feat: support package nodes in the enclave builder ui #2250

Dartoxian · 2024-03-04T13:05:02Z

Description:

This PR adds package nodes to the enclave builder UI. It's based on the backend work added by @tedim52 in #2177.

Demo

This demo has two paths - the first one shows how a package can be added to the enclave builder, and used by a service defined in the builder as a dependency. The second one shows how two packages can be combined in the same enclave - allowing connectivity between them at runtime.

packagenodes-2.mp4

Is this change user facing?

YES

References (if applicable):

Discussion on slack.

## Description: This change implements the generation of a yaml that represents the effect of a sequence of instructions on an enclave. The major changes are as follows: - Adds gRPC endpoints `GetStarlarkPackge/ScriptPlanYaml` to APIC and Enclave Manager for returning this yaml - Implements `PlanYaml` object and yaml generation logic in `startosis_engine` - Adds `UpdatePlan(plan *PlanYaml)` method to `KurtosisInstruction` interface so each instruction implements logic for updating the plan yaml - Most of the knowledge needed to generate the yaml comes from the interpretation phase and is simply passed into yaml generation logic Tests are in `startosis_interpreter_plan_yaml_tests.go` and demonstrate how the `InstructionsPlan` generates the yaml via the `PlanYaml` object. eg. starlark script turned plan yaml: ``` def run(plan, hi_files_artifact): service = plan.add_service( name="db", config=ServiceConfig( image="postgres:latest", env_vars={ "POSTGRES_DB": "kurtosis", "POSTGRES_USER": "kurtosis", "POSTGRES_PASSWORD": "kurtosis", }, files = { "/root": hi_files_artifact, } ) ) execResult = plan.exec( service_name="db", recipe=ExecRecipe( command=["echo", service.ip_address + " " + service.hostname] ), acceptable_codes=[0], ) runShResult = plan.run_sh( run="echo " + execResult["code"] + " " + execResult["output"], ) plan.run_sh( run="echo " + runShResult.code + " " + runShResult.output, ) ``` plan yaml: ``` packageId: DEFAULT_PACKAGE_ID_FOR_SCRIPT services: - uuid: "1" name: db image: name: postgres:latest envVars: - key: POSTGRES_DB value: kurtosis - key: POSTGRES_PASSWORD value: kurtosis - key: POSTGRES_USER value: kurtosis files: - mountPath: /root filesArtifacts: - uuid: "2" name: hi-file filesArtifacts: - uuid: "2" name: hi-file tasks: - uuid: "3" taskType: exec command: - echo - '{{ kurtosis.1.ip_address }} {{ kurtosis.1.hostname }}' serviceName: db acceptableCodes: - 0 - uuid: "4" taskType: sh command: - echo {{ kurtosis.3.code }} {{ kurtosis.3.output }} image: badouralix/curl-jq - uuid: "5" taskType: sh command: - echo {{ kurtosis.4.code }} {{ kurtosis.4.output }} image: badouralix/curl-jq ``` ## Is this change user facing? NO ## References: The Enclave Manager uses this plan yaml to render packages in the Enclave Builder: #2250 --------- Co-authored-by: Ben Gazzard <[email protected]>

gitguardian · 2024-03-13T18:42:02Z

⚠️ GitGuardian has uncovered 10 secrets following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

🔎 Detected hardcoded secrets in your pull request

GitGuardian id	GitGuardian status	Secret	Commit	Filename
9583343	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/plan_yaml_generator_test.go	View secret
9583343	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/plan.yml	View secret
9583343	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/plan.yml	View secret
9583343	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/plan_yaml_generator_test.go	View secret
9583343	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/startosis_interpreter_plan_yaml_test.go	View secret
9583343	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/plan_yaml_generator_test.go	View secret
9966505	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/startosis_interpreter_plan_yaml_test.go	View secret
9966505	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/startosis_interpreter_plan_yaml_test.go	View secret
9966505	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/startosis_interpreter_plan_yaml_test.go	View secret
9966505	Triggered	Generic Password	`0d154ac`	core/server/api_container/server/startosis_engine/startosis_interpreter_plan_yaml_test.go	View secret

🛠 Guidelines to remediate hardcoded secrets

Understand the implications of revoking this secret by investigating where it is used in your code.
Replace and store your secrets safely. Learn here the best practices.
Revoke and rotate these secrets.
If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider

following these best practices for managing and storing secrets including API keys and other credentials
install secret detection on pre-commit to catch secret before it leaves your machine and ease remediation.

^{🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

Our GitHub checks need improvements? Share your feedbacks!}

## Description THIS PR IS A COPY OF THIS PR: #2250 The frontend PR was initially made off the backend PR branch. I merged the backend PR branch to main. Then merged the frontend PR into the backend PR branch. Now merging into main again. --------- Co-authored-by: Ben Gazzard <[email protected]>

## Description: This change implements the generation of a yaml that represents the effect of a sequence of instructions on an enclave. The major changes are as follows: - Adds gRPC endpoints `GetStarlarkPackge/ScriptPlanYaml` to APIC and Enclave Manager for returning this yaml - Implements `PlanYaml` object and yaml generation logic in `startosis_engine` - Adds `UpdatePlan(plan *PlanYaml)` method to `KurtosisInstruction` interface so each instruction implements logic for updating the plan yaml - Most of the knowledge needed to generate the yaml comes from the interpretation phase and is simply passed into yaml generation logic Tests are in `startosis_interpreter_plan_yaml_tests.go` and demonstrate how the `InstructionsPlan` generates the yaml via the `PlanYaml` object. eg. starlark script turned plan yaml: ``` def run(plan, hi_files_artifact): service = plan.add_service( name="db", config=ServiceConfig( image="postgres:latest", env_vars={ "POSTGRES_DB": "kurtosis", "POSTGRES_USER": "kurtosis", "POSTGRES_PASSWORD": "kurtosis", }, files = { "/root": hi_files_artifact, } ) ) execResult = plan.exec( service_name="db", recipe=ExecRecipe( command=["echo", service.ip_address + " " + service.hostname] ), acceptable_codes=[0], ) runShResult = plan.run_sh( run="echo " + execResult["code"] + " " + execResult["output"], ) plan.run_sh( run="echo " + runShResult.code + " " + runShResult.output, ) ``` plan yaml: ``` packageId: DEFAULT_PACKAGE_ID_FOR_SCRIPT services: - uuid: "1" name: db image: name: postgres:latest envVars: - key: POSTGRES_DB value: kurtosis - key: POSTGRES_PASSWORD value: kurtosis - key: POSTGRES_USER value: kurtosis files: - mountPath: /root filesArtifacts: - uuid: "2" name: hi-file filesArtifacts: - uuid: "2" name: hi-file tasks: - uuid: "3" taskType: exec command: - echo - '{{ kurtosis.1.ip_address }} {{ kurtosis.1.hostname }}' serviceName: db acceptableCodes: - 0 - uuid: "4" taskType: sh command: - echo {{ kurtosis.3.code }} {{ kurtosis.3.output }} image: badouralix/curl-jq - uuid: "5" taskType: sh command: - echo {{ kurtosis.4.code }} {{ kurtosis.4.output }} image: badouralix/curl-jq ``` ## Is this change user facing? NO ## References: The Enclave Manager uses this plan yaml to render packages in the Enclave Builder: #2250 --------- Co-authored-by: Ben Gazzard <[email protected]>

## Description THIS PR IS A COPY OF THIS PR: #2250 The frontend PR was initially made off the backend PR branch. I merged the backend PR branch to main. Then merged the frontend PR into the backend PR branch. Now merging into main again. --------- Co-authored-by: Ben Gazzard <[email protected]>

## Description: This change implements the generation of a yaml that represents the effect of a sequence of instructions on an enclave. The major changes are as follows: - Adds gRPC endpoints `GetStarlarkPackge/ScriptPlanYaml` to APIC and Enclave Manager for returning this yaml - Implements `PlanYaml` object and yaml generation logic in `startosis_engine` - Adds `UpdatePlan(plan *PlanYaml)` method to `KurtosisInstruction` interface so each instruction implements logic for updating the plan yaml - Most of the knowledge needed to generate the yaml comes from the interpretation phase and is simply passed into yaml generation logic Tests are in `startosis_interpreter_plan_yaml_tests.go` and demonstrate how the `InstructionsPlan` generates the yaml via the `PlanYaml` object. eg. starlark script turned plan yaml: ``` def run(plan, hi_files_artifact): service = plan.add_service( name="db", config=ServiceConfig( image="postgres:latest", env_vars={ "POSTGRES_DB": "kurtosis", "POSTGRES_USER": "kurtosis", "POSTGRES_PASSWORD": "kurtosis", }, files = { "/root": hi_files_artifact, } ) ) execResult = plan.exec( service_name="db", recipe=ExecRecipe( command=["echo", service.ip_address + " " + service.hostname] ), acceptable_codes=[0], ) runShResult = plan.run_sh( run="echo " + execResult["code"] + " " + execResult["output"], ) plan.run_sh( run="echo " + runShResult.code + " " + runShResult.output, ) ``` plan yaml: ``` packageId: DEFAULT_PACKAGE_ID_FOR_SCRIPT services: - uuid: "1" name: db image: name: postgres:latest envVars: - key: POSTGRES_DB value: kurtosis - key: POSTGRES_PASSWORD value: kurtosis - key: POSTGRES_USER value: kurtosis files: - mountPath: /root filesArtifacts: - uuid: "2" name: hi-file filesArtifacts: - uuid: "2" name: hi-file tasks: - uuid: "3" taskType: exec command: - echo - '{{ kurtosis.1.ip_address }} {{ kurtosis.1.hostname }}' serviceName: db acceptableCodes: - 0 - uuid: "4" taskType: sh command: - echo {{ kurtosis.3.code }} {{ kurtosis.3.output }} image: badouralix/curl-jq - uuid: "5" taskType: sh command: - echo {{ kurtosis.4.code }} {{ kurtosis.4.output }} image: badouralix/curl-jq ``` ## Is this change user facing? NO ## References: The Enclave Manager uses this plan yaml to render packages in the Enclave Builder: #2250 --------- Co-authored-by: Ben Gazzard <[email protected]>

## Description THIS PR IS A COPY OF THIS PR: #2250 The frontend PR was initially made off the backend PR branch. I merged the backend PR branch to main. Then merged the frontend PR into the backend PR branch. Now merging into main again. --------- Co-authored-by: Ben Gazzard <[email protected]>

Dartoxian added 18 commits March 4, 2024 11:53

Pull through package plan endpoint

2897bd7

Refactor nodes

ccf7c8d

Refactor package select body so it can be shared

4ea2d1b

WIP package nodes

11ec8a6

Rename name variables

efcf20c

Disable contents of package nodes

cc74009

Update subnode addition so that dom ordering is correct

77447f5

Support packages in starlark

85b07e8

Refactor out exec node

0a4f6b0

Support exec nodes

605eb3a

WIP package node

e904de8

Implement files references

97f833e

Convert future references to emui references

06cdedd

Refactor and implement store properly

2887b41

Remove bad margin

82647e6

Use get_service when referring to service variables

92617ff

Remove debug logging

61cea95

Port app protocols are optional

03a2857

adschwartz approved these changes Mar 4, 2024

View reviewed changes

Only show forms when a node is selected

43a2af7

Dartoxian force-pushed the bgazzard/package-node branch from e8878d8 to 43a2af7 Compare March 4, 2024 14:49

Dartoxian added 2 commits March 4, 2024 15:29

Use locator for the package node

fbe957e

Prettier

77cd134

tedim52 mentioned this pull request Mar 11, 2024

feat: generate plan yamls #2177

Merged

Base automatically changed from tedi/dryrun to main March 13, 2024 18:41

tedim52 changed the base branch from main to tedi/dryrun March 13, 2024 19:07

tedim52 force-pushed the bgazzard/package-node branch from 3879f14 to 77cd134 Compare March 13, 2024 19:07

Merge branch 'tedi/dryrun' into bgazzard/package-node

0d154ac

tedim52 merged commit a34742d into tedi/dryrun Mar 13, 2024
33 of 41 checks passed

tedim52 deleted the bgazzard/package-node branch March 13, 2024 19:09

tedim52 mentioned this pull request Mar 13, 2024

feat: support package nodes in enclave builder ui #2283

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: support package nodes in the enclave builder ui #2250

feat: support package nodes in the enclave builder ui #2250

Dartoxian commented Mar 4, 2024

gitguardian bot commented Mar 13, 2024 •

edited

Loading

feat: support package nodes in the enclave builder ui #2250

feat: support package nodes in the enclave builder ui #2250

Conversation

Dartoxian commented Mar 4, 2024

Description:

Demo

Is this change user facing?

References (if applicable):

gitguardian bot commented Mar 13, 2024 • edited Loading

⚠️ GitGuardian has uncovered 10 secrets following the scan of your pull request.

gitguardian bot commented Mar 13, 2024 •

edited

Loading