Skip to content

Commit

Permalink
add aws-vpc-cni-init package (#28281)
Browse files Browse the repository at this point in the history
<!---
Provide a short summary in the Title above. Examples of good PR titles:
* "ruby-3.1: new package"
* "haproxy: fix CVE-2014-123456"
-->

<!--
Please include references to any related issues or delete this section
otherwise.
 -->

Fixes:

Related: https://github.com/chainguard-dev/image-requests/issues/4138

### Pre-review Checklist

<!--
This checklist is mostly useful as a reminder of small things that can
easily be
forgotten – it is meant as a helpful tool rather than hoops to jump
through.

At the moment of this PR you have the most information on what all the
change
will affect, so please take the time to jot it down.

Put an `x` in all the items that apply, make notes next to any that
haven't been
addressed, and remove any items that are not relevant to this PR.

-->

#### For new package PRs only
<!-- remove if unrelated -->
- [ ] This PR is marked as fixing a pre-existing package request bug
- [ ] Alternatively, the PR is marked as related to a pre-existing
package request bug, such as a dependency
- [x] REQUIRED - The package is available under an OSI-approved or
FSF-approved license
- [x] REQUIRED - The version of the package is still receiving security
updates
- [ ] This PR links to the upstream project's support policy (e.g.
`endoflife.date`)

#### For new version streams
<!-- remove if unrelated -->
- [ ] The upstream project actually supports multiple concurrent
versions.
- [ ] Any subpackages include the version string in their package name
(e.g. `name: ${{package.name}}-compat`)
- [ ] The package (and subpackages) `provides:` logical unversioned
forms of the package (e.g. `nodejs`, `nodejs-lts`)
- [ ] If non-streamed package names no longer built, open PR to withdraw
them (see [WITHDRAWING
PACKAGES](https://github.com/wolfi-dev/os/blob/main/WITHDRAWING_PACKAGES.md))

#### For package updates (renames) in the base images
<!-- remove if unrelated -->
When updating packages part of base images (i.e.
cgr.dev/chainguard/wolfi-base or ghcr.io/wolfi-dev/sdk)
- [ ] REQUIRED cgr.dev/chainguard/wolfi-base and ghcr.io/wolfi-dev/sdk
images successfully build
- [ ] REQUIRED cgr.dev/chainguard/wolfi-base and ghcr.io/wolfi-dev/sdk
contain no obsolete (no longer built) packages
- [ ] Upon launch, does `apk upgrade --latest` successfully upgrades
packages or performs no actions

#### For security-related PRs
<!-- remove if unrelated -->
- [ ] The security fix is recorded in the
[advisories](https://github.com/wolfi-dev/advisories) repo

#### For version bump PRs
<!-- remove if unrelated -->
- [ ] The `epoch` field is reset to 0

#### For PRs that add patches
<!-- remove if unrelated -->
- [ ] Patch source is documented

---------

Signed-off-by: Sam Singh Anantha <[email protected]>
  • Loading branch information
sanghanan authored Sep 14, 2024
1 parent 10aa0c3 commit 5ec3412
Showing 1 changed file with 25 additions and 1 deletion.
26 changes: 25 additions & 1 deletion aws-k8s-cni.yaml
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
package:
name: aws-k8s-cni
version: 1.18.3
epoch: 0
epoch: 1
description: Networking plugin repository for pod networking in Kubernetes using Elastic Network Interfaces on AWS
copyright:
- license: Apache-2.0
Expand All @@ -11,6 +11,7 @@ environment:
packages:
- busybox
- ca-certificates-bundle
- curl
- go

pipeline:
Expand All @@ -32,6 +33,7 @@ data:
aws-vpc-cni: aws-vpc-cni
egress-cni: egress-cni-plugin
grpc-health-probe: grpc-health-probe
aws-vpc-cni-init: aws-vpc-cni-init

subpackages:
- range: binaries
Expand All @@ -55,6 +57,18 @@ subpackages:
ln -sf /usr/bin/egress-cni ${{targets.subpkgdir}}/app/egress-cni
ln -sf /usr/bin/grpc-health-probe ${{targets.subpkgdir}}/app/grpc-health-probe
- name: "${{package.name}}-init-compat"
description: "Compatibility package to place binaries in the location expected by upstream helm charts"
dependencies:
runtime:
- cni-plugins-aws-k8s-compat
pipeline:
- runs: |
mkdir -p ${{targets.subpkgdir}}/init
ln -sf /usr/bin/aws-vpc-cni-init ${{targets.subpkgdir}}/init/aws-vpc-cni-init
# Download the debug script from awslabs/amazon-eks-ami
curl -L https://raw.githubusercontent.com/awslabs/amazon-eks-ami/master/log-collector-script/linux/eks-log-collector.sh -o ${{targets.subpkgdir}}/init/aws-cni-support.sh
update:
enabled: true
github:
Expand All @@ -72,10 +86,20 @@ test:
- ${{package.name}}-aws-vpc-cni
- ${{package.name}}-egress-cni
- ${{package.name}}-grpc-health-probe
- ${{package.name}}-aws-vpc-cni-init
- ${{package.name}}-init-compat
pipeline:
- name: Verify installation
runs: |
aws-cni 2>&1 | grep -q 'CNI protocol versions supported: 0.1.0, 0.2.0, 0.3.0, 0.3.1, 0.4.0, 1.0.0, 1.1.0'
aws-vpc-cni 2>&1 | grep -q 'Failed to install CNI binaries" error="Failed to install /host/opt/cni/bin/aws-cni: failed to copy file: stat aws-cni: no such file or directory'
egress-cni 2>&1 | grep -q 'CNI protocol versions supported: 0.1.0, 0.2.0, 0.3.0, 0.3.1, 0.4.0, 1.0.0, 1.1.0'
grpc-health-probe 2>&1 | grep -q '"caller":"github.com/aws/amazon-vpc-cni-k8s/cmd/grpc-health-probe/main.go:59","msg":"error: --addr not specified"'
- name: Verify aws-vpc-cni-init
runs: |
cd /init
HOST_CNI_BIN_PATH="/tmp" aws-vpc-cni-init 2>&1 | grep -q 'Copied all CNI plugin binaries to /tmp'
if [ -z "$(ls -A /tmp)" ]; then
echo "/tmp should have been populated with CNI plugin binaries."
exit 1
fi

0 comments on commit 5ec3412

Please sign in to comment.