2015-03-02 19:33:42 -06:00
package aws
import (
2015-03-17 08:00:36 -05:00
2015-03-02 19:33:42 -06:00
2015-03-06 09:49:56 -06:00
2015-03-17 08:00:36 -05:00
2015-03-02 19:33:42 -06:00
2015-03-17 08:00:36 -05:00
2015-03-06 09:49:56 -06:00
2015-03-02 19:33:42 -06:00
func resourceAwsNetworkInterface() *schema.Resource {
return &schema.Resource{
Create: resourceAwsNetworkInterfaceCreate,
Read: resourceAwsNetworkInterfaceRead,
Update: resourceAwsNetworkInterfaceUpdate,
Delete: resourceAwsNetworkInterfaceDelete,
2015-03-17 08:00:36 -05:00
Schema: map[string]*schema.Schema{
2015-03-02 19:33:42 -06:00
"subnet_id": &schema.Schema{
Type: schema.TypeString,
2015-03-17 08:00:36 -05:00
Required: true,
2015-03-02 19:33:42 -06:00
ForceNew: true,
"private_ips": &schema.Schema{
Type: schema.TypeSet,
Optional: true,
2015-03-17 08:00:36 -05:00
ForceNew: true,
2015-03-02 19:33:42 -06:00
Elem: &schema.Schema{Type: schema.TypeString},
Set: func(v interface{}) int {
return hashcode.String(v.(string))
"security_groups": &schema.Schema{
Type: schema.TypeSet,
Optional: true,
2015-03-17 08:00:36 -05:00
Computed: true,
2015-03-02 19:33:42 -06:00
Elem: &schema.Schema{Type: schema.TypeString},
Set: func(v interface{}) int {
return hashcode.String(v.(string))
2015-03-03 09:30:10 -06:00
"attachment": &schema.Schema{
Type: schema.TypeSet,
Optional: true,
Elem: &schema.Resource{
Schema: map[string]*schema.Schema{
"instance": &schema.Schema{
Type: schema.TypeString,
Required: true,
"device_index": &schema.Schema{
Type: schema.TypeInt,
Required: true,
"attachment_id": &schema.Schema{
2015-03-17 08:00:36 -05:00
Type: schema.TypeString,
Computed: true,
2015-03-03 09:30:10 -06:00
Set: resourceAwsEniAttachmentHash,
2015-03-17 08:00:36 -05:00
"tags": tagsSchema(),
2015-03-02 19:33:42 -06:00
func resourceAwsNetworkInterfaceCreate(d *schema.ResourceData, meta interface{}) error {
2015-03-17 08:00:36 -05:00
2015-03-17 04:48:08 -05:00
ec2conn := meta.(*AWSClient).ec2conn
2015-03-02 19:33:42 -06:00
2015-03-17 08:00:36 -05:00
request := &ec2.CreateNetworkInterfaceRequest{
Groups: expandStringList(d.Get("security_groups").(*schema.Set).List()),
SubnetID: aws.String(d.Get("subnet_id").(string)),
PrivateIPAddresses: expandPrivateIPAddesses(d.Get("private_ips").(*schema.Set).List()),
2015-03-02 19:33:42 -06:00
2015-03-17 08:00:36 -05:00
2015-03-02 19:33:42 -06:00
log.Printf("[DEBUG] Creating network interface")
resp, err := ec2conn.CreateNetworkInterface(request)
if err != nil {
return fmt.Errorf("Error creating ENI: %s", err)
2015-03-17 07:42:05 -05:00
2015-03-03 06:57:11 -06:00
log.Printf("[INFO] ENI ID: %s", d.Id())
2015-03-02 19:33:42 -06:00
2015-03-17 08:00:36 -05:00
return resourceAwsNetworkInterfaceUpdate(d, meta)
2015-03-02 19:33:42 -06:00
func resourceAwsNetworkInterfaceRead(d *schema.ResourceData, meta interface{}) error {
2015-03-17 04:48:08 -05:00
ec2conn := meta.(*AWSClient).ec2conn
2015-03-17 08:00:36 -05:00
describe_network_interfaces_request := &ec2.DescribeNetworkInterfacesRequest{
NetworkInterfaceIDs: []string{d.Id()},
2015-03-02 19:33:42 -06:00
describeResp, err := ec2conn.DescribeNetworkInterfaces(describe_network_interfaces_request)
if err != nil {
2015-03-03 06:57:11 -06:00
if ec2err, ok := err.(aws.APIError); ok && ec2err.Code == "InvalidNetworkInterfaceID.NotFound" {
// The ENI is gone now, so just remove it from the state
return nil
2015-03-17 08:00:36 -05:00
2015-03-03 06:57:11 -06:00
return fmt.Errorf("Error retrieving ENI: %s", err)
2015-03-02 19:33:42 -06:00
2015-03-03 06:57:11 -06:00
if len(describeResp.NetworkInterfaces) != 1 {
return fmt.Errorf("Unable to find ENI: %#v", describeResp.NetworkInterfaces)
2015-03-02 19:33:42 -06:00
2015-03-03 06:57:11 -06:00
eni := describeResp.NetworkInterfaces[0]
d.Set("subnet_id", eni.SubnetID)
2015-03-17 07:42:05 -05:00
d.Set("private_ips", flattenNetworkInterfacesPrivateIPAddesses(eni.PrivateIPAddresses))
d.Set("security_groups", flattenGroupIdentifiers(eni.Groups))
2015-03-03 09:30:10 -06:00
2015-03-19 11:07:01 -05:00
// Tags
d.Set("tags", tagsToMap(eni.TagSet))
2015-03-03 09:30:10 -06:00
if eni.Attachment != nil {
2015-03-19 11:07:01 -05:00
attachment := []map[string]interface{}{flattenAttachment(eni.Attachment)}
2015-03-17 08:00:36 -05:00
d.Set("attachment", attachment)
2015-03-03 09:30:10 -06:00
} else {
d.Set("attachment", nil)
2015-03-17 08:00:36 -05:00
2015-03-02 19:33:42 -06:00
return nil
2015-03-06 09:49:56 -06:00
func networkInterfaceAttachmentRefreshFunc(ec2conn *ec2.EC2, id string) resource.StateRefreshFunc {
return func() (interface{}, string, error) {
2015-03-17 08:00:36 -05:00
describe_network_interfaces_request := &ec2.DescribeNetworkInterfacesRequest{
NetworkInterfaceIDs: []string{id},
2015-03-06 09:49:56 -06:00
describeResp, err := ec2conn.DescribeNetworkInterfaces(describe_network_interfaces_request)
2015-03-17 08:00:36 -05:00
if err != nil {
log.Printf("[ERROR] Could not find network interface %s. %s", id, err)
2015-03-06 09:49:56 -06:00
return nil, "", err
eni := describeResp.NetworkInterfaces[0]
2015-03-17 08:00:36 -05:00
hasAttachment := strconv.FormatBool(eni.Attachment != nil)
log.Printf("[DEBUG] ENI %s has attachment state %s", id, hasAttachment)
2015-03-06 09:49:56 -06:00
return eni, hasAttachment, nil
func resourceAwsNetworkInterfaceDetach(oa *schema.Set, meta interface{}, eniId string) error {
2015-03-06 03:29:25 -06:00
// if there was an old attachment, remove it
2015-03-17 08:00:36 -05:00
if oa != nil && len(oa.List()) > 0 {
2015-03-06 03:29:25 -06:00
old_attachment := oa.List()[0].(map[string]interface{})
detach_request := &ec2.DetachNetworkInterfaceRequest{
2015-03-17 08:00:36 -05:00
AttachmentID: aws.String(old_attachment["attachment_id"].(string)),
Force: aws.Boolean(true),
2015-03-06 03:29:25 -06:00
2015-03-17 04:48:08 -05:00
ec2conn := meta.(*AWSClient).ec2conn
2015-03-06 03:29:25 -06:00
detach_err := ec2conn.DetachNetworkInterface(detach_request)
if detach_err != nil {
return fmt.Errorf("Error detaching ENI: %s", detach_err)
2015-03-06 09:49:56 -06:00
log.Printf("[DEBUG] Waiting for ENI (%s) to become dettached", eniId)
stateConf := &resource.StateChangeConf{
Pending: []string{"true"},
Target: "false",
Refresh: networkInterfaceAttachmentRefreshFunc(ec2conn, eniId),
Timeout: 10 * time.Minute,
if _, err := stateConf.WaitForState(); err != nil {
2015-03-17 08:00:36 -05:00
return fmt.Errorf(
"Error waiting for ENI (%s) to become dettached: %s", eniId, err)
2015-03-06 03:29:25 -06:00
return nil
2015-03-02 19:33:42 -06:00
func resourceAwsNetworkInterfaceUpdate(d *schema.ResourceData, meta interface{}) error {
2015-03-19 11:07:01 -05:00
ec2conn := meta.(*AWSClient).ec2conn
2015-03-03 06:57:11 -06:00
2015-03-03 09:30:10 -06:00
if d.HasChange("attachment") {
2015-03-17 04:48:08 -05:00
ec2conn := meta.(*AWSClient).ec2conn
2015-03-17 08:00:36 -05:00
oa, na := d.GetChange("attachment")
2015-03-06 09:49:56 -06:00
detach_err := resourceAwsNetworkInterfaceDetach(oa.(*schema.Set), meta, d.Id())
2015-03-06 03:29:25 -06:00
if detach_err != nil {
return detach_err
2015-03-03 09:30:10 -06:00
// if there is a new attachment, attach it
2015-03-17 08:00:36 -05:00
if na != nil && len(na.(*schema.Set).List()) > 0 {
2015-03-03 09:30:10 -06:00
new_attachment := na.(*schema.Set).List()[0].(map[string]interface{})
attach_request := &ec2.AttachNetworkInterfaceRequest{
2015-03-17 08:00:36 -05:00
DeviceIndex: aws.Integer(new_attachment["device_index"].(int)),
InstanceID: aws.String(new_attachment["instance"].(string)),
NetworkInterfaceID: aws.String(d.Id()),
2015-03-03 09:30:10 -06:00
_, attach_err := ec2conn.AttachNetworkInterface(attach_request)
if attach_err != nil {
return fmt.Errorf("Error attaching ENI: %s", attach_err)
2015-03-03 06:57:11 -06:00
if d.HasChange("security_groups") {
request := &ec2.ModifyNetworkInterfaceAttributeRequest{
2015-03-17 08:00:36 -05:00
NetworkInterfaceID: aws.String(d.Id()),
Groups: expandStringList(d.Get("security_groups").(*schema.Set).List()),
2015-03-03 06:57:11 -06:00
err := ec2conn.ModifyNetworkInterfaceAttribute(request)
if err != nil {
return fmt.Errorf("Failure updating ENI: %s", err)
2015-03-19 11:07:01 -05:00
if err := setTags(ec2conn, d); err != nil {
return err
} else {
2015-03-03 06:57:11 -06:00
return resourceAwsNetworkInterfaceRead(d, meta)
2015-03-02 19:33:42 -06:00
func resourceAwsNetworkInterfaceDelete(d *schema.ResourceData, meta interface{}) error {
2015-03-17 04:48:08 -05:00
ec2conn := meta.(*AWSClient).ec2conn
2015-03-03 06:57:11 -06:00
log.Printf("[INFO] Deleting ENI: %s", d.Id())
2015-03-06 09:49:56 -06:00
detach_err := resourceAwsNetworkInterfaceDetach(d.Get("attachment").(*schema.Set), meta, d.Id())
2015-03-06 03:29:25 -06:00
if detach_err != nil {
return detach_err
2015-03-03 06:57:11 -06:00
deleteEniOpts := ec2.DeleteNetworkInterfaceRequest{
NetworkInterfaceID: aws.String(d.Id()),
if err := ec2conn.DeleteNetworkInterface(&deleteEniOpts); err != nil {
return fmt.Errorf("Error deleting ENI: %s", err)
2015-03-02 19:33:42 -06:00
return nil
2015-03-03 09:30:10 -06:00
func resourceAwsEniAttachmentHash(v interface{}) int {
var buf bytes.Buffer
m := v.(map[string]interface{})
2015-03-06 03:29:25 -06:00
buf.WriteString(fmt.Sprintf("%s-", m["instance"].(string)))
buf.WriteString(fmt.Sprintf("%d-", m["device_index"].(int)))
2015-03-03 09:30:10 -06:00
return hashcode.String(buf.String())