kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #17261 from justinsb/ssh_metal_test_oddity 

Better dumping via private IP when bastion is not set
This commit is contained in:
Kubernetes Prow Robot 2025-02-20 03:04:27 -08:00 committed by GitHub
parent cfe8e621ac 3ea73f47f8
commit fe9f2f602d
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 28 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
cmd/kops/toolbox_dump.go
View File

@ -209,6 +209,9 @@ func RunToolboxDump(ctx context.Context, f commandutils.Factory, out io.Writer,
HostKeyCallback: ssh.InsecureIgnoreHostKey(), HostKeyCallback: ssh.InsecureIgnoreHostKey(),
} }
klog.Infof("will SSH using username %q", sshConfig.User)
klog.Infof("ssh auth methods %v", sshConfig.Auth)
keyRing := agent.NewKeyring() keyRing := agent.NewKeyring()
defer func(keyRing agent.Agent) { defer func(keyRing agent.Agent) {
_ = keyRing.RemoveAll() _ = keyRing.RemoveAll()

30
pkg/dump/dumper.go
View File

@ -199,7 +199,12 @@ func (d *logDumper) dumpRegistered(ctx context.Context, node *corev1.Node) error
if publicIP != "" { if publicIP != "" {
return d.dumpNode(ctx, node.Name, publicIP, false) return d.dumpNode(ctx, node.Name, publicIP, false)
} else { } else {
return d.dumpNode(ctx, node.Name, privateIP, true) useBastion := true
if !d.sshClientFactory.HasBastion() {
klog.Warningf("no bastion address set, will attempt to connect to node %s directly via private IP %v", node.Name, privateIP)
useBastion = false
}
return d.dumpNode(ctx, node.Name, privateIP, useBastion)
} }
} }
@ -274,7 +279,12 @@ type sshClient interface {
// sshClientFactory is an interface abstracting to a node over SSH // sshClientFactory is an interface abstracting to a node over SSH
type sshClientFactory interface { type sshClientFactory interface {
// Dial creates a new sshClient
Dial(ctx context.Context, host string, useBastion bool) (sshClient, error) Dial(ctx context.Context, host string, useBastion bool) (sshClient, error)
// HasBastion returns true if the sshClientFactory has a bastion configured.
// Calling Dial with useBastion=true will return an error if there is no bastion.
HasBastion() bool
} }
// logDumperNode holds state for a particular node we are dumping // logDumperNode holds state for a particular node we are dumping
@ -540,13 +550,23 @@ type sshClientFactoryImplementation struct {
var _ sshClientFactory = &sshClientFactoryImplementation{} var _ sshClientFactory = &sshClientFactoryImplementation{}
// HasBastion implements sshClientFactory::HasBastion
func (f *sshClientFactoryImplementation) HasBastion() bool {
return f.bastion != ""
}
// Dial implements sshClientFactory::Dial // Dial implements sshClientFactory::Dial
func (f *sshClientFactoryImplementation) Dial(ctx context.Context, host string, useBastion bool) (sshClient, error) { func (f *sshClientFactoryImplementation) Dial(ctx context.Context, host string, useBastion bool) (sshClient, error) {
var addr string addr := host
if useBastion { if useBastion {
if f.bastion == "" {
return nil, fmt.Errorf("bastion is not set, but useBastion is true")
}
addr = f.bastion addr = f.bastion
} else { }
addr = host
if addr == "" {
return nil, fmt.Errorf("host is empty")
} }
addr = net.JoinHostPort(addr, "22") addr = net.JoinHostPort(addr, "22")
d := net.Dialer{ d := net.Dialer{
@ -554,7 +574,7 @@ func (f *sshClientFactoryImplementation) Dial(ctx context.Context, host string,
} }
conn, err := d.DialContext(ctx, "tcp", addr) conn, err := d.DialContext(ctx, "tcp", addr)
if err != nil { if err != nil {
return nil, err return nil, fmt.Errorf("error dialing tcp %s: %w", addr, err)
} }
// We have a TCP connection; we will force-close it to support context cancellation // We have a TCP connection; we will force-close it to support context cancellation