Skip to content

Commit

Permalink
Bump Calico to latest 3.25 -> 3.25.2, set installation.fipsMode (#246)
Browse files Browse the repository at this point in the history
  • Loading branch information
@miguelhar
miguelhar authored Apr 15, 2024
1 parent ac05acf commit 3a5a158
Show file tree
Hide file tree
Showing 4 changed files with 4 additions and 2 deletions.
2 changes: 1 addition & 1 deletion modules/eks/submodules/k8s/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,7 +33,7 @@ No modules.
| Name | Description | Type | Default | Required |
|------|-------------|------|---------|:--------:|
| <a name="input_bastion_info"></a> [bastion\_info](#input\_bastion\_info) | user = Bastion username.<br> public\_ip = Bastion public ip.<br> security\_group\_id = Bastion sg id.<br> ssh\_bastion\_command = Command to ssh onto bastion. | <pre>object({<br> user = string<br> public_ip = string<br> security_group_id = string<br> ssh_bastion_command = string<br> })</pre> | n/a | yes |
| <a name="input_calico_version"></a> [calico\_version](#input\_calico\_version) | Calico operator version. | `string` | `"v3.25.0"` | no |
| <a name="input_calico_version"></a> [calico\_version](#input\_calico\_version) | Calico operator version. | `string` | `"v3.25.2"` | no |
| <a name="input_eks_info"></a> [eks\_info](#input\_eks\_info) | cluster = {<br> version = K8s version.<br> arn = EKS Cluster arn.<br> security\_group\_id = EKS Cluster security group id.<br> endpoint = EKS Cluster API endpoint.<br> roles = Default IAM Roles associated with the EKS cluster. {<br> name = string<br> arn = string<br> }<br> custom\_roles = Custom IAM Roles associated with the EKS cluster. {<br> rolearn = string<br> username = string<br> groups = list(string)<br> }<br> oidc = {<br> arn = OIDC provider ARN.<br> url = OIDC provider url.<br> }<br> }<br> nodes = {<br> security\_group\_id = EKS Nodes security group id.<br> roles = IAM Roles associated with the EKS Nodes.{<br> name = string<br> arn = string<br> }<br> }<br> kubeconfig = Kubeconfig details.{<br> path = string<br> extra\_args = string<br> } | <pre>object({<br> cluster = object({<br> version = string<br> arn = string<br> security_group_id = string<br> endpoint = string<br> roles = list(object({<br> name = string<br> arn = string<br> }))<br> custom_roles = list(object({<br> rolearn = string<br> username = string<br> groups = list(string)<br> }))<br> oidc = object({<br> arn = string<br> url = string<br> })<br> })<br> nodes = object({<br> nodes_master = bool<br> security_group_id = string<br> roles = list(object({<br> name = string<br> arn = string<br> }))<br> })<br> kubeconfig = object({<br> path = string<br> extra_args = string<br> })<br> })</pre> | n/a | yes |
| <a name="input_ssh_key"></a> [ssh\_key](#input\_ssh\_key) | path = SSH private key filepath.<br> key\_pair\_name = AWS key\_pair name. | <pre>object({<br> path = string<br> key_pair_name = string<br> })</pre> | n/a | yes |
| <a name="input_use_fips_endpoint"></a> [use\_fips\_endpoint](#input\_use\_fips\_endpoint) | Use aws FIPS endpoints | `bool` | `false` | no |
Expand Down
1 change: 1 addition & 0 deletions modules/eks/submodules/k8s/main.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@ locals {
calico_version = var.calico_version
bastion_user = var.bastion_info != null ? var.bastion_info.user : ""
bastion_public_ip = var.bastion_info != null ? var.bastion_info.public_ip : ""
calico_fips_mode = var.use_fips_endpoint ? "Enabled" : "Disabled"
})
}

Expand Down
1 change: 1 addition & 0 deletions modules/eks/submodules/k8s/templates/k8s-functions.sh.tftpl
View file
Original file line number Diff line number Diff line change
Expand Up @@ -120,6 +120,7 @@ install_calico() {
--set installation.kubernetesProvider=EKS \
--set installation.cni.type=AmazonVPC \
--set installation.registry="quay.io/" \
--set installation.fipsMode="${calico_fips_mode}" \
--timeout 10m \
--create-namespace \
--install
Expand Down
2 changes: 1 addition & 1 deletion modules/eks/submodules/k8s/variables.tf
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
variable "calico_version" {
type = string
description = "Calico operator version."
default = "v3.25.0"
default = "v3.25.2"
}

variable "bastion_info" {
Expand Down

0 comments on commit 3a5a158

Please sign in to comment.