Adds imageprovider package (#47)

Author: prateekgogia

operator/pkg/awsprovider/launchtemplate/reconciler.go

@@ -19,9 +19,9 @@ import (
 	"encoding/base64"
 	"fmt"
 
-	"github.com/aws/aws-sdk-go/aws"
 	"github.com/aws/aws-sdk-go/service/ec2"
 	"github.com/aws/aws-sdk-go/service/ssm"
+	cpv1alpha1 "github.com/awslabs/kit/operator/pkg/apis/controlplane/v1alpha1"
 	"github.com/awslabs/kit/operator/pkg/apis/dataplane/v1alpha1"
 	"github.com/awslabs/kit/operator/pkg/awsprovider"
 	"github.com/awslabs/kit/operator/pkg/awsprovider/securitygroup"
@@ -33,6 +33,7 @@ import (
 	"github.com/awslabs/kit/operator/pkg/utils/secrets"
 	"go.uber.org/zap"
 	"k8s.io/apimachinery/pkg/types"
+	"knative.dev/pkg/ptr"
 )
 
 const (
@@ -57,7 +58,7 @@ func (c *Controller) Reconcile(ctx context.Context, dataplane *v1alpha1.DataPlan
 		return fmt.Errorf("getting launch template, %w", err)
 	}
 	if !existingTemplateMatchesDesired(templates, dataplane.Spec.ClusterName) { // TODO check if existing LT is same as desired LT
-		// if not present create launch template
+		// create launch template
 		if err := c.createLaunchTemplate(ctx, dataplane); err != nil {
 			return fmt.Errorf("creating launch template, %w", err)
 		}
@@ -68,8 +69,12 @@ func (c *Controller) Reconcile(ctx context.Context, dataplane *v1alpha1.DataPlan
 }
 
 func (c *Controller) Finalize(ctx context.Context, dataplane *v1alpha1.DataPlane) error {
+	return c.deleteLaunchTemplate(ctx, TemplateName(dataplane.Spec.ClusterName))
+}
+
+func (c *Controller) deleteLaunchTemplate(ctx context.Context, templateName string) error {
 	if _, err := c.ec2api.DeleteLaunchTemplateWithContext(ctx, &ec2.DeleteLaunchTemplateInput{
-		LaunchTemplateName: aws.String(TemplateName(dataplane.Spec.ClusterName)),
+		LaunchTemplateName: ptr.String(templateName),
 	}); err != nil {
 		if errors.IsLaunchTemplateDoNotExist(err) {
 			return nil
@@ -96,35 +101,32 @@ func (c *Controller) createLaunchTemplate(ctx context.Context, dataplane *v1alph
 		return fmt.Errorf("getting control plane ca certificate, %w", err)
 	}
 	_, clusterCA := secrets.Parse(caSecret)
-	paramOutput, err := c.ssm.GetParameterWithContext(ctx, &ssm.GetParameterInput{
-		Name: aws.String("/aws/service/eks/optimized-ami/1.20/amazon-linux-2/recommended/image_id"),
-	})
+	amiID, err := c.amiID(ctx, dataplane)
 	if err != nil {
-		return fmt.Errorf("getting ssm parameter, %w", err)
+		return fmt.Errorf("getting ami id for worker nodes, %w", err)
 	}
-	amiID := *paramOutput.Parameter.Value
 	input := &ec2.CreateLaunchTemplateInput{
 		LaunchTemplateData: &ec2.RequestLaunchTemplateData{
 			BlockDeviceMappings: []*ec2.LaunchTemplateBlockDeviceMappingRequest{{
-				DeviceName: aws.String("/dev/xvda"),
+				DeviceName: ptr.String("/dev/xvda"),
 				Ebs: &ec2.LaunchTemplateEbsBlockDeviceRequest{
-					DeleteOnTermination: aws.Bool(true),
-					Iops:                aws.Int64(3000),
-					VolumeSize:          aws.Int64(40),
-					VolumeType:          aws.String("gp3"),
+					DeleteOnTermination: ptr.Bool(true),
+					Iops:                ptr.Int64(3000),
+					VolumeSize:          ptr.Int64(40),
+					VolumeType:          ptr.String("gp3"),
 				}},
 			},
-			InstanceType: aws.String("t2.xlarge"), // TODO get this from dataplane spec
-			ImageId:      aws.String(amiID),
+			InstanceType: ptr.String("t2.xlarge"), // TODO get this from dataplane spec
+			ImageId:      ptr.String(amiID),
 			IamInstanceProfile: &ec2.LaunchTemplateIamInstanceProfileSpecificationRequest{
-				Name: aws.String(fmt.Sprintf("KitNodeInstanceProfile-%s", dataplane.Spec.ClusterName)),
+				Name: ptr.String(fmt.Sprintf("KitNodeInstanceProfile-%s", dataplane.Spec.ClusterName)),
 			},
-			Monitoring:       &ec2.LaunchTemplatesMonitoringRequest{Enabled: aws.Bool(true)},
-			SecurityGroupIds: []*string{aws.String(securityGroupID)},
-			UserData: aws.String(base64.StdEncoding.EncodeToString([]byte(fmt.Sprintf(userData,
+			Monitoring:       &ec2.LaunchTemplatesMonitoringRequest{Enabled: ptr.Bool(true)},
+			SecurityGroupIds: []*string{ptr.String(securityGroupID)},
+			UserData: ptr.String(base64.StdEncoding.EncodeToString([]byte(fmt.Sprintf(userData,
 				dataplane.Spec.ClusterName, v1alpha1.SchemeGroupVersion.Group, base64.StdEncoding.EncodeToString(clusterCA), clusterEndpoint)))),
 		},
-		LaunchTemplateName: aws.String(TemplateName(dataplane.Spec.ClusterName)),
+		LaunchTemplateName: ptr.String(TemplateName(dataplane.Spec.ClusterName)),
 		TagSpecifications:  generateEC2Tags("launch-template", dataplane.Spec.ClusterName),
 	}
 	if _, err := c.ec2api.CreateLaunchTemplate(input); err != nil {
@@ -133,6 +135,28 @@ func (c *Controller) createLaunchTemplate(ctx context.Context, dataplane *v1alph
 	return nil
 }
 
+func (c *Controller) amiID(ctx context.Context, dataplane *v1alpha1.DataPlane) (string, error) {
+	kubeVersion, err := c.desiredKubernetesVersion(ctx, dataplane)
+	if err != nil {
+		return "", fmt.Errorf("getting kubernetes version, %w", err)
+	}
+	paramOutput, err := c.ssm.GetParameterWithContext(ctx, &ssm.GetParameterInput{
+		Name: ptr.String(fmt.Sprintf("/aws/service/eks/optimized-ami/%s/amazon-linux-2/recommended/image_id", kubeVersion)),
+	})
+	if err != nil {
+		return "", fmt.Errorf("getting ssm parameter, %w", err)
+	}
+	return *paramOutput.Parameter.Value, nil
+}
+
+func (c *Controller) desiredKubernetesVersion(ctx context.Context, dataplane *v1alpha1.DataPlane) (string, error) {
+	cp := &cpv1alpha1.ControlPlane{}
+	if err := c.kubeclient.Get(ctx, types.NamespacedName{dataplane.GetNamespace(), dataplane.Spec.ClusterName}, cp); err != nil {
+		return "", fmt.Errorf("getting control plane object, %w", err)
+	}
+	return cp.Spec.KubernetesVersion, nil
+}
+
 func (c *Controller) getLaunchTemplates(ctx context.Context, clusterName string) ([]*ec2.LaunchTemplate, error) {
 	output, err := c.ec2api.DescribeLaunchTemplatesWithContext(ctx, &ec2.DescribeLaunchTemplatesInput{
 		Filters: ec2FilterFor(clusterName),
@@ -157,23 +181,23 @@ func existingTemplateMatchesDesired(templates []*ec2.LaunchTemplate, clusterName
 
 func ec2FilterFor(clusterName string) []*ec2.Filter {
 	return []*ec2.Filter{{
-		Name:   aws.String(fmt.Sprintf("tag:%s", TagKeyNameForAWSResources)),
-		Values: []*string{aws.String(clusterName)},
+		Name:   ptr.String(fmt.Sprintf("tag:%s", TagKeyNameForAWSResources)),
+		Values: []*string{ptr.String(clusterName)},
 	}}
 }
 
 func generateEC2Tags(svcName, clusterName string) []*ec2.TagSpecification {
 	return []*ec2.TagSpecification{{
-		ResourceType: aws.String(svcName),
+		ResourceType: ptr.String(svcName),
 		Tags: []*ec2.Tag{{
-			Key:   aws.String(TagKeyNameForAWSResources),
-			Value: aws.String(clusterName),
+			Key:   ptr.String(TagKeyNameForAWSResources),
+			Value: ptr.String(clusterName),
 		}, {
-			Key:   aws.String("Name"),
-			Value: aws.String(fmt.Sprintf("%s-%s", clusterName, svcName)),
+			Key:   ptr.String("Name"),
+			Value: ptr.String(fmt.Sprintf("%s-%s", clusterName, svcName)),
 		}, {
-			Key:   aws.String(fmt.Sprintf("kubernetes.io/cluster/%s", clusterName)),
-			Value: aws.String("owned"),
+			Key:   ptr.String(fmt.Sprintf("kubernetes.io/cluster/%s", clusterName)),
+			Value: ptr.String("owned"),
 		}},
 	}}
 }

operator/pkg/controllers/addons/coredns.go

@@ -19,6 +19,7 @@ import (
 
 	"github.com/awslabs/kit/operator/pkg/apis/controlplane/v1alpha1"
 	"github.com/awslabs/kit/operator/pkg/kubeprovider"
+	"github.com/awslabs/kit/operator/pkg/utils/imageprovider"
 	appsv1 "k8s.io/api/apps/v1"
 	v1 "k8s.io/api/core/v1"
 	rbacv1 "k8s.io/api/rbac/v1"
@@ -29,8 +30,7 @@ import (
 )
 
 const (
-	clusterIP    = "10.96.0.10" // TODO hard coded for now fix this
-	coreDNSImage = "public.ecr.aws/eks-distro/coredns/coredns:v1.8.3-eks-1-20-4"
+	clusterIP = "10.96.0.10" // TODO hard coded for now fix this
 )
 
 type CoreDNS struct {
@@ -193,7 +193,7 @@ func (c *CoreDNS) deployment(ctx context.Context) error {
 					ServiceAccountName: "coredns",
 					Containers: []v1.Container{{
 						Name:            "coredns",
-						Image:           coreDNSImage,
+						Image:           imageprovider.CoreDNS(),
 						ImagePullPolicy: v1.PullIfNotPresent,
 						Resources: v1.ResourceRequirements{
 							Requests: map[v1.ResourceName]resource.Quantity{

operator/pkg/controllers/addons/kubeproxy.go

@@ -22,6 +22,7 @@ import (
 	"github.com/awslabs/kit/operator/pkg/apis/controlplane/v1alpha1"
 	"github.com/awslabs/kit/operator/pkg/controllers/master"
 	"github.com/awslabs/kit/operator/pkg/kubeprovider"
+	"github.com/awslabs/kit/operator/pkg/utils/imageprovider"
 	"github.com/awslabs/kit/operator/pkg/utils/keypairs"
 	"github.com/awslabs/kit/operator/pkg/utils/kubeconfigs"
 	"github.com/awslabs/kit/operator/pkg/utils/object"
@@ -39,7 +40,6 @@ import (
 const (
 	kubeSystem             = "kube-system"
 	defaultStr             = "default"
-	kubeProxyImage         = "public.ecr.aws/eks-distro/kubernetes/kube-proxy:v1.20.7-eks-1-20-4"
 	KubeProxyDaemonSetName = "kubeproxy-daemonset"
 )
 
@@ -213,7 +213,7 @@ func kubeProxyPodSpecFor(controlPlane *v1alpha1.ControlPlane) v1.PodSpec {
 		Containers: []v1.Container{
 			{
 				Name:  "kubeproxy",
-				Image: kubeProxyImage,
+				Image: imageprovider.KubeProxy(controlPlane.Spec.KubernetesVersion),
 				Resources: v1.ResourceRequirements{
 					Requests: map[v1.ResourceName]resource.Quantity{
 						v1.ResourceCPU: resource.MustParse("1"),

operator/pkg/controllers/etcd/pod.go

@@ -21,6 +21,7 @@ import (
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/awslabs/kit/operator/pkg/apis/controlplane/v1alpha1"
 	"github.com/awslabs/kit/operator/pkg/utils/functional"
+	"github.com/awslabs/kit/operator/pkg/utils/imageprovider"
 	"github.com/awslabs/kit/operator/pkg/utils/object"
 	"github.com/awslabs/kit/operator/pkg/utils/secrets"
 	v1 "k8s.io/api/core/v1"
@@ -29,7 +30,6 @@ import (
 
 const (
 	defaultEtcdReplicas = 3
-	defaultEtcdImage    = "public.ecr.aws/eks-distro/etcd-io/etcd:v3.4.14-eks-1-18-1"
 )
 
 func podSpecFor(controlPlane *v1alpha1.ControlPlane) *v1.PodSpec {
@@ -55,7 +55,7 @@ func podSpecFor(controlPlane *v1alpha1.ControlPlane) *v1.PodSpec {
 		}},
 		Containers: []v1.Container{{
 			Name:  "etcd",
-			Image: defaultEtcdImage,
+			Image: imageprovider.ETCD(),
 			Ports: []v1.ContainerPort{{
 				ContainerPort: 2379,
 				Name:          "etcd",

operator/pkg/controllers/master/authenticatorconfig.go

@@ -21,6 +21,7 @@ import (
 	"html/template"
 
 	"github.com/awslabs/kit/operator/pkg/apis/controlplane/v1alpha1"
+	"github.com/awslabs/kit/operator/pkg/utils/imageprovider"
 	"knative.dev/pkg/ptr"
 
 	appsv1 "k8s.io/api/apps/v1"
@@ -30,11 +31,6 @@ import (
 	clientsetscheme "k8s.io/client-go/kubernetes/scheme"
 )
 
-const (
-	busyBoxImage             = "public.ecr.aws/runecast/busybox:1.33.1"
-	awsIamAuthenticatorImage = "602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-iam-authenticator:v0.5.3-amazonlinux-2"
-)
-
 // reconcileAuthenticatorConfig creates required configs for aws-iam-authenticator and stores them as secret in api server
 func (c *Controller) reconcileAuthenticatorConfig(ctx context.Context, controlPlane *v1alpha1.ControlPlane) error {
 	awsAccountID, err := c.cloudProvider.ID()
@@ -81,7 +77,7 @@ func (c *Controller) reconcileAuthenticatorDaemonSet(ctx context.Context, contro
 						Tolerations:  []v1.Toleration{{Operator: v1.TolerationOpExists}},
 						InitContainers: []v1.Container{{
 							Name:  "chown",
-							Image: busyBoxImage,
+							Image: imageprovider.BusyBox(),
 							Command: []string{
 								"sh",
 								"-c",
@@ -98,7 +94,7 @@ func (c *Controller) reconcileAuthenticatorDaemonSet(ctx context.Context, contro
 						}},
 						Containers: []v1.Container{{
 							Name:  "aws-iam-authenticator",
-							Image: awsIamAuthenticatorImage,
+							Image: imageprovider.AWSIamAuthenticator(),
 							Args: []string{
 								"server",
 								"--master=https://localhost/",

operator/pkg/controllers/master/kubeapiserver.go

@@ -21,6 +21,7 @@ import (
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/awslabs/kit/operator/pkg/apis/controlplane/v1alpha1"
 	"github.com/awslabs/kit/operator/pkg/controllers/etcd"
+	"github.com/awslabs/kit/operator/pkg/utils/imageprovider"
 	"github.com/awslabs/kit/operator/pkg/utils/object"
 	"github.com/awslabs/kit/operator/pkg/utils/patch"
 	appsv1 "k8s.io/api/apps/v1"
@@ -30,7 +31,6 @@ import (
 )
 
 const (
-	apiserverImage        = "public.ecr.aws/eks-distro/kubernetes/kube-apiserver:v1.20.7-eks-1-20-4"
 	serviceClusterIPRange = "10.96.0.0/12"
 )
 
@@ -101,7 +101,7 @@ func apiServerPodSpecFor(controlPlane *v1alpha1.ControlPlane) v1.PodSpec {
 		Containers: []v1.Container{
 			{
 				Name:    "apiserver",
-				Image:   apiserverImage,
+				Image:   imageprovider.APIServer(controlPlane.Spec.KubernetesVersion),
 				Command: []string{"kube-apiserver"},
 				Resources: v1.ResourceRequirements{
 					Requests: map[v1.ResourceName]resource.Quantity{

operator/pkg/controllers/master/kubecontrollermanager.go

@@ -21,17 +21,14 @@ import (
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/awslabs/kit/operator/pkg/apis/controlplane/v1alpha1"
 	"github.com/awslabs/kit/operator/pkg/utils/functional"
+	"github.com/awslabs/kit/operator/pkg/utils/imageprovider"
 	"github.com/awslabs/kit/operator/pkg/utils/object"
 	appsv1 "k8s.io/api/apps/v1"
 	v1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/api/resource"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 )
 
-const (
-	controllerManagerImage = "public.ecr.aws/eks-distro/kubernetes/kube-controller-manager:v1.20.7-eks-1-20-4"
-)
-
 func (c *Controller) reconcileKCM(ctx context.Context, controlPlane *v1alpha1.ControlPlane) error {
 	return c.kubeClient.EnsurePatch(ctx, &appsv1.Deployment{}, object.WithOwner(controlPlane, kcmDeploymentSpec(controlPlane)))
 }
@@ -97,7 +94,7 @@ func kcmPodSpecFor(controlPlane *v1alpha1.ControlPlane) *v1.PodSpec {
 		}},
 		Containers: []v1.Container{{
 			Name:    "controller-manager",
-			Image:   controllerManagerImage,
+			Image:   imageprovider.KubeControllerManager(controlPlane.Spec.KubernetesVersion),
 			Command: []string{"kube-controller-manager"},
 			Resources: v1.ResourceRequirements{
 				Requests: map[v1.ResourceName]resource.Quantity{

operator/pkg/controllers/master/kubescheduler.go

@@ -20,17 +20,14 @@ import (
 
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/awslabs/kit/operator/pkg/apis/controlplane/v1alpha1"
+	"github.com/awslabs/kit/operator/pkg/utils/imageprovider"
 	"github.com/awslabs/kit/operator/pkg/utils/object"
 	appsv1 "k8s.io/api/apps/v1"
 	v1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/api/resource"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 )
 
-const (
-	schedulerImage = "public.ecr.aws/eks-distro/kubernetes/kube-scheduler:v1.20.7-eks-1-20-4"
-)
-
 func (c *Controller) reconcileScheduler(ctx context.Context, controlPlane *v1alpha1.ControlPlane) error {
 	return c.kubeClient.EnsurePatch(ctx, &appsv1.Deployment{}, object.WithOwner(controlPlane, schedulerDeploymentSpec(controlPlane)))
 }
@@ -98,7 +95,7 @@ func schedulerPodSpecFor(controlPlane *v1alpha1.ControlPlane) *v1.PodSpec {
 		}},
 		Containers: []v1.Container{{
 			Name:    "scheduler",
-			Image:   schedulerImage,
+			Image:   imageprovider.KubeScheduler(controlPlane.Spec.KubernetesVersion),
 			Command: []string{"kube-scheduler"},
 			Resources: v1.ResourceRequirements{
 				Requests: map[v1.ResourceName]resource.Quantity{