*: include terraform in the installer binary

[crawford]

Instead of requiring that the user has Terraform installed, this now
includes the pre-built Terraform binary within the installer. At
runtime, the installer unpacks Terraform into the temporary directory
and executes it from that location. This also simplifies the version
output - since the Terraform version is known at build-time, there is
no need to show the user. Lastly, this cleans up some of the log
messages so that they don't explicitly refer to Terraform.

Including Terraform in the installer adds 18MB to the binary size,
bringing the total up to 82MB.

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: crawford

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [crawford]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[smarterclayton]

What's the final size?

[crawford]

Size after this change:

$ size bin/openshift-install
   text    data     bss     dec     hex filename
55288484         375497  253360 55917341        3553b1d bin/openshift-install

$ ls -lah bin/openshift-install
-rwxr-xr-x 1 alex users 82M Dec  5 15:21 bin/openshift-install

v.s. before:

$ size bin/openshift-install
   text    data     bss     dec     hex filename
37110376         375497  253360 37739233        23fdae1 bin/openshift-install

$ ls -lah bin/openshift-install
-rwxr-xr-x 1 alex users 64M Dec  5 15:23 bin/openshift-install

[smarterclayton]

Well within reason. I assume having a vendor tree you splice in as an switch filepath.Base(os.Args[0]) { case "terraform": terraform.Entrypoint(); default: installer.ENtrypoint() } was deemed too painful right now?

[crawford]

I didn't bother looking at vendoring Terraform because I was almost certain that was going to be painful and would take much longer to accomplish. We can always revisit this approach later.

[smarterclayton]

Yeah that's fine. I only bring it up because of previous discussion around OSBS, all I care about right now is something that works.

[crawford]

Curious if this actually passes the tests...

/retest

[wking]

I'm fine with this approach in the short term. 👍

[crawford]

/retest

[wking]

release.sh will need terraform for the target OS/arch. Not sure off the top of my head how to address that. Shifting hardlinks?

[crawford]

release.sh will need terraform for the target OS/arch. Not sure off the top of my head how to address that. Shifting hardlinks?

We also need to address the "caching" logic. It's currently just checking to see that terraform exists. It doesn't verify that it is the correct version or architecture. I think if we solve that, it also solves the issue you brought up.

[crawford]

@wking do you know a good way of calculating "../../.." from "data/data/bin/terraform"?

[crawford]

I came up with the following, but it may be more effort than it is worth:

diff --git a/hack/get-terraform.sh b/hack/get-terraform.sh
index aae1b69cd..c47aaa11e 100755
--- a/hack/get-terraform.sh
+++ b/hack/get-terraform.sh
@@ -25,6 +25,7 @@ fi &&
 TERRAFORM_VERSION="0.11.8" &&
 TERRAFORM_URL="https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_${OS}_${ARCH}.zip" &&
 TERRAFORM_BINARY=".cache/terraform_${TERRAFORM_VERSION}_${OS}_${ARCH}"
+TERRAFORM_SYMLINK="data/data/bin/terraform"
 cd "$(dirname "$0")/.." &&
 if [ ! -x "${TERRAFORM_BINARY}" ]
 then
@@ -33,6 +34,6 @@ then
        curl -L "${TERRAFORM_URL}" | "${FUNZIP}" >"${TERRAFORM_BINARY}" &&
        chmod +x "${TERRAFORM_BINARY}"
 fi &&
-mkdir -p data/data/bin &&
-rm -f data/data/bin/terraform &&
-ln -s "../../../${TERRAFORM_BINARY}" data/data/bin/terraform
+mkdir -p "$(dirname "${TERRAFORM_SYMLINK}")" &&
+rm -f "${TERRAFORM_SYMLINK}" &&
+ln -s "$(dirname "${TERRAFORM_SYMLINK}" | sed 's_[^/]*_.._g')/${TERRAFORM_BINARY}" "${TERRAFORM_SYMLINK}"

[wking]

do you know a good way of calculating "../../.." from "data/data/bin/terraform"?

Well, one way would be to use hardlinks instead of symlinks:

$ rm -f data/data/bin/terraform
$ ls -l .cache/terraform_0.11.8_linux_amd64 
-rwxr-xr-x. 1 trking trking 76422048 Dec  6 21:54 .cache/terraform_0.11.8_linux_amd64
$ ln .cache/terraform_0.11.8_linux_amd64 data/data/bin/terraform
$ ls -l .cache/terraform_0.11.8_linux_amd64 
-rwxr-xr-x. 2 trking trking 76422048 Dec  6 21:54 .cache/terraform_0.11.8_linux_amd64
$ ls -l data/data/bin/terraform 
-rwxr-xr-x. 2 trking trking 76422048 Dec  6 21:54 data/data/bin/terraform

See the <number of links> field changing from 1 to 2 after the ln call.

[crawford]

I assume all of this will always be on the same filesystem, so a hardlink should work. I'll go with that instead.

[openshift-ci-robot]

@crawford: The following test failed, say /retest to rerun them all:

Test name	Commit	Details	Rerun command
ci/prow/e2e-aws	4014f34	link	/test e2e-aws

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[wking]

This will need FromSlash too, and so will exec.Command(filepath.Join(clusterDir, executablePath), args...). In fact, why are we bothering with bin at all? This would be easier if we just had executableFilename = "terraform", or some such. And since we have CI to catch us if we typo an instance, I'd be fine hard-coding "terraform"everywhere and skipping the variable altogether (although I'm also fine with a slash-lessexecutableFilename`).

[wking]

No need to make this public. Can we change this (and the name in the godoc above) to execute?

[wking]

I left a few minor suggestions inline, but I'm fine landing this as-is (after you squash the WIP commit in) and iterating afterwards if you don't want to pick up the suggestions now.

[crawford]

Closing in favor of #822.

/close

[openshift-ci-robot]

@crawford: Closed this PR.

Details

In response to this:

Closing in favor of #822.

/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.