Support IPv6 endpoints in IMDS (#3853)

Author: trivikr

.changes/next-release/feature-IMDS-81dc9dd7.json

@@ -0,0 +1,5 @@
+{
+  "type": "feature",
+  "category": "IMDS",
+  "description": "Support IPv6 endpoints in IMDS"
+}

lib/metadata_service.js

@@ -1,6 +1,8 @@
 var AWS = require('./core');
 require('./http');
 var inherit = AWS.util.inherit;
+var getMetadataServiceEndpoint = require('./metadata_service/get_metadata_service_endpoint');
+var URL = require('url').URL;
 
 /**
  * Represents a metadata service available on EC2 instances. Using the
@@ -20,9 +22,9 @@ var inherit = AWS.util.inherit;
  */
 AWS.MetadataService = inherit({
   /**
-   * @return [String] the hostname of the instance metadata service
+   * @return [String] the endpoint of the instance metadata service
    */
-  host: '169.254.169.254',
+  endpoint: getMetadataServiceEndpoint(),
 
   /**
    * @!ignore
@@ -58,6 +60,10 @@ AWS.MetadataService = inherit({
    *   retry delay on retryable errors. See AWS.Config for details.
    */
   constructor: function MetadataService(options) {
+    if (options && options.host) {
+      options.endpoint = 'http://' + options.host;
+      delete options.host;
+    }
     AWS.util.update(this, options);
   },
 
@@ -90,7 +96,11 @@ AWS.MetadataService = inherit({
     }
 
     path = path || '/';
-    var httpRequest = new AWS.HttpRequest('http://' + this.host + path);
+
+    // Verify that host is a valid URL
+    if (URL) { new URL(this.endpoint); }
+
+    var httpRequest = new AWS.HttpRequest(this.endpoint + path);
     httpRequest.method = options.method || 'GET';
     if (options.headers) {
       httpRequest.headers = options.headers;

lib/metadata_service/endpoint.js

@@ -0,0 +1,6 @@
+var Endpoint = {
+  IPv4: 'http://169.254.169.254',
+  IPv6: 'http://[fd00:ec2::254]',
+};
+
+module.exports = Endpoint;

lib/metadata_service/endpoint_config_options.js

@@ -0,0 +1,14 @@
+var ENV_ENDPOINT_NAME = 'AWS_EC2_METADATA_SERVICE_ENDPOINT';
+var CONFIG_ENDPOINT_NAME = 'ec2_metadata_service_endpoint';
+
+var ENDPOINT_CONFIG_OPTIONS = {
+  environmentVariableSelector: function(env) { return env[ENV_ENDPOINT_NAME]; },
+  configFileSelector: function(profile) { return profile[CONFIG_ENDPOINT_NAME]; },
+  default: undefined,
+};
+
+module.exports = {
+  ENV_ENDPOINT_NAME: ENV_ENDPOINT_NAME,
+  CONFIG_ENDPOINT_NAME: CONFIG_ENDPOINT_NAME,
+  ENDPOINT_CONFIG_OPTIONS: ENDPOINT_CONFIG_OPTIONS
+};

lib/metadata_service/endpoint_mode.js

@@ -0,0 +1,6 @@
+var EndpointMode = {
+  IPv4: 'IPv4',
+  IPv6: 'IPv6',
+};
+
+module.exports = EndpointMode;

lib/metadata_service/endpoint_mode_config_options.js

@@ -0,0 +1,16 @@
+var EndpointMode = require('./endpoint_mode');
+
+var ENV_ENDPOINT_MODE_NAME = 'AWS_EC2_METADATA_SERVICE_ENDPOINT_MODE';
+var CONFIG_ENDPOINT_MODE_NAME = 'ec2_metadata_service_endpoint_mode';
+
+var ENDPOINT_MODE_CONFIG_OPTIONS = {
+  environmentVariableSelector: function(env) { return env[ENV_ENDPOINT_MODE_NAME]; },
+  configFileSelector: function(profile) { return profile[CONFIG_ENDPOINT_MODE_NAME]; },
+  default: EndpointMode.IPv4,
+};
+
+module.exports = {
+  ENV_ENDPOINT_MODE_NAME: ENV_ENDPOINT_MODE_NAME,
+  CONFIG_ENDPOINT_MODE_NAME: CONFIG_ENDPOINT_MODE_NAME,
+  ENDPOINT_MODE_CONFIG_OPTIONS: ENDPOINT_MODE_CONFIG_OPTIONS
+};

lib/metadata_service/get_metadata_service_endpoint.js

@@ -0,0 +1,24 @@
+var AWS = require('../core');
+
+var Endpoint = require('./endpoint');
+var EndpointMode = require('./endpoint_mode');
+
+var ENDPOINT_CONFIG_OPTIONS = require('./endpoint_config_options').ENDPOINT_CONFIG_OPTIONS;
+var ENDPOINT_MODE_CONFIG_OPTIONS = require('./endpoint_mode_config_options').ENDPOINT_MODE_CONFIG_OPTIONS;
+
+var getMetadataServiceEndpoint = function() {
+  var endpoint = AWS.util.loadConfig(ENDPOINT_CONFIG_OPTIONS);
+  if (endpoint !== undefined) return endpoint;
+
+  var endpointMode = AWS.util.loadConfig(ENDPOINT_MODE_CONFIG_OPTIONS);
+  switch (endpointMode) {
+    case EndpointMode.IPv4:
+      return Endpoint.IPv4;
+    case EndpointMode.IPv6:
+      return Endpoint.IPv6;
+    default:
+      throw new Error('Unsupported endpoint mode: ' + endpointMode);
+  }
+};
+
+module.exports = getMetadataServiceEndpoint;

lib/node_loader.js

@@ -21,6 +21,33 @@ util.clientSideMonitoring = {
 util.iniLoader = require('./shared-ini').iniLoader;
 util.getSystemErrorName = require('util').getSystemErrorName;
 
+util.loadConfig = function(options) {
+  var envValue = options.environmentVariableSelector(process.env);
+  if (envValue !== undefined) {
+    return envValue;
+  }
+
+  var configFile = {};
+  try {
+    configFile = util.iniLoader ? util.iniLoader.loadFrom({
+      isConfig: true,
+      filename: process.env[util.sharedConfigFileEnv]
+    }) : {};
+  } catch (e) {}
+  var sharedFileConfig = configFile[
+    process.env.AWS_PROFILE || util.defaultProfile
+  ] || {};
+  var configValue = options.configFileSelector(sharedFileConfig);
+  if (configValue !== undefined) {
+    return configValue;
+  }
+
+  if (typeof options.default === 'function') {
+    return options.default();
+  }
+  return options.default;
+};
+
 var AWS;
 
 /**

test/credentials.spec.js

@@ -261,6 +261,20 @@ if (AWS.util.isNode()) {
           }));
         }
       });
+
+      it('should load credentials when host is not passed', function(done) {
+        tokenToReturn = 'TOKEN';
+        service = new AWS.MetadataService();
+        // Simulate endpoint is received from call to getMetadataServiceEndpoint
+        service.endpoint = 'http://127.0.0.1:' + port;
+        service.loadCredentials(function(err, data) {
+          expect(err).to.equal(null);
+          expect(data.Code).to.equal('Success');
+          expect(data.AccessKeyId).to.equal('KEY');
+          expect(data.SecretAccessKey).to.equal('SECRET');
+          done();
+        });
+      });
     });
 
     describe('request', function() {

test/metadata_service.spec.js

@@ -0,0 +1,48 @@
+var helpers = require('./../helpers');
+var options = require('../../lib/metadata_service/endpoint_config_options');
+
+var AWS = helpers.AWS;
+var ENDPOINT_CONFIG_OPTIONS = options.ENDPOINT_CONFIG_OPTIONS;
+var ENV_ENDPOINT_NAME = options.ENV_ENDPOINT_NAME;
+var CONFIG_ENDPOINT_NAME = options.CONFIG_ENDPOINT_NAME;
+
+if (AWS.util.isNode()) {
+  describe('endpointConfigOptions', function() {
+    describe('environmentVariableSelector', function() {
+      var environmentVariableSelector = ENDPOINT_CONFIG_OPTIONS.environmentVariableSelector;
+      [undefined, 'mockEndpoint'].forEach(function(mockEndpoint) {
+        it(
+          'when env[' + ENV_ENDPOINT_NAME + ']: ' + mockEndpoint,
+          function() {
+            expect(
+              environmentVariableSelector({
+                [ENV_ENDPOINT_NAME]: mockEndpoint,
+              })
+            ).to.equal(mockEndpoint);
+          }
+        );
+      });
+    });
+
+    describe('configFileSelector', function() {
+      var configFileSelector = ENDPOINT_CONFIG_OPTIONS.configFileSelector;
+      [undefined, 'mockEndpoint'].forEach(function(mockEndpoint) {
+        it(
+          'when env[' + CONFIG_ENDPOINT_NAME + ']: ' + mockEndpoint,
+          function() {
+            expect(
+              configFileSelector({
+                [CONFIG_ENDPOINT_NAME]: mockEndpoint,
+              })
+            ).to.equal(mockEndpoint);
+          }
+        );
+      });
+    });
+
+    it('default returns undefined', function() {
+      var defaultKey = ENDPOINT_CONFIG_OPTIONS.default;
+      expect(defaultKey).to.equal(undefined);
+    });
+  });
+};

test/metadata_service/endpoint_config_options.spec.js

@@ -0,0 +1,49 @@
+var helpers = require('./../helpers');
+var options = require('../../lib/metadata_service/endpoint_mode_config_options');
+var EndpointMode = require('../../lib/metadata_service/endpoint_mode');
+
+var AWS = helpers.AWS;
+var ENDPOINT_MODE_CONFIG_OPTIONS = options.ENDPOINT_MODE_CONFIG_OPTIONS;
+var ENV_ENDPOINT_MODE_NAME = options.ENV_ENDPOINT_MODE_NAME;
+var CONFIG_ENDPOINT_MODE_NAME = options.CONFIG_ENDPOINT_MODE_NAME;
+
+if (AWS.util.isNode()) {
+  describe('endpointModeConfigOptions', function() {
+    describe('environmentVariableSelector', function() {
+      var environmentVariableSelector = ENDPOINT_MODE_CONFIG_OPTIONS.environmentVariableSelector;
+      [undefined, 'mockEndpointMode'].forEach(function(mockEndpointMode) {
+        it(
+          'when env[' + ENV_ENDPOINT_MODE_NAME + ']: ' + mockEndpointMode,
+          function() {
+            expect(
+              environmentVariableSelector({
+                [ENV_ENDPOINT_MODE_NAME]: mockEndpointMode,
+              })
+            ).to.equal(mockEndpointMode);
+          }
+        );
+      });
+    });
+
+    describe('configFileSelector', function() {
+      var configFileSelector = ENDPOINT_MODE_CONFIG_OPTIONS.configFileSelector;
+      [undefined, 'mockEndpointMode'].forEach(function(mockEndpointMode) {
+        it(
+          'when env[' + CONFIG_ENDPOINT_MODE_NAME + ']: ' + mockEndpointMode,
+          function() {
+            expect(
+              configFileSelector({
+                [CONFIG_ENDPOINT_MODE_NAME]: mockEndpointMode,
+              })
+            ).to.equal(mockEndpointMode);
+          }
+        );
+      });
+    });
+
+    it('default returns ' + EndpointMode.IPv4, function() {
+      var defaultKey = ENDPOINT_MODE_CONFIG_OPTIONS.default;
+      expect(defaultKey).to.equal(EndpointMode.IPv4);
+    });
+  });
+};

test/metadata_service/endpoint_mode_config_options.spec.js

@@ -0,0 +1,52 @@
+var helpers = require('./../helpers');
+var getMetadataServiceEndpoint = require('../../lib/metadata_service/get_metadata_service_endpoint');
+
+var Endpoint = require('../../lib/metadata_service/endpoint');
+var EndpointMode = require('../../lib/metadata_service/endpoint_mode');
+var ENDPOINT_CONFIG_OPTIONS = require('../../lib/metadata_service/endpoint_config_options').ENDPOINT_CONFIG_OPTIONS;
+
+var AWS = helpers.AWS;
+
+if (AWS.util.isNode()) {
+  describe('getMetadataServiceEndpoint', function() {
+    describe('when endpoint is defined', function() {
+      it('returns endpoint', function() {
+        var mockEndpoint = 'http://127.0.0.1';
+        helpers.spyOn(AWS.util, 'loadConfig').andReturn(mockEndpoint);
+        expect(getMetadataServiceEndpoint()).to.equal(mockEndpoint);
+      });
+    });
+
+    describe('when endpoint is not defined', function() {
+      [
+        [Endpoint.IPv4, EndpointMode.IPv4],
+        [Endpoint.IPv6, EndpointMode.IPv6],
+      ].forEach(function([endpoint, endpointMode]) {
+        it('returns endpoint:'+ endpoint + ' for endpointMode:' + endpointMode, function() {
+          helpers.spyOn(AWS.util, 'loadConfig').andCallFake(function(options) {
+            if (options === ENDPOINT_CONFIG_OPTIONS) {
+              return undefined;
+            } else {
+              return endpointMode;
+            }
+          });
+          expect(getMetadataServiceEndpoint()).to.equal(endpoint);
+        });
+      });
+
+      it('throws error for invalid endpointMode:invalid', function() {
+        const invalidEndpointMode = 'invalid';
+        helpers.spyOn(AWS.util, 'loadConfig').andCallFake(function(options) {
+          if (options === ENDPOINT_CONFIG_OPTIONS) {
+            return undefined;
+          } else {
+            return invalidEndpointMode;
+          }
+        });
+        expect(function() {
+          getMetadataServiceEndpoint();
+        }).to['throw']('Unsupported endpoint mode: ' + invalidEndpointMode);
+      });
+    });
+  });
+}