Copy tested AMI to more regions by cgwalters · Pull Request #330 · openshift/os

cgwalters · 2018-09-28T14:07:41Z

Closes: #328

cgwalters · 2018-09-28T14:08:02Z

Still playing with/testing this - it looks like we at least also need to replicate the launch permissions, and possibly the tags.

cgwalters · 2018-09-28T20:20:59Z

OK so I updated this to support copying tags and making the image public. Currently hitting:

$ env AWS_PROFILE=aws-ci ~/src/github/openshift/os/scripts/ami-copy-regions --source-region us-east-1 --source-image-id ami-01be9707253b2d46d --regions us-east-2,us-west-1 --copy-tags rhcos_tag,ostree_version --name rhcos_dev_WALTERS --out amis.json
Tags to copy: ['Key=rhcos_tag,Value=alpha', 'Key=ostree_version,Value=4.0.6225']
Uploading to: us-east-2
Complete, ImageId=ami-0a0d75593867c33a7
Copying tags...
Making public for launch

An error occurred (InvalidAMIID.Unavailable) when calling the ModifyImageAttribute operation: The AMI ID 'ami-0a0d75593867c33a7' is currently pending and may not be used for this operation

AFAICS, mantle has some code to retry/poll for GCE, but not for AWS? Googling for the error I see other people hitting it though, looks like at least...

Oh wait, hey there's https://docs.ansible.com/ansible/devel/modules/ec2_ami_copy_module.html#ec2-ami-copy-module

cgwalters · 2018-09-28T21:33:32Z

Some more investigation turns up the handy aws ec2 wait image-available incantation which is obviously what we want. Updated ⬆️ (But still testing "locally", whee I'm leaking AMIs...)

cgwalters · 2018-09-28T21:41:33Z

OK, the script seems to work for me locally. I didn't test the Jenkinsfile changes.

Lifting WIP - but let's wait to merge till next Monday at the earliest.

cgwalters · 2018-09-28T21:43:19Z

One thing I want to note about this is that the "AMI JSON" format intentionally matches the existing Container Linux schema.

yuqi-zhang · 2018-10-01T14:17:27Z

Jenkinsfile.aws-test

-                        ${WORKSPACE}/aws-${AWS_REGION}.json \
-                        s3://${S3_PUBLIC_BUCKET}/aws-${AWS_REGION}-tested.json
+                    # Upload the json files to a public location
+                    for k in aws-${AWS_REGION}-tested.json aws-tested.json; do


We renamed aws-${AWS_REGION}-tested.json to aws-${AWS_REGION}.json in the workspace. It's only called aws-${AWS_REGION}-tested.json in the bucket and the artifact server.

OK I rebased and fixed this ⬇️ , thanks for spotting it.

yuqi-zhang · 2018-10-01T14:20:49Z

Jenkinsfile.aws-test

+                    # Upload the json files to a public location
+                    for k in aws-${AWS_REGION}-tested.json aws-tested.json; do
+                        aws s3 cp --acl public-read ${WORKSPACE}/\${k} \
+                            s3://${S3_PUBLIC_BUCKET}/\${k}


Is there a reason we're uploading them separately? I'm not against it, just thought it might be slightly confusing to have aws-us-test-1-tested.json for us-east-1 and aws-tested.json in a list format for us-east-2 and us-west-1, in case someone attempts to query, they would have to do different formatted queries for the 2 json files.

I think my vote would be to delete the old file after ensuring that no one is using it.

As in remove aws-us-test-1-tested.json and have a list in aws-tested.json? I think that makes sense.

yuqi-zhang · 2018-10-01T14:21:10Z

Jenkinsfile.aws-test

            sshUserPrivateKey(credentialsId: params.ARTIFACT_SSH_CREDS_ID, keyFileVariable: 'KEY_FILE'),
        ]) {
            utils.rsync_file_out_dest(ARTIFACT_SERVER, KEY_FILE, "${WORKSPACE}/aws-${AWS_REGION}.json", "${images}/aws-${AWS_REGION}-tested.json")
+            utils.rsync_file_out_dest(ARTIFACT_SERVER, KEY_FILE, "${WORKSPACE}/aws-tested.json", "${images}/aws-tested.json")


Same thought as above

Closes: openshift#328

yuqi-zhang

Let's give it a try, thanks for the fix!

yuqi-zhang · 2018-10-02T14:34:15Z

/lgtm

openshift-ci-robot added the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Sep 28, 2018

openshift-ci-robot requested review from ashcrow and sdemos September 28, 2018 14:07

openshift-ci-robot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label Sep 28, 2018

cgwalters force-pushed the upload-us-east-2 branch from e3ef6e6 to 5ccc449 Compare September 28, 2018 20:13

openshift-ci-robot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. and removed size/M Denotes a PR that changes 30-99 lines, ignoring generated files. labels Sep 28, 2018

cgwalters force-pushed the upload-us-east-2 branch from 5ccc449 to ae8333d Compare September 28, 2018 21:32

cgwalters changed the title ~~WIP: Copy tested AMI to more regions~~ Copy tested AMI to more regions Sep 28, 2018

openshift-ci-robot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Sep 28, 2018

cgwalters force-pushed the upload-us-east-2 branch 2 times, most recently from ad1aa5e to 4cf21c8 Compare September 28, 2018 21:40

yuqi-zhang reviewed Oct 1, 2018

View reviewed changes

cgwalters force-pushed the upload-us-east-2 branch from 4cf21c8 to 3021ce1 Compare October 2, 2018 14:18

Copy tested AMI to more regions

09d433d

Closes: openshift#328

cgwalters force-pushed the upload-us-east-2 branch from 3021ce1 to 09d433d Compare October 2, 2018 14:19

yuqi-zhang approved these changes Oct 2, 2018

View reviewed changes

openshift-ci-robot assigned yuqi-zhang Oct 2, 2018

openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Oct 2, 2018

openshift-merge-robot merged commit c610545 into openshift:master Oct 2, 2018

cgwalters mentioned this pull request Oct 10, 2018

plume vs aws cli coreos/coreos-assembler#162

Closed

Conversation

cgwalters commented Sep 28, 2018

Uh oh!

cgwalters commented Sep 28, 2018

Uh oh!

cgwalters commented Sep 28, 2018

Uh oh!

cgwalters commented Sep 28, 2018 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

cgwalters commented Sep 28, 2018

Uh oh!

cgwalters commented Sep 28, 2018

Uh oh!

yuqi-zhang Oct 1, 2018

Choose a reason for hiding this comment

Uh oh!

cgwalters Oct 2, 2018

Choose a reason for hiding this comment

Uh oh!

yuqi-zhang Oct 1, 2018

Choose a reason for hiding this comment

Uh oh!

cgwalters Oct 1, 2018

Choose a reason for hiding this comment

Uh oh!

yuqi-zhang Oct 1, 2018

Choose a reason for hiding this comment

Uh oh!

yuqi-zhang Oct 1, 2018

Choose a reason for hiding this comment

Uh oh!

yuqi-zhang left a comment

Choose a reason for hiding this comment

Uh oh!

yuqi-zhang commented Oct 2, 2018

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

cgwalters commented Sep 28, 2018 •

edited

Loading