DataDog · KevinFairise2 · Apr 15, 2024 · Apr 15, 2024 · Apr 15, 2024 · Apr 15, 2024
@@ -74,6 +74,7 @@ type CommonEnvironment struct {
 
 type CloudProviderEnvironment interface {
 	InternalRegistry() string
+	InternalDockerhubMirror() string
 }
 
 func NewCommonEnvironment(ctx *pulumi.Context, cloudProviderEnvironment CloudProviderEnvironment) (CommonEnvironment, error) {

@@ -1,6 +1,8 @@
 package mutatedbyadmissioncontroller
 
 import (
+	"fmt"
+
 	"github.com/DataDog/test-infra-definitions/common/config"
 
 	componentskube "github.com/DataDog/test-infra-definitions/components/kubernetes"
@@ -131,7 +133,7 @@ func k8sDeploymentWithLibInjection(e config.CommonEnvironment, namespace string,
 						corev1.ContainerArgs{
 							Name: pulumi.String(name),
 							// Python is one of the languages supported by APM lib injection
-							Image: pulumi.String("python:3.12-slim"),
+							Image: pulumi.String(fmt.Sprintf("%s/library/python:3.12-slim", e.CloudProviderEnvironment.InternalDockerhubMirror())),
 							Command: pulumi.ToStringArray([]string{
 								"python", "-c", "while True: import time; time.sleep(60)",
 							}),

@@ -2,6 +2,10 @@ kind: Cluster
 apiVersion: kind.x-k8s.io/v1alpha4
 nodes:
 - role: control-plane
+  extraMounts:
+    - containerPath: /var/lib/kubelet/config.json
+      hostPath: /tmp/kind-config/config.json
+      propagation: HostToContainer
 containerdConfigPatches:
   - |-
     [plugins."io.containerd.grpc.v1.cri".registry.mirrors."docker.io"]

@@ -28,6 +28,7 @@ const (
 	DDInfraDefaultInstanceStorageSize      = "aws/defaultInstanceStorageSize"
 	DDInfraDefaultShutdownBehavior         = "aws/defaultShutdownBehavior"
 	DDInfraDefaultInternalRegistry         = "aws/defaultInternalRegistry"
+	DDInfraDefaultInternalDockerhubMirror  = "aws/defaultInternalDockerhubMirror"
 
 	// AWS ECS
 	DDInfraEcsExecKMSKeyID                  = "aws/ecs/execKMSKeyID"
@@ -124,6 +125,10 @@ func (e *Environment) InternalRegistry() string {
 	return e.GetStringWithDefault(e.InfraConfig, DDInfraDefaultInternalRegistry, e.envDefault.ddInfra.defaultInternalRegistry)
 }
 
+func (e *Environment) InternalDockerhubMirror() string {
+	return e.GetStringWithDefault(e.InfraConfig, DDInfraDefaultInternalDockerhubMirror, e.envDefault.ddInfra.defaultInternalDockerhubMirror)
+}
+
 // Common
 func (e *Environment) Region() string {
 	return e.GetStringWithDefault(e.awsConfig, awsRegionParamName, e.envDefault.aws.region)

@@ -21,15 +21,16 @@ type awsProvider struct {
 }
 
 type ddInfra struct {
-	defaultVPCID               string
-	defaultSubnets             []string
-	defaultSecurityGroups      []string
-	defaultInstanceType        string
-	defaultInstanceProfileName string
-	defaultARMInstanceType     string
-	defaultInstanceStorageSize int
-	defaultShutdownBehavior    string
-	defaultInternalRegistry    string
+	defaultVPCID                   string
+	defaultSubnets                 []string
+	defaultSecurityGroups          []string
+	defaultInstanceType            string
+	defaultInstanceProfileName     string
+	defaultARMInstanceType         string
+	defaultInstanceStorageSize     int
+	defaultShutdownBehavior        string
+	defaultInternalRegistry        string
+	defaultInternalDockerhubMirror string
 
 	ecs ddInfraECS
 	eks ddInfraEKS
@@ -82,15 +83,16 @@ func sandboxDefault() environmentDefault {
 			region: string(aws.RegionUSEast1),
 		},
 		ddInfra: ddInfra{
-			defaultVPCID:               "vpc-d1aac1a8",
-			defaultSubnets:             []string{"subnet-b89e00e2", "subnet-8ee8b1c6", "subnet-3f5db45b"},
-			defaultSecurityGroups:      []string{"sg-46506837", "sg-7fedd80a", "sg-0e952e295ab41e748"},
-			defaultInstanceType:        "t3.medium",
-			defaultInstanceProfileName: "ec2InstanceRole",
-			defaultARMInstanceType:     "t4g.medium",
-			defaultInstanceStorageSize: 200,
-			defaultShutdownBehavior:    "stop",
-			defaultInternalRegistry:    "669783387624.dkr.ecr.us-east-1.amazonaws.com",
+			defaultVPCID:                   "vpc-d1aac1a8",
+			defaultSubnets:                 []string{"subnet-b89e00e2", "subnet-8ee8b1c6", "subnet-3f5db45b"},
+			defaultSecurityGroups:          []string{"sg-46506837", "sg-7fedd80a", "sg-0e952e295ab41e748"},
+			defaultInstanceType:            "t3.medium",
+			defaultInstanceProfileName:     "ec2InstanceRole",
+			defaultARMInstanceType:         "t4g.medium",
+			defaultInstanceStorageSize:     200,
+			defaultShutdownBehavior:        "stop",
+			defaultInternalRegistry:        "669783387624.dkr.ecr.us-east-1.amazonaws.com",
+			defaultInternalDockerhubMirror: "669783387624.dkr.ecr.us-east-1.amazonaws.com/dockerhub",
 
 			ecs: ddInfraECS{
 				execKMSKeyID:                "arn:aws:kms:us-east-1:601427279990:key/c84f93c2-a562-4a59-a326-918fbe7235c7",
@@ -123,15 +125,16 @@ func agentSandboxDefault() environmentDefault {
 			region: string(aws.RegionUSEast1),
 		},
 		ddInfra: ddInfra{
-			defaultVPCID:               "vpc-029c0faf8f49dee8d",
-			defaultSubnets:             []string{"subnet-0a15f3482cd3f9820", "subnet-091570395d476e9ce", "subnet-003831c49a10df3dd"},
-			defaultSecurityGroups:      []string{"sg-038231b976eb13d44", "sg-05466e7ce253d21b1"},
-			defaultInstanceType:        "t3.medium",
-			defaultInstanceProfileName: "ec2InstanceRole",
-			defaultARMInstanceType:     "t4g.medium",
-			defaultInstanceStorageSize: 200,
-			defaultShutdownBehavior:    "stop",
-			defaultInternalRegistry:    "669783387624.dkr.ecr.us-east-1.amazonaws.com",
+			defaultVPCID:                   "vpc-029c0faf8f49dee8d",
+			defaultSubnets:                 []string{"subnet-0a15f3482cd3f9820", "subnet-091570395d476e9ce", "subnet-003831c49a10df3dd"},
+			defaultSecurityGroups:          []string{"sg-038231b976eb13d44", "sg-05466e7ce253d21b1"},
+			defaultInstanceType:            "t3.medium",
+			defaultInstanceProfileName:     "ec2InstanceRole",
+			defaultARMInstanceType:         "t4g.medium",
+			defaultInstanceStorageSize:     200,
+			defaultShutdownBehavior:        "stop",
+			defaultInternalRegistry:        "669783387624.dkr.ecr.us-east-1.amazonaws.com",
+			defaultInternalDockerhubMirror: "669783387624.dkr.ecr.us-east-1.amazonaws.com/dockerhub",
 
 			ecs: ddInfraECS{
 				execKMSKeyID:                "arn:aws:kms:us-east-1:376334461865:key/1d1fe533-a4f1-44ee-99ec-225b44fcb9ed",
@@ -166,15 +169,16 @@ func agentQADefault() environmentDefault {
 			region: string(aws.RegionUSEast1),
 		},
 		ddInfra: ddInfra{
-			defaultVPCID:               "vpc-0097b9307ec2c8139",
-			defaultSubnets:             []string{"subnet-0f1ca3e929eb3fb8b", "subnet-03061a1647c63c3c3", "subnet-071213aedb0e1ae54"},
-			defaultSecurityGroups:      []string{"sg-05e9573fcc582f22c", "sg-0498c960a173dff1e"},
-			defaultInstanceType:        "t3.medium",
-			defaultInstanceProfileName: "ec2InstanceRole",
-			defaultARMInstanceType:     "t4g.medium",
-			defaultInstanceStorageSize: 200,
-			defaultShutdownBehavior:    "stop",
-			defaultInternalRegistry:    "669783387624.dkr.ecr.us-east-1.amazonaws.com",
+			defaultVPCID:                   "vpc-0097b9307ec2c8139",
+			defaultSubnets:                 []string{"subnet-0f1ca3e929eb3fb8b", "subnet-03061a1647c63c3c3", "subnet-071213aedb0e1ae54"},
+			defaultSecurityGroups:          []string{"sg-05e9573fcc582f22c", "sg-0498c960a173dff1e"},
+			defaultInstanceType:            "t3.medium",
+			defaultInstanceProfileName:     "ec2InstanceRole",
+			defaultARMInstanceType:         "t4g.medium",
+			defaultInstanceStorageSize:     200,
+			defaultShutdownBehavior:        "stop",
+			defaultInternalRegistry:        "669783387624.dkr.ecr.us-east-1.amazonaws.com",
+			defaultInternalDockerhubMirror: "669783387624.dkr.ecr.us-east-1.amazonaws.com/dockerhub",
 
 			ecs: ddInfraECS{
 				execKMSKeyID:                "arn:aws:kms:us-east-1:669783387624:key/384373bc-6d99-4d68-84b5-b76b756b0af3",

@@ -64,6 +64,10 @@ func (e *Environment) InternalRegistry() string {
 	return "none"
 }
 
+func (e *Environment) InternalDockerhubMirror() string {
+	return "registry-1.docker.io"
+}
+
 // Common
 func (e *Environment) DefaultResourceGroup() string {
 	return e.GetStringWithDefault(e.InfraConfig, DDInfraDefaultResourceGroup, e.envDefault.ddInfra.defaultResourceGroup)

@@ -45,6 +45,10 @@ func (e *Environment) InternalRegistry() string {
 	return "none"
 }
 
+func (e *Environment) InternalDockerhubMirror() string {
+	return "registry-1.docker.io"
+}
+
 // Common
 func (e *Environment) DefaultPublicKeyPath() string {
 	return e.InfraConfig.Get(DDInfraDefaultPublicKeyPath)

@@ -4,6 +4,7 @@ import (
 	"fmt"
 
 	"github.com/DataDog/test-infra-definitions/common/utils"
+	"github.com/DataDog/test-infra-definitions/components/command"
 	"github.com/DataDog/test-infra-definitions/components/datadog/agent"
 	"github.com/DataDog/test-infra-definitions/components/datadog/apps/cpustress"
 	"github.com/DataDog/test-infra-definitions/components/datadog/apps/dogstatsd"
@@ -14,12 +15,16 @@ import (
 	"github.com/DataDog/test-infra-definitions/components/datadog/apps/tracegen"
 	dogstatsdstandalone "github.com/DataDog/test-infra-definitions/components/datadog/dogstatsd-standalone"
 	fakeintakeComp "github.com/DataDog/test-infra-definitions/components/datadog/fakeintake"
+	"github.com/DataDog/test-infra-definitions/components/docker"
 	localKubernetes "github.com/DataDog/test-infra-definitions/components/kubernetes"
 	"github.com/DataDog/test-infra-definitions/components/os"
+	"github.com/DataDog/test-infra-definitions/components/remote"
 	resAws "github.com/DataDog/test-infra-definitions/resources/aws"
 	"github.com/DataDog/test-infra-definitions/scenarios/aws/ec2"
 	"github.com/DataDog/test-infra-definitions/scenarios/aws/fakeintake"
 
+	goremote "github.com/pulumi/pulumi-command/sdk/go/command/remote"
+
 	"github.com/pulumi/pulumi-kubernetes/sdk/v4/go/kubernetes"
 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
 )
@@ -39,9 +44,20 @@ func Run(ctx *pulumi.Context) error {
 		return err
 	}
 
+	// Install docker if not installed yet, we need it to configure docker credentials
+	_, dockerInstallCmd, err := docker.NewManager(*awsEnv.CommonEnvironment, vm)
+	if err != nil {
+		return err
+	}
+	// Configure ECR credentials for use in Kind
+	ecrLoginCommand, err := ConfigureECRCredentials(awsEnv, vm, osDesc.Architecture, utils.PulumiDependsOn(dockerInstallCmd))
+	if err != nil {
+		return err
+	}
+
 	kindClusterName := ctx.Stack()
 
-	kindCluster, err := localKubernetes.NewKindCluster(*awsEnv.CommonEnvironment, vm, awsEnv.CommonNamer.ResourceName("kind"), kindClusterName, awsEnv.KubernetesVersion())
+	kindCluster, err := localKubernetes.NewKindCluster(*awsEnv.CommonEnvironment, vm, awsEnv.CommonNamer.ResourceName("kind"), kindClusterName, awsEnv.KubernetesVersion(), utils.PulumiDependsOn(ecrLoginCommand))
 	if err != nil {
 		return err
 	}
@@ -154,3 +170,36 @@ agents:
 
 	return nil
 }
+
+func ConfigureECRCredentials(e resAws.Environment, vm *remote.Host, arch os.Architecture, opts ...pulumi.ResourceOption) (*goremote.Command, error) {
+	architecture := "x86_64"
+	if arch == os.ARM64Arch {
+		architecture = "aarch64"
+	}
+
+	unzipInstallCommand, err := vm.OS.PackageManager().Ensure("unzip", nil, "", opts...)
+	if err != nil {
+		return nil, err
+	}
+
+	awsCliInstallCommand, err := vm.OS.Runner().Command(
+		e.CommonNamer.ResourceName("aws-cli-install"),
+		&command.Args{
+			Create: pulumi.Sprintf("command -v aws || curl 'https://awscli.amazonaws.com/awscli-exe-linux-%s.zip' -o 'awscliv2.zip' && unzip awscliv2.zip && sudo ./aws/install", architecture),
+		},
+		utils.PulumiDependsOn(unzipInstallCommand),
+	)
+	if err != nil {
+		return nil, err
+	}
+
+	ecrLoginCommand, err := vm.OS.Runner().Command(
+		e.CommonNamer.ResourceName("ecr-login"),
+		&command.Args{
+			Create: pulumi.Sprintf("aws ecr get-login-password | docker --config /tmp/kind-config login  --username AWS --password-stdin %s", e.CloudProviderEnvironment.InternalRegistry()),
+		},
+		utils.PulumiDependsOn(awsCliInstallCommand),
+	)
+
+	return ecrLoginCommand, err
+}