| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
| |
* 3.9.4 is released, update core profiles
* fix consecutive make with different profiles
+ 'make PROFILE=a; make PROFILE=b' would make 'a' builds twice
+ build/profile --> build/profile/$PROFILE
* 'make PACKER=path-to-packer-bin ...' allows use of alternate packer, defaults to what's in $PATH
+ needed this to test out pre-1.4.1 packer binaries
|
| | |
|
| |
|
|
| |
* prep for new 'ami_architecture' directive coming with packer 1.4.1
|
| | |
|
| |
|
|
|
|
|
|
| |
* base/1 - fix revision quotes
* packer.conf - fix ami_description (when suffix is empty), add Name/Created tags to AMI & Snapshot, shutdown_behavior = terminate
* scripts/setup-ami.sh - stop warnings when untarring alpine-keys.apk
* remove security_group stuff (packer creates temporary one)
* .gitignore - mask all profile build configs, except the ones we vend
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
* setup-ami.sh
+ fix partitioning
+ proper path to grub-install
+ don't forget to umount /boot/efi during cleanup
* version/edge - newer kernel trusts CPU for entropy, don't need haveged anmore
* test.conf
+ reduce ami_regions to just us-west-2
+ entropy stuff moved to version/edge
+ adds edge-aarch64 build (though AMI's arch isn't set properly - https://github.com/hashicorp/packer/issues/7358
* alpine-amis.conf - prepend 'r' to revision number
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* packer.conf
+ don't need to pass bootloader
+ pass kernel_mods/kernel_opts
+ use_env_var_file to get around problems with ENV var contents (new execute_command, too)
* profiles/base/1
+ add kernel_modules/options
* scripts/resolve-profile.py.in
+ fold()
- strips quotes from complex keys
- include separator char at beginning of fmt
- different dicts use different separators
+ svcs dict -> scalar
- make vars clearer
- ' ' separator between levels
* setup-ami.sh
+ no longer need to 'tr' REPOS, PKGS, SVCS
+ detect bootloader to use
- when 'grub-efi' is bootloader, partition target device w/small EFI partition, format vfat, install_grub_efi() untested yet
+ merge setup_extlinux into install_extlinux
|
| |
|
|
|
|
|
|
|
| |
(arch level)
* ami_access and ami_regions are now hashes (easier profile overrides)
* packer config now in HOCON
* revision is a profile/build var, moved it after arch in ami's name/description
* test profile now builds AMIs that use rngd instead of haveged
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
This is a big update, directly related to issue #37 (build profiles), reorganizes 'variables.yaml' into base, version, and arch core profiles, which are merged (and optionally tweaked) in build profiles. Foundations are also laid to progress issues #28 (aarch64 AMIs), #22 (Setup CI), #20 (update generate/cleanup scripts), and #23 (retention policy).
Although there are still a couple of improvements I'm working on with regards to setup-ami.sh improvements, building AMIs from profiles is working...
make PROFILE=test -- all builds of the test profile
make PROFILE=test BUILD=test-edge-x86_64 -- just the edge build of the test profile
...and I'm hoping to get some feedback with what's been done so far.
|
| |
|
| |
* take care of YAML.load(input) deprecation, per https://github.com/yaml/pyyaml/wiki/PyYAML-yaml.load(input)-Deprecation
|
| | |
|
| |
|
|
|
| |
* EBS may prepend '/dev/' in front of the EBS alias, adjust the sanity sed to account for this.
* Attempt to get a sane EBS alias up to 50x, sleep 1/10s in between (max duration ~5 secs).
* Log when we add/fail-to-add/remove EBS alias symlinks.
|
| | |
|
| |
|
|
|
|
| |
Release a revised set of Alpine Linux AMIs, including...
* improved nvme-ebs-links mdev script (issue #40)
* start haveged at boot runlevel (issue #39)
|
| |
|
|
|
| |
Ensure that the EBS volume alias matches what we expect it to be.
Should fix issue #40.
|
| |
|
|
|
|
|
|
| |
* Release Alpine Linux 3.9.0 AMIs
* Update README.md and release.yaml with a fresh batch of 3.9.0 AMIs
* Append GitHub project link to AMI description
* really minor caveat fix
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* Match meanings of 'version' and 'release' to how Alpine uses them
* Use optional 'revision' to denote any same-release AMI rebuild
* Include CPU 'arch' in naming/description (may also offer 'aarch64' AMIs someday)
* Upgrade build instance to use Amazon Linux 2 AMIs
* Use env vars to pass details to 'make_ami.sh' instead of via CLI parameters
* make_ami.sh
+ minimum version/release shouldn't be overrideable
+ update APK tools & Alpine keys
+ check build's release vs. installed /etc/alpine-release
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Allow additional services on the AMI's runlevels
I'm using this with my AMIs to add haveged to the boot runlevel to boost the amount of initial entropy on smaller instance types, so sshd can start in under 6s instead of over 2m.
add_svcs:
boot:
- haveged
* fix race condition with nvme-ebs /dev linking
* copy nvme stuff to build target in one operation
* add eu-north-1 region
|
| |
|
|
|
|
| |
* go back to using linux-virt@edge-main, which has ena drivers
* other misc fixes
* update README
* use --no-cache when installing alpine-base
|
| | |
|
| |
|
|
| |
* no longer need to install edge linux-virt package
|
| | |
|
| |
|
|
|
| |
* Latest Amazon Linux enables 64bid when creating ext4 partitions, which is incompatible with syslinux/extlinux bootloader. Explicitly disable 64bit support, as it's highly unlikely we'll need a boot volume >16 TiB.
* update-extlinux.conf - switch kernel default to 'virt', as 'hardened' no longer exists.
|
| |
|
|
|
|
|
| |
* improve minimum release version test
* clarify public_ip variable; uses subnet's default when unset
* add 'distclean' Makefile target
* add 'variables.yaml_*' to .gitignore to exclude custom build profiles
|
| |
|
|
|
| |
* Add the ability to 'make edge' to create an AMI based on the latest Alpine edge repository
* Force 'ami_revision' to be 'rYYYYMMDDHHSS'
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
* standardize on 'linux-virt' kernel
+ no longer need 'kernel_flavor' variable
+ always install 'aws-ena-driver' package
+ always enable ena_support
* switch to 'variables.yaml' for config
+ update build/convert script to stringify certain keys that may contain arrays
+ copy from 'variables.yaml-default' if it doesn't exist
* drop 'vpc' variable, using 'subnet' derives the proper VPC to use
* fix chrony.conf (all pool.ntp.org references are changed to 169.254.169.123)
* update README.md caveats
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* README.md
+ update list of modern instance types
+ add caveat regarding linux-vanilla vs. linux-virt
* alpine-ami.yaml
+ build instance type is always t3.nano
+ block device where we build is always /dev/xvdf
+ add optional AMI encryption
+ always enable AMI SR-IOV flag (vanilla & virt both have the necessary driver)
+ no need to pass volume_name to make_ami.sh
* make_ami.sh
+ replace hard tabs with 4 spaces
+ always set up edge repositories
+ no need to add mkinitfs package, it's a dependency of linux-*
+ fix update of /etc/inittab
+ fix configuration of NTP
+ declare local vars in main()
+ device is always /dev/xvdf
* variables.json-default/example
+ improve comment for kernel_flavor
+ default add_repos is now empty
+ remove acct & e2fsprogs-extra from add_pkgs
+ add optional AMI encryption
+ remove sriov_enable, build_instance_type, and volume_name vars
|
| |
|
|
|
|
| |
https://github.com/mcrute/alpine-ec2-ami/pull/8 - temporary fix until ec2-tiny-bootstrap deps are updated
https://github.com/mcrute/alpine-ec2-ami/pull/9
https://github.com/mcrute/alpine-ec2-ami/pull/10
|
| |
|
|
|
|
|
|
|
| |
* move config variables from alpine-ami.yaml to variables.json-*
+ variables.json-default - ready-for-action original default config
+ variables.json-example - original defaults with comments
* clean up tabs vs. spaces in make_ami.sh
* make_ami.sh handles custom kernel flavor, extra repos, and extra packages
* tweak README with regards to aws-ena-driver caveat
|
| |
|
|
|
|
|
|
|
|
|
| |
* add public_ip variable, setting to 'true' allows packer to build from outside AWS
* use smallest instance_type (t2.nano) and volume_size (1 GiB)
* eu-west-3 region is live; ap-northeast-3 requires subscription
* no longer need setup_staging_repos function...
+ tiny-ec2-bootstrap is available in main since v3.8
+ aws-ena-driver-vanilla is only available in edge/testing
* switched to linux-vanilla since linux-hardened is no longer available and linux-virt does not have NVME available
+ TODO? make kernel choice selectable (significant memory/disk savings linux-virt can be used)
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
