/vpc.go (right):
https:/
ec2/vpc.go:57: // The supported tenancy options for instances launched
into the
On 2014/02/06 11:32:22, dimitern wrote:
> On 2014/02/05 14:29:14, rog wrote:
> > // The instanceTenancy value holds the tenancy options for
> > // instances launched into the VPC - either DefaultTenancy
> > // or DedicatedTenancy.
> > //
> > // See http://
> >
> > ?
> >
> > I think the details of the tenancy semantics can reasonably
> > be left to the amazon docs.
> >
> > We should also document that instanceTenancy may be empty
> > or (my preference) just leave the description unchanged,
> > and lose the special case for instanceTenancy == "".
> I'll change the comment as suggested, but will change the if below to
set it to
> DefaultTenancy when empty, because we can't pass it as "" to AWS.
If the user passes "" to the function, they deserve any error they get -
the function doesn't document that that's allowed (it actually
explicitly documents that instanceTenancy should be either
DefaultTenancy or DedicatedTenancy)
ec2 doesn't accept "furble" either, but we don't check that, and I don't
think there's a need to.
https:/
File ec2/ec2t_test.go (right):
https:/
ec2/ec2t_
string) bool {
When I've done this function before, I've implemented it as:
func errorCode(err error) string {
if err, _ := err.(*ec2.Error); err != nil {
return err.Code
}
return ""
}
then the call looks like:
if errorCode(err) == "InvalidGroup.
I think that reads a little better, and it's more
flexible.
I'd actually suggest doing that, and then a subsequent
CL could change other tests to use it (I count about 5 places).
https:/
File ec2/ec2test/
https:/
ec2/ec2test/
easier lookup.
s/ for easier lookup././
No particular need for the rationalisation.
| Martin Packman (gz) wrote : | # |
LGTM.
https:/
File ec2/ec2.go (right):
https:/
ec2/ec2.go:177: return makeParamsWithV
I'd stick "2011-12-15" in a const too. Nice adaptation to allow version
passing.
https:/
File ec2/ec2t_test.go (right):
https:/
ec2/ec2t_
[]ec2.SecurityG
This is somewhat ick, but I like that there's enough logging going on so
failures that hit the timeout should be clear enough.
- 53. By Dimiter Naydenov
-
Changes after reivew
| Dimiter Naydenov (dimitern) wrote : | # |
Please take a look.
https:/
File ec2/ec2.go (right):
https:/
ec2/ec2.go:177: return makeParamsWithV
On 2014/02/06 16:25:07, gz wrote:
> I'd stick "2011-12-15" in a const too. Nice adaptation to allow
version passing.
Done.
https:/
File ec2/ec2t_test.go (right):
https:/
ec2/ec2t_
[]ec2.SecurityG
On 2014/02/06 16:25:07, gz wrote:
> This is somewhat ick, but I like that there's enough logging going on
so
> failures that hit the timeout should be clear enough.
Yeah, it's more resilient than just trying to delete them and not
checking the error :)
https:/
ec2/ec2t_
string) bool {
On 2014/02/06 14:42:08, rog wrote:
> When I've done this function before, I've implemented it as:
> func errorCode(err error) string {
> if err, _ := err.(*ec2.Error); err != nil {
> return err.Code
> }
> return ""
> }
> then the call looks like:
> if errorCode(err) == "InvalidGroup.
> I think that reads a little better, and it's more
> flexible.
> I'd actually suggest doing that, and then a subsequent
> CL could change other tests to use it (I count about 5 places).
Done.
https:/
File ec2/ec2test/
https:/
ec2/ec2test/
easier lookup.
On 2014/02/06 14:42:08, rog wrote:
> s/ for easier lookup././
> No particular need for the rationalisation.
Done.
| Gustavo Niemeyer (niemeyer) wrote : | # |
LGTM with trivial points.
https:/
File ec2/ec2.go (right):
https:/
ec2/ec2.go:31: // VPC-related requests.
Moving the VPC API version here as well would make it more clear. The
constant isn't even used in vpc.go either way.
Also, is there a known reason not to use the new API version across the
board?
https:/
File ec2/ec2t_test.go (right):
https:/
ec2/ec2t_
{
This can be a function (s is unnecessary).
https:/
File ec2/vpc.go (right):
https:/
ec2/vpc.go:8: // Written by Gustavo Niemeyer
<email address hidden>
Please drop this line. We should drop it from all the files.
https:/
ec2/vpc.go:19: PendingState = "pending"
The names of these constants do not look entirely sane. Although this is
inside the vpc.go file, this is living inside the ec2 package, which
means it's ec2.PendingState, and ec2.DefaultTenancy, which is a lot more
broad than "supported values for VPC state".
I suggest either fixing them to include the fact they are about VPC
(VPCPendingState, for example), or just dropping the constants until we
have a better idea.
https:/
ec2/vpc.go:24: DedicatedTenancy = "dedicated"
Same as above.
https:/
ec2/vpc.go:30: // VPC describes an Amazon Virtual Private Cloud (VPC).
s/an Amazon Virtual/a Virtual/
We might have other pre-existent instances of that in the documentation,
but we should eventually fix them as well to not refer to Amazon. First,
because every single documentation entry refers to something coming out
of Amazon, and second, because this will work with whoever implements
this API.
https:/
File ec2/vpc_test.go (right):
https:/
ec2/vpc_test.go:8: // Written by Gustavo Niemeyer
<email address hidden>
Please drop this line.
| Dimiter Naydenov (dimitern) wrote : | # |
*** Submitted:
ec2: Add support for AWS VPCs
Added the following new API calls:
- CreateVPC
- DeleteVPC
- VPCs
(and the associated types/responses).
Most new code is in vpc.go and vpc_test.go.
These are needed in order to support VPC-related
operations on EC2, which will come in later follow-ups.
Implementation complexity in ec2test package for the
new calls is minimal.
Some changes were needed in order to support these
and the upcoming API calls. For the new ones, AWS API
version 2013-10-15 (latest) is used, while for the
existing calls use the previous API version, as before
(2011-12-15).
Added tests, updated test doubles and tested live on
EC2.
After running the EC2 live tests numerous times, I
realized some tests are leaking security groups, so
I added a deleteGroups() tests helper that retries
to ensure all groups are deleted. Also improved the
VPC tests to include retrying as well, so the live
tests are more stable and clean up after themselves.
R=
CC=
https:/
https:/
File ec2/ec2.go (right):
https:/
ec2/ec2.go:31: // VPC-related requests.
On 2014/02/12 13:23:49, niemeyer wrote:
> Moving the VPC API version here as well would make it more clear. The
constant
> isn't even used in vpc.go either way.
> Also, is there a known reason not to use the new API version across
the board?
I'll move it here. The reason for not using the newer API version is
that some things are changed, possibly in an incompatible way (responses
include different sub sections, more filters, certain arguments have
changed). I didn't want to make a massive change to all current API
calls to make them compatible with 2013-10-15. I could do it in a
follow-up, after the current chain have landed though.
https:/
File ec2/ec2t_test.go (right):
https:/
ec2/ec2t_
{
On 2014/02/12 13:23:49, niemeyer wrote:
> This can be a function (s is unnecessary).
Done.
https:/
File ec2/vpc.go (right):
https:/
ec2/vpc.go:8: // Written by Gustavo Niemeyer
<email address hidden>
On 2014/02/12 13:23:49, niemeyer wrote:
> Please drop this line. We should drop it from all the files.
I'll remove it from all files then.
https:/
ec2/vpc.go:19: PendingState = "pending"
On 2014/02/12 13:23:49, niemeyer wrote:
> The names of these constants do not look entirely sane. Although this
is inside
> the vpc.go file, this is living inside the ec2 package, which means
it's
> ec2.PendingState, and ec2.DefaultTenancy, which is a lot more broad
than
> "supported values for VPC state".
> I suggest either fixing them to include the fact they are about VPC
> (VPCPendingState, for example), or just dropping the constants until
we have a
> better idea.
I'll drop ...
| Dimiter Naydenov (dimitern) wrote : | # |
Post-submit approval.
Preview Diff
| 1 | === modified file 'ec2/ec2.go' | |||
| 2 | --- ec2/ec2.go 2013-10-04 17:05:49 +0000 | |||
| 3 | +++ ec2/ec2.go 2014-02-07 12:35:18 +0000 | |||
| 4 | @@ -27,6 +27,10 @@ | |||
| 5 | 27 | 27 | ||
| 6 | 28 | const debug = false | 28 | const debug = false |
| 7 | 29 | 29 | ||
| 8 | 30 | // legacyAPIVersion is the AWS API version used for all but | ||
| 9 | 31 | // VPC-related requests. | ||
| 10 | 32 | const legacyAPIVersion = "2011-12-15" | ||
| 11 | 33 | |||
| 12 | 30 | // The EC2 type encapsulates operations with a specific EC2 region. | 34 | // The EC2 type encapsulates operations with a specific EC2 region. |
| 13 | 31 | type EC2 struct { | 35 | type EC2 struct { |
| 14 | 32 | aws.Auth | 36 | aws.Auth |
| 15 | @@ -119,7 +123,6 @@ | |||
| 16 | 119 | var timeNow = time.Now | 123 | var timeNow = time.Now |
| 17 | 120 | 124 | ||
| 18 | 121 | func (ec2 *EC2) query(params map[string]string, resp interface{}) error { | 125 | func (ec2 *EC2) query(params map[string]string, resp interface{}) error { |
| 19 | 122 | params["Version"] = "2011-12-15" | ||
| 20 | 123 | params["Timestamp"] = timeNow().In(time.UTC).Format(time.RFC3339) | 126 | params["Timestamp"] = timeNow().In(time.UTC).Format(time.RFC3339) |
| 21 | 124 | endpoint, err := url.Parse(ec2.Region.EC2Endpoint) | 127 | endpoint, err := url.Parse(ec2.Region.EC2Endpoint) |
| 22 | 125 | if err != nil { | 128 | if err != nil { |
| 23 | @@ -175,8 +178,17 @@ | |||
| 24 | 175 | } | 178 | } |
| 25 | 176 | 179 | ||
| 26 | 177 | func makeParams(action string) map[string]string { | 180 | func makeParams(action string) map[string]string { |
| 27 | 181 | return makeParamsWithVersion(action, legacyAPIVersion) | ||
| 28 | 182 | } | ||
| 29 | 183 | |||
| 30 | 184 | func makeParamsVPC(action string) map[string]string { | ||
| 31 | 185 | return makeParamsWithVersion(action, vpcAPIVersion) | ||
| 32 | 186 | } | ||
| 33 | 187 | |||
| 34 | 188 | func makeParamsWithVersion(action, version string) map[string]string { | ||
| 35 | 178 | params := make(map[string]string) | 189 | params := make(map[string]string) |
| 36 | 179 | params["Action"] = action | 190 | params["Action"] = action |
| 37 | 191 | params["Version"] = version | ||
| 38 | 180 | return params | 192 | return params |
| 39 | 181 | } | 193 | } |
| 40 | 182 | 194 | ||
| 41 | @@ -803,7 +815,7 @@ | |||
| 42 | 803 | return resp, nil | 815 | return resp, nil |
| 43 | 804 | } | 816 | } |
| 44 | 805 | 817 | ||
| 46 | 806 | // ResourceTag represents key-value metadata used to classify and organize | 818 | // Tag represents key-value metadata used to classify and organize |
| 47 | 807 | // EC2 instances. | 819 | // EC2 instances. |
| 48 | 808 | // | 820 | // |
| 49 | 809 | // See http://goo.gl/bncl3 for more details | 821 | // See http://goo.gl/bncl3 for more details |
| 50 | 810 | 822 | ||
| 51 | === modified file 'ec2/ec2_test.go' | |||
| 52 | --- ec2/ec2_test.go 2013-10-04 17:05:49 +0000 | |||
| 53 | +++ ec2/ec2_test.go 2014-02-07 12:35:18 +0000 | |||
| 54 | @@ -96,14 +96,14 @@ | |||
| 55 | 96 | DisableAPITermination: true, | 96 | DisableAPITermination: true, |
| 56 | 97 | ShutdownBehavior: "terminate", | 97 | ShutdownBehavior: "terminate", |
| 57 | 98 | PrivateIPAddress: "10.0.0.25", | 98 | PrivateIPAddress: "10.0.0.25", |
| 64 | 99 | BlockDeviceMappings: []ec2.BlockDeviceMapping{{ | 99 | BlockDeviceMappings: []ec2.BlockDeviceMapping{{ |
| 65 | 100 | DeviceName: "device-name", | 100 | DeviceName: "device-name", |
| 66 | 101 | VirtualName: "virtual-name", | 101 | VirtualName: "virtual-name", |
| 67 | 102 | SnapshotId: "snapshot-id", | 102 | SnapshotId: "snapshot-id", |
| 68 | 103 | VolumeType: "volume-type", | 103 | VolumeType: "volume-type", |
| 69 | 104 | VolumeSize: 10, | 104 | VolumeSize: 10, |
| 70 | 105 | DeleteOnTermination: true, | 105 | DeleteOnTermination: true, |
| 72 | 106 | IOPS: 1000, | 106 | IOPS: 1000, |
| 73 | 107 | }}, | 107 | }}, |
| 74 | 108 | } | 108 | } |
| 75 | 109 | resp, err := s.ec2.RunInstances(&options) | 109 | resp, err := s.ec2.RunInstances(&options) |
| 76 | 110 | 110 | ||
| 77 | === modified file 'ec2/ec2t_test.go' | |||
| 78 | --- ec2/ec2t_test.go 2014-02-07 12:35:18 +0000 | |||
| 79 | +++ ec2/ec2t_test.go 2014-02-07 12:35:18 +0000 | |||
| 80 | @@ -5,6 +5,7 @@ | |||
| 81 | 5 | "net" | 5 | "net" |
| 82 | 6 | "regexp" | 6 | "regexp" |
| 83 | 7 | "sort" | 7 | "sort" |
| 84 | 8 | "time" | ||
| 85 | 8 | 9 | ||
| 86 | 9 | "launchpad.net/goamz/aws" | 10 | "launchpad.net/goamz/aws" |
| 87 | 10 | "launchpad.net/goamz/ec2" | 11 | "launchpad.net/goamz/ec2" |
| 88 | @@ -111,7 +112,7 @@ | |||
| 89 | 111 | } | 112 | } |
| 90 | 112 | 113 | ||
| 91 | 113 | // AmazonServerSuite runs the ec2test server tests against a live EC2 server. | 114 | // AmazonServerSuite runs the ec2test server tests against a live EC2 server. |
| 93 | 114 | // It will only be activated if the -all flag is specified. | 115 | // It will only be activated if the -amazon flag is specified. |
| 94 | 115 | type AmazonServerSuite struct { | 116 | type AmazonServerSuite struct { |
| 95 | 116 | srv AmazonServer | 117 | srv AmazonServer |
| 96 | 117 | ServerTests | 118 | ServerTests |
| 97 | @@ -149,7 +150,7 @@ | |||
| 98 | 149 | func (s *ServerTests) makeTestGroup(c *C, name, descr string) ec2.SecurityGroup { | 150 | func (s *ServerTests) makeTestGroup(c *C, name, descr string) ec2.SecurityGroup { |
| 99 | 150 | // Clean it up if a previous test left it around. | 151 | // Clean it up if a previous test left it around. |
| 100 | 151 | _, err := s.ec2.DeleteSecurityGroup(ec2.SecurityGroup{Name: name}) | 152 | _, err := s.ec2.DeleteSecurityGroup(ec2.SecurityGroup{Name: name}) |
| 102 | 152 | if err != nil && err.(*ec2.Error).Code != "InvalidGroup.NotFound" { | 153 | if err != nil && s.errorCode(err) != "InvalidGroup.NotFound" { |
| 103 | 153 | c.Fatalf("delete security group: %v", err) | 154 | c.Fatalf("delete security group: %v", err) |
| 104 | 154 | } | 155 | } |
| 105 | 155 | 156 | ||
| 106 | @@ -161,10 +162,8 @@ | |||
| 107 | 161 | 162 | ||
| 108 | 162 | func (s *ServerTests) TestIPPerms(c *C) { | 163 | func (s *ServerTests) TestIPPerms(c *C) { |
| 109 | 163 | g0 := s.makeTestGroup(c, "goamz-test0", "ec2test group 0") | 164 | g0 := s.makeTestGroup(c, "goamz-test0", "ec2test group 0") |
| 110 | 164 | defer s.ec2.DeleteSecurityGroup(g0) | ||
| 111 | 165 | |||
| 112 | 166 | g1 := s.makeTestGroup(c, "goamz-test1", "ec2test group 1") | 165 | g1 := s.makeTestGroup(c, "goamz-test1", "ec2test group 1") |
| 114 | 167 | defer s.ec2.DeleteSecurityGroup(g1) | 166 | defer s.deleteGroups(c, []ec2.SecurityGroup{g0, g1}) |
| 115 | 168 | 167 | ||
| 116 | 169 | resp, err := s.ec2.SecurityGroups([]ec2.SecurityGroup{g0, g1}, nil) | 168 | resp, err := s.ec2.SecurityGroups([]ec2.SecurityGroup{g0, g1}, nil) |
| 117 | 170 | c.Assert(err, IsNil) | 169 | c.Assert(err, IsNil) |
| 118 | @@ -183,7 +182,7 @@ | |||
| 119 | 183 | SourceIPs: []string{"z127.0.0.1/24"}, | 182 | SourceIPs: []string{"z127.0.0.1/24"}, |
| 120 | 184 | }}) | 183 | }}) |
| 121 | 185 | c.Assert(err, NotNil) | 184 | c.Assert(err, NotNil) |
| 123 | 186 | c.Check(err.(*ec2.Error).Code, Equals, "InvalidPermission.Malformed") | 185 | c.Check(s.errorCode(err), Equals, "InvalidPermission.Malformed") |
| 124 | 187 | 186 | ||
| 125 | 188 | // Check that AuthorizeSecurityGroup adds the correct authorizations. | 187 | // Check that AuthorizeSecurityGroup adds the correct authorizations. |
| 126 | 189 | _, err = s.ec2.AuthorizeSecurityGroup(g0, []ec2.IPPerm{{ | 188 | _, err = s.ec2.AuthorizeSecurityGroup(g0, []ec2.IPPerm{{ |
| 127 | @@ -230,7 +229,7 @@ | |||
| 128 | 230 | // Check that we can't delete g1 (because g0 is using it) | 229 | // Check that we can't delete g1 (because g0 is using it) |
| 129 | 231 | _, err = s.ec2.DeleteSecurityGroup(g1) | 230 | _, err = s.ec2.DeleteSecurityGroup(g1) |
| 130 | 232 | c.Assert(err, NotNil) | 231 | c.Assert(err, NotNil) |
| 132 | 233 | c.Check(err.(*ec2.Error).Code, Equals, "InvalidGroup.InUse") | 232 | c.Check(s.errorCode(err), Equals, "InvalidGroup.InUse") |
| 133 | 234 | 233 | ||
| 134 | 235 | _, err = s.ec2.RevokeSecurityGroup(g0, []ec2.IPPerm{{ | 234 | _, err = s.ec2.RevokeSecurityGroup(g0, []ec2.IPPerm{{ |
| 135 | 236 | Protocol: "tcp", | 235 | Protocol: "tcp", |
| 136 | @@ -301,7 +300,7 @@ | |||
| 137 | 301 | c.Assert(err, IsNil) | 300 | c.Assert(err, IsNil) |
| 138 | 302 | 301 | ||
| 139 | 303 | _, err = s.ec2.AuthorizeSecurityGroup(ec2.SecurityGroup{Name: name}, perms[0:2]) | 302 | _, err = s.ec2.AuthorizeSecurityGroup(ec2.SecurityGroup{Name: name}, perms[0:2]) |
| 141 | 304 | c.Assert(err, ErrorMatches, `.*\(InvalidPermission.Duplicate\)`) | 303 | c.Assert(s.errorCode(err), Equals, "InvalidPermission.Duplicate") |
| 142 | 305 | } | 304 | } |
| 143 | 306 | 305 | ||
| 144 | 307 | type filterSpec struct { | 306 | type filterSpec struct { |
| 145 | @@ -313,12 +312,12 @@ | |||
| 146 | 313 | groupResp, err := s.ec2.CreateSecurityGroup(sessionName("testgroup1"), "testgroup one description") | 312 | groupResp, err := s.ec2.CreateSecurityGroup(sessionName("testgroup1"), "testgroup one description") |
| 147 | 314 | c.Assert(err, IsNil) | 313 | c.Assert(err, IsNil) |
| 148 | 315 | group1 := groupResp.SecurityGroup | 314 | group1 := groupResp.SecurityGroup |
| 149 | 316 | defer s.ec2.DeleteSecurityGroup(group1) | ||
| 150 | 317 | 315 | ||
| 151 | 318 | groupResp, err = s.ec2.CreateSecurityGroup(sessionName("testgroup2"), "testgroup two description") | 316 | groupResp, err = s.ec2.CreateSecurityGroup(sessionName("testgroup2"), "testgroup two description") |
| 152 | 319 | c.Assert(err, IsNil) | 317 | c.Assert(err, IsNil) |
| 153 | 320 | group2 := groupResp.SecurityGroup | 318 | group2 := groupResp.SecurityGroup |
| 155 | 321 | defer s.ec2.DeleteSecurityGroup(group2) | 319 | |
| 156 | 320 | defer s.deleteGroups(c, []ec2.SecurityGroup{group1, group2}) | ||
| 157 | 322 | 321 | ||
| 158 | 323 | insts := make([]*ec2.Instance, 3) | 322 | insts := make([]*ec2.Instance, 3) |
| 159 | 324 | inst, err := s.ec2.RunInstances(&ec2.RunInstances{ | 323 | inst, err := s.ec2.RunInstances(&ec2.RunInstances{ |
| 160 | @@ -484,8 +483,8 @@ | |||
| 161 | 484 | c.Assert(err, IsNil) | 483 | c.Assert(err, IsNil) |
| 162 | 485 | g[i] = resp.SecurityGroup | 484 | g[i] = resp.SecurityGroup |
| 163 | 486 | c.Logf("group %d: %v", i, g[i]) | 485 | c.Logf("group %d: %v", i, g[i]) |
| 164 | 487 | defer s.ec2.DeleteSecurityGroup(g[i]) | ||
| 165 | 488 | } | 486 | } |
| 166 | 487 | defer s.deleteGroups(c, g) | ||
| 167 | 489 | 488 | ||
| 168 | 490 | perms := [][]ec2.IPPerm{ | 489 | perms := [][]ec2.IPPerm{ |
| 169 | 491 | {{ | 490 | {{ |
| 170 | @@ -621,3 +620,43 @@ | |||
| 171 | 621 | } | 620 | } |
| 172 | 622 | } | 621 | } |
| 173 | 623 | } | 622 | } |
| 174 | 623 | |||
| 175 | 624 | // deleteGroups ensures the given groups are deleted, by retrying | ||
| 176 | 625 | // until a timeout or all groups cannot be found anymore. | ||
| 177 | 626 | // This should be used to make sure tests leave no groups around. | ||
| 178 | 627 | func (s *ServerTests) deleteGroups(c *C, groups []ec2.SecurityGroup) { | ||
| 179 | 628 | testAttempt := aws.AttemptStrategy{ | ||
| 180 | 629 | Total: 2 * time.Minute, | ||
| 181 | 630 | Delay: 5 * time.Second, | ||
| 182 | 631 | } | ||
| 183 | 632 | for a := testAttempt.Start(); a.Next(); { | ||
| 184 | 633 | deleted := 0 | ||
| 185 | 634 | c.Logf("deleting groups %v", groups) | ||
| 186 | 635 | for _, group := range groups { | ||
| 187 | 636 | _, err := s.ec2.DeleteSecurityGroup(group) | ||
| 188 | 637 | if err == nil || s.errorCode(err) == "InvalidGroup.NotFound" { | ||
| 189 | 638 | c.Logf("group %v deleted", group) | ||
| 190 | 639 | deleted++ | ||
| 191 | 640 | continue | ||
| 192 | 641 | } | ||
| 193 | 642 | if err != nil { | ||
| 194 | 643 | c.Logf("retrying; DeleteSecurityGroup returned: %v", err) | ||
| 195 | 644 | } | ||
| 196 | 645 | } | ||
| 197 | 646 | if deleted == len(groups) { | ||
| 198 | 647 | c.Logf("all groups deleted") | ||
| 199 | 648 | return | ||
| 200 | 649 | } | ||
| 201 | 650 | } | ||
| 202 | 651 | c.Fatalf("timeout while waiting %v groups to get deleted!", groups) | ||
| 203 | 652 | } | ||
| 204 | 653 | |||
| 205 | 654 | // errorCode returns the code of the given error, assuming it's not | ||
| 206 | 655 | // nil and it's an instance of *ec2.Error. It returns an empty string | ||
| 207 | 656 | // otherwise. | ||
| 208 | 657 | func (s *ServerTests) errorCode(err error) string { | ||
| 209 | 658 | if err, _ := err.(*ec2.Error); err != nil { | ||
| 210 | 659 | return err.Code | ||
| 211 | 660 | } | ||
| 212 | 661 | return "" | ||
| 213 | 662 | } | ||
| 214 | 624 | 663 | ||
| 215 | === modified file 'ec2/ec2test/server.go' | |||
| 216 | --- ec2/ec2test/server.go 2013-12-18 14:22:35 +0000 | |||
| 217 | +++ ec2/ec2test/server.go 2014-02-07 12:35:18 +0000 | |||
| 218 | @@ -50,10 +50,13 @@ | |||
| 219 | 50 | instances map[string]*Instance // id -> instance | 50 | instances map[string]*Instance // id -> instance |
| 220 | 51 | reservations map[string]*reservation // id -> reservation | 51 | reservations map[string]*reservation // id -> reservation |
| 221 | 52 | groups map[string]*securityGroup // id -> group | 52 | groups map[string]*securityGroup // id -> group |
| 222 | 53 | vpcs map[string]*vpc // id -> vpc | ||
| 223 | 53 | maxId counter | 54 | maxId counter |
| 224 | 54 | reqId counter | 55 | reqId counter |
| 225 | 55 | reservationId counter | 56 | reservationId counter |
| 226 | 56 | groupId counter | 57 | groupId counter |
| 227 | 58 | vpcId counter | ||
| 228 | 59 | dhcpOptsId counter | ||
| 229 | 57 | initialInstanceState ec2.InstanceState | 60 | initialInstanceState ec2.InstanceState |
| 230 | 58 | } | 61 | } |
| 231 | 59 | 62 | ||
| 232 | @@ -191,6 +194,24 @@ | |||
| 233 | 191 | return | 194 | return |
| 234 | 192 | } | 195 | } |
| 235 | 193 | 196 | ||
| 236 | 197 | type vpc struct { | ||
| 237 | 198 | ec2.VPC | ||
| 238 | 199 | } | ||
| 239 | 200 | |||
| 240 | 201 | func (v *vpc) matchAttr(attr, value string) (ok bool, err error) { | ||
| 241 | 202 | switch attr { | ||
| 242 | 203 | case "cidr": | ||
| 243 | 204 | return v.CIDRBlock == value, nil | ||
| 244 | 205 | case "state": | ||
| 245 | 206 | return v.State == value, nil | ||
| 246 | 207 | case "vpc-id": | ||
| 247 | 208 | return v.Id == value, nil | ||
| 248 | 209 | case "tag", "tag-key", "tag-value", "dhcp-options-id", "isDefault": | ||
| 249 | 210 | return false, fmt.Errorf("%q filter is not implemented", attr) | ||
| 250 | 211 | } | ||
| 251 | 212 | return false, fmt.Errorf("unknown attribute %q", attr) | ||
| 252 | 213 | } | ||
| 253 | 214 | |||
| 254 | 194 | var actions = map[string]func(*Server, http.ResponseWriter, *http.Request, string) interface{}{ | 215 | var actions = map[string]func(*Server, http.ResponseWriter, *http.Request, string) interface{}{ |
| 255 | 195 | "RunInstances": (*Server).runInstances, | 216 | "RunInstances": (*Server).runInstances, |
| 256 | 196 | "TerminateInstances": (*Server).terminateInstances, | 217 | "TerminateInstances": (*Server).terminateInstances, |
| 257 | @@ -200,6 +221,9 @@ | |||
| 258 | 200 | "DeleteSecurityGroup": (*Server).deleteSecurityGroup, | 221 | "DeleteSecurityGroup": (*Server).deleteSecurityGroup, |
| 259 | 201 | "AuthorizeSecurityGroupIngress": (*Server).authorizeSecurityGroupIngress, | 222 | "AuthorizeSecurityGroupIngress": (*Server).authorizeSecurityGroupIngress, |
| 260 | 202 | "RevokeSecurityGroupIngress": (*Server).revokeSecurityGroupIngress, | 223 | "RevokeSecurityGroupIngress": (*Server).revokeSecurityGroupIngress, |
| 261 | 224 | "CreateVpc": (*Server).createVpc, | ||
| 262 | 225 | "DeleteVpc": (*Server).deleteVpc, | ||
| 263 | 226 | "DescribeVpcs": (*Server).describeVpcs, | ||
| 264 | 203 | } | 227 | } |
| 265 | 204 | 228 | ||
| 266 | 205 | const ownerId = "9876" | 229 | const ownerId = "9876" |
| 267 | @@ -220,6 +244,7 @@ | |||
| 268 | 220 | srv := &Server{ | 244 | srv := &Server{ |
| 269 | 221 | instances: make(map[string]*Instance), | 245 | instances: make(map[string]*Instance), |
| 270 | 222 | groups: make(map[string]*securityGroup), | 246 | groups: make(map[string]*securityGroup), |
| 271 | 247 | vpcs: make(map[string]*vpc), | ||
| 272 | 223 | reservations: make(map[string]*reservation), | 248 | reservations: make(map[string]*reservation), |
| 273 | 224 | initialInstanceState: Pending, | 249 | initialInstanceState: Pending, |
| 274 | 225 | } | 250 | } |
| 275 | @@ -798,9 +823,11 @@ | |||
| 276 | 798 | } | 823 | } |
| 277 | 799 | } | 824 | } |
| 278 | 800 | 825 | ||
| 282 | 801 | var secGroupPat = regexp.MustCompile(`^sg-[a-z0-9]+$`) | 826 | var ( |
| 283 | 802 | var ipPat = regexp.MustCompile(`^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+/[0-9]+$`) | 827 | secGroupPat = regexp.MustCompile(`^sg-[a-z0-9]+$`) |
| 284 | 803 | var ownerIdPat = regexp.MustCompile(`^[0-9]+$`) | 828 | cidrIpPat = regexp.MustCompile(`^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+/([0-9]+)$`) |
| 285 | 829 | ownerIdPat = regexp.MustCompile(`^[0-9]+$`) | ||
| 286 | 830 | ) | ||
| 287 | 804 | 831 | ||
| 288 | 805 | // parsePerms returns a slice of permKey values extracted | 832 | // parsePerms returns a slice of permKey values extracted |
| 289 | 806 | // from the permission fields in req. | 833 | // from the permission fields in req. |
| 290 | @@ -884,7 +911,7 @@ | |||
| 291 | 884 | } | 911 | } |
| 292 | 885 | switch rest { | 912 | switch rest { |
| 293 | 886 | case "CidrIp": | 913 | case "CidrIp": |
| 295 | 887 | if !ipPat.MatchString(val) { | 914 | if !cidrIpPat.MatchString(val) { |
| 296 | 888 | fatalf(400, "InvalidPermission.Malformed", "Invalid IP range: %q", val) | 915 | fatalf(400, "InvalidPermission.Malformed", "Invalid IP range: %q", val) |
| 297 | 889 | } | 916 | } |
| 298 | 890 | ec2p.SourceIPs = append(ec2p.SourceIPs, val) | 917 | ec2p.SourceIPs = append(ec2p.SourceIPs, val) |
| 299 | @@ -978,6 +1005,61 @@ | |||
| 300 | 978 | } | 1005 | } |
| 301 | 979 | } | 1006 | } |
| 302 | 980 | 1007 | ||
| 303 | 1008 | func (srv *Server) createVpc(w http.ResponseWriter, req *http.Request, reqId string) interface{} { | ||
| 304 | 1009 | cidrBlock := parseCidr(req.Form.Get("CidrBlock")) | ||
| 305 | 1010 | tenancy := req.Form.Get("InstanceTenancy") | ||
| 306 | 1011 | if tenancy == "" { | ||
| 307 | 1012 | tenancy = ec2.DefaultTenancy | ||
| 308 | 1013 | } | ||
| 309 | 1014 | |||
| 310 | 1015 | srv.mu.Lock() | ||
| 311 | 1016 | defer srv.mu.Unlock() | ||
| 312 | 1017 | v := &vpc{ec2.VPC{ | ||
| 313 | 1018 | Id: fmt.Sprintf("vpc-%d", srv.vpcId.next()), | ||
| 314 | 1019 | State: ec2.AvailableState, | ||
| 315 | 1020 | CIDRBlock: cidrBlock, | ||
| 316 | 1021 | DHCPOptionsId: fmt.Sprintf("dopt-%d", srv.dhcpOptsId.next()), | ||
| 317 | 1022 | InstanceTenancy: tenancy, | ||
| 318 | 1023 | }} | ||
| 319 | 1024 | srv.vpcs[v.Id] = v | ||
| 320 | 1025 | r := &ec2.CreateVPCResp{ | ||
| 321 | 1026 | RequestId: reqId, | ||
| 322 | 1027 | VPC: v.VPC, | ||
| 323 | 1028 | } | ||
| 324 | 1029 | return r | ||
| 325 | 1030 | } | ||
| 326 | 1031 | |||
| 327 | 1032 | func (srv *Server) deleteVpc(w http.ResponseWriter, req *http.Request, reqId string) interface{} { | ||
| 328 | 1033 | v := srv.vpc(req.Form.Get("VpcId")) | ||
| 329 | 1034 | srv.mu.Lock() | ||
| 330 | 1035 | defer srv.mu.Unlock() | ||
| 331 | 1036 | |||
| 332 | 1037 | delete(srv.vpcs, v.Id) | ||
| 333 | 1038 | return &ec2.SimpleResp{ | ||
| 334 | 1039 | XMLName: xml.Name{"", "DeleteVpcResponse"}, | ||
| 335 | 1040 | RequestId: reqId, | ||
| 336 | 1041 | } | ||
| 337 | 1042 | } | ||
| 338 | 1043 | |||
| 339 | 1044 | func (srv *Server) describeVpcs(w http.ResponseWriter, req *http.Request, reqId string) interface{} { | ||
| 340 | 1045 | srv.mu.Lock() | ||
| 341 | 1046 | defer srv.mu.Unlock() | ||
| 342 | 1047 | |||
| 343 | 1048 | idMap := collectIds(req.Form, "VpcId.") | ||
| 344 | 1049 | f := newFilter(req.Form) | ||
| 345 | 1050 | var resp ec2.VPCsResp | ||
| 346 | 1051 | resp.RequestId = reqId | ||
| 347 | 1052 | for _, v := range srv.vpcs { | ||
| 348 | 1053 | ok, err := f.ok(v) | ||
| 349 | 1054 | if ok && (len(idMap) == 0 || idMap[v.Id]) { | ||
| 350 | 1055 | resp.VPCs = append(resp.VPCs, v.VPC) | ||
| 351 | 1056 | } else if err != nil { | ||
| 352 | 1057 | fatalf(400, "InvalidParameterValue", "describe VPCs: %v", err) | ||
| 353 | 1058 | } | ||
| 354 | 1059 | } | ||
| 355 | 1060 | return &resp | ||
| 356 | 1061 | } | ||
| 357 | 1062 | |||
| 358 | 981 | func (r *reservation) hasRunningMachine() bool { | 1063 | func (r *reservation) hasRunningMachine() bool { |
| 359 | 982 | for _, inst := range r.instances { | 1064 | for _, inst := range r.instances { |
| 360 | 983 | if inst.state.Code != ShuttingDown.Code && inst.state.Code != Terminated.Code { | 1065 | if inst.state.Code != ShuttingDown.Code && inst.state.Code != Terminated.Code { |
| 361 | @@ -987,6 +1069,41 @@ | |||
| 362 | 987 | return false | 1069 | return false |
| 363 | 988 | } | 1070 | } |
| 364 | 989 | 1071 | ||
| 365 | 1072 | func parseCidr(val string) string { | ||
| 366 | 1073 | if val == "" { | ||
| 367 | 1074 | fatalf(400, "MissingParameter", "missing cidrBlock") | ||
| 368 | 1075 | } | ||
| 369 | 1076 | if _, _, err := net.ParseCIDR(val); err != nil { | ||
| 370 | 1077 | fatalf(400, "InvalidParameterValue", "bad CIDR %q: %v", val, err) | ||
| 371 | 1078 | } | ||
| 372 | 1079 | return val | ||
| 373 | 1080 | } | ||
| 374 | 1081 | |||
| 375 | 1082 | func (srv *Server) vpc(id string) *vpc { | ||
| 376 | 1083 | if id == "" { | ||
| 377 | 1084 | fatalf(400, "MissingParameter", "missing vpcId") | ||
| 378 | 1085 | } | ||
| 379 | 1086 | srv.mu.Lock() | ||
| 380 | 1087 | defer srv.mu.Unlock() | ||
| 381 | 1088 | v, found := srv.vpcs[id] | ||
| 382 | 1089 | if !found { | ||
| 383 | 1090 | fatalf(400, "InvalidVpcID.NotFound", "VPC %s not found", id) | ||
| 384 | 1091 | } | ||
| 385 | 1092 | return v | ||
| 386 | 1093 | } | ||
| 387 | 1094 | |||
| 388 | 1095 | // collectIds takes all values with the given prefix from form and | ||
| 389 | 1096 | // returns a map with the ids as keys. | ||
| 390 | 1097 | func collectIds(form url.Values, prefix string) map[string]bool { | ||
| 391 | 1098 | idMap := make(map[string]bool) | ||
| 392 | 1099 | for name, vals := range form { | ||
| 393 | 1100 | if strings.HasPrefix(name, prefix) { | ||
| 394 | 1101 | idMap[vals[0]] = true | ||
| 395 | 1102 | } | ||
| 396 | 1103 | } | ||
| 397 | 1104 | return idMap | ||
| 398 | 1105 | } | ||
| 399 | 1106 | |||
| 400 | 990 | type counter int | 1107 | type counter int |
| 401 | 991 | 1108 | ||
| 402 | 992 | func (c *counter) next() (i int) { | 1109 | func (c *counter) next() (i int) { |
| 403 | 993 | 1110 | ||
| 404 | === modified file 'ec2/responses_test.go' | |||
| 405 | --- ec2/responses_test.go 2013-10-02 19:10:36 +0000 | |||
| 406 | +++ ec2/responses_test.go 2014-02-07 12:35:18 +0000 | |||
| 407 | @@ -584,7 +584,48 @@ | |||
| 408 | 584 | // http://goo.gl/baoUf | 584 | // http://goo.gl/baoUf |
| 409 | 585 | var RebootInstancesExample = ` | 585 | var RebootInstancesExample = ` |
| 410 | 586 | <RebootInstancesResponse xmlns="http://ec2.amazonaws.com/doc/2011-12-15/"> | 586 | <RebootInstancesResponse xmlns="http://ec2.amazonaws.com/doc/2011-12-15/"> |
| 412 | 587 | <requestId>59dbff89-35bd-4eac-99ed-be587EXAMPLE</requestId> | 587 | <requestId>59dbff89-35bd-4eac-99ed-be587EXAMPLE</requestId> |
| 413 | 588 | <return>true</return> | 588 | <return>true</return> |
| 414 | 589 | </RebootInstancesResponse> | 589 | </RebootInstancesResponse> |
| 415 | 590 | ` | 590 | ` |
| 416 | 591 | |||
| 417 | 592 | // http://goo.gl/nkwjv | ||
| 418 | 593 | var CreateVpcExample = ` | ||
| 419 | 594 | <CreateVpcResponse xmlns="http://ec2.amazonaws.com/doc/2013-10-15/"> | ||
| 420 | 595 | <requestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</requestId> | ||
| 421 | 596 | <vpc> | ||
| 422 | 597 | <vpcId>vpc-1a2b3c4d</vpcId> | ||
| 423 | 598 | <state>pending</state> | ||
| 424 | 599 | <cidrBlock>10.0.0.0/16</cidrBlock> | ||
| 425 | 600 | <dhcpOptionsId>dopt-1a2b3c4d2</dhcpOptionsId> | ||
| 426 | 601 | <instanceTenancy>default</instanceTenancy> | ||
| 427 | 602 | <tagSet/> | ||
| 428 | 603 | </vpc> | ||
| 429 | 604 | </CreateVpcResponse> | ||
| 430 | 605 | ` | ||
| 431 | 606 | |||
| 432 | 607 | // http://goo.gl/bcxtbf | ||
| 433 | 608 | var DeleteVpcExample = ` | ||
| 434 | 609 | <DeleteVpcResponse xmlns="http://ec2.amazonaws.com/doc/2013-10-15/"> | ||
| 435 | 610 | <requestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</requestId> | ||
| 436 | 611 | <return>true</return> | ||
| 437 | 612 | </DeleteVpcResponse> | ||
| 438 | 613 | ` | ||
| 439 | 614 | |||
| 440 | 615 | // http://goo.gl/Y5kHqG | ||
| 441 | 616 | var DescribeVpcsExample = ` | ||
| 442 | 617 | <DescribeVpcsResponse xmlns="http://ec2.amazonaws.com/doc/2013-10-15/"> | ||
| 443 | 618 | <requestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</requestId> | ||
| 444 | 619 | <vpcSet> | ||
| 445 | 620 | <item> | ||
| 446 | 621 | <vpcId>vpc-1a2b3c4d</vpcId> | ||
| 447 | 622 | <state>available</state> | ||
| 448 | 623 | <cidrBlock>10.0.0.0/23</cidrBlock> | ||
| 449 | 624 | <dhcpOptionsId>dopt-7a8b9c2d</dhcpOptionsId> | ||
| 450 | 625 | <instanceTenancy>default</instanceTenancy> | ||
| 451 | 626 | <isDefault>false</isDefault> | ||
| 452 | 627 | <tagSet/> | ||
| 453 | 628 | </item> | ||
| 454 | 629 | </vpcSet> | ||
| 455 | 630 | </DescribeVpcsResponse> | ||
| 456 | 631 | ` | ||
| 457 | 591 | 632 | ||
| 458 | === added file 'ec2/vpc.go' | |||
| 459 | --- ec2/vpc.go 1970-01-01 00:00:00 +0000 | |||
| 460 | +++ ec2/vpc.go 2014-02-07 12:35:18 +0000 | |||
| 461 | @@ -0,0 +1,120 @@ | |||
| 462 | 1 | // | ||
| 463 | 2 | // goamz - Go packages to interact with the Amazon Web Services. | ||
| 464 | 3 | // | ||
| 465 | 4 | // https://wiki.ubuntu.com/goamz | ||
| 466 | 5 | // | ||
| 467 | 6 | // Copyright (c) 2014 Canonical Ltd. | ||
| 468 | 7 | // | ||
| 469 | 8 | // Written by Gustavo Niemeyer <gustavo.niemeyer@canonical.com> | ||
| 470 | 9 | // | ||
| 471 | 10 | |||
| 472 | 11 | package ec2 | ||
| 473 | 12 | |||
| 474 | 13 | import ( | ||
| 475 | 14 | "strconv" | ||
| 476 | 15 | ) | ||
| 477 | 16 | |||
| 478 | 17 | const ( | ||
| 479 | 18 | // Supported values for VPC state. | ||
| 480 | 19 | PendingState = "pending" | ||
| 481 | 20 | AvailableState = "available" | ||
| 482 | 21 | |||
| 483 | 22 | // Supported values for InstanceTenancy. | ||
| 484 | 23 | DefaultTenancy = "default" | ||
| 485 | 24 | DedicatedTenancy = "dedicated" | ||
| 486 | 25 | |||
| 487 | 26 | // AWS API version used for VPC-related calls. | ||
| 488 | 27 | vpcAPIVersion = "2013-10-15" | ||
| 489 | 28 | ) | ||
| 490 | 29 | |||
| 491 | 30 | // VPC describes an Amazon Virtual Private Cloud (VPC). | ||
| 492 | 31 | // | ||
| 493 | 32 | // See http://goo.gl/Uy6ZLL for more details. | ||
| 494 | 33 | type VPC struct { | ||
| 495 | 34 | Id string `xml:"vpcId"` | ||
| 496 | 35 | State string `xml:"state"` | ||
| 497 | 36 | CIDRBlock string `xml:"cidrBlock"` | ||
| 498 | 37 | DHCPOptionsId string `xml:"dhcpOptionsId"` | ||
| 499 | 38 | Tags []Tag `xml:"tagSet>item"` | ||
| 500 | 39 | InstanceTenancy string `xml:"instanceTenancy"` | ||
| 501 | 40 | IsDefault bool `xml:"isDefault"` | ||
| 502 | 41 | } | ||
| 503 | 42 | |||
| 504 | 43 | // CreateVPCResp is the response to a CreateVPC request. | ||
| 505 | 44 | // | ||
| 506 | 45 | // See http://goo.gl/nkwjvN for more details. | ||
| 507 | 46 | type CreateVPCResp struct { | ||
| 508 | 47 | RequestId string `xml:"requestId"` | ||
| 509 | 48 | VPC VPC `xml:"vpc"` | ||
| 510 | 49 | } | ||
| 511 | 50 | |||
| 512 | 51 | // CreateVPC creates a VPC with the specified CIDR block. | ||
| 513 | 52 | // | ||
| 514 | 53 | // The smallest VPC that can be created uses a /28 netmask (16 IP | ||
| 515 | 54 | // addresses), and the largest uses a /16 netmask (65,536 IP | ||
| 516 | 55 | // addresses). | ||
| 517 | 56 | // | ||
| 518 | 57 | // The instanceTenancy value holds the tenancy options for instances | ||
| 519 | 58 | // launched into the VPC - either DefaultTenancy or DedicatedTenancy. | ||
| 520 | 59 | // | ||
| 521 | 60 | // See http://goo.gl/nkwjvN for more details. | ||
| 522 | 61 | func (ec2 *EC2) CreateVPC(CIDRBlock, instanceTenancy string) (resp *CreateVPCResp, err error) { | ||
| 523 | 62 | params := makeParamsVPC("CreateVpc") | ||
| 524 | 63 | params["CidrBlock"] = CIDRBlock | ||
| 525 | 64 | if instanceTenancy == "" { | ||
| 526 | 65 | instanceTenancy = DefaultTenancy | ||
| 527 | 66 | } | ||
| 528 | 67 | params["InstanceTenancy"] = instanceTenancy | ||
| 529 | 68 | resp = &CreateVPCResp{} | ||
| 530 | 69 | err = ec2.query(params, resp) | ||
| 531 | 70 | if err != nil { | ||
| 532 | 71 | return nil, err | ||
| 533 | 72 | } | ||
| 534 | 73 | return resp, nil | ||
| 535 | 74 | } | ||
| 536 | 75 | |||
| 537 | 76 | // DeleteVPC deletes the VPC with the specified id. All gateways and | ||
| 538 | 77 | // resources that are associated with the VPC must have been | ||
| 539 | 78 | // previously deleted, including instances running in the VPC, and | ||
| 540 | 79 | // non-default security groups and route tables associated with the | ||
| 541 | 80 | // VPC. | ||
| 542 | 81 | // | ||
| 543 | 82 | // See http://goo.gl/bcxtbf for more details. | ||
| 544 | 83 | func (ec2 *EC2) DeleteVPC(id string) (resp *SimpleResp, err error) { | ||
| 545 | 84 | params := makeParamsVPC("DeleteVpc") | ||
| 546 | 85 | params["VpcId"] = id | ||
| 547 | 86 | resp = &SimpleResp{} | ||
| 548 | 87 | err = ec2.query(params, resp) | ||
| 549 | 88 | if err != nil { | ||
| 550 | 89 | return nil, err | ||
| 551 | 90 | } | ||
| 552 | 91 | return resp, nil | ||
| 553 | 92 | } | ||
| 554 | 93 | |||
| 555 | 94 | // VPCsResp is the response to a VPCs request. | ||
| 556 | 95 | // | ||
| 557 | 96 | // See http://goo.gl/Y5kHqG for more details. | ||
| 558 | 97 | type VPCsResp struct { | ||
| 559 | 98 | RequestId string `xml:"requestId"` | ||
| 560 | 99 | VPCs []VPC `xml:"vpcSet>item"` | ||
| 561 | 100 | } | ||
| 562 | 101 | |||
| 563 | 102 | // VPCs describes one or more VPCs. Both parameters are optional, and | ||
| 564 | 103 | // if specified will limit the returned VPCs to the matching ids or | ||
| 565 | 104 | // filtering rules. | ||
| 566 | 105 | // | ||
| 567 | 106 | // See http://goo.gl/Y5kHqG for more details. | ||
| 568 | 107 | func (ec2 *EC2) VPCs(ids []string, filter *Filter) (resp *VPCsResp, err error) { | ||
| 569 | 108 | params := makeParamsVPC("DescribeVpcs") | ||
| 570 | 109 | for i, id := range ids { | ||
| 571 | 110 | params["VpcId."+strconv.Itoa(i+1)] = id | ||
| 572 | 111 | } | ||
| 573 | 112 | filter.addParams(params) | ||
| 574 | 113 | |||
| 575 | 114 | resp = &VPCsResp{} | ||
| 576 | 115 | err = ec2.query(params, resp) | ||
| 577 | 116 | if err != nil { | ||
| 578 | 117 | return nil, err | ||
| 579 | 118 | } | ||
| 580 | 119 | return resp, nil | ||
| 581 | 120 | } | ||
| 582 | 0 | 121 | ||
| 583 | === added file 'ec2/vpc_test.go' | |||
| 584 | --- ec2/vpc_test.go 1970-01-01 00:00:00 +0000 | |||
| 585 | +++ ec2/vpc_test.go 2014-02-07 12:35:18 +0000 | |||
| 586 | @@ -0,0 +1,172 @@ | |||
| 587 | 1 | // | ||
| 588 | 2 | // goamz - Go packages to interact with the Amazon Web Services. | ||
| 589 | 3 | // | ||
| 590 | 4 | // https://wiki.ubuntu.com/goamz | ||
| 591 | 5 | // | ||
| 592 | 6 | // Copyright (c) 2014 Canonical Ltd. | ||
| 593 | 7 | // | ||
| 594 | 8 | // Written by Gustavo Niemeyer <gustavo.niemeyer@canonical.com> | ||
| 595 | 9 | // | ||
| 596 | 10 | |||
| 597 | 11 | package ec2_test | ||
| 598 | 12 | |||
| 599 | 13 | import ( | ||
| 600 | 14 | "launchpad.net/goamz/aws" | ||
| 601 | 15 | "launchpad.net/goamz/ec2" | ||
| 602 | 16 | . "launchpad.net/gocheck" | ||
| 603 | 17 | "time" | ||
| 604 | 18 | ) | ||
| 605 | 19 | |||
| 606 | 20 | // VPC tests with example responses | ||
| 607 | 21 | |||
| 608 | 22 | func (s *S) TestCreateVPCExample(c *C) { | ||
| 609 | 23 | testServer.Response(200, nil, CreateVpcExample) | ||
| 610 | 24 | |||
| 611 | 25 | resp, err := s.ec2.CreateVPC("10.0.0.0/16", ec2.DefaultTenancy) | ||
| 612 | 26 | req := testServer.WaitRequest() | ||
| 613 | 27 | |||
| 614 | 28 | c.Assert(req.Form["Action"], DeepEquals, []string{"CreateVpc"}) | ||
| 615 | 29 | c.Assert(req.Form["CidrBlock"], DeepEquals, []string{"10.0.0.0/16"}) | ||
| 616 | 30 | c.Assert(req.Form["InstanceTenancy"], DeepEquals, []string{ec2.DefaultTenancy}) | ||
| 617 | 31 | |||
| 618 | 32 | c.Assert(err, IsNil) | ||
| 619 | 33 | c.Assert(resp.RequestId, Equals, "7a62c49f-347e-4fc4-9331-6e8eEXAMPLE") | ||
| 620 | 34 | vpc := resp.VPC | ||
| 621 | 35 | c.Check(vpc.Id, Equals, "vpc-1a2b3c4d") | ||
| 622 | 36 | c.Check(vpc.State, Equals, ec2.PendingState) | ||
| 623 | 37 | c.Check(vpc.CIDRBlock, Equals, "10.0.0.0/16") | ||
| 624 | 38 | c.Check(vpc.DHCPOptionsId, Equals, "dopt-1a2b3c4d2") | ||
| 625 | 39 | c.Check(vpc.Tags, HasLen, 0) | ||
| 626 | 40 | c.Check(vpc.IsDefault, Equals, false) | ||
| 627 | 41 | c.Check(vpc.InstanceTenancy, Equals, ec2.DefaultTenancy) | ||
| 628 | 42 | } | ||
| 629 | 43 | |||
| 630 | 44 | func (s *S) TestDeleteVPCExample(c *C) { | ||
| 631 | 45 | testServer.Response(200, nil, DeleteVpcExample) | ||
| 632 | 46 | |||
| 633 | 47 | resp, err := s.ec2.DeleteVPC("vpc-id") | ||
| 634 | 48 | req := testServer.WaitRequest() | ||
| 635 | 49 | |||
| 636 | 50 | c.Assert(req.Form["Action"], DeepEquals, []string{"DeleteVpc"}) | ||
| 637 | 51 | c.Assert(req.Form["VpcId"], DeepEquals, []string{"vpc-id"}) | ||
| 638 | 52 | |||
| 639 | 53 | c.Assert(err, IsNil) | ||
| 640 | 54 | c.Assert(resp.RequestId, Equals, "7a62c49f-347e-4fc4-9331-6e8eEXAMPLE") | ||
| 641 | 55 | } | ||
| 642 | 56 | |||
| 643 | 57 | func (s *S) TestVPCsExample(c *C) { | ||
| 644 | 58 | testServer.Response(200, nil, DescribeVpcsExample) | ||
| 645 | 59 | |||
| 646 | 60 | resp, err := s.ec2.VPCs([]string{"vpc-1a2b3c4d"}, nil) | ||
| 647 | 61 | req := testServer.WaitRequest() | ||
| 648 | 62 | |||
| 649 | 63 | c.Assert(req.Form["Action"], DeepEquals, []string{"DescribeVpcs"}) | ||
| 650 | 64 | c.Assert(req.Form["VpcId.1"], DeepEquals, []string{"vpc-1a2b3c4d"}) | ||
| 651 | 65 | |||
| 652 | 66 | c.Assert(err, IsNil) | ||
| 653 | 67 | c.Assert(resp.RequestId, Equals, "7a62c49f-347e-4fc4-9331-6e8eEXAMPLE") | ||
| 654 | 68 | c.Assert(resp.VPCs, HasLen, 1) | ||
| 655 | 69 | vpc := resp.VPCs[0] | ||
| 656 | 70 | c.Check(vpc.Id, Equals, "vpc-1a2b3c4d") | ||
| 657 | 71 | c.Check(vpc.State, Equals, ec2.AvailableState) | ||
| 658 | 72 | c.Check(vpc.CIDRBlock, Equals, "10.0.0.0/23") | ||
| 659 | 73 | c.Check(vpc.DHCPOptionsId, Equals, "dopt-7a8b9c2d") | ||
| 660 | 74 | c.Check(vpc.Tags, HasLen, 0) | ||
| 661 | 75 | c.Check(vpc.IsDefault, Equals, false) | ||
| 662 | 76 | c.Check(vpc.InstanceTenancy, Equals, ec2.DefaultTenancy) | ||
| 663 | 77 | } | ||
| 664 | 78 | |||
| 665 | 79 | // VPC tests to run against either a local test server or live on EC2. | ||
| 666 | 80 | |||
| 667 | 81 | func (s *ServerTests) TestVPCs(c *C) { | ||
| 668 | 82 | resp1, err := s.ec2.CreateVPC("10.0.0.0/16", "") | ||
| 669 | 83 | c.Assert(err, IsNil) | ||
| 670 | 84 | assertVPC(c, resp1.VPC, "", "10.0.0.0/16") | ||
| 671 | 85 | id1 := resp1.VPC.Id | ||
| 672 | 86 | |||
| 673 | 87 | resp2, err := s.ec2.CreateVPC("10.1.0.0/16", ec2.DefaultTenancy) | ||
| 674 | 88 | c.Assert(err, IsNil) | ||
| 675 | 89 | assertVPC(c, resp2.VPC, "", "10.1.0.0/16") | ||
| 676 | 90 | id2 := resp2.VPC.Id | ||
| 677 | 91 | |||
| 678 | 92 | // We only check for the VPCs we just created, because the user | ||
| 679 | 93 | // might have others in his account (when testing against the EC2 | ||
| 680 | 94 | // servers). In some cases it takes a short while until both VPCs | ||
| 681 | 95 | // are created, so we need to retry a few times to make sure. | ||
| 682 | 96 | var list *ec2.VPCsResp | ||
| 683 | 97 | done := false | ||
| 684 | 98 | testAttempt := aws.AttemptStrategy{ | ||
| 685 | 99 | Total: 2 * time.Minute, | ||
| 686 | 100 | Delay: 5 * time.Second, | ||
| 687 | 101 | } | ||
| 688 | 102 | for a := testAttempt.Start(); a.Next(); { | ||
| 689 | 103 | c.Logf("waiting for %v to be created", []string{id1, id2}) | ||
| 690 | 104 | list, err = s.ec2.VPCs(nil, nil) | ||
| 691 | 105 | if err != nil { | ||
| 692 | 106 | c.Logf("retrying; VPCs returned: %v", err) | ||
| 693 | 107 | continue | ||
| 694 | 108 | } | ||
| 695 | 109 | found := 0 | ||
| 696 | 110 | for _, vpc := range list.VPCs { | ||
| 697 | 111 | c.Logf("found VPC %v", vpc) | ||
| 698 | 112 | switch vpc.Id { | ||
| 699 | 113 | case id1: | ||
| 700 | 114 | assertVPC(c, vpc, id1, resp1.VPC.CIDRBlock) | ||
| 701 | 115 | found++ | ||
| 702 | 116 | case id2: | ||
| 703 | 117 | assertVPC(c, vpc, id2, resp2.VPC.CIDRBlock) | ||
| 704 | 118 | found++ | ||
| 705 | 119 | } | ||
| 706 | 120 | if found == 2 { | ||
| 707 | 121 | done = true | ||
| 708 | 122 | break | ||
| 709 | 123 | } | ||
| 710 | 124 | } | ||
| 711 | 125 | if done { | ||
| 712 | 126 | c.Logf("all VPCs were created") | ||
| 713 | 127 | break | ||
| 714 | 128 | } | ||
| 715 | 129 | } | ||
| 716 | 130 | if !done { | ||
| 717 | 131 | c.Fatalf("timeout while waiting for VPCs %v", []string{id1, id2}) | ||
| 718 | 132 | } | ||
| 719 | 133 | |||
| 720 | 134 | list, err = s.ec2.VPCs([]string{id1}, nil) | ||
| 721 | 135 | c.Assert(err, IsNil) | ||
| 722 | 136 | c.Assert(list.VPCs, HasLen, 1) | ||
| 723 | 137 | assertVPC(c, list.VPCs[0], id1, resp1.VPC.CIDRBlock) | ||
| 724 | 138 | |||
| 725 | 139 | f := ec2.NewFilter() | ||
| 726 | 140 | f.Add("cidr", resp2.VPC.CIDRBlock) | ||
| 727 | 141 | list, err = s.ec2.VPCs(nil, f) | ||
| 728 | 142 | c.Assert(err, IsNil) | ||
| 729 | 143 | c.Assert(list.VPCs, HasLen, 1) | ||
| 730 | 144 | assertVPC(c, list.VPCs[0], id2, resp2.VPC.CIDRBlock) | ||
| 731 | 145 | |||
| 732 | 146 | _, err = s.ec2.DeleteVPC(id1) | ||
| 733 | 147 | c.Assert(err, IsNil) | ||
| 734 | 148 | _, err = s.ec2.DeleteVPC(id2) | ||
| 735 | 149 | c.Assert(err, IsNil) | ||
| 736 | 150 | } | ||
| 737 | 151 | |||
| 738 | 152 | func assertVPC(c *C, obtained ec2.VPC, expectId, expectCidr string) { | ||
| 739 | 153 | if expectId != "" { | ||
| 740 | 154 | c.Check(obtained.Id, Equals, expectId) | ||
| 741 | 155 | } else { | ||
| 742 | 156 | c.Check(obtained.Id, Matches, `^vpc-[0-9a-f]+$`) | ||
| 743 | 157 | } | ||
| 744 | 158 | c.Check(obtained.State, Matches, "("+ec2.AvailableState+"|"+ec2.PendingState+")") | ||
| 745 | 159 | if expectCidr != "" { | ||
| 746 | 160 | c.Check(obtained.CIDRBlock, Equals, expectCidr) | ||
| 747 | 161 | } else { | ||
| 748 | 162 | c.Check(obtained.CIDRBlock, Matches, `^\d+\.\d+\.\d+\.\d+/\d+$`) | ||
| 749 | 163 | } | ||
| 750 | 164 | c.Check(obtained.DHCPOptionsId, Matches, `^dopt-[0-9a-f]+$`) | ||
| 751 | 165 | c.Check(obtained.IsDefault, Equals, false) | ||
| 752 | 166 | c.Check(obtained.Tags, HasLen, 0) | ||
| 753 | 167 | c.Check( | ||
| 754 | 168 | obtained.InstanceTenancy, | ||
| 755 | 169 | Matches, | ||
| 756 | 170 | "("+ec2.DefaultTenancy+"|"+ec2.DedicatedTenancy+")", | ||
| 757 | 171 | ) | ||
| 758 | 172 | } | ||
Reviewers: mp+204514_
Message:
Please take a look.
Description:
ec2: Add support for AWS VPCs
Added the following new API calls:
- CreateVpc
- DeleteVpc
- DescribeVpcs
(and the associated types/responses).
These are needed in order to support VPC-related
operations on EC2, which will come in later follow-ups.
Added tests, updated test doubles and tested live on EC2.
https:/
Requires:
https:/
(do not edit description out of merge proposal)
Please review this at https:/
Affected files (+404, -13 lines):
A [revision details]
M ec2/ec2.go
M ec2/ec2_test.go
M ec2/ec2t_test.go
M ec2/ec2test/
M ec2/responses_