Modified OS detection logic when updating http proxy settings. #3587
Conversation
k8s-ci-robot
added
cncf-cla: yes
|
/assign @justinsb |
|
There was a comment mentioning moving all this logic to nodeup. I don't think this should be the case, as you may require the proxy settings to be set to pull down the nodeup binary. So I've only moved the docker config part into nodeup which cleans up the bootstrap logic a little. |
pkg/model/bootstrapscript.go
Outdated
| buffer.WriteString("echo DefaultEnvironment=\\\"http_proxy=${http_proxy}\\\" \\\"https_proxy=${http_proxy}\\\"") | ||
| buffer.WriteString(" \\\"NO_PROXY=${no_proxy}\\\" \\\"no_proxy=${no_proxy}\\\"") | ||
| buffer.WriteString(" >> /etc/systemd/system.conf\n") | ||
| buffer.WriteString("echo \"export http_proxy=" + httpProxyURL + "\" >> /etc/environment\n") |
There was a problem hiding this comment.
perhaps using `` so you don't need to blackslash
There was a problem hiding this comment.
Yeah I did think initially about doing this, all the backslashes make it difficult to read. I'll fix up and test..
|
other than the one comment ... looks good |
KashifSaadat
force-pushed
the
proxy-updates
branch
from
89da146
to
4b876e5
Compare
|
Applied the suggested fix, no changes to the generated bootstrap config and seems to work. Cheers @gambol99 👍 |
KashifSaadat
force-pushed
the
proxy-updates
branch
3 times, most recently
from
d249c0a
to
0b356b7
Compare
|
/retest |
KashifSaadat
force-pushed
the
proxy-updates
branch
from
0b356b7
to
ce517f3
Compare
|
which OS's have you tested this on? |
|
Hi @chrislovecnm, I have tested this successfully with the following images:
|
|
Can we get RHEL or fedora tested :) We have RHEL customers using this feature. |
|
Sure, I've given this a go with the following images:
CentOS worked fine. Fedora failed, however this is for an unrelated reason. The above Fedora image falls into the following code block, however it is unsuccessfully detected and so nodeup fails: https://github.com/kubernetes/kops/blob/master/nodeup/pkg/distros/identify.go#L92 I can add support for this, but I think it makes sense to do as a separate PR. What do you think? |
|
Separate pr ;) |
|
You may not want to run atomic, just vanilla |
|
Ah ok, just tried with the following Fedora image and same issue:
I'll get another PR raised for Fedora support. |
KashifSaadat
force-pushed
the
proxy-updates
branch
from
ce517f3
to
c78790f
Compare
|
@chrislovecnm so it turns out the egressProxy functionality never worked successfully with RHEL (both pre and post-PR), because for some reason it didn't load the I've added a fix for this (source the environment file in the kops-configuration service) and tested successfully with the following image:
|
|
/test pull-kops-e2e-kubernetes-aws Not sure why that failed, the last update was an inclusion of |
|
/lgtm |
k8s-ci-robot
added
the
lgtm
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: chrislovecnm The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these OWNERS Files:
You can indicate your approval by writing |
k8s-github-robot
added
the
approved
|
/test all [submit-queue is verifying that this PR is safe to merge] |
|
Automatic merge from submit-queue. |
|
Thanks! :) |
Reduce duplication in configuring http proxy settings by writing it to the system-wide
/etc/environmentfile and sourcing this in accordingly for the different services (docker, package management).I have tested and this now correctly covers CoreOS by resolving the following bugs (I don't believe any issues were raised for these):
/etc/sysconfig/dockeras opposed to/etc/default/docker/etc/lsb-releasefile exists for CoreOS, so the bootstrap script was incorrectly attempting to write proxy settings into the apt proxy config fileThese changes should cover CoreOS, Debian, Ubuntu, RedHat distributions including CentOS and Fedora.
NOTE: A nodeup image will need to be built for these changes to work as expected, as now we rely on nodeup to update the proxy settings within the docker config (by sourcing in the env vars set within
/etc/environment.