baseimage/createImage

#!/bin/bash

set -eu -o pipefail

assertNotEmpty() {
    : "${!1:? "$1 is not set."}"
}

readonly SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
readonly SOURCE_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")"/.. && pwd)"
export JSON="${SOURCE_DIR}/node_modules/.bin/json"

provider="digitalocean"
installer_revision=$(git rev-parse HEAD)
box_name=""
server_id=""
server_ip=""
destroy_server="yes"
deploy_env="dev"

# Only GNU getopt supports long options. OS X comes bundled with the BSD getopt
# brew install gnu-getopt to get the GNU getopt on OS X
[[ $(uname -s) == "Darwin" ]] && GNU_GETOPT="/usr/local/opt/gnu-getopt/bin/getopt" || GNU_GETOPT="getopt"
readonly GNU_GETOPT

args=$(${GNU_GETOPT} -o "" -l "provider:,revision:,regions:,size:,name:,no-destroy,env:" -n "$0" -- "$@")
eval set -- "${args}"

while true; do
    case "$1" in
    --env) deploy_env="$2"; shift 2;;
    --revision) installer_revision="$2"; shift 2;;
    --provider) provider="$2"; shift 2;;
    --name) box_name="$2"; destroy_server="no"; shift 2;;
    --no-destroy) destroy_server="no"; shift 2;;
    --) break;;
    *) echo "Unknown option $1"; exit 1;;
    esac
done

echo "Creating image using ${provider}"
if [[ "${provider}" == "digitalocean" ]]; then
    if [[ "${deploy_env}" == "staging" ]]; then
        assertNotEmpty DIGITAL_OCEAN_TOKEN_STAGING
        export DIGITAL_OCEAN_TOKEN="${DIGITAL_OCEAN_TOKEN_STAGING}"
    elif [[ "${deploy_env}" == "dev" ]]; then
        assertNotEmpty DIGITAL_OCEAN_TOKEN_DEV
        export DIGITAL_OCEAN_TOKEN="${DIGITAL_OCEAN_TOKEN_DEV}"
    elif [[ "${deploy_env}" == "prod" ]]; then
        assertNotEmpty DIGITAL_OCEAN_TOKEN_PROD
        export DIGITAL_OCEAN_TOKEN="${DIGITAL_OCEAN_TOKEN_PROD}"
    else
        echo "No such env ${deploy_env}."
        exit 1
    fi

    vps="${SCRIPT_DIR}/digitalocean.sh"
else
    echo "Unknown provider : ${provider}"
    exit 1
fi

readonly ssh_keys="${HOME}/.ssh/id_rsa_caas_${deploy_env}"
readonly scp202="scp -P 202 -o ConnectTimeout=10 -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ${ssh_keys}"
readonly scp22="scp -o ConnectTimeout=10 -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ${ssh_keys}"

readonly ssh202="ssh -p 202 -o IdentitiesOnly=yes -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ${ssh_keys}"
readonly ssh22="ssh -o IdentitiesOnly=yes -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ${ssh_keys}"

if [[ ! -f "${ssh_keys}" ]]; then
    echo "caas ssh key is missing at ${ssh_keys} (pick it up from secrets repo)"
    exit 1
fi

function get_pretty_revision() {
    local git_rev="$1"
    local sha1=$(git rev-parse --short "${git_rev}" 2>/dev/null)

    echo "${sha1}"
}

now=$(date "+%Y-%m-%d-%H%M%S")
pretty_revision=$(get_pretty_revision "${installer_revision}")

if [[ -z "${box_name}" ]]; then
    # if you change this, change the regexp is appstore/janitor.js
    box_name="box-${deploy_env}-${pretty_revision}-${now}" # remove slashes

    # create a new server if no name given
    if ! caas_ssh_key_id=$($vps get_ssh_key_id "caas"); then
        echo "Could not query caas ssh key"
        exit 1
    fi
    echo "Detected caas ssh key id: ${caas_ssh_key_id}"

    echo "Creating Server with name [${box_name}]"
    if ! server_id=$($vps create ${caas_ssh_key_id} ${box_name}); then
        echo "Failed to create server"
        exit 1
    fi
    echo "Created server with id: ${server_id}"

    # If we run scripts overenthusiastically without the wait, setup script randomly fails
    echo -n "Waiting 120 seconds for server creation"
    for i in $(seq 1 24); do
        echo -n "."
        sleep 5
    done
    echo ""
else
    if ! server_id=$($vps get_id "${box_name}"); then
        echo "Could not determine id from name"
        exit 1
    fi
    echo "Reusing server with id: ${server_id}"

    $vps power_on "${server_id}"
fi

# Query until we get an IP
while true; do
    echo "Trying to get the server IP"
    if server_ip=$($vps get_ip "${server_id}"); then
        echo "Server IP : [${server_ip}]"
        break
    fi
    echo "Timedout, trying again in 10 seconds"
    sleep 10
done

while true; do
    echo "Trying to copy init script to server"
    if $scp22 "${SCRIPT_DIR}/initializeBaseUbuntuImage.sh" root@${server_ip}:.; then
        break
    fi
    echo "Timedout, trying again in 30 seconds"
    sleep 30
done

echo "Copying INFRA_VERSION"
$scp22 "${SCRIPT_DIR}/../setup/INFRA_VERSION" root@${server_ip}:.

echo "Copying box source"
cd "${SOURCE_DIR}"
git archive --format=tar HEAD | $ssh22 "root@${server_ip}" "cat - > /tmp/box.tar.gz"

echo "Executing init script"
if ! $ssh22 "root@${server_ip}" "/bin/bash /root/initializeBaseUbuntuImage.sh ${installer_revision}"; then
    echo "Init script failed"
    exit 1
fi

echo "Copy over certs"
cd "${SCRIPT_DIR}/../../secrets"
blackbox_cat installer/server.crt.gpg | $ssh202 "root@${server_ip}" "cat - > /home/yellowtent/installer/src/certs/server.crt"
blackbox_cat installer/server.key.gpg | $ssh202 "root@${server_ip}" "cat - > /home/yellowtent/installer/src/certs/server.key"
blackbox_cat installer_ca/ca.crt.gpg  | $ssh202 "root@${server_ip}" "cat - > /home/yellowtent/installer/src/certs/ca.crt"

echo "Shutting down server with id : ${server_id}"
$ssh202 "root@${server_ip}" "shutdown -f now" || true # shutdown sometimes terminates ssh connection immediately making this command fail

# wait 10 secs for actual shutdown
echo "Waiting for 10 seconds for server to shutdown"
sleep 30

echo "Powering off server"
if ! $vps power_off "${server_id}"; then
    echo "Could not power off server"
    exit 1
fi

snapshot_name="box-${deploy_env}-${pretty_revision}-${now}"
echo "Snapshotting as ${snapshot_name}"
if ! image_id=$($vps snapshot "${server_id}" "${snapshot_name}"); then
    echo "Could not snapshot and get image id"
    exit 1
fi

if [[ "${destroy_server}" == "yes" ]]; then
    echo "Destroying server"
    if ! $vps destroy "${server_id}"; then
        echo "Could not destroy server"
        exit 1
    fi
else
    echo "Skipping server destroy"
fi

echo "Transferring image ${image_id} to other regions"
$vps transfer_image_to_all_regions "${image_id}"

echo "Done."
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`#!/bin/bash`

vultr: getSshKeyId 2015-11-23 10:27:27 -08:00			`set -eu -o pipefail`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00
			`assertNotEmpty() {`
			`: "${!1:? "$1 is not set."}"`
			`}`

			`readonly SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"`
Move installer/images scripts to scripts/ 2016-01-11 18:38:44 +01:00			`readonly SOURCE_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")"/.. && pwd)"`
			`export JSON="${SOURCE_DIR}/node_modules/.bin/json"`
Move ssh to port 202 2015-11-01 08:46:28 -08:00
add --provider 2015-11-23 08:38:56 -08:00			`provider="digitalocean"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`installer_revision=$(git rev-parse HEAD)`
			`box_name=""`
s/droplet/server 2015-11-23 08:32:54 -08:00			`server_id=""`
			`server_ip=""`
			`destroy_server="yes"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`deploy_env="dev"`

			`# Only GNU getopt supports long options. OS X comes bundled with the BSD getopt`
			`# brew install gnu-getopt to get the GNU getopt on OS X`
			`[[ $(uname -s) == "Darwin" ]] && GNU_GETOPT="/usr/local/opt/gnu-getopt/bin/getopt" \|\| GNU_GETOPT="getopt"`
			`readonly GNU_GETOPT`

rename arg box to name 2015-11-23 11:20:21 -08:00			`args=$(${GNU_GETOPT} -o "" -l "provider:,revision:,regions:,size:,name:,no-destroy,env:" -n "$0" -- "$@")`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`eval set -- "${args}"`

			`while true; do`
			`case "$1" in`
			`--env) deploy_env="$2"; shift 2;;`
			`--revision) installer_revision="$2"; shift 2;;`
add --provider 2015-11-23 08:38:56 -08:00			`--provider) provider="$2"; shift 2;;`
rename arg box to name 2015-11-23 11:20:21 -08:00			`--name) box_name="$2"; destroy_server="no"; shift 2;;`
s/droplet/server 2015-11-23 08:32:54 -08:00			`--no-destroy) destroy_server="no"; shift 2;;`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`--) break;;`
			`*) echo "Unknown option $1"; exit 1;;`
			`esac`
			`done`

print the provider 2015-11-23 12:46:08 -08:00			`echo "Creating image using ${provider}"`
add --provider 2015-11-23 08:38:56 -08:00			`if [[ "${provider}" == "digitalocean" ]]; then`
			`if [[ "${deploy_env}" == "staging" ]]; then`
			`assertNotEmpty DIGITAL_OCEAN_TOKEN_STAGING`
make DO backend a binary 2015-11-23 08:55:19 -08:00			`export DIGITAL_OCEAN_TOKEN="${DIGITAL_OCEAN_TOKEN_STAGING}"`
add --provider 2015-11-23 08:38:56 -08:00			`elif [[ "${deploy_env}" == "dev" ]]; then`
			`assertNotEmpty DIGITAL_OCEAN_TOKEN_DEV`
make DO backend a binary 2015-11-23 08:55:19 -08:00			`export DIGITAL_OCEAN_TOKEN="${DIGITAL_OCEAN_TOKEN_DEV}"`
add --provider 2015-11-23 08:38:56 -08:00			`elif [[ "${deploy_env}" == "prod" ]]; then`
			`assertNotEmpty DIGITAL_OCEAN_TOKEN_PROD`
make DO backend a binary 2015-11-23 08:55:19 -08:00			`export DIGITAL_OCEAN_TOKEN="${DIGITAL_OCEAN_TOKEN_PROD}"`
add --provider 2015-11-23 08:38:56 -08:00			`else`
			`echo "No such env ${deploy_env}."`
			`exit 1`
			`fi`
make DO backend a binary 2015-11-23 08:55:19 -08:00
			`vps="${SCRIPT_DIR}/digitalocean.sh"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`else`
add --provider 2015-11-23 08:38:56 -08:00			`echo "Unknown provider : ${provider}"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`exit 1`
			`fi`

use different keys for different env 2015-11-16 12:15:15 -08:00			`readonly ssh_keys="${HOME}/.ssh/id_rsa_caas_${deploy_env}"`
scp does not require this option 2015-11-16 14:48:05 -08:00			`readonly scp202="scp -P 202 -o ConnectTimeout=10 -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ${ssh_keys}"`
			`readonly scp22="scp -o ConnectTimeout=10 -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ${ssh_keys}"`
use different keys for different env 2015-11-16 12:15:15 -08:00
Fix options usage 2015-11-16 13:04:09 -08:00			`readonly ssh202="ssh -p 202 -o IdentitiesOnly=yes -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ${ssh_keys}"`
			`readonly ssh22="ssh -o IdentitiesOnly=yes -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ${ssh_keys}"`
use different keys for different env 2015-11-16 12:15:15 -08:00
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`if [[ ! -f "${ssh_keys}" ]]; then`
better error message 2015-11-16 12:15:44 -08:00			`echo "caas ssh key is missing at ${ssh_keys} (pick it up from secrets repo)"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`exit 1`
			`fi`

			`function get_pretty_revision() {`
			`local git_rev="$1"`
			`local sha1=$(git rev-parse --short "${git_rev}" 2>/dev/null)`

do not resolve to a tag 2015-10-30 17:40:17 -07:00			`echo "${sha1}"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`}`

			`now=$(date "+%Y-%m-%d-%H%M%S")`
			`pretty_revision=$(get_pretty_revision "${installer_revision}")`

			`if [[ -z "${box_name}" ]]; then`
			`# if you change this, change the regexp is appstore/janitor.js`
			`box_name="box-${deploy_env}-${pretty_revision}-${now}" # remove slashes`

s/droplet/server 2015-11-23 08:32:54 -08:00			`# create a new server if no name given`
better error handling 2015-11-23 12:31:58 -08:00			`if ! caas_ssh_key_id=$($vps get_ssh_key_id "caas"); then`
change yellowtent key to caas 2015-11-16 12:11:57 -08:00			`echo "Could not query caas ssh key"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`exit 1`
			`fi`
Fix debug output 2015-11-16 16:43:53 -08:00			`echo "Detected caas ssh key id: ${caas_ssh_key_id}"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00
remove image_region as well 2015-11-23 10:49:09 -08:00			`echo "Creating Server with name [${box_name}]"`
better error handling 2015-11-23 12:31:58 -08:00			`if ! server_id=$($vps create ${caas_ssh_key_id} ${box_name}); then`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Failed to create server"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`exit 1`
			`fi`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Created server with id: ${server_id}"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00
			`# If we run scripts overenthusiastically without the wait, setup script randomly fails`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo -n "Waiting 120 seconds for server creation"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`for i in $(seq 1 24); do`
			`echo -n "."`
			`sleep 5`
			`done`
			`echo ""`
			`else`
better error handling 2015-11-23 12:31:58 -08:00			`if ! server_id=$($vps get_id "${box_name}"); then`
			`echo "Could not determine id from name"`
			`exit 1`
			`fi`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Reusing server with id: ${server_id}"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00
remove droplet from command names 2015-11-23 09:13:30 -08:00			`$vps power_on "${server_id}"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`fi`

rename arg box to name 2015-11-23 11:20:21 -08:00			`# Query until we get an IP`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`while true; do`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Trying to get the server IP"`
better error handling 2015-11-23 12:31:58 -08:00			`if server_ip=$($vps get_ip "${server_id}"); then`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Server IP : [${server_ip}]"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`break`
			`fi`
			`echo "Timedout, trying again in 10 seconds"`
			`sleep 10`
			`done`

			`while true; do`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Trying to copy init script to server"`
			`if $scp22 "${SCRIPT_DIR}/initializeBaseUbuntuImage.sh" root@${server_ip}:.; then`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`break`
			`fi`
			`echo "Timedout, trying again in 30 seconds"`
			`sleep 30`
			`done`

Use constants from the box repo 2015-08-12 19:52:43 -07:00			`echo "Copying INFRA_VERSION"`
Move installer/images scripts to scripts/ 2016-01-11 18:38:44 +01:00			`$scp22 "${SCRIPT_DIR}/../setup/INFRA_VERSION" root@${server_ip}:.`
Use constants from the box repo 2015-08-12 19:52:43 -07:00
Fixup the paths in the createImage script 2016-01-11 15:14:07 +01:00			`echo "Copying box source"`
Move installer/images scripts to scripts/ 2016-01-11 18:38:44 +01:00			`cd "${SOURCE_DIR}"`
Use json from box/ 2016-01-11 15:19:52 +01:00			`git archive --format=tar HEAD \| $ssh22 "root@${server_ip}" "cat - > /tmp/box.tar.gz"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00
			`echo "Executing init script"`
s/droplet/server 2015-11-23 08:32:54 -08:00			`if ! $ssh22 "root@${server_ip}" "/bin/bash /root/initializeBaseUbuntuImage.sh ${installer_revision}"; then`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`echo "Init script failed"`
			`exit 1`
			`fi`

Revert "Move ssh to port 919" This reverts commit 4e4890810f3a22e7ec990cc44381a2c243044d99. This change is not done yet 2015-09-10 11:40:27 -07:00			`echo "Copy over certs"`
Move installer/images scripts to scripts/ 2016-01-11 18:38:44 +01:00			`cd "${SCRIPT_DIR}/../../secrets"`
s/droplet/server 2015-11-23 08:32:54 -08:00			`blackbox_cat installer/server.crt.gpg \| $ssh202 "root@${server_ip}" "cat - > /home/yellowtent/installer/src/certs/server.crt"`
			`blackbox_cat installer/server.key.gpg \| $ssh202 "root@${server_ip}" "cat - > /home/yellowtent/installer/src/certs/server.key"`
			`blackbox_cat installer_ca/ca.crt.gpg \| $ssh202 "root@${server_ip}" "cat - > /home/yellowtent/installer/src/certs/ca.crt"`
Revert "Move ssh to port 919" This reverts commit 4e4890810f3a22e7ec990cc44381a2c243044d99. This change is not done yet 2015-09-10 11:40:27 -07:00
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Shutting down server with id : ${server_id}"`
			`$ssh202 "root@${server_ip}" "shutdown -f now" \|\| true # shutdown sometimes terminates ssh connection immediately making this command fail`
Revert "Move ssh to port 919" This reverts commit 4e4890810f3a22e7ec990cc44381a2c243044d99. This change is not done yet 2015-09-10 11:40:27 -07:00
			`# wait 10 secs for actual shutdown`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Waiting for 10 seconds for server to shutdown"`
Revert "Move ssh to port 919" This reverts commit 4e4890810f3a22e7ec990cc44381a2c243044d99. This change is not done yet 2015-09-10 11:40:27 -07:00			`sleep 30`

s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Powering off server"`
better error handling 2015-11-23 12:31:58 -08:00			`if ! $vps power_off "${server_id}"; then`
			`echo "Could not power off server"`
			`exit 1`
			`fi`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00
			`snapshot_name="box-${deploy_env}-${pretty_revision}-${now}"`
			`echo "Snapshotting as ${snapshot_name}"`
remove get_image_id api 2015-11-23 12:45:09 -08:00			`if ! image_id=$($vps snapshot "${server_id}" "${snapshot_name}"); then`
			`echo "Could not snapshot and get image id"`
better error handling 2015-11-23 12:31:58 -08:00			`exit 1`
			`fi`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00
s/droplet/server 2015-11-23 08:32:54 -08:00			`if [[ "${destroy_server}" == "yes" ]]; then`
			`echo "Destroying server"`
better error handling 2015-11-23 12:31:58 -08:00			`if ! $vps destroy "${server_id}"; then`
			`echo "Could not destroy server"`
			`exit 1`
			`fi`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`else`
s/droplet/server 2015-11-23 08:32:54 -08:00			`echo "Skipping server destroy"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00			`fi`

localize transfer logic for DO 2015-11-23 13:35:05 -08:00			`echo "Transferring image ${image_id} to other regions"`
fix typo 2015-11-23 13:51:14 -08:00			`$vps transfer_image_to_all_regions "${image_id}"`
list ldap as 0.0.25 change 2015-08-04 16:29:49 -07:00
			`echo "Done."`