Merge pull request #530 from EspressoSystems/release-ami

akonring · web-flow · commit 8cda30ca6569 · 2025-09-25T20:47:33.000+02:00
AMI release workflow and packer init.
diff --git a/.github/workflows/ami-release.yml b/.github/workflows/ami-release.yml
@@ -0,0 +1,56 @@
+name: Release Timeboost AMI
+
+on:
+  release:
+    types: [published]
+
+jobs:
+  build-ami:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v5
+        with:
+          submodules: recursive
+          fetch-depth: 0
+
+      - name: Install Rust
+        uses: actions-rs/toolchain@v1
+        with:
+          toolchain: stable
+          override: true
+
+      - name: Install nightly rustfmt
+        run: rustup component add --toolchain nightly rustfmt
+
+      - name: Install Foundry
+        uses: foundry-rs/foundry-toolchain@v1
+    
+      - name: Install protobuf compiler
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y protobuf-compiler
+
+      - name: Install just
+        uses: taiki-e/install-action@just
+
+      - name: Install Packer
+        uses: hashicorp/setup-packer@v2
+        with:
+          version: "1.9.0"
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v2
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: eu-central-1
+
+      - name: Build AMI
+        run: |
+          cd packer
+          packer init .
+          just build
+          just make-overlay
+          VERSION=${GITHUB_REF_NAME} just make-image
diff --git a/packer/justfile b/packer/justfile
@@ -0,0 +1,42 @@
+version 			:= env("VERSION", "0.1.0")
+vector-version  	:= "0.50.0"
+overlay-archive 	:= "timeboost-overlay.tar.gz"
+
+init:
+	packer init .
+
+clean:
+	rm -f {{overlay-archive}}
+
+format:
+	packer fmt .
+
+build:
+    cargo build --release --bin timeboost
+
+make-overlay:
+    #!/usr/bin/env bash
+    set -e
+    if [[ -f {{overlay-archive}} ]]; then
+        rm {{overlay-archive}}
+    fi
+    dir=$(mktemp -d)
+    cp -R overlay $dir/
+    mkdir -p $dir/overlay/usr/local/bin
+    cp ../target/release/timeboost $dir/overlay/usr/local/bin/timeboost
+    tar czf {{overlay-archive}} -C $dir/overlay/ .
+
+validate:
+	packer validate \
+		--var version={{version}} \
+		--var vector-version={{vector-version}} \
+		--var overlay-archive={{overlay-archive}} \
+		timeboost.pkr.hcl
+
+make-image: validate
+	packer build \
+		--var version={{version}} \
+		--var vector-version={{vector-version}} \
+		--var overlay-archive={{overlay-archive}} \
+		timeboost.pkr.hcl
+
diff --git a/packer/overlay/etc/systemd/system/timeboost.service b/packer/overlay/etc/systemd/system/timeboost.service
@@ -0,0 +1,12 @@
+[Unit]
+Description=Timeboost
+After=network.target
+Requires=network-online.target
+
+[Service]
+ExecStart=/usr/local/bin/timeboost --config /etc/timeboost/timeboost.toml
+Restart=always
+RestartSec=5
+
+[Install]
+WantedBy=multi-user.target
diff --git a/packer/overlay/etc/systemd/system/vector.service b/packer/overlay/etc/systemd/system/vector.service
@@ -0,0 +1,21 @@
+[Unit]
+Description=Vector
+Documentation=https://vector.dev
+After=network-online.target
+Requires=network-online.target
+StartLimitInterval=10
+StartLimitBurst=5
+
+[Service]
+User=vector
+Group=vector
+ExecStartPre=/usr/bin/vector validate
+ExecStart=/usr/bin/vector -c /etc/vector/vector.toml
+ExecReload=/usr/bin/vector validate --no-environment
+ExecReload=/bin/kill -HUP $MAINPID
+Restart=always
+AmbientCapabilities=CAP_NET_BIND_SERVICE
+EnvironmentFile=-/etc/default/vector
+
+[Install]
+WantedBy=multi-user.target
diff --git a/packer/overlay/etc/vector/vector.toml b/packer/overlay/etc/vector/vector.toml
@@ -0,0 +1,68 @@
+[sources.vector]
+type = "internal_logs"
+
+# Host
+
+[sources.host]
+type = "host_metrics"
+collectors = ["memory"]
+scrape_interval_secs = 30
+
+[transforms.filtered-host]
+type = "filter"
+inputs = ["host"]
+condition = { type = "vrl", source = ".name == \"memory_used_bytes\"" }
+
+# Service
+
+[sources.timeboost]
+type = "journald"
+include_units = ["timeboost"]
+
+[transforms.to-json]
+type = "remap"
+inputs = ["timeboost"]
+source = '''
+    .message = object!(parse_json!(string!(.message)))
+
+    if exists(.message.span) {
+         span    = object!(del(.message.span))
+        .message = merge!(.message, span)
+    }
+'''
+
+[transforms.with-metadata]
+type = "aws_ec2_metadata"
+inputs = ["to-json"]
+fields = [
+    "ami-id",
+    "availability-zone",
+    "instance-id",
+    "instance-type",
+    "local-ipv4",
+    "region",
+    "subnet-id",
+    "vpc-id",
+    "role-name",
+]
+
+# Outputs
+
+[sinks.console]
+type = "console"
+inputs = ["vector"]
+encoding.codec = "text"
+
+[sinks.aws-cloudwatch]
+type = "aws_cloudwatch_logs"
+inputs = ["with-metadata"]
+region = "eu-central-1"
+group_name = "timeboost"
+encoding.codec = "json"
+stream_name = "{{{{raw}}}}{{ host }}{{{{/raw}}}}"
+
+[sinks.aws-cloudwatch-metrics]
+type = "aws_cloudwatch_metrics"
+inputs = ["filtered-host"]
+region = "eu-central-1"
+default_namespace = "timeboost"
diff --git a/packer/timeboost.pkr.hcl b/packer/timeboost.pkr.hcl
@@ -0,0 +1,79 @@
+packer {
+  required_plugins {
+    amazon = {
+      version = ">= 1.2.0"
+      source  = "github.com/hashicorp/amazon"
+    }
+  }
+}
+
+variable "version" {
+  type = string
+}
+
+variable "vector-version" {
+  type = string
+}
+
+variable "overlay-archive" {
+  type = string
+}
+
+source "amazon-ebs" "al2" {
+  ami_name      = "timeboost-${var.version}"
+  instance_type = "t3a.micro"
+  region        = "eu-central-1"
+
+  source_ami_filter {
+    filters = {
+      name                = "amzn2-ami-hvm-*-x86_64-gp2"
+      root-device-type    = "ebs"
+      virtualization-type = "hvm"
+    }
+    owners      = ["amazon"]
+    most_recent = true
+  }
+
+  launch_block_device_mappings {
+    device_name           = "/dev/xvda"
+    volume_size           = 16
+    volume_type           = "gp3"
+    delete_on_termination = true
+  }
+
+  ssh_username         = "ec2-user"
+}
+
+build {
+  sources = ["source.amazon-ebs.al2"]
+
+  provisioner "shell" {
+    inline = [
+      "echo upgrading base and installing dependencies ...",
+      "sudo yum update -y",
+      "sudo rpm -i https://yum.vector.dev/stable/vector-0/x86_64/vector-${var.vector-version}-1.x86_64.rpm"
+    ]
+  }
+
+  provisioner "file" {
+    source      = "${var.overlay-archive}"
+    destination = "/tmp/${var.overlay-archive}"
+  }
+
+  provisioner "shell" {
+    inline = [
+      "echo extracting overlay ...",
+      "sudo tar xzf /tmp/${var.overlay-archive} -C /",
+      "sudo chown -R ec2-user:ec2-user /usr/local/bin/timeboost",
+      "sudo rm /tmp/${var.overlay-archive}"
+    ]
+  }
+
+  provisioner "shell" {
+    inline = [
+      "sudo systemctl daemon-reload",
+      "sudo systemctl enable vector",
+      "sudo systemctl enable timeboost"
+    ]
+  }
+}
