Skip to content

Latest commit

 

History

History
 
 

userdata

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
userdata.yaml
userdata.yaml
 
 
workload.yaml
workload.yaml
 
 

README.md

Karpenter Blueprint: Launch Nodes with User Data

Purpose

When you need to bootstrap the data plane nodes to either overwrite certain Kubernetes settings, mount volumes or anything else you need to do when a node is launched. Within the AWSNodeTemplate there's a userData field you can use to control the user data that is applied to your worker nodes. This way, you can continue using the EKS optimized AMI with any additional configuration you need to run on top of the base AMI.

Requirements

  • A Kubernetes cluster with Karpenter installed. You can use the blueprint we've used to test this pattern at the cluster folder in the root of this repository.

Deploy

You need to create a new AWSNodeTemplate with the userData field, along with a Provisioner to use this new template.

If you're using the Terraform template provided in this repo, run the following commands to get the EKS cluster name and the IAM Role name for the Karpenter nodes:

export CLUSTER_NAME=$(terraform -chdir="../../cluster/terraform" output -raw cluster_name)
export KARPENTER_NODE_IAM_INSTANCE_PROFILE_NAME=$(terraform -chdir="../../cluster/terraform" output -raw node_instance_profile_name)

NOTE: If you're not using Terraform, you need to get those values manually. CLUSTER_NAME is the name of your EKS cluster (not the ARN), and KARPENTER_NODE_IAM_INSTANCE_PROFILE_NAME is the instance profile, which is a way to pass a single IAM role to the EC2 instance launched by the Karpenter provisioner. Typically, the instance profile name is the same as the IAM role, but to avoid errors, go to the IAM Console and get the instance profile name assigned to the role (not the ARN).

Now, make sure you're in this blueprint folder, then run the following command to create the new Provisioner and AWSNodeTemplate:

sed -i "s/<<CLUSTER_NAME>>/$CLUSTER_NAME/g" userdata.yaml
sed -i "s/<<KARPENTER_NODE_IAM_INSTANCE_PROFILE_NAME>>/$KARPENTER_NODE_IAM_INSTANCE_PROFILE_NAME/g" userdata.yaml
kubectl apply -f .

Results

The pods from the sample workload should be running:

> kubectl get pods
NAME                       READY   STATUS    RESTARTS   AGE
userdata-7fbcdd685-4429h   1/1     Running   0          45s
userdata-7fbcdd685-8dcn4   1/1     Running   0          45s
userdata-7fbcdd685-qg75z   1/1     Running   0          45s

You can confirm the Kubernetes settings have been added to the user data of the instance by running this command:

aws ec2 describe-instance-attribute --instance-id $(aws ec2 describe-instances --filters 'Name=tag:Name,Values=karpenter.sh/provisioner-name/userdata' --output text --query 'Reservations[*].Instances[*].InstanceId') --attribute userData --query 'UserData.Value' | sed 's/"//g' |  base64 --decode

You should get an output like this with the [settings.kubernetes] configured in the AWSNodeTemplate:

MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="//"

--//
Content-Type: text/x-shellscript; charset="us-ascii"

#!/bin/bash
echo $(jq '.containerLogMaxFiles=10|.containerLogMaxSize="100Mi"' /etc/kubernetes/kubelet/kubelet-config.json) > /etc/kubernetes/kubelet/kubelet-config.json

--//
Content-Type: text/x-shellscript; charset="us-ascii"
...

Cleanup

To remove all objects created, simply run the following commands:

kubectl delete -f .