From 7d68f6ff4b5a14f179d0cf9d6dbfae3a9ffa4f90 Mon Sep 17 00:00:00 2001 From: Jose Armesto Date: Thu, 23 Nov 2023 17:15:28 +0100 Subject: [PATCH 1/2] Prevent users setting values that are invalid configuration on AWS --- exp/api/v1beta2/awsmachinepool_webhook.go | 9 +++++ .../v1beta2/awsmachinepool_webhook_test.go | 35 +++++++++++++++++++ 2 files changed, 44 insertions(+) diff --git a/exp/api/v1beta2/awsmachinepool_webhook.go b/exp/api/v1beta2/awsmachinepool_webhook.go index 93893f306a..68854d8e83 100644 --- a/exp/api/v1beta2/awsmachinepool_webhook.go +++ b/exp/api/v1beta2/awsmachinepool_webhook.go @@ -108,6 +108,13 @@ func (r *AWSMachinePool) validateAdditionalSecurityGroups() field.ErrorList { } return allErrs } +func (r *AWSMachinePool) validateSpotInstances() field.ErrorList { + var allErrs field.ErrorList + if r.Spec.AWSLaunchTemplate.SpotMarketOptions != nil && r.Spec.MixedInstancesPolicy != nil { + allErrs = append(allErrs, field.Forbidden(field.NewPath("spec.awsLaunchTemplate.AdditionalSecurityGroups"), "either spec.awsLaunchTemplate.SpotMarketOptions or spec.MixedInstancesPolicy should be used")) + } + return allErrs +} // ValidateCreate will do any extra validation when creating a AWSMachinePool. func (r *AWSMachinePool) ValidateCreate() (admission.Warnings, error) { @@ -120,6 +127,7 @@ func (r *AWSMachinePool) ValidateCreate() (admission.Warnings, error) { allErrs = append(allErrs, r.Spec.AdditionalTags.Validate()...) allErrs = append(allErrs, r.validateSubnets()...) allErrs = append(allErrs, r.validateAdditionalSecurityGroups()...) + allErrs = append(allErrs, r.validateSpotInstances()...) if len(allErrs) == 0 { return nil, nil @@ -140,6 +148,7 @@ func (r *AWSMachinePool) ValidateUpdate(old runtime.Object) (admission.Warnings, allErrs = append(allErrs, r.Spec.AdditionalTags.Validate()...) allErrs = append(allErrs, r.validateSubnets()...) allErrs = append(allErrs, r.validateAdditionalSecurityGroups()...) + allErrs = append(allErrs, r.validateSpotInstances()...) if len(allErrs) == 0 { return nil, nil diff --git a/exp/api/v1beta2/awsmachinepool_webhook_test.go b/exp/api/v1beta2/awsmachinepool_webhook_test.go index be475382fa..dfeadaf75e 100644 --- a/exp/api/v1beta2/awsmachinepool_webhook_test.go +++ b/exp/api/v1beta2/awsmachinepool_webhook_test.go @@ -139,6 +139,20 @@ func TestAWSMachinePoolValidateCreate(t *testing.T) { }, wantErr: false, }, + { + name: "Should fail if both spot market options or mixed instances policy are set", + pool: &AWSMachinePool{ + Spec: AWSMachinePoolSpec{ + MixedInstancesPolicy: &MixedInstancesPolicy{ + Overrides: []Overrides{{InstanceType: "t3.medium"}}, + }, + AWSLaunchTemplate: AWSLaunchTemplate{ + SpotMarketOptions: &infrav1.SpotMarketOptions{MaxPrice: aws.String("0.1")}, + }, + }, + }, + wantErr: true, + }, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { @@ -252,6 +266,27 @@ func TestAWSMachinePoolValidateUpdate(t *testing.T) { }, wantErr: false, }, + { + name: "Should fail update if both spec.awsLaunchTemplate.SpotMarketOptions and spec.MixedInstancesPolicy are passed in AWSMachinePool spec", + old: &AWSMachinePool{ + Spec: AWSMachinePoolSpec{ + MixedInstancesPolicy: &MixedInstancesPolicy{ + Overrides: []Overrides{{InstanceType: "t3.medium"}}, + }, + }, + }, + new: &AWSMachinePool{ + Spec: AWSMachinePoolSpec{ + MixedInstancesPolicy: &MixedInstancesPolicy{ + Overrides: []Overrides{{InstanceType: "t3.medium"}}, + }, + AWSLaunchTemplate: AWSLaunchTemplate{ + SpotMarketOptions: &infrav1.SpotMarketOptions{MaxPrice: pointer.String("0.1")}, + }, + }, + }, + wantErr: true, + }, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { From 99ddc99cd544dcccd758d2d812042aef21c0a8fd Mon Sep 17 00:00:00 2001 From: Jose Armesto Date: Thu, 23 Nov 2023 17:32:43 +0100 Subject: [PATCH 2/2] Update exp/api/v1beta2/awsmachinepool_webhook.go Co-authored-by: Andreas Sommer --- exp/api/v1beta2/awsmachinepool_webhook.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/exp/api/v1beta2/awsmachinepool_webhook.go b/exp/api/v1beta2/awsmachinepool_webhook.go index 68854d8e83..eb263794e6 100644 --- a/exp/api/v1beta2/awsmachinepool_webhook.go +++ b/exp/api/v1beta2/awsmachinepool_webhook.go @@ -111,7 +111,7 @@ func (r *AWSMachinePool) validateAdditionalSecurityGroups() field.ErrorList { func (r *AWSMachinePool) validateSpotInstances() field.ErrorList { var allErrs field.ErrorList if r.Spec.AWSLaunchTemplate.SpotMarketOptions != nil && r.Spec.MixedInstancesPolicy != nil { - allErrs = append(allErrs, field.Forbidden(field.NewPath("spec.awsLaunchTemplate.AdditionalSecurityGroups"), "either spec.awsLaunchTemplate.SpotMarketOptions or spec.MixedInstancesPolicy should be used")) + allErrs = append(allErrs, field.Forbidden(field.NewPath("spec.awsLaunchTemplate.spotMarketOptions"), "either spec.awsLaunchTemplate.spotMarketOptions or spec.mixedInstancesPolicy should be used")) } return allErrs }