From faf93af63e5a58cffea5a4425033780747faa9aa Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jake=20Buchholz=20G=C3=B6kt=C3=BCrk?= <tomalok@gmail.com>
Date: Mon, 23 May 2022 19:17:45 -0700
Subject: [PATCH] Alpine 3.16 Released

alpine.pkr.hcl
* fix setup-ssh in QEMU boot command

build
* add 'rollback' target, which when used with --revise will clean up any imported but unpublished images (use before 'build --clean configs')
* fix download of UEFI firmware - ovmf apk split aarch64 to new aavmf apk

configs
* alpine.conf - remove 3.12, add 3.16
* add ..._name to dimensional configs
* add cloud_(image|launch)_url

image_configs.py
* methods to resolve (image|launch)_url values

clouds/aws.py
* warn if setting image deprecation fails, but continue
---
 alpine.pkr.hcl                   |  2 +-
 build                            | 31 ++++++++++++++++++++++---------
 clouds/aws.py                    | 11 +++++++----
 configs/alpine.conf              |  2 +-
 configs/arch/aarch64.conf        |  1 +
 configs/arch/x86_64.conf         |  1 +
 configs/bootstrap/cloudinit.conf |  4 +++-
 configs/bootstrap/tiny.conf      |  4 +++-
 configs/cloud/aws.conf           |  5 ++++-
 configs/firmware/bios.conf       |  3 ++-
 configs/firmware/uefi.conf       |  3 ++-
 configs/version/3.12.conf        |  4 +++-
 configs/version/3.16.conf        |  7 +++++++
 image_configs.py                 |  6 ++++++
 14 files changed, 63 insertions(+), 21 deletions(-)
 create mode 100644 configs/version/3.16.conf

diff --git a/alpine.pkr.hcl b/alpine.pkr.hcl
index 5cd4c99..433c121 100644
--- a/alpine.pkr.hcl
+++ b/alpine.pkr.hcl
@@ -61,7 +61,7 @@ source qemu alpine {
     "root<enter>",
     "setup-interfaces<enter><enter><enter><enter>",
     "ifup eth0<enter><wait${var.qemu.cmd_wait}>",
-    "setup-sshd -c openssh<enter><wait${var.qemu.cmd_wait}>",
+    "setup-sshd openssh<enter><wait${var.qemu.cmd_wait}>",
     "echo PermitRootLogin yes >> /etc/ssh/sshd_config<enter>",
     "service sshd restart<enter>",
     "echo 'root:${local.password}' | chpasswd<enter>",
diff --git a/build b/build
index 59290e3..49bcbe0 100755
--- a/build
+++ b/build
@@ -48,13 +48,19 @@ from image_configs import ImageConfigManager
 
 ### Constants & Variables
 
-STEPS = ['configs', 'state', 'local', 'import', 'publish']
+STEPS = ['configs', 'state', 'rollback', 'local', 'import', 'publish']
 LOGFORMAT = '%(asctime)s - %(name)s - %(levelname)s - %(message)s'
 WORK_CLEAN = {'bin', 'include', 'lib', 'pyvenv.cfg', '__pycache__'}
 WORK_OVERLAYS = ['configs', 'scripts']
-OVMF_FIRMWARE = {
-    'aarch64': 'usr/share/OVMF/QEMU_EFI.fd',
-    'x86_64': 'usr/share/OVMF/OVMF.fd'
+UEFI_FIRMWARE = {
+    'aarch64': {
+        'apk': 'aavmf',
+        'bin': 'usr/share/AAVMF/QEMU_EFI.fd',
+    },
+    'x86_64': {
+        'apk': 'ovmf',
+        'bin': 'usr/share/OVMF/OVMF.fd',
+    }
 }
 alpine = Alpine()
 
@@ -120,6 +126,9 @@ def install_overlay(overlay):
     os.makedirs(dest_dir, exist_ok=True)
     for src in unique_list(['.'] + args.custom):
         src_dir = os.path.join(src, overlay)
+        if not os.path.exists(src_dir):
+            log.debug('%s does not exist, skipping', src_dir)
+            continue
         for x in glob(os.path.join(src_dir, '**'), recursive=True):
             x = x.removeprefix(src_dir + '/')
             src_x = os.path.join(src_dir, x)
@@ -169,10 +178,12 @@ def install_qemu_firmware():
     log.info('Installing UEFI firmware in work environment')
 
     os.makedirs(firm_dir)
-    for arch, bin in OVMF_FIRMWARE.items():
-        v = alpine.apk_version('community', arch, 'ovmf')
-        ovmf_url = f"{alpine.repo_url('community', arch)}/ovmf-{v}.apk"
-        data = urlopen(ovmf_url).read()
+    for arch, a_cfg in UEFI_FIRMWARE.items():
+        apk = a_cfg['apk']
+        bin = a_cfg['bin']
+        v = alpine.apk_version('community', arch, apk)
+        apk_url = f"{alpine.repo_url('community', arch)}/{apk}-{v}.apk"
+        data = urlopen(apk_url).read()
 
         # Python tarfile library can't extract from APKs
         tar_cmd = ['tar', '-zxf', '-', '-C', firm_dir, bin]
@@ -241,6 +252,8 @@ console.setFormatter(logfmt)
 log.addHandler(console)
 log.debug(args)
 
+# TODO: rollback requires --revise
+
 # set up credential provider, if we're going to use it
 if args.use_broker:
     clouds.set_credential_provider(debug=args.debug)
@@ -274,7 +287,7 @@ if not image_configs.refresh_state(
     log.info('No pending actions to take at this time.')
     sys.exit(0)
 
-if args.step == 'state':
+if args.step == 'state' or args.step == 'rollback':
     sys.exit(0)
 
 # install firmware if missing
diff --git a/clouds/aws.py b/clouds/aws.py
index 436caa7..e98239c 100644
--- a/clouds/aws.py
+++ b/clouds/aws.py
@@ -370,10 +370,13 @@ class AWSCloudAdapter(CloudAdapterInterface):
                         # set up AMI deprecation
                         ec2c = image.meta.client
                         log.info('%s: Setting EOL deprecation time on %s', r, image.id)
-                        ec2c.enable_image_deprecation(
-                            ImageId=image.id,
-                            DeprecateAt=f"{tags.end_of_life}T23:59:59Z"
-                        )
+                        try:
+                            ec2c.enable_image_deprecation(
+                                ImageId=image.id,
+                                DeprecateAt=f"{tags.end_of_life}T23:59:59Z"
+                            )
+                        except Exception:
+                            log.warning('Unable to set EOL Deprecation on %s image:', r, exc_info=True)
 
                         artifacts[r] = image.id
 
diff --git a/configs/alpine.conf b/configs/alpine.conf
index 6b44962..37cf0bd 100644
--- a/configs/alpine.conf
+++ b/configs/alpine.conf
@@ -46,10 +46,10 @@ Default {
 # profile build matrix
 Dimensions {
   version {
+    "3.16"  { include required("version/3.16.conf") }
     "3.15"  { include required("version/3.15.conf") }
     "3.14"  { include required("version/3.14.conf") }
     "3.13"  { include required("version/3.13.conf") }
-    "3.12"  { include required("version/3.12.conf") }
     edge    { include required("version/edge.conf") }
   }
   arch {
diff --git a/configs/arch/aarch64.conf b/configs/arch/aarch64.conf
index 41f1161..dc4cfc3 100644
--- a/configs/arch/aarch64.conf
+++ b/configs/arch/aarch64.conf
@@ -1,5 +1,6 @@
 # vim: ts=2 et:
 name = [aarch64]
+arch_name = aarch64
 
 # aarch64 is UEFI only
 EXCLUDE = [bios]
diff --git a/configs/arch/x86_64.conf b/configs/arch/x86_64.conf
index af68640..d90ba09 100644
--- a/configs/arch/x86_64.conf
+++ b/configs/arch/x86_64.conf
@@ -1,5 +1,6 @@
 # vim: ts=2 et:
 name = [x86_64]
+arch_name = x86_64
 
 # TODO: until we have a image metadata service, let's avoid UEFI
 EXCLUDE = [uefi]
diff --git a/configs/bootstrap/cloudinit.conf b/configs/bootstrap/cloudinit.conf
index bd35331..19dd869 100644
--- a/configs/bootstrap/cloudinit.conf
+++ b/configs/bootstrap/cloudinit.conf
@@ -1,5 +1,7 @@
 # vim: ts=2 et:
-name = [cloudinit]
+name            = [cloudinit]
+bootstrap_name  = cloud-init
+bootstrap_url   = "https://cloud-init.io/"
 
 # start cloudinit images with 3.15
 EXCLUDE = ["3.12", "3.13", "3.14"]
diff --git a/configs/bootstrap/tiny.conf b/configs/bootstrap/tiny.conf
index 351ccf8..1a50056 100644
--- a/configs/bootstrap/tiny.conf
+++ b/configs/bootstrap/tiny.conf
@@ -1,5 +1,7 @@
 # vim: ts=2 et:
-name = [tiny]
+name            = [tiny]
+bootstrap_name  = Tiny Cloud
+bootstrap_url   = "https://gitlab.alpinelinux.org/alpine/cloud/tiny-cloud"
 
 services {
   sysinit.tiny-cloud-early = true
diff --git a/configs/cloud/aws.conf b/configs/cloud/aws.conf
index f7e6329..fd23f4e 100644
--- a/configs/cloud/aws.conf
+++ b/configs/cloud/aws.conf
@@ -1,6 +1,9 @@
 # vim: ts=2 et:
-builder = qemu
+cloud_name        = Amazon Web Services
+cloud_image_url   = "https://{region}.console.aws.amazon.com/ec2/home#Images:visibility=public-images;imageId={image_id}",
+cloud_launch_url  = "https://{region}.console.aws.amazon.com/ec2/home#launchAmi={image_id}"
 
+builder     = qemu
 ntp_server  = 169.254.169.123
 
 kernel_modules {
diff --git a/configs/firmware/bios.conf b/configs/firmware/bios.conf
index c1d9602..6bd8161 100644
--- a/configs/firmware/bios.conf
+++ b/configs/firmware/bios.conf
@@ -1,5 +1,6 @@
 # vim: ts=2 et:
-name = [bios]
+name              = [bios]
+firmware_name     = BIOS
 
 bootloader        = extlinux
 packages.syslinux = --no-scripts
diff --git a/configs/firmware/uefi.conf b/configs/firmware/uefi.conf
index fe23a45..12937c7 100644
--- a/configs/firmware/uefi.conf
+++ b/configs/firmware/uefi.conf
@@ -1,5 +1,6 @@
 # vim: ts=2 et:
-name = [uefi]
+name          = [uefi]
+firmware_name = UEFI
 
 bootloader = grub-efi
 packages {
diff --git a/configs/version/3.12.conf b/configs/version/3.12.conf
index 3fbb039..9254d91 100644
--- a/configs/version/3.12.conf
+++ b/configs/version/3.12.conf
@@ -1,3 +1,5 @@
 # vim: ts=2 et:
 
-include required("base/1.conf")
\ No newline at end of file
+include required("base/1.conf")
+
+# NOTE: EOL 2022-05-01
\ No newline at end of file
diff --git a/configs/version/3.16.conf b/configs/version/3.16.conf
new file mode 100644
index 0000000..29a6936
--- /dev/null
+++ b/configs/version/3.16.conf
@@ -0,0 +1,7 @@
+# vim: ts=2 et:
+
+include required("base/4.conf")
+
+motd {
+  sudo_removed = "NOTE: 'sudo' is no longer installed by default, please use 'doas' instead."
+}
diff --git a/image_configs.py b/image_configs.py
index 891ed3c..1abb964 100644
--- a/image_configs.py
+++ b/image_configs.py
@@ -206,6 +206,12 @@ class ImageConfig():
     def image_description(self):
         return self.description.format(**self.__dict__)
 
+    def image_url(self, region, image_id):
+        return self.cloud_image_url.format(region=region, image_id=image_id, **self.__dict__)
+
+    def launch_url(self, region, image_id):
+        return self.cloud_launch_url.format(region=region, image_id=image_id, **self.__dict__)
+
     @property
     def tags(self):
         # stuff that really ought to be there