2014-06-27 18:47:19 +02:00
|
|
|
package aws
|
|
|
|
|
|
|
|
|
|
import (
|
2014-10-17 18:12:45 +02:00
|
|
|
"bytes"
|
2014-08-22 17:46:48 +02:00
|
|
|
"crypto/sha1"
|
|
|
|
|
"encoding/hex"
|
2014-06-27 18:47:19 +02:00
|
|
|
"fmt"
|
|
|
|
|
"log"
|
2014-07-28 18:47:40 +02:00
|
|
|
"strings"
|
2014-07-01 19:10:11 +02:00
|
|
|
"time"
|
2014-06-27 18:47:19 +02:00
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
"github.com/hashicorp/aws-sdk-go/aws"
|
|
|
|
|
"github.com/hashicorp/aws-sdk-go/gen/ec2"
|
2014-08-22 03:38:43 +02:00
|
|
|
"github.com/hashicorp/terraform/helper/hashcode"
|
2014-07-01 19:10:11 +02:00
|
|
|
"github.com/hashicorp/terraform/helper/resource"
|
2014-08-22 03:38:43 +02:00
|
|
|
"github.com/hashicorp/terraform/helper/schema"
|
2014-06-27 18:47:19 +02:00
|
|
|
)
|
|
|
|
|
|
2014-08-22 03:38:43 +02:00
|
|
|
func resourceAwsInstance() *schema.Resource {
|
|
|
|
|
return &schema.Resource{
|
|
|
|
|
Create: resourceAwsInstanceCreate,
|
|
|
|
|
Read: resourceAwsInstanceRead,
|
|
|
|
|
Update: resourceAwsInstanceUpdate,
|
|
|
|
|
Delete: resourceAwsInstanceDelete,
|
|
|
|
|
|
|
|
|
|
Schema: map[string]*schema.Schema{
|
|
|
|
|
"ami": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Required: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"associate_public_ip_address": &schema.Schema{
|
|
|
|
|
Type: schema.TypeBool,
|
|
|
|
|
Optional: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"availability_zone": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Computed: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"instance_type": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Required: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"key_name": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
2014-08-22 21:20:06 +02:00
|
|
|
Optional: true,
|
2014-08-22 03:38:43 +02:00
|
|
|
ForceNew: true,
|
2014-08-22 21:20:06 +02:00
|
|
|
Computed: true,
|
2014-08-22 03:38:43 +02:00
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"subnet_id": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Computed: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"private_ip": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
2014-09-18 22:26:49 +02:00
|
|
|
ForceNew: true,
|
2014-08-22 03:38:43 +02:00
|
|
|
Computed: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"source_dest_check": &schema.Schema{
|
|
|
|
|
Type: schema.TypeBool,
|
|
|
|
|
Optional: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"user_data": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
|
|
|
|
ForceNew: true,
|
2014-08-22 17:46:48 +02:00
|
|
|
StateFunc: func(v interface{}) string {
|
2014-08-23 03:11:06 +02:00
|
|
|
switch v.(type) {
|
|
|
|
|
case string:
|
|
|
|
|
hash := sha1.Sum([]byte(v.(string)))
|
|
|
|
|
return hex.EncodeToString(hash[:])
|
|
|
|
|
default:
|
|
|
|
|
return ""
|
|
|
|
|
}
|
2014-08-22 17:46:48 +02:00
|
|
|
},
|
2014-08-22 03:38:43 +02:00
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"security_groups": &schema.Schema{
|
|
|
|
|
Type: schema.TypeSet,
|
|
|
|
|
Optional: true,
|
2014-08-28 00:26:15 +02:00
|
|
|
Computed: true,
|
2014-10-11 02:14:35 +02:00
|
|
|
ForceNew: true,
|
2014-08-22 03:38:43 +02:00
|
|
|
Elem: &schema.Schema{Type: schema.TypeString},
|
|
|
|
|
Set: func(v interface{}) int {
|
|
|
|
|
return hashcode.String(v.(string))
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"public_dns": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Computed: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"public_ip": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Computed: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"private_dns": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Computed: true,
|
|
|
|
|
},
|
2014-09-03 12:18:40 +02:00
|
|
|
|
|
|
|
|
"ebs_optimized": &schema.Schema{
|
|
|
|
|
Type: schema.TypeBool,
|
|
|
|
|
Optional: true,
|
|
|
|
|
},
|
2014-10-09 01:43:13 +02:00
|
|
|
|
2014-09-23 20:06:30 +02:00
|
|
|
"iam_instance_profile": &schema.Schema{
|
2014-09-28 20:51:49 +02:00
|
|
|
Type: schema.TypeString,
|
2014-09-23 20:06:30 +02:00
|
|
|
ForceNew: true,
|
|
|
|
|
Optional: true,
|
|
|
|
|
},
|
2014-11-04 12:08:30 +01:00
|
|
|
"tenancy": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Computed: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
2014-10-13 22:55:59 +02:00
|
|
|
"tags": tagsSchema(),
|
2014-10-17 18:12:45 +02:00
|
|
|
|
|
|
|
|
"block_device": &schema.Schema{
|
|
|
|
|
Type: schema.TypeSet,
|
|
|
|
|
Optional: true,
|
2014-12-25 21:58:26 +01:00
|
|
|
Computed: true,
|
2014-10-17 18:12:45 +02:00
|
|
|
Elem: &schema.Resource{
|
|
|
|
|
Schema: map[string]*schema.Schema{
|
|
|
|
|
"device_name": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Required: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
2014-11-22 10:50:22 +01:00
|
|
|
"virtual_name": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
2014-10-17 18:12:45 +02:00
|
|
|
"snapshot_id": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
2014-12-25 18:21:05 +01:00
|
|
|
Computed: true,
|
2014-10-17 18:12:45 +02:00
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"volume_type": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
2014-12-25 18:21:05 +01:00
|
|
|
Computed: true,
|
2014-10-17 18:12:45 +02:00
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"volume_size": &schema.Schema{
|
|
|
|
|
Type: schema.TypeInt,
|
|
|
|
|
Optional: true,
|
2014-12-25 18:21:05 +01:00
|
|
|
Computed: true,
|
2014-10-17 18:12:45 +02:00
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"delete_on_termination": &schema.Schema{
|
|
|
|
|
Type: schema.TypeBool,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Default: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"encrypted": &schema.Schema{
|
|
|
|
|
Type: schema.TypeBool,
|
|
|
|
|
Optional: true,
|
2014-12-25 18:21:05 +01:00
|
|
|
Computed: true,
|
2014-10-17 18:12:45 +02:00
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
2015-03-03 07:07:36 +01:00
|
|
|
|
|
|
|
|
"iops": &schema.Schema{
|
|
|
|
|
Type: schema.TypeInt,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Computed: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
2014-10-17 18:12:45 +02:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
Set: resourceAwsInstanceBlockDevicesHash,
|
|
|
|
|
},
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
|
|
|
|
|
"root_block_device": &schema.Schema{
|
|
|
|
|
// TODO: This is a list because we don't support singleton
|
|
|
|
|
// sub-resources today. We'll enforce that the list only ever has
|
|
|
|
|
// length zero or one below. When TF gains support for
|
|
|
|
|
// sub-resources this can be converted.
|
|
|
|
|
Type: schema.TypeList,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Computed: true,
|
|
|
|
|
Elem: &schema.Resource{
|
|
|
|
|
// "You can only modify the volume size, volume type, and Delete on
|
|
|
|
|
// Termination flag on the block device mapping entry for the root
|
|
|
|
|
// device volume." - bit.ly/ec2bdmap
|
|
|
|
|
Schema: map[string]*schema.Schema{
|
|
|
|
|
"delete_on_termination": &schema.Schema{
|
|
|
|
|
Type: schema.TypeBool,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Default: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"device_name": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
Default: "/dev/sda1",
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"volume_size": &schema.Schema{
|
|
|
|
|
Type: schema.TypeInt,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Computed: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
"volume_type": &schema.Schema{
|
|
|
|
|
Type: schema.TypeString,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Computed: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
2015-03-03 07:07:36 +01:00
|
|
|
|
|
|
|
|
"iops": &schema.Schema{
|
|
|
|
|
Type: schema.TypeInt,
|
|
|
|
|
Optional: true,
|
|
|
|
|
Computed: true,
|
|
|
|
|
ForceNew: true,
|
|
|
|
|
},
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
2014-08-22 03:38:43 +02:00
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func resourceAwsInstanceCreate(d *schema.ResourceData, meta interface{}) error {
|
2015-03-05 16:45:39 +01:00
|
|
|
ec2conn := meta.(*AWSClient).awsEC2conn
|
2014-06-27 18:47:19 +02:00
|
|
|
|
2014-07-16 18:01:56 +02:00
|
|
|
// Figure out user data
|
|
|
|
|
userData := ""
|
2014-08-22 03:38:43 +02:00
|
|
|
if v := d.Get("user_data"); v != nil {
|
|
|
|
|
userData = v.(string)
|
2014-07-16 18:01:56 +02:00
|
|
|
}
|
|
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
placement := &ec2.Placement{
|
|
|
|
|
AvailabilityZone: aws.String(d.Get("availability_zone").(string)),
|
|
|
|
|
Tenancy: aws.String(d.Get("tenancy").(string)),
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
iam := &ec2.IAMInstanceProfileSpecification{
|
|
|
|
|
Name: aws.String(d.Get("iam_instance_profile").(string)),
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Build the creation struct
|
|
|
|
|
runOpts := &ec2.RunInstancesRequest{
|
|
|
|
|
ImageID: aws.String(d.Get("ami").(string)),
|
|
|
|
|
Placement: placement,
|
|
|
|
|
InstanceType: aws.String(d.Get("instance_type").(string)),
|
|
|
|
|
MaxCount: aws.Integer(1),
|
|
|
|
|
MinCount: aws.Integer(1),
|
|
|
|
|
UserData: aws.String(userData),
|
|
|
|
|
EBSOptimized: aws.Boolean(d.Get("ebs_optimized").(bool)),
|
|
|
|
|
IAMInstanceProfile: iam,
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-29 14:06:53 +02:00
|
|
|
associatePublicIPAddress := false
|
2014-09-03 13:54:36 +02:00
|
|
|
if v := d.Get("associate_public_ip_address"); v != nil {
|
2014-08-22 03:38:43 +02:00
|
|
|
associatePublicIPAddress = v.(bool)
|
2014-07-29 14:06:53 +02:00
|
|
|
}
|
|
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
// check for non-default Subnet
|
|
|
|
|
subnet := false
|
|
|
|
|
var subnetID string
|
|
|
|
|
if v, ok := d.GetOk("subnet_id"); ok {
|
|
|
|
|
subnet = true
|
|
|
|
|
subnetID = v.(string)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if subnet && associatePublicIPAddress {
|
|
|
|
|
// If we have a non-default VPC / Subnet specified, we can flag
|
|
|
|
|
// AssociatePublicIpAddress to get a Public IP assigned. By default these are not provided.
|
|
|
|
|
// You cannot specify both SubnetId and the NetworkInterface.0.* parameters though, otherwise
|
|
|
|
|
// you get: Network interfaces and an instance-level subnet ID may not be specified on the same request
|
|
|
|
|
// You also need to attach Security Groups to the NetworkInterface instead of the instance,
|
|
|
|
|
// to avoid: Network interfaces and an instance-level security groups may not be specified on
|
|
|
|
|
// the same request
|
|
|
|
|
ni := ec2.InstanceNetworkInterfaceSpecification{
|
|
|
|
|
AssociatePublicIPAddress: aws.Boolean(associatePublicIPAddress),
|
|
|
|
|
DeviceIndex: aws.Integer(0),
|
|
|
|
|
SubnetID: aws.String(subnetID),
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if v, ok := d.GetOk("private_ip"); ok {
|
|
|
|
|
ni.PrivateIPAddress = aws.String(v.(string))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
runOpts.NetworkInterfaces = []ec2.InstanceNetworkInterfaceSpecification{ni}
|
|
|
|
|
} else {
|
|
|
|
|
if subnetID != "" {
|
|
|
|
|
runOpts.SubnetID = aws.String(subnetID)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if v, ok := d.GetOk("private_ip"); ok {
|
|
|
|
|
runOpts.PrivateIPAddress = aws.String(v.(string))
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if v, ok := d.GetOk("key_name"); ok {
|
|
|
|
|
runOpts.KeyName = aws.String(v.(string))
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
2014-08-22 03:38:43 +02:00
|
|
|
|
|
|
|
|
if v := d.Get("security_groups"); v != nil {
|
2015-03-05 16:45:39 +01:00
|
|
|
// Security group names.
|
|
|
|
|
// For a nondefault VPC, you must use security group IDs instead.
|
|
|
|
|
// See http://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html
|
|
|
|
|
var groups []string
|
2014-08-22 21:20:06 +02:00
|
|
|
for _, v := range v.(*schema.Set).List() {
|
2014-08-22 03:38:43 +02:00
|
|
|
str := v.(string)
|
2015-03-05 16:45:39 +01:00
|
|
|
groups = append(groups, str)
|
|
|
|
|
}
|
|
|
|
|
if runOpts.SubnetID != nil &&
|
|
|
|
|
*runOpts.SubnetID != "" {
|
|
|
|
|
runOpts.SecurityGroupIDs = groups
|
|
|
|
|
} else {
|
|
|
|
|
runOpts.SecurityGroups = groups
|
2014-07-15 06:56:37 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
blockDevices := make([]interface{}, 0)
|
|
|
|
|
|
2014-10-17 18:12:45 +02:00
|
|
|
if v := d.Get("block_device"); v != nil {
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
blockDevices = append(blockDevices, v.(*schema.Set).List()...)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if v := d.Get("root_block_device"); v != nil {
|
|
|
|
|
rootBlockDevices := v.([]interface{})
|
|
|
|
|
if len(rootBlockDevices) > 1 {
|
|
|
|
|
return fmt.Errorf("Cannot specify more than one root_block_device.")
|
|
|
|
|
}
|
|
|
|
|
blockDevices = append(blockDevices, rootBlockDevices...)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if len(blockDevices) > 0 {
|
2015-03-05 16:45:39 +01:00
|
|
|
runOpts.BlockDeviceMappings = make([]ec2.BlockDeviceMapping, len(blockDevices))
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
for i, v := range blockDevices {
|
|
|
|
|
bd := v.(map[string]interface{})
|
2015-03-05 16:45:39 +01:00
|
|
|
runOpts.BlockDeviceMappings[i].DeviceName = aws.String(bd["device_name"].(string))
|
|
|
|
|
runOpts.BlockDeviceMappings[i].EBS = &ec2.EBSBlockDevice{
|
|
|
|
|
VolumeType: aws.String(bd["volume_type"].(string)),
|
|
|
|
|
VolumeSize: aws.Integer(bd["volume_size"].(int)),
|
|
|
|
|
DeleteOnTermination: aws.Boolean(bd["delete_on_termination"].(bool)),
|
|
|
|
|
}
|
|
|
|
|
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
if v, ok := bd["virtual_name"].(string); ok {
|
2015-03-05 16:45:39 +01:00
|
|
|
runOpts.BlockDeviceMappings[i].VirtualName = aws.String(v)
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
}
|
2015-03-05 16:45:39 +01:00
|
|
|
if v, ok := bd["snapshot_id"].(string); ok && v != "" {
|
|
|
|
|
runOpts.BlockDeviceMappings[i].EBS.SnapshotID = aws.String(v)
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
}
|
|
|
|
|
if v, ok := bd["encrypted"].(bool); ok {
|
2015-03-05 16:45:39 +01:00
|
|
|
runOpts.BlockDeviceMappings[i].EBS.Encrypted = aws.Boolean(v)
|
2014-10-17 18:12:45 +02:00
|
|
|
}
|
2015-03-05 16:45:39 +01:00
|
|
|
if v, ok := bd["iops"].(int); ok && v > 0 {
|
|
|
|
|
runOpts.BlockDeviceMappings[i].EBS.IOPS = aws.Integer(v)
|
2015-03-03 07:07:36 +01:00
|
|
|
}
|
2014-10-17 18:12:45 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-15 06:56:37 +02:00
|
|
|
// Create the instance
|
2014-06-27 18:47:19 +02:00
|
|
|
log.Printf("[DEBUG] Run configuration: %#v", runOpts)
|
|
|
|
|
runResp, err := ec2conn.RunInstances(runOpts)
|
|
|
|
|
if err != nil {
|
2014-08-22 03:38:43 +02:00
|
|
|
return fmt.Errorf("Error launching source instance: %s", err)
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
instance := &runResp.Instances[0]
|
2015-03-05 16:45:39 +01:00
|
|
|
log.Printf("[INFO] Instance ID: %s", *instance.InstanceID)
|
2014-06-27 18:47:19 +02:00
|
|
|
|
|
|
|
|
// Store the resulting ID so we can look this up later
|
2015-03-05 16:45:39 +01:00
|
|
|
d.SetId(*instance.InstanceID)
|
2014-06-27 18:47:19 +02:00
|
|
|
|
|
|
|
|
// Wait for the instance to become running so we can get some attributes
|
|
|
|
|
// that aren't available until later.
|
|
|
|
|
log.Printf(
|
|
|
|
|
"[DEBUG] Waiting for instance (%s) to become running",
|
2015-03-05 16:45:39 +01:00
|
|
|
*instance.InstanceID)
|
2014-07-01 19:10:11 +02:00
|
|
|
|
|
|
|
|
stateConf := &resource.StateChangeConf{
|
2014-07-28 18:10:28 +02:00
|
|
|
Pending: []string{"pending"},
|
|
|
|
|
Target: "running",
|
2015-03-05 16:45:39 +01:00
|
|
|
Refresh: InstanceStateRefreshFunc(ec2conn, *instance.InstanceID),
|
2014-07-28 18:10:28 +02:00
|
|
|
Timeout: 10 * time.Minute,
|
|
|
|
|
Delay: 10 * time.Second,
|
|
|
|
|
MinTimeout: 3 * time.Second,
|
2014-07-01 19:10:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
instanceRaw, err := stateConf.WaitForState()
|
2014-06-27 18:47:19 +02:00
|
|
|
if err != nil {
|
2014-08-22 03:38:43 +02:00
|
|
|
return fmt.Errorf(
|
2014-06-27 18:47:19 +02:00
|
|
|
"Error waiting for instance (%s) to become ready: %s",
|
2015-03-05 16:45:39 +01:00
|
|
|
*instance.InstanceID, err)
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
2014-07-01 19:10:11 +02:00
|
|
|
|
2014-06-27 18:47:19 +02:00
|
|
|
instance = instanceRaw.(*ec2.Instance)
|
|
|
|
|
|
2014-07-15 02:24:10 +02:00
|
|
|
// Initialize the connection info
|
2015-03-05 16:45:39 +01:00
|
|
|
if instance.PublicIPAddress != nil {
|
|
|
|
|
d.SetConnInfo(map[string]string{
|
|
|
|
|
"type": "ssh",
|
|
|
|
|
"host": *instance.PublicIPAddress,
|
|
|
|
|
})
|
|
|
|
|
}
|
2014-07-15 02:24:10 +02:00
|
|
|
|
2014-06-27 18:47:19 +02:00
|
|
|
// Set our attributes
|
2014-08-22 03:38:43 +02:00
|
|
|
if err := resourceAwsInstanceRead(d, meta); err != nil {
|
|
|
|
|
return err
|
2014-07-14 23:16:59 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update if we need to
|
2014-08-22 03:38:43 +02:00
|
|
|
return resourceAwsInstanceUpdate(d, meta)
|
2014-07-14 23:16:59 +02:00
|
|
|
}
|
|
|
|
|
|
2014-08-22 03:38:43 +02:00
|
|
|
func resourceAwsInstanceRead(d *schema.ResourceData, meta interface{}) error {
|
2015-03-05 16:45:39 +01:00
|
|
|
ec2conn := meta.(*AWSClient).awsEC2conn
|
2014-06-27 18:47:19 +02:00
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
resp, err := ec2conn.DescribeInstances(&ec2.DescribeInstancesRequest{
|
|
|
|
|
InstanceIDs: []string{d.Id()},
|
|
|
|
|
})
|
2014-06-27 18:47:19 +02:00
|
|
|
if err != nil {
|
|
|
|
|
// If the instance was not found, return nil so that we can show
|
|
|
|
|
// that the instance is gone.
|
2015-03-05 16:45:39 +01:00
|
|
|
if ec2err, ok := err.(aws.APIError); ok && ec2err.Code == "InvalidInstanceID.NotFound" {
|
2014-08-22 03:38:43 +02:00
|
|
|
d.SetId("")
|
|
|
|
|
return nil
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Some other error, report it
|
2014-08-22 03:38:43 +02:00
|
|
|
return err
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If nothing was found, then return no state
|
|
|
|
|
if len(resp.Reservations) == 0 {
|
2014-08-22 03:38:43 +02:00
|
|
|
d.SetId("")
|
|
|
|
|
return nil
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
instance := &resp.Reservations[0].Instances[0]
|
|
|
|
|
|
|
|
|
|
// If the instance is terminated, then it is gone
|
2015-03-05 16:45:39 +01:00
|
|
|
if *instance.State.Name == "terminated" {
|
2014-08-22 03:38:43 +02:00
|
|
|
d.SetId("")
|
|
|
|
|
return nil
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
|
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
d.Set("availability_zone", instance.Placement.AvailabilityZone)
|
2014-08-22 03:38:43 +02:00
|
|
|
d.Set("key_name", instance.KeyName)
|
2015-03-05 16:45:39 +01:00
|
|
|
d.Set("public_dns", instance.PublicDNSName)
|
|
|
|
|
d.Set("public_ip", instance.PublicIPAddress)
|
2014-08-22 03:38:43 +02:00
|
|
|
d.Set("private_dns", instance.PrivateDNSName)
|
2015-03-05 16:45:39 +01:00
|
|
|
d.Set("private_ip", instance.PrivateIPAddress)
|
|
|
|
|
d.Set("subnet_id", instance.SubnetID)
|
|
|
|
|
if len(instance.NetworkInterfaces) > 0 {
|
|
|
|
|
d.Set("subnet_id", instance.NetworkInterfaces[0].SubnetID)
|
|
|
|
|
} else {
|
|
|
|
|
d.Set("subnet_id", instance.SubnetID)
|
|
|
|
|
}
|
|
|
|
|
d.Set("ebs_optimized", instance.EBSOptimized)
|
|
|
|
|
d.Set("tags", tagsToMapSDK(instance.Tags))
|
|
|
|
|
d.Set("tenancy", instance.Placement.Tenancy)
|
2014-08-22 03:38:43 +02:00
|
|
|
|
|
|
|
|
// Determine whether we're referring to security groups with
|
|
|
|
|
// IDs or names. We use a heuristic to figure this out. By default,
|
|
|
|
|
// we use IDs if we're in a VPC. However, if we previously had an
|
|
|
|
|
// all-name list of security groups, we use names. Or, if we had any
|
|
|
|
|
// IDs, we use IDs.
|
2015-03-05 16:45:39 +01:00
|
|
|
useID := *instance.SubnetID != ""
|
2014-08-22 03:38:43 +02:00
|
|
|
if v := d.Get("security_groups"); v != nil {
|
|
|
|
|
match := false
|
2014-08-22 21:20:06 +02:00
|
|
|
for _, v := range v.(*schema.Set).List() {
|
2014-08-22 03:38:43 +02:00
|
|
|
if strings.HasPrefix(v.(string), "sg-") {
|
|
|
|
|
match = true
|
|
|
|
|
break
|
2014-07-28 18:47:40 +02:00
|
|
|
}
|
|
|
|
|
}
|
2014-08-22 03:38:43 +02:00
|
|
|
|
|
|
|
|
useID = match
|
2014-07-28 18:47:40 +02:00
|
|
|
}
|
|
|
|
|
|
2014-07-15 06:56:37 +02:00
|
|
|
// Build up the security groups
|
|
|
|
|
sgs := make([]string, len(instance.SecurityGroups))
|
|
|
|
|
for i, sg := range instance.SecurityGroups {
|
2014-08-22 03:38:43 +02:00
|
|
|
if useID {
|
2015-03-05 16:45:39 +01:00
|
|
|
sgs[i] = *sg.GroupID
|
2014-07-15 06:56:37 +02:00
|
|
|
} else {
|
2015-03-05 16:45:39 +01:00
|
|
|
sgs[i] = *sg.GroupName
|
2014-07-15 06:56:37 +02:00
|
|
|
}
|
|
|
|
|
}
|
2014-08-22 03:38:43 +02:00
|
|
|
d.Set("security_groups", sgs)
|
2014-07-15 06:56:37 +02:00
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
blockDevices := make(map[string]ec2.InstanceBlockDeviceMapping)
|
|
|
|
|
for _, bd := range instance.BlockDeviceMappings {
|
|
|
|
|
blockDevices[*bd.EBS.VolumeID] = bd
|
2015-01-28 12:00:05 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
volIDs := make([]string, 0, len(blockDevices))
|
2015-03-05 16:45:39 +01:00
|
|
|
for _, vol := range blockDevices {
|
|
|
|
|
volIDs = append(volIDs, *vol.EBS.VolumeID)
|
2014-10-17 18:12:45 +02:00
|
|
|
}
|
|
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
volResp, err := ec2conn.DescribeVolumes(&ec2.DescribeVolumesRequest{
|
|
|
|
|
VolumeIDs: volIDs,
|
|
|
|
|
})
|
2014-10-17 18:12:45 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
nonRootBlockDevices := make([]map[string]interface{}, 0)
|
2015-02-18 23:45:13 +01:00
|
|
|
rootBlockDevice := make([]interface{}, 0, 1)
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
for _, vol := range volResp.Volumes {
|
|
|
|
|
blockDevice := make(map[string]interface{})
|
2015-03-05 16:45:39 +01:00
|
|
|
blockDevice["device_name"] = *blockDevices[*vol.VolumeID].DeviceName
|
|
|
|
|
blockDevice["volume_type"] = *vol.VolumeType
|
|
|
|
|
blockDevice["volume_size"] = *vol.Size
|
2015-03-11 15:24:59 +01:00
|
|
|
if vol.IOPS != nil {
|
|
|
|
|
blockDevice["iops"] = *vol.IOPS
|
|
|
|
|
}
|
2015-02-18 23:45:13 +01:00
|
|
|
blockDevice["delete_on_termination"] =
|
2015-03-05 16:45:39 +01:00
|
|
|
*blockDevices[*vol.VolumeID].EBS.DeleteOnTermination
|
2015-02-18 23:45:13 +01:00
|
|
|
|
|
|
|
|
// If this is the root device, save it. We stop here since we
|
|
|
|
|
// can't put invalid keys into this map.
|
2015-03-05 16:45:39 +01:00
|
|
|
if blockDevice["device_name"] == *instance.RootDeviceName {
|
2015-02-18 23:45:13 +01:00
|
|
|
rootBlockDevice = []interface{}{blockDevice}
|
|
|
|
|
continue
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
}
|
2015-02-18 23:45:13 +01:00
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
blockDevice["snapshot_id"] = *vol.SnapshotID
|
|
|
|
|
blockDevice["encrypted"] = *vol.Encrypted
|
2015-02-18 23:45:13 +01:00
|
|
|
nonRootBlockDevices = append(nonRootBlockDevices, blockDevice)
|
2014-10-17 18:12:45 +02:00
|
|
|
}
|
providers/aws: add root_block_device to aws_instance
AWS provides a single `BlockDeviceMapping` to manage three different
kinds of block devices:
(a) The root volume
(b) Ephemeral storage
(c) Additional EBS volumes
Each of these types has slightly different semantics [1].
(a) The root volume is defined by the AMI; it can only be customized
with `volume_size`, `volume_type`, and `delete_on_termination`.
(b) Ephemeral storage is made available based on instance type [2]. It's
attached automatically if _no_ block device mappings are specified, and
must otherwise be defined with block device mapping entries that contain
only DeviceName set to a device like "/dev/sdX" and VirtualName set to
"ephemeralN".
(c) Additional EBS volumes are controlled by mappings that omit
`virtual_name` and can specify `volume_size`, `volume_type`,
`delete_on_termination`, `snapshot_id`, and `encryption`.
After deciding to ignore root block devices to fix #859, we had users
with configurations that were attempting to manage the root block device chime
in on #913.
Terraform does not have the primitives to be able to properly handle a
single collection of resources that is partially managed and partially
computed, so our strategy here is to break out logical sub-resources for
Terraform and hide the BlockDeviceMapping inside the provider
implementation.
Now (a) is supported by the `root_block_device` sub-resource, and (b)
and (c) are still both merged together under `block_device`, though I
have yet to see ephemeral block devices working properly.
Looking into possibly separating out `ephemeral_block_device` and
`ebs_block_device` sub-resources as well, which seem like the logical
next step. We'll wait until the next big release for this, though, since
it will break backcompat.
[1] http://bit.ly/ec2bdmap
[2] http://bit.ly/instancestorebytype
Fixes #913
Refs #858
2015-02-18 18:45:30 +01:00
|
|
|
d.Set("block_device", nonRootBlockDevices)
|
2015-02-18 23:45:13 +01:00
|
|
|
d.Set("root_block_device", rootBlockDevice)
|
2014-10-17 18:12:45 +02:00
|
|
|
|
2014-08-22 03:38:43 +02:00
|
|
|
return nil
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
2014-07-01 19:10:11 +02:00
|
|
|
|
2014-11-21 17:58:34 +01:00
|
|
|
func resourceAwsInstanceUpdate(d *schema.ResourceData, meta interface{}) error {
|
2015-03-05 16:45:39 +01:00
|
|
|
ec2conn := meta.(*AWSClient).awsEC2conn
|
|
|
|
|
opts := new(ec2.ModifyInstanceAttributeRequest)
|
2014-11-21 17:58:34 +01:00
|
|
|
|
2015-02-21 21:26:46 +01:00
|
|
|
log.Printf("[INFO] Modifying instance %s: %#v", d.Id(), opts)
|
2015-03-05 16:45:39 +01:00
|
|
|
err := ec2conn.ModifyInstanceAttribute(&ec2.ModifyInstanceAttributeRequest{
|
|
|
|
|
InstanceID: aws.String(d.Id()),
|
|
|
|
|
SourceDestCheck: &ec2.AttributeBooleanValue{
|
|
|
|
|
Value: aws.Boolean(d.Get("source_dest_check").(bool)),
|
|
|
|
|
},
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
2015-02-21 21:26:46 +01:00
|
|
|
return err
|
2014-11-21 17:58:34 +01:00
|
|
|
}
|
|
|
|
|
|
2015-02-21 21:26:46 +01:00
|
|
|
// TODO(mitchellh): wait for the attributes we modified to
|
|
|
|
|
// persist the change...
|
|
|
|
|
|
2015-03-05 16:45:39 +01:00
|
|
|
if err := setTagsSDK(ec2conn, d); err != nil {
|
2014-11-21 17:58:34 +01:00
|
|
|
return err
|
|
|
|
|
} else {
|
|
|
|
|
d.SetPartial("tags")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func resourceAwsInstanceDelete(d *schema.ResourceData, meta interface{}) error {
|
2015-03-05 16:45:39 +01:00
|
|
|
ec2conn := meta.(*AWSClient).awsEC2conn
|
2014-11-21 17:58:34 +01:00
|
|
|
|
|
|
|
|
log.Printf("[INFO] Terminating instance: %s", d.Id())
|
2015-03-05 16:45:39 +01:00
|
|
|
req := &ec2.TerminateInstancesRequest{
|
|
|
|
|
InstanceIDs: []string{d.Id()},
|
|
|
|
|
}
|
|
|
|
|
if _, err := ec2conn.TerminateInstances(req); err != nil {
|
2014-11-21 17:58:34 +01:00
|
|
|
return fmt.Errorf("Error terminating instance: %s", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
log.Printf(
|
|
|
|
|
"[DEBUG] Waiting for instance (%s) to become terminated",
|
|
|
|
|
d.Id())
|
|
|
|
|
|
|
|
|
|
stateConf := &resource.StateChangeConf{
|
|
|
|
|
Pending: []string{"pending", "running", "shutting-down", "stopped", "stopping"},
|
|
|
|
|
Target: "terminated",
|
|
|
|
|
Refresh: InstanceStateRefreshFunc(ec2conn, d.Id()),
|
|
|
|
|
Timeout: 10 * time.Minute,
|
|
|
|
|
Delay: 10 * time.Second,
|
|
|
|
|
MinTimeout: 3 * time.Second,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_, err := stateConf.WaitForState()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf(
|
|
|
|
|
"Error waiting for instance (%s) to terminate: %s",
|
|
|
|
|
d.Id(), err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
d.SetId("")
|
2014-08-22 03:38:43 +02:00
|
|
|
return nil
|
2014-06-27 18:47:19 +02:00
|
|
|
}
|
2014-07-01 19:10:11 +02:00
|
|
|
|
|
|
|
|
// InstanceStateRefreshFunc returns a resource.StateRefreshFunc that is used to watch
|
|
|
|
|
// an EC2 instance.
|
|
|
|
|
func InstanceStateRefreshFunc(conn *ec2.EC2, instanceID string) resource.StateRefreshFunc {
|
|
|
|
|
return func() (interface{}, string, error) {
|
2015-03-05 16:45:39 +01:00
|
|
|
resp, err := conn.DescribeInstances(&ec2.DescribeInstancesRequest{
|
|
|
|
|
InstanceIDs: []string{instanceID},
|
|
|
|
|
})
|
2014-07-01 19:10:11 +02:00
|
|
|
if err != nil {
|
2015-03-05 16:45:39 +01:00
|
|
|
if ec2err, ok := err.(aws.APIError); ok && ec2err.Code == "InvalidInstanceID.NotFound" {
|
2014-07-01 19:10:11 +02:00
|
|
|
// Set this to nil as if we didn't find anything.
|
|
|
|
|
resp = nil
|
|
|
|
|
} else {
|
|
|
|
|
log.Printf("Error on InstanceStateRefresh: %s", err)
|
|
|
|
|
return nil, "", err
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if resp == nil || len(resp.Reservations) == 0 || len(resp.Reservations[0].Instances) == 0 {
|
|
|
|
|
// Sometimes AWS just has consistency issues and doesn't see
|
|
|
|
|
// our instance yet. Return an empty state.
|
|
|
|
|
return nil, "", nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
i := &resp.Reservations[0].Instances[0]
|
2015-03-05 16:45:39 +01:00
|
|
|
return i, *i.State.Name, nil
|
2014-07-01 19:10:11 +02:00
|
|
|
}
|
|
|
|
|
}
|
2014-10-17 18:12:45 +02:00
|
|
|
|
|
|
|
|
func resourceAwsInstanceBlockDevicesHash(v interface{}) int {
|
|
|
|
|
var buf bytes.Buffer
|
|
|
|
|
m := v.(map[string]interface{})
|
|
|
|
|
buf.WriteString(fmt.Sprintf("%s-", m["device_name"].(string)))
|
2014-12-25 18:21:05 +01:00
|
|
|
buf.WriteString(fmt.Sprintf("%s-", m["virtual_name"].(string)))
|
2014-10-17 18:12:45 +02:00
|
|
|
buf.WriteString(fmt.Sprintf("%t-", m["delete_on_termination"].(bool)))
|
|
|
|
|
return hashcode.String(buf.String())
|
|
|
|
|
}
|