Skip to content

CORS-2890: aws/machines: add CAPI sg, subnet filters#8006

Merged
openshift-merge-bot[bot] merged 2 commits intoopenshift:masterfrom
patrickdillon:capi-aws-manifest-revisions
Feb 14, 2024
Merged

CORS-2890: aws/machines: add CAPI sg, subnet filters#8006
openshift-merge-bot[bot] merged 2 commits intoopenshift:masterfrom
patrickdillon:capi-aws-manifest-revisions

Conversation

@patrickdillon
Copy link
Contributor

@patrickdillon patrickdillon commented Feb 12, 2024

Adds filters to the machine api machinesets so they will recognize CAPI-created security groups and subnets. Adds these filters in addition to the Terraform-specific filters, which should be subsequently removed.

@patrickdillon
aws/machines: add CAPI sg, subnet filters
771525b 
Adds filters to the machine api machinesets so they will recognize
CAPI-created security groups and subnets. Adds these filters in
addition to the Terraform-specific filters, which should be
subsequently removed.
@openshift-ci-robot openshift-ci-robot added the jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. label Feb 12, 2024
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Feb 12, 2024
edited by openshift-ci bot
Loading

@patrickdillon: This pull request references CORS-2890 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the epic to target the "4.16.0" version, but no target version was set.

Details

In response to this:

Adds filters to the machine api machinesets so they will recognize CAPI-created security groups and subnets. Adds these filters in addition to the Terraform-specific filters, which should be subsequently removed.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

r4f4
r4f4 reviewed Feb 13, 2024
View reviewed changes
pkg/asset/machines/aws/machines.go Outdated
if in.role == "master" {
cpFilter := machineapi.Filter{
Name: "tag:Name",
Values: []string{fmt.Sprintf("%s-controlplane", in.clusterID)}}
Copy link
Contributor

@r4f4 r4f4 Feb 13, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nit:

Suggested change
Values: []string{fmt.Sprintf("%s-controlplane", in.clusterID)}}
Values: []string{fmt.Sprintf("%s-controlplane", in.clusterID)},
}

@r4f4
Copy link
Contributor

r4f4 commented Feb 13, 2024

/lgtm

@openshift-ci openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label Feb 13, 2024
@openshift-ci openshift-ci bot removed the lgtm Indicates that a PR is ready to be merged. label Feb 13, 2024
@patrickdillon
Copy link
Contributor Author

patrickdillon commented Feb 13, 2024

/approve
👼
/label tide/merge-method-squash

r4f4
r4f4 reviewed Feb 13, 2024
View reviewed changes
Copy link
Contributor

@r4f4 r4f4 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@openshift-ci openshift-ci bot added the tide/merge-method-squash Denotes a PR that should be squashed by tide when it merges. label Feb 13, 2024
@openshift-ci
Copy link
Contributor

openshift-ci bot commented Feb 13, 2024

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: patrickdillon

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added lgtm Indicates that a PR is ready to be merged. approved Indicates a PR has been approved by an approver from all required OWNERS files. labels Feb 13, 2024
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Feb 13, 2024

/retest-required

Remaining retests: 0 against base HEAD 3e4707c and 2 for PR HEAD 015b312 in total

@openshift-ci
Copy link
Contributor

openshift-ci bot commented Feb 14, 2024

@patrickdillon: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/e2e-aws-ovn-shared-vpc-edge-zones 015b312 link false /test e2e-aws-ovn-shared-vpc-edge-zones
ci/prow/e2e-aws-custom-security-groups 015b312 link false /test e2e-aws-custom-security-groups
ci/prow/e2e-aws-ovn-edge-zones 015b312 link false /test e2e-aws-ovn-edge-zones
ci/prow/e2e-aws-ovn-single-node 015b312 link false /test e2e-aws-ovn-single-node
ci/prow/altinfra-e2e-aws-ovn-wavelengthzones 015b312 link false /test altinfra-e2e-aws-ovn-wavelengthzones
ci/prow/e2e-aws-ovn-fips 015b312 link false /test e2e-aws-ovn-fips
ci/prow/e2e-aws-ovn-imdsv2 015b312 link false /test e2e-aws-ovn-imdsv2
ci/prow/e2e-aws-ovn-shared-vpc 015b312 link false /test e2e-aws-ovn-shared-vpc
ci/prow/altinfra-e2e-aws-ovn-shared-vpc-edge-zones 015b312 link false /test altinfra-e2e-aws-ovn-shared-vpc-edge-zones

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@openshift-merge-bot openshift-merge-bot bot merged commit 91882d5 into openshift:master Feb 14, 2024
2uasimojo added a commit to 2uasimojo/hive that referenced this pull request Mar 29, 2024
@2uasimojo
Accommodate CAPI SecurityGroups from installer MachineSets
632f4be 
A previous commit revendored installer which picked up
openshift/installer#8006 which adds two default
security group filters. We need to take this into account when the
`extra-worker-security-group` annotation is in play, as we need to add
that additional SG name and its VPC filter to *all* the SecurityGroups
in the worker MachineSets. This needs to be done both for day 0 (install
manager) and day 2 (MachinePool controller).

Carried along with HIVE-2476
@2uasimojo 2uasimojo mentioned this pull request Mar 29, 2024
Merged
2uasimojo added a commit to 2uasimojo/hive that referenced this pull request Apr 1, 2024
@2uasimojo
Accommodate CAPI SecurityGroups from installer MachineSets
6de60ba 
A previous commit revendored installer which picked up
openshift/installer#8006 which adds two default
security group filters. We need to take this into account when the
`extra-worker-security-group` annotation is in play, as we need to add
that additional SG name and its VPC filter to *all* the SecurityGroups
in the worker MachineSets. This needs to be done both for day 0 (install
manager) and day 2 (MachinePool controller).

Carried along with HIVE-2476
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AnnaZivkovic AnnaZivkovic Awaiting requested review from AnnaZivkovic

@mtulio mtulio Awaiting requested review from mtulio

1 more reviewer

@r4f4 r4f4 r4f4 left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@r4f4 r4f4

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. lgtm Indicates that a PR is ready to be merged. tide/merge-method-squash Denotes a PR that should be squashed by tide when it merges.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@patrickdillon @openshift-ci-robot @r4f4