Module materialize.scratch
Utilities for launching and interacting with scratch EC2 instances.
Expand source code Browse git
# Copyright Materialize, Inc. and contributors. All rights reserved.
#
# Use of this software is governed by the Business Source License
# included in the LICENSE file at the root of this repository.
#
# As of the Change Date specified in that file, in accordance with
# the Business Source License, use of this software will be governed
# by the Apache License, Version 2.0.
"""Utilities for launching and interacting with scratch EC2 instances."""
import asyncio
import csv
import datetime
import os
import shlex
import subprocess
import sys
from subprocess import CalledProcessError
from typing import NamedTuple, cast
import boto3
from botocore.exceptions import ClientError
from mypy_boto3_ec2.literals import InstanceTypeType
from mypy_boto3_ec2.service_resource import Instance
from mypy_boto3_ec2.type_defs import (
InstanceNetworkInterfaceSpecificationTypeDef,
InstanceTypeDef,
RunInstancesRequestRequestTypeDef,
)
from prettytable import PrettyTable
from pydantic import BaseModel
from materialize import MZ_ROOT, git, spawn, ui, util
# Sane defaults for internal Materialize use in the scratch account
DEFAULT_SECURITY_GROUP_NAME = "scratch-security-group"
DEFAULT_INSTANCE_PROFILE_NAME = "admin-instance"
SSH_COMMAND = ["mssh", "-o", "StrictHostKeyChecking=off"]
SFTP_COMMAND = ["msftp", "-o", "StrictHostKeyChecking=off"]
say = ui.speaker("scratch> ")
def tags(i: Instance) -> dict[str, str]:
if not i.tags:
return {}
return {t["Key"]: t["Value"] for t in i.tags}
def instance_typedef_tags(i: InstanceTypeDef) -> dict[str, str]:
return {t["Key"]: t["Value"] for t in i.get("Tags", [])}
def name(tags: dict[str, str]) -> str | None:
return tags.get("Name")
def launched_by(tags: dict[str, str]) -> str | None:
return tags.get("LaunchedBy")
def ami_user(tags: dict[str, str]) -> str | None:
return tags.get("ami-user", "ubuntu")
def delete_after(tags: dict[str, str]) -> datetime.datetime | None:
unix = tags.get("scratch-delete-after")
if not unix:
return None
unix = int(float(unix))
return datetime.datetime.fromtimestamp(unix)
def instance_host(instance: Instance, user: str | None = None) -> str:
if user is None:
user = ami_user(tags(instance))
return f"{user}@{instance.id}"
def print_instances(ists: list[Instance], format: str) -> None:
field_names = [
"Name",
"Instance ID",
"Public IP Address",
"Private IP Address",
"Launched By",
"Delete After",
"State",
]
rows = [
[
name(tags),
i.instance_id,
i.public_ip_address,
i.private_ip_address,
launched_by(tags),
delete_after(tags),
i.state["Name"],
]
for (i, tags) in [(i, tags(i)) for i in ists]
]
if format == "table":
pt = PrettyTable()
pt.field_names = field_names
pt.add_rows(rows)
print(pt)
elif format == "csv":
w = csv.writer(sys.stdout)
w.writerow(field_names)
w.writerows(rows)
else:
raise RuntimeError("Unknown format passed to print_instances")
def launch(
*,
key_name: str | None,
instance_type: str,
ami: str,
ami_user: str,
tags: dict[str, str],
display_name: str | None = None,
size_gb: int,
security_group_name: str,
instance_profile: str | None,
nonce: str,
delete_after: datetime.datetime,
) -> Instance:
"""Launch and configure an ec2 instance with the given properties."""
if display_name:
tags["Name"] = display_name
tags["scratch-delete-after"] = str(delete_after.timestamp())
tags["nonce"] = nonce
tags["git_ref"] = git.describe()
tags["ami-user"] = ami_user
ec2 = boto3.client("ec2")
groups = ec2.describe_security_groups()
security_group_id = None
for group in groups["SecurityGroups"]:
if group["GroupName"] == security_group_name:
security_group_id = group["GroupId"]
break
if security_group_id is None:
vpcs = ec2.describe_vpcs()
vpc_id = None
for vpc in vpcs["Vpcs"]:
if vpc["IsDefault"] == True:
vpc_id = vpc["VpcId"]
break
if vpc_id is None:
default_vpc = ec2.create_default_vpc()
vpc_id = default_vpc["Vpc"]["VpcId"]
securitygroup = ec2.create_security_group(
GroupName=security_group_name,
Description="Allows all.",
VpcId=vpc_id,
)
security_group_id = securitygroup["GroupId"]
ec2.authorize_security_group_ingress(
GroupId=security_group_id,
CidrIp="0.0.0.0/0",
IpProtocol="tcp",
FromPort=22,
ToPort=22,
)
network_interface: InstanceNetworkInterfaceSpecificationTypeDef = {
"AssociatePublicIpAddress": True,
"DeviceIndex": 0,
"Groups": [security_group_id],
}
say(f"launching instance {display_name or '(unnamed)'}")
with open(MZ_ROOT / "misc" / "scratch" / "provision.bash") as f:
provisioning_script = f.read()
kwargs: RunInstancesRequestRequestTypeDef = {
"MinCount": 1,
"MaxCount": 1,
"ImageId": ami,
"InstanceType": cast(InstanceTypeType, instance_type),
"UserData": provisioning_script,
"TagSpecifications": [
{
"ResourceType": "instance",
"Tags": [{"Key": k, "Value": v} for (k, v) in tags.items()],
}
],
"NetworkInterfaces": [network_interface],
"BlockDeviceMappings": [
{
"DeviceName": "/dev/sda1",
"Ebs": {
"VolumeSize": size_gb,
"VolumeType": "gp3",
},
}
],
"MetadataOptions": {
# Allow Docker containers to access IMDSv2.
"HttpPutResponseHopLimit": 2,
},
}
if key_name:
kwargs["KeyName"] = key_name
if instance_profile:
kwargs["IamInstanceProfile"] = {"Name": instance_profile}
i = boto3.resource("ec2").create_instances(**kwargs)[0]
return i
class CommandResult(NamedTuple):
status: str
stdout: str
stderr: str
async def setup(
i: Instance,
git_rev: str,
) -> None:
def is_ready(i: Instance) -> bool:
return bool(
i.public_ip_address and i.state and i.state.get("Name") == "running"
)
done = False
async for remaining in ui.async_timeout_loop(60, 5):
say(f"Waiting for instance to become ready: {remaining:0.0f}s remaining")
try:
i.reload()
if is_ready(i):
done = True
break
except ClientError:
pass
if not done:
raise RuntimeError(
f"Instance {i} did not become ready in a reasonable amount of time"
)
done = False
async for remaining in ui.async_timeout_loop(300, 5):
say(f"Checking whether setup has completed: {remaining:0.0f}s remaining")
try:
mssh(i, "[[ -f /opt/provision/done ]]")
done = True
break
except CalledProcessError:
continue
if not done:
raise RuntimeError(
"Instance did not finish setup in a reasonable amount of time"
)
mkrepo(i, git_rev)
def mkrepo(i: Instance, rev: str, init: bool = True, force: bool = False) -> None:
if init:
mssh(i, "git clone https://github.com/MaterializeInc/materialize.git")
rev = git.rev_parse(rev)
cmd: list[str] = [
"git",
"push",
"--no-verify",
f"{instance_host(i)}:materialize/.git",
# Explicit refspec is required if the host repository is in detached
# HEAD mode.
f"{rev}:refs/heads/scratch",
]
if force:
cmd.append("--force")
spawn.runv(
cmd,
cwd=MZ_ROOT,
env=dict(os.environ, GIT_SSH_COMMAND=" ".join(SSH_COMMAND)),
)
mssh(
i,
f"cd materialize && git config core.bare false && git checkout {rev}",
)
class MachineDesc(BaseModel):
name: str
launch_script: str | None
instance_type: str
ami: str
tags: dict[str, str] = {}
size_gb: int
checkout: bool = True
ami_user: str = "ubuntu"
def launch_cluster(
descs: list[MachineDesc],
*,
nonce: str | None = None,
key_name: str | None = None,
security_group_name: str = DEFAULT_SECURITY_GROUP_NAME,
instance_profile: str | None = DEFAULT_INSTANCE_PROFILE_NAME,
extra_tags: dict[str, str] = {},
delete_after: datetime.datetime,
git_rev: str = "HEAD",
extra_env: dict[str, str] = {},
) -> list[Instance]:
"""Launch a cluster of instances with a given nonce"""
if not nonce:
nonce = util.nonce(8)
instances = [
launch(
key_name=key_name,
instance_type=d.instance_type,
ami=d.ami,
ami_user=d.ami_user,
tags={**d.tags, **extra_tags},
display_name=f"{nonce}-{d.name}",
size_gb=d.size_gb,
security_group_name=security_group_name,
instance_profile=instance_profile,
nonce=nonce,
delete_after=delete_after,
)
for d in descs
]
loop = asyncio.get_event_loop()
loop.run_until_complete(
asyncio.gather(
*(
setup(i, git_rev if d.checkout else "HEAD")
for (i, d) in zip(instances, descs)
)
)
)
hosts_str = "".join(
f"{i.private_ip_address}\t{d.name}\n" for (i, d) in zip(instances, descs)
)
for i in instances:
mssh(i, "sudo tee -a /etc/hosts", input=hosts_str.encode())
env = " ".join(f"{k}={shlex.quote(v)}" for k, v in extra_env.items())
for (i, d) in zip(instances, descs):
if d.launch_script:
mssh(
i,
f"(cd materialize && {env} nohup bash -c {shlex.quote(d.launch_script)}) &> mzscratch.log &",
)
return instances
def whoami() -> str:
return boto3.client("sts").get_caller_identity()["UserId"].split(":")[1]
def get_instances_by_tag(k: str, v: str) -> list[InstanceTypeDef]:
return [
i
for r in boto3.client("ec2").describe_instances()["Reservations"]
for i in r["Instances"]
if instance_typedef_tags(i).get(k) == v
]
def get_old_instances() -> list[InstanceTypeDef]:
def exists(i: InstanceTypeDef) -> bool:
return i["State"]["Name"] != "terminated"
def is_old(i: InstanceTypeDef) -> bool:
delete_after = instance_typedef_tags(i).get("scratch-delete-after")
if delete_after is None:
return False
delete_after = float(delete_after)
return datetime.datetime.utcnow().timestamp() > delete_after
return [
i
for r in boto3.client("ec2").describe_instances()["Reservations"]
for i in r["Instances"]
if exists(i) and is_old(i)
]
def mssh(
instance: Instance,
command: str,
*,
extra_ssh_args: list[str] = [],
input: bytes | None = None,
) -> None:
"""Runs a command over SSH via EC2 Instance Connect."""
host = instance_host(instance)
if command:
print(f"{host}$ {command}", file=sys.stderr)
# Quote to work around:
# https://github.com/aws/aws-ec2-instance-connect-cli/pull/26
command = shlex.quote(command)
else:
print(f"$ mssh {host}")
subprocess.run(
[
*SSH_COMMAND,
*extra_ssh_args,
host,
command,
],
check=True,
input=input,
)
def msftp(
instance: Instance,
) -> None:
"""Connects over SFTP via EC2 Instance Connect."""
host = instance_host(instance)
spawn.runv([*SFTP_COMMAND, host])Functions
def ami_user(tags: dict[str, str]) ‑> str | None-
Expand source code Browse git
def ami_user(tags: dict[str, str]) -> str | None: return tags.get("ami-user", "ubuntu") def delete_after(tags: dict[str, str]) ‑> datetime.datetime | None-
Expand source code Browse git
def delete_after(tags: dict[str, str]) -> datetime.datetime | None: unix = tags.get("scratch-delete-after") if not unix: return None unix = int(float(unix)) return datetime.datetime.fromtimestamp(unix) def get_instances_by_tag(k: str, v: str) ‑> list[mypy_boto3_ec2.type_defs.InstanceTypeDef]-
Expand source code Browse git
def get_instances_by_tag(k: str, v: str) -> list[InstanceTypeDef]: return [ i for r in boto3.client("ec2").describe_instances()["Reservations"] for i in r["Instances"] if instance_typedef_tags(i).get(k) == v ] def get_old_instances() ‑> list[mypy_boto3_ec2.type_defs.InstanceTypeDef]-
Expand source code Browse git
def get_old_instances() -> list[InstanceTypeDef]: def exists(i: InstanceTypeDef) -> bool: return i["State"]["Name"] != "terminated" def is_old(i: InstanceTypeDef) -> bool: delete_after = instance_typedef_tags(i).get("scratch-delete-after") if delete_after is None: return False delete_after = float(delete_after) return datetime.datetime.utcnow().timestamp() > delete_after return [ i for r in boto3.client("ec2").describe_instances()["Reservations"] for i in r["Instances"] if exists(i) and is_old(i) ] def instance_host(instance: mypy_boto3_ec2.service_resource.Instance, user: str | None = None) ‑> str-
Expand source code Browse git
def instance_host(instance: Instance, user: str | None = None) -> str: if user is None: user = ami_user(tags(instance)) return f"{user}@{instance.id}" -
Expand source code Browse git
def instance_typedef_tags(i: InstanceTypeDef) -> dict[str, str]: return {t["Key"]: t["Value"] for t in i.get("Tags", [])} def launch(*, key_name: str | None, instance_type: str, ami: str, ami_user: str, tags: dict[str, str], display_name: str | None = None, size_gb: int, security_group_name: str, instance_profile: str | None, nonce: str, delete_after: datetime.datetime) ‑> mypy_boto3_ec2.service_resource.Instance-
Launch and configure an ec2 instance with the given properties.
Expand source code Browse git
def launch( *, key_name: str | None, instance_type: str, ami: str, ami_user: str, tags: dict[str, str], display_name: str | None = None, size_gb: int, security_group_name: str, instance_profile: str | None, nonce: str, delete_after: datetime.datetime, ) -> Instance: """Launch and configure an ec2 instance with the given properties.""" if display_name: tags["Name"] = display_name tags["scratch-delete-after"] = str(delete_after.timestamp()) tags["nonce"] = nonce tags["git_ref"] = git.describe() tags["ami-user"] = ami_user ec2 = boto3.client("ec2") groups = ec2.describe_security_groups() security_group_id = None for group in groups["SecurityGroups"]: if group["GroupName"] == security_group_name: security_group_id = group["GroupId"] break if security_group_id is None: vpcs = ec2.describe_vpcs() vpc_id = None for vpc in vpcs["Vpcs"]: if vpc["IsDefault"] == True: vpc_id = vpc["VpcId"] break if vpc_id is None: default_vpc = ec2.create_default_vpc() vpc_id = default_vpc["Vpc"]["VpcId"] securitygroup = ec2.create_security_group( GroupName=security_group_name, Description="Allows all.", VpcId=vpc_id, ) security_group_id = securitygroup["GroupId"] ec2.authorize_security_group_ingress( GroupId=security_group_id, CidrIp="0.0.0.0/0", IpProtocol="tcp", FromPort=22, ToPort=22, ) network_interface: InstanceNetworkInterfaceSpecificationTypeDef = { "AssociatePublicIpAddress": True, "DeviceIndex": 0, "Groups": [security_group_id], } say(f"launching instance {display_name or '(unnamed)'}") with open(MZ_ROOT / "misc" / "scratch" / "provision.bash") as f: provisioning_script = f.read() kwargs: RunInstancesRequestRequestTypeDef = { "MinCount": 1, "MaxCount": 1, "ImageId": ami, "InstanceType": cast(InstanceTypeType, instance_type), "UserData": provisioning_script, "TagSpecifications": [ { "ResourceType": "instance", "Tags": [{"Key": k, "Value": v} for (k, v) in tags.items()], } ], "NetworkInterfaces": [network_interface], "BlockDeviceMappings": [ { "DeviceName": "/dev/sda1", "Ebs": { "VolumeSize": size_gb, "VolumeType": "gp3", }, } ], "MetadataOptions": { # Allow Docker containers to access IMDSv2. "HttpPutResponseHopLimit": 2, }, } if key_name: kwargs["KeyName"] = key_name if instance_profile: kwargs["IamInstanceProfile"] = {"Name": instance_profile} i = boto3.resource("ec2").create_instances(**kwargs)[0] return i def launch_cluster(descs: list[MachineDesc], *, nonce: str | None = None, key_name: str | None = None, security_group_name: str = 'scratch-security-group', instance_profile: str | None = 'admin-instance', extra_tags: dict[str, str] = {}, delete_after: datetime.datetime, git_rev: str = 'HEAD', extra_env: dict[str, str] = {}) ‑> list[mypy_boto3_ec2.service_resource.Instance]-
Launch a cluster of instances with a given nonce
Expand source code Browse git
def launch_cluster( descs: list[MachineDesc], *, nonce: str | None = None, key_name: str | None = None, security_group_name: str = DEFAULT_SECURITY_GROUP_NAME, instance_profile: str | None = DEFAULT_INSTANCE_PROFILE_NAME, extra_tags: dict[str, str] = {}, delete_after: datetime.datetime, git_rev: str = "HEAD", extra_env: dict[str, str] = {}, ) -> list[Instance]: """Launch a cluster of instances with a given nonce""" if not nonce: nonce = util.nonce(8) instances = [ launch( key_name=key_name, instance_type=d.instance_type, ami=d.ami, ami_user=d.ami_user, tags={**d.tags, **extra_tags}, display_name=f"{nonce}-{d.name}", size_gb=d.size_gb, security_group_name=security_group_name, instance_profile=instance_profile, nonce=nonce, delete_after=delete_after, ) for d in descs ] loop = asyncio.get_event_loop() loop.run_until_complete( asyncio.gather( *( setup(i, git_rev if d.checkout else "HEAD") for (i, d) in zip(instances, descs) ) ) ) hosts_str = "".join( f"{i.private_ip_address}\t{d.name}\n" for (i, d) in zip(instances, descs) ) for i in instances: mssh(i, "sudo tee -a /etc/hosts", input=hosts_str.encode()) env = " ".join(f"{k}={shlex.quote(v)}" for k, v in extra_env.items()) for (i, d) in zip(instances, descs): if d.launch_script: mssh( i, f"(cd materialize && {env} nohup bash -c {shlex.quote(d.launch_script)}) &> mzscratch.log &", ) return instances def launched_by(tags: dict[str, str]) ‑> str | None-
Expand source code Browse git
def launched_by(tags: dict[str, str]) -> str | None: return tags.get("LaunchedBy") def mkrepo(i: mypy_boto3_ec2.service_resource.Instance, rev: str, init: bool = True, force: bool = False) ‑> None-
Expand source code Browse git
def mkrepo(i: Instance, rev: str, init: bool = True, force: bool = False) -> None: if init: mssh(i, "git clone https://github.com/MaterializeInc/materialize.git") rev = git.rev_parse(rev) cmd: list[str] = [ "git", "push", "--no-verify", f"{instance_host(i)}:materialize/.git", # Explicit refspec is required if the host repository is in detached # HEAD mode. f"{rev}:refs/heads/scratch", ] if force: cmd.append("--force") spawn.runv( cmd, cwd=MZ_ROOT, env=dict(os.environ, GIT_SSH_COMMAND=" ".join(SSH_COMMAND)), ) mssh( i, f"cd materialize && git config core.bare false && git checkout {rev}", ) def msftp(instance: mypy_boto3_ec2.service_resource.Instance) ‑> None-
Connects over SFTP via EC2 Instance Connect.
Expand source code Browse git
def msftp( instance: Instance, ) -> None: """Connects over SFTP via EC2 Instance Connect.""" host = instance_host(instance) spawn.runv([*SFTP_COMMAND, host]) def mssh(instance: mypy_boto3_ec2.service_resource.Instance, command: str, *, extra_ssh_args: list[str] = [], input: bytes | None = None) ‑> None-
Runs a command over SSH via EC2 Instance Connect.
Expand source code Browse git
def mssh( instance: Instance, command: str, *, extra_ssh_args: list[str] = [], input: bytes | None = None, ) -> None: """Runs a command over SSH via EC2 Instance Connect.""" host = instance_host(instance) if command: print(f"{host}$ {command}", file=sys.stderr) # Quote to work around: # https://github.com/aws/aws-ec2-instance-connect-cli/pull/26 command = shlex.quote(command) else: print(f"$ mssh {host}") subprocess.run( [ *SSH_COMMAND, *extra_ssh_args, host, command, ], check=True, input=input, ) def name(tags: dict[str, str]) ‑> str | None-
Expand source code Browse git
def name(tags: dict[str, str]) -> str | None: return tags.get("Name") def print_instances(ists: list[mypy_boto3_ec2.service_resource.Instance], format: str) ‑> None-
Expand source code Browse git
def print_instances(ists: list[Instance], format: str) -> None: field_names = [ "Name", "Instance ID", "Public IP Address", "Private IP Address", "Launched By", "Delete After", "State", ] rows = [ [ name(tags), i.instance_id, i.public_ip_address, i.private_ip_address, launched_by(tags), delete_after(tags), i.state["Name"], ] for (i, tags) in [(i, tags(i)) for i in ists] ] if format == "table": pt = PrettyTable() pt.field_names = field_names pt.add_rows(rows) print(pt) elif format == "csv": w = csv.writer(sys.stdout) w.writerow(field_names) w.writerows(rows) else: raise RuntimeError("Unknown format passed to print_instances") async def setup(i: mypy_boto3_ec2.service_resource.Instance, git_rev: str) ‑> None-
Expand source code Browse git
async def setup( i: Instance, git_rev: str, ) -> None: def is_ready(i: Instance) -> bool: return bool( i.public_ip_address and i.state and i.state.get("Name") == "running" ) done = False async for remaining in ui.async_timeout_loop(60, 5): say(f"Waiting for instance to become ready: {remaining:0.0f}s remaining") try: i.reload() if is_ready(i): done = True break except ClientError: pass if not done: raise RuntimeError( f"Instance {i} did not become ready in a reasonable amount of time" ) done = False async for remaining in ui.async_timeout_loop(300, 5): say(f"Checking whether setup has completed: {remaining:0.0f}s remaining") try: mssh(i, "[[ -f /opt/provision/done ]]") done = True break except CalledProcessError: continue if not done: raise RuntimeError( "Instance did not finish setup in a reasonable amount of time" ) mkrepo(i, git_rev) -
Expand source code Browse git
def tags(i: Instance) -> dict[str, str]: if not i.tags: return {} return {t["Key"]: t["Value"] for t in i.tags} def whoami() ‑> str-
Expand source code Browse git
def whoami() -> str: return boto3.client("sts").get_caller_identity()["UserId"].split(":")[1]
Classes
class CommandResult (status: str, stdout: str, stderr: str)-
CommandResult(status, stdout, stderr)
Expand source code Browse git
class CommandResult(NamedTuple): status: str stdout: str stderr: strAncestors
- builtins.tuple
Instance variables
var status : str-
Alias for field number 0
var stderr : str-
Alias for field number 2
var stdout : str-
Alias for field number 1
class MachineDesc (**data: Any)-
Create a new model by parsing and validating input data from keyword arguments.
Raises ValidationError if the input data cannot be parsed to form a valid model.
Expand source code Browse git
class MachineDesc(BaseModel): name: str launch_script: str | None instance_type: str ami: str tags: dict[str, str] = {} size_gb: int checkout: bool = True ami_user: str = "ubuntu"Ancestors
- pydantic.main.BaseModel
- pydantic.utils.Representation
Class variables
var ami : strvar ami_user : strvar checkout : boolvar instance_type : strvar launch_script : str | Nonevar name : strvar size_gb : int