eksctl-io
diff --git a/‎go.mod
Lines changed: 1 addition & 1 deletion b/‎go.mod
Lines changed: 1 addition & 1 deletion
diff --git a/‎go.sum
Lines changed: 2 additions & 2 deletions b/‎go.sum
Lines changed: 2 additions & 2 deletions
diff --git a/‎integration/data/crud-podinfo.yaml
Lines changed: 53 additions & 0 deletions b/‎integration/data/crud-podinfo.yaml
Lines changed: 53 additions & 0 deletions
diff --git a/‎integration/data/podinfo.yaml
Lines changed: 0 additions & 2 deletions b/‎integration/data/podinfo.yaml
Lines changed: 0 additions & 2 deletions
diff --git a/‎integration/tests/addons/addons_test.go
Lines changed: 45 additions & 31 deletions b/‎integration/tests/addons/addons_test.go
Lines changed: 45 additions & 31 deletions
diff --git a/‎integration/tests/bare_cluster/bare_cluster_test.go
Lines changed: 85 additions & 0 deletions b/‎integration/tests/bare_cluster/bare_cluster_test.go
Lines changed: 85 additions & 0 deletions
diff --git a/‎integration/tests/crud/creategetdelete_test.go
Lines changed: 2 additions & 2 deletions b/‎integration/tests/crud/creategetdelete_test.go
Lines changed: 2 additions & 2 deletions
@@ -68,7 +68,7 @@ require (
 	github.com/tj/assert v0.0.3
 	github.com/vburenin/ifacemaker v1.2.1
 	github.com/vektra/mockery/v2 v2.38.0
-	github.com/weaveworks/goformation/v4 v4.10.2-0.20231113122203-bf1ae633f95c
+	github.com/weaveworks/goformation/v4 v4.10.2-0.20240626091647-67263f64f317
 	github.com/weaveworks/schemer v0.0.0-20230525114451-47139fe25848
 	github.com/xgfone/netaddr v0.5.1
 	golang.org/x/crypto v0.22.0
 
@@ -1815,8 +1815,8 @@ github.com/vektra/mockery/v2 v2.38.0 h1:I0LBuUzZHqAU4d1DknW0DTFBPO6n8TaD38WL2KJf
 github.com/vektra/mockery/v2 v2.38.0/go.mod h1:diB13hxXG6QrTR0ol2Rk8s2dRMftzvExSvPDKr+IYKk=
 github.com/voxelbrain/goptions v0.0.0-20180630082107-58cddc247ea2 h1:txplJASvd6b/hrE0s/Ixfpp2cuwH9IO9oZBAN9iYa4A=
 github.com/voxelbrain/goptions v0.0.0-20180630082107-58cddc247ea2/go.mod h1:DGCIhurYgnLz8J9ga1fMV/fbLDyUvTyrWXVWUIyJon4=
-github.com/weaveworks/goformation/v4 v4.10.2-0.20231113122203-bf1ae633f95c h1:iejfxgm8iQ6Jr3yT7Javgk40drlL6w9B6+zgACs0fMw=
-github.com/weaveworks/goformation/v4 v4.10.2-0.20231113122203-bf1ae633f95c/go.mod h1:3c2tyJmoge5qTS4PXS0niVJxR0YzroIBsts3dQI3EdI=
+github.com/weaveworks/goformation/v4 v4.10.2-0.20240626091647-67263f64f317 h1:efLcD8csEtX1RO0444Wa4RQjO34pYuojsdPABc5QC3s=
+github.com/weaveworks/goformation/v4 v4.10.2-0.20240626091647-67263f64f317/go.mod h1:3c2tyJmoge5qTS4PXS0niVJxR0YzroIBsts3dQI3EdI=
 github.com/weaveworks/schemer v0.0.0-20230525114451-47139fe25848 h1:I7S+IHZIU49skVgTNArf9bIdy07mCn1Z0zv1r07ROws=
 github.com/weaveworks/schemer v0.0.0-20230525114451-47139fe25848/go.mod h1:y8Luzq6JDsYVoIV0QAlnvIiq8bSaap0myMjWKyzVFTY=
 github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f/go.mod h1:N2zxlSyiKSe5eX1tZViRH5QA0qijqEDrYZiPEAiq3wU=
 
@@ -0,0 +1,53 @@
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: podinfo
+  labels:
+    app: podinfo
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: podinfo
+  template:
+    metadata:
+      labels:
+        app: podinfo
+      annotations:
+        prometheus.io/scrape: 'true'
+    spec:
+      nodeSelector:
+        used-for: test-pods
+      containers:
+      - name: podinfod
+        image: stefanprodan/podinfo:1.5.1@sha256:702633d438950f3675d0763a4ca6cfcf21a4d065cd7f470446c67607b1a26750
+        securityContext:
+          runAsNonRoot: true
+          allowPrivilegeEscalation: false
+          runAsUser: 1000
+        command:
+        - ./podinfo
+        - --port=8080
+        ports:
+        - name: http
+          containerPort: 8080
+          protocol: TCP
+        readinessProbe:
+          httpGet:
+            path: /readyz
+            port: 8080
+          initialDelaySeconds: 1
+          periodSeconds: 5
+          failureThreshold: 1
+        livenessProbe:
+          httpGet:
+            path: /healthz
+            port: 8080
+          initialDelaySeconds: 1
+          periodSeconds: 10
+          failureThreshold: 2
+        resources:
+          requests:
+            memory: "32Mi"
+            cpu: "10m"
@@ -17,8 +17,6 @@ spec:
       annotations:
         prometheus.io/scrape: 'true'
     spec:
-      nodeSelector:
-        used-for: test-pods
       containers:
       - name: podinfod
         image: stefanprodan/podinfo:1.5.1@sha256:702633d438950f3675d0763a4ca6cfcf21a4d065cd7f470446c67607b1a26750
 
@@ -107,31 +107,8 @@ var _ = Describe("(Integration) [EKS Addons test]", func() {
 				return cmd
 			}, "5m", "30s").Should(RunSuccessfullyWithOutputStringLines(ContainElement(ContainSubstring("ACTIVE"))))
 
-			By("successfully creating the kube-proxy addon")
-			cmd := params.EksctlCreateCmd.
-				WithArgs(
-					"addon",
-					"--name", "kube-proxy",
-					"--cluster", clusterName,
-					"--force",
-					"--wait",
-					"--verbose", "2",
-				)
-			Expect(cmd).To(RunSuccessfully())
-
-			Eventually(func() runner.Cmd {
-				cmd := params.EksctlGetCmd.
-					WithArgs(
-						"addon",
-						"--name", "kube-proxy",
-						"--cluster", clusterName,
-						"--verbose", "2",
-					)
-				return cmd
-			}, "5m", "30s").Should(RunSuccessfullyWithOutputStringLines(ContainElement(ContainSubstring("ACTIVE"))))
-
 			By("Deleting the kube-proxy addon")
-			cmd = params.EksctlDeleteCmd.
+			cmd := params.EksctlDeleteCmd.
 				WithArgs(
 					"addon",
 					"--name", "kube-proxy",
@@ -155,12 +132,45 @@ var _ = Describe("(Integration) [EKS Addons test]", func() {
 		})
 
 		It("should have full control over configMap when creating addons", func() {
-			var (
-				clusterConfig *api.ClusterConfig
-				configMap     *corev1.ConfigMap
-			)
+			clusterConfig := getInitialClusterConfig()
+			clusterConfig.Addons = []*api.Addon{
+				{
+					Name:    "coredns",
+					Version: "latest",
+				},
+			}
+			cmd := params.EksctlCreateCmd.
+				WithArgs(
+					"addon",
+					"--config-file", "-",
+				).
+				WithoutArg("--region", params.Region).
+				WithStdin(clusterutils.Reader(clusterConfig))
+			Expect(cmd).To(RunSuccessfully())
 
-			configMap = getConfigMap(rawClient.ClientSet(), "coredns")
+			By("deleting coredns but preserving its resources")
+			cmd = params.EksctlDeleteCmd.
+				WithArgs(
+					"addon",
+					"--cluster", clusterConfig.Metadata.Name,
+					"--name", "coredns",
+					"--verbose", "4",
+					"--preserve",
+					"--region", params.Region,
+				)
+			Expect(cmd).To(RunSuccessfully())
+
+			Eventually(func() runner.Cmd {
+				return params.EksctlGetCmd.
+					WithArgs(
+						"addon",
+						"--name", "coredns",
+						"--cluster", clusterName,
+						"--verbose", "4",
+					)
+			}, "5m", "30s").ShouldNot(RunSuccessfully())
+
+			configMap := getConfigMap(rawClient.ClientSet(), "coredns")
 			oldCacheValue := getCacheValue(configMap)
 			newCacheValue := addToString(oldCacheValue, 5)
 			updateCacheValue(configMap, oldCacheValue, newCacheValue)
@@ -178,14 +188,14 @@ var _ = Describe("(Integration) [EKS Addons test]", func() {
 			data, err := json.Marshal(clusterConfig)
 			Expect(err).NotTo(HaveOccurred())
 
-			cmd := params.EksctlCreateCmd.
+			cmd = params.EksctlCreateCmd.
 				WithArgs(
 					"addon",
 					"--config-file", "-",
 				).
 				WithoutArg("--region", params.Region).
 				WithStdin(bytes.NewReader(data))
-			Expect(cmd).ShouldNot(RunSuccessfully())
+			Expect(cmd).NotTo(RunSuccessfully())
 
 			Eventually(func() runner.Cmd {
 				cmd := params.EksctlGetCmd.
@@ -866,7 +876,11 @@ func getInitialClusterConfig() *api.ClusterConfig {
 			Name:             "vpc-cni",
 			AttachPolicyARNs: []string{"arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy"},
 		},
+		{
+			Name: "kube-proxy",
+		},
 	}
+	clusterConfig.AddonsConfig.DisableDefaultAddons = true
 
 	ng := &api.ManagedNodeGroup{
 		NodeGroupBase: &api.NodeGroupBase{
 
@@ -0,0 +1,85 @@
+//go:build integration
+// +build integration
+
+//revive:disable Not changing package name
+package bare_cluster
+
+import (
+	"context"
+	"testing"
+
+	apierrors "k8s.io/apimachinery/pkg/api/errors"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/kubernetes"
+	"k8s.io/client-go/tools/clientcmd"
+
+	. "github.com/onsi/ginkgo/v2"
+	. "github.com/onsi/gomega"
+
+	. "github.com/weaveworks/eksctl/integration/runner"
+	"github.com/weaveworks/eksctl/integration/tests"
+	clusterutils "github.com/weaveworks/eksctl/integration/utilities/cluster"
+	api "github.com/weaveworks/eksctl/pkg/apis/eksctl.io/v1alpha5"
+	"github.com/weaveworks/eksctl/pkg/testutils"
+)
+
+var params *tests.Params
+
+func init() {
+	testing.Init()
+	params = tests.NewParams("bare-cluster")
+}
+
+func TestBareCluster(t *testing.T) {
+	testutils.RegisterAndRun(t)
+}
+
+var _ = Describe("Bare Clusters", Ordered, func() {
+	var clusterConfig *api.ClusterConfig
+
+	BeforeAll(func() {
+		By("creating a cluster with only VPC CNI and no other default networking addons")
+		clusterConfig = api.NewClusterConfig()
+		clusterConfig.Metadata.Name = params.ClusterName
+		clusterConfig.Metadata.Region = params.Region
+		clusterConfig.AddonsConfig.DisableDefaultAddons = true
+		clusterConfig.Addons = []*api.Addon{
+			{
+				Name:                              "vpc-cni",
+				UseDefaultPodIdentityAssociations: true,
+			},
+			{
+				Name: "eks-pod-identity-agent",
+			},
+		}
+		cmd := params.EksctlCreateCmd.
+			WithArgs(
+				"cluster",
+				"--config-file=-",
+				"--verbose", "4",
+				"--kubeconfig="+params.KubeconfigPath,
+			).
+			WithoutArg("--region", params.Region).
+			WithStdin(clusterutils.Reader(clusterConfig))
+
+		Expect(cmd).To(RunSuccessfully())
+	})
+
+	It("should have only VPC CNI installed", func() {
+		config, err := clientcmd.BuildConfigFromFlags("", params.KubeconfigPath)
+		Expect(err).NotTo(HaveOccurred())
+		clientset, err := kubernetes.NewForConfig(config)
+		Expect(err).NotTo(HaveOccurred())
+		_, err = clientset.AppsV1().Deployments(metav1.NamespaceSystem).Get(context.Background(), "coredns", metav1.GetOptions{})
+		Expect(apierrors.IsNotFound(err)).To(BeTrue(), "expected coredns to not exist")
+		daemonSets := clientset.AppsV1().DaemonSets(metav1.NamespaceSystem)
+		_, err = daemonSets.Get(context.Background(), "kube-proxy", metav1.GetOptions{})
+		Expect(apierrors.IsNotFound(err)).To(BeTrue(), "expected kube-proxy to not exist")
+		_, err = daemonSets.Get(context.Background(), "aws-node", metav1.GetOptions{})
+		Expect(err).NotTo(HaveOccurred(), "expected aws-node to exist")
+	})
+})
+
+var _ = AfterSuite(func() {
+	params.DeleteClusters()
+})
@@ -274,7 +274,7 @@ var _ = Describe("(Integration) Create, Get, Scale & Delete", func() {
 		})
 
 		It("should deploy podinfo service to the cluster and access it via proxy", func() {
-			d := test.CreateDeploymentFromFile(test.Namespace, "../../data/podinfo.yaml")
+			d := test.CreateDeploymentFromFile(test.Namespace, "../../data/crud-podinfo.yaml")
 			test.WaitForDeploymentReady(d, commonTimeout)
 
 			pods := test.ListPodsFromDeployment(d)
@@ -533,7 +533,7 @@ var _ = Describe("(Integration) Create, Get, Scale & Delete", func() {
 				"1.1.1.1/32,2.2.2.0/24",
 				"--approve",
 			)).To(RunSuccessfully())
-			Expect(k8sAPICall()).Should(HaveOccurred())
+			Eventually(k8sAPICall, "5m", "20s").Should(HaveOccurred())
 		})
 
 		It("should re-enable public access", func() {