readme.md

Building a Custom Hail AMI

This ReadMe contains expanded documentation surrounding the AMI custom build process referenced in the Deployment Guide.

Hail on EMR requires the use of a custom AMI with Hail, Spark, VEP, and reference genomes preconfigured. This build process is driven by Packer, and leverages AWS CodeBuild. Note that some of these software packages are optional, and the build process can be executed for different versions or combinations of these software packages.

AWS CodeBuild Projects are deployed via a CloudFormation template will that can be used to build specific combinations of Hail, Spark, and VEP. The local packer folder is zipped and pushed to an S3 bucket to be used as the build source.

The Hail master branch HEAD can be used as a build source by omitting the HAIL_VERSION variable from your CodeBuild Project in CloudFormation.

VEP installation can also be excluded by omitting the VEP_VERSION environment variable.

Public AMIs are published and referenced in the root of this repo. These AMIs are built using this workflow. If you wish to create you own custom AMIs, follow the process documented here.

Note: Creating these custom AMIs is a complicated process and requires working knowledge of AWS CodeBuild, Packer from Hashicorp, and shell scripting. Troubleshooting will require intimate knowledge of Hail, VEP, and their associated build processes (including knowledge of perl). Proceed with caution.

Table of Contents

• Building a Custom Hail AMI
  • Table of Contents
  • Directory Structure
    • Builds
    • CodeBuild
    • Scripts
  • Deployment Guide
    • Prerequisites
    • Deployment
  • Execute a GUI Build
  • Execute a CLI Build
    • Additional Prerequisites
    • Execution

Directory Structure

Below is a diagram of the directory structure, followed by a description of the contents of each directory.

.
├── builds
├── codebuild
├── docs
└── scripts

Builds

The builds directory contains variable definitions that are used as arguments to the primary build JSON, amazon-linux.json.

CodeBuild

The codebuild directory contains configuration items related to AWS CodeBuild, which executes the Packer build process to build the custom AMIs. The buildspec.yml file contains instructions for Packer installation and invocation via AWS CodeBuild.

Scripts

The scripts directory contains bash scripts supporting the build components (VEP, Hail, supporting python packages, etc.). These scripts may be referenced from amazon-linux.json. Scripts in this directory are linted with ShellCheck.

Deployment Guide

A CloudFormation template will deploy AWS CodeBuild Projects that can be used to build specific combinations of Hail, Spark, and VEP. The local packer folder is zipped and pushed to an S3 bucket to be used as the build source.

Prerequisites

• AWS CLI profile with access to copy files to the S3 bucket/path specified in the CloudFormation template

• Packer installed if executing a CLI build

• A zip of the packer directory pushed to S3 in your HAIL_BUCKET. CodeBuild will pull this zip file in for each build.

  From the hail/packer directory, zip the contents and move it to an S3 bucket/key that matches the parameters set in your CloudFormation.

  14:31 $ zip packer.zip -r ./
    adding: codebuild/ (stored 0%)
    adding: codebuild/buildspec.yml (deflated 38%)
    adding: readme.md (deflated 63%)
    adding: build-wrapper.sh (deflated 65%)
    adding: builds/ (stored 0%)
    adding: builds/emr-5.29.0.vars (deflated 40%)
    adding: docs/ (stored 0%)
    adding: docs/vep-install.md (deflated 76%)
    adding: docs/images/ (stored 0%)
    adding: docs/images/codebuild_environment_override.png (deflated 7%)
    adding: docs/images/codebuild_running.png (deflated 7%)
    adding: docs/images/codebuild_start.png (deflated 1%)
    adding: scripts/ (stored 0%)
    adding: scripts/cluster_manifest.sh (deflated 57%)
    adding: scripts/ami_cleanup.sh (deflated 37%)
    adding: scripts/samtools.sh (deflated 39%)
    adding: scripts/htslib.sh (deflated 42%)
    adding: scripts/hail_build.sh (deflated 56%)
    adding: scripts/vep_install.sh (deflated 66%)
    adding: scripts/R_install.R (deflated 32%)
    adding: amazon-linux.json (deflated 70%)
  14:35 $ aws s3 mv packer.zip s3://YOUR-BUCKET/ami/packer.zip
  move: ./packer.zip to s3://YOUR-BUCKET/ami/packer.zip

Deployment

To build a custom Hail AMI for use with EMR, follow these steps:

1. Deploy the S3 resources described in the Deployment Guide contained in the hail-s3.yml template

2. Deploy the AWS CodeBuild resources described in the Deployment Guide contained in the hail-ami.yml template

3. If you'll be using VEP it will be pulled in from the Registry of Open Data on AWS (RODA). There is no action required outside setting your VEP version during the CodeBuild operation.

4a. Follow the steps for to execute a GUI build

OR

4b. Follow the steps for to execute a CLI build

Execute a GUI Build

Before building, keep the following in mind:

• Builds including VEP can take a very long time (upwards of 1-2 hours in some cases)
• AMI names are unique. If building an updated AMI, deregister the previous

From the AWS CodeBuild dashboard, select Build projects then the desired build's radio button and click Start build.

On the next page open the Environment variable override section and enter values specific to your build.

The VEP_VERSION identifies what version of VEP the build will pull from the AWS Registry of Online Data (RODA) S3 bucket. The CORE_VAR_FILE environment variable should be updated if you've changed the path in your packer.zip. Values in green may be adjusted if desired. Their defaults are set via CloudFormation.

Once the build beings you can optionally tail logs to view progress. Closing this window will not terminate the build.

Execute a CLI Build

To execute a build using the CLI, follow these steps.

Additional Prerequisites

In addition to the standard prerequisites above, a CLI build also requires:

• AWS IAM profile configured in your shell with a region defined. This profile must have permission to launch instances and create AMIs. The majority of required IAM permissions are documented here. iam:PassRole is also required for the CodeBuild service role to associate the hail-packer EC2 instance role to the launched instance
• Shell AWS_PROFILE exported
• Packer installed - Version 1.4 or greater is recommended

Execution

Builds are executed via the build wrapper. This wrapper has two methods of invocation:

• AWS CodeBuild

  Environment variables are defined in the CodeBuild Project and the script is invoked with no arguments.

• Standard CLI

  Arguments are added via the CLI. Use ./build-wrapper --help for more details.

  usage: build-wrapper.sh [ARGUMENTS]
  
    --hail-bucket      [Your S3 Bucket Name] - REQUIRED
    --roda-bucket      [RODA S3 Bucket Name] - REQUIRED
    --subnet-id        [Subnet ID]           - REQUIRED
    --var-file         [Full File Path]      - REQUIRED
    --vpc-id           [VPC ID]              - REQUIRED
    --hail-version     [Number Version]      - OPTIONAL.  If omitted, master branch will be used.
    --htslib-version   [HTSLIB Version]      - OPTIONAL.  If omitted, develop branch will be used.
    --samtools-version [Samtools Version]    - OPTIONAL.  If omitted, master branch will be used.
    --vep-version      [Number Version]      - OPTIONAL.  If omitted, VEP will not be included.
  
    Example:
  
   build-wrapper.sh --hail-bucket your-quickstart-s3-bucket-name \
                    --roda-bucket hail-vep-pipeline \
                    --subnet-id subnet-99999999 \
                    --var-file builds/emr-5.29.0.vars \
                    --vpc-id vpc-99999999 \
                    --hail-version 0.2.34 \
                    --htslib-version 1.10.2 \
                    --samtools-version 1.10 \
                    --vep-version 99