Add combined template

dalec artifact template

Author: willie-yao

templates/test/ci/cluster-template-prow-dalec-custom-builds.yaml

@@ -0,0 +1,31 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+namespace: default
+resources:
+- ../prow-apiserver-ilb-custom-images
+- patches/azl3-machine-deployment.yaml
+patches:
+- path: patches/kubeadm-bootstrap-custom-builds.yaml
+  target:
+    group: bootstrap.cluster.x-k8s.io
+    kind: KubeadmConfigTemplate
+    name: ^[^-]*-md-0$
+    namespace: default
+    version: v1beta1
+- path: patches/control-plane-custom-builds.yaml
+  target:
+    group: controlplane.cluster.x-k8s.io
+    kind: KubeadmControlPlane
+    name: .*-control-plane
+    version: v1beta1
+- path: patches/delete-machine-health-check.yaml
+  target:
+    group: cluster.x-k8s.io
+    kind: MachineHealthCheck
+    name: .*-control-plane
+    namespace: default
+    version: v1beta1
+
+sortOptions:
+  order: fifo
+

templates/test/ci/prow-dalec-custom-builds/kustomization.yaml

@@ -0,0 +1,152 @@
+---
+apiVersion: cluster.x-k8s.io/v1beta1
+kind: MachineDeployment
+metadata:
+  name: "${CLUSTER_NAME}-azl3-md-0"
+spec:
+  clusterName: "${CLUSTER_NAME}"
+  replicas: ${AZL3_WORKER_MACHINE_COUNT:=2}
+  selector:
+    matchLabels:
+  template:
+    spec:
+      clusterName: "${CLUSTER_NAME}"
+      version: "${KUBERNETES_VERSION}"
+      bootstrap:
+        configRef:
+          name: "${CLUSTER_NAME}-azl3-md-0"
+          apiVersion: bootstrap.cluster.x-k8s.io/v1beta1
+          kind: KubeadmConfigTemplate
+      infrastructureRef:
+        name: "${CLUSTER_NAME}-azl3-md-0"
+        apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+        kind: AzureMachineTemplate
+---
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+kind: AzureMachineTemplate
+metadata:
+  name: "${CLUSTER_NAME}-azl3-md-0"
+spec:
+  template:
+    spec:
+      vmSize: ${AZURE_NODE_MACHINE_TYPE}
+      osDisk:
+        osType: "Linux"
+        diskSizeGB: 128
+      sshPublicKey: ${AZURE_SSH_PUBLIC_KEY_B64:=""}
+      image:
+        computeGallery:
+          gallery: ClusterAPI-f72ceb4f-5159-4c26-a0fe-2ea738f0d019
+          name: capi-azurelinux-3
+          version: ${AZL3_VERSION:="1.33.2"}
+---
+apiVersion: bootstrap.cluster.x-k8s.io/v1beta1
+kind: KubeadmConfigTemplate
+metadata:
+  name: "${CLUSTER_NAME}-azl3-md-0"
+spec:
+  template:
+    spec:
+      files:
+      - content: |
+          #!/bin/bash
+
+          set -o nounset
+          set -o pipefail
+          set -o errexit
+
+          # Install ca-certificates packages for Azure Linux
+          tdnf install -y ca-certificates ca-certificates-legacy
+          update-ca-trust
+          
+          # Follow Azure Linux 3 docs exactly - completely permissive for debugging
+          # Change default policy to ACCEPT (as recommended by AZL3 docs)
+          iptables -P INPUT ACCEPT
+          iptables -P FORWARD ACCEPT
+          iptables -P OUTPUT ACCEPT
+
+          ip6tables -P INPUT ACCEPT
+          ip6tables -P FORWARD ACCEPT
+          ip6tables -P OUTPUT ACCEPT
+
+          # Flush any rules which would filter packets
+          iptables -F
+          ip6tables -F
+
+          iptables-save > /etc/systemd/scripts/ip4save
+          ip6tables-save > /etc/systemd/scripts/ip6save
+        path: /tmp/azl3-setup.sh
+        owner: "root:root"
+        permissions: "0744"
+      - contentFrom:
+          secret:
+            name: ${CLUSTER_NAME}-azl3-md-0-azure-json
+            key: worker-node-azure.json
+        owner: root:root
+        path: /etc/kubernetes/azure.json
+        permissions: "0644"
+      - content: |
+          #!/bin/bash
+
+          set -o nounset
+          set -o pipefail
+          set -o errexit
+
+          systemctl stop kubelet
+
+          declare -a BINARIES=("kubeadm" "kubectl" "kubelet")
+
+          # Define the base URL and version
+          BASE_URL="https://kubernetesreleases.blob.core.windows.net/dalec-packages"
+          VERSION="${KUBERNETES_VERSION}"
+          VERSION=$${VERSION#v}
+          OS_VERSION="azl3"
+          ARCH="x86_64"
+
+          for BINARY in "$${BINARIES[@]}"; do
+            echo "* downloading and extracting binary: $${BINARY} $${VERSION}"
+            RPM_FILE="/tmp/$${BINARY}-$${VERSION}-1.$${OS_VERSION}.$${ARCH}.rpm"
+            RPM_URL="$${BASE_URL}/$${BINARY}/$${VERSION}/$${OS_VERSION}/$${ARCH}/$${BINARY}-$${VERSION}-1.$${OS_VERSION}.$${ARCH}.rpm"
+
+            echo "Downloading from: $${RPM_URL}"
+            curl -L --retry 10 --retry-delay 5 "$${RPM_URL}" --output "$${RPM_FILE}"
+
+            # Extract binary from RPM package in a temporary directory
+            echo "Extracting $${BINARY} binary to /usr/bin"
+            TEMP_DIR="/tmp/$${BINARY}-extract-$$"
+            mkdir -p "$${TEMP_DIR}"
+            cd "$${TEMP_DIR}"
+            rpm2cpio "$${RPM_FILE}" | cpio -idmv
+            
+            # Move the binary to the correct location
+            if [ -f "./usr/bin/$${BINARY}" ]; then
+              mv "./usr/bin/$${BINARY}" "/usr/bin/$${BINARY}"
+              chmod +x "/usr/bin/$${BINARY}"
+            else
+              echo "Error: Binary $${BINARY} not found in RPM package"
+              exit 1
+            fi
+
+            # Clean up
+            cd /
+            rm -rf "$${TEMP_DIR}"
+            rm -f "$${RPM_FILE}"
+          done
+
+          systemctl restart kubelet
+
+          echo "kubeadm version: $(kubeadm version -o=short)"
+          echo "kubectl version: $(kubectl version --client=true)"
+          echo "kubelet version: $(kubelet --version)"
+        path: /opt/install-custom-k8s-binaries.sh
+        owner: "root:root"
+        permissions: "0744"
+      preKubeadmCommands:
+      - bash -c /tmp/azl3-setup.sh
+      - echo '${AZURE_INTERNAL_LB_PRIVATE_IP}   ${CLUSTER_NAME}-${APISERVER_LB_DNS_SUFFIX}.${AZURE_LOCATION}.cloudapp.azure.com' >> /etc/hosts
+      - bash -c /opt/install-custom-k8s-binaries.sh
+      joinConfiguration:
+        nodeRegistration:
+          name: '{{ ds.meta_data["local_hostname"] }}'
+          kubeletExtraArgs:
+            cloud-provider: external

templates/test/ci/prow-dalec-custom-builds/patches/azl3-machine-deployment.yaml

@@ -0,0 +1,10 @@
+- op: add
+  path: /spec/template/spec/files/-
+  value:
+    contentFrom:
+      secret:
+        name: ${CLUSTER_NAME}-azl3-md-0-azure-json
+        key: worker-node-azure.json
+    owner: root:root
+    path: /etc/kubernetes/azure.json
+    permissions: "0644"

templates/test/ci/prow-dalec-custom-builds/patches/azl3-worker-azure-json.yaml

@@ -0,0 +1,46 @@
+- op: add
+  path: /spec/kubeadmConfigSpec/files/-
+  value:
+    content: |
+      #!/bin/bash
+      set -o nounset
+      set -o pipefail
+      set -o errexit
+      systemctl stop kubelet
+      declare -a BINARIES=("kubeadm" "kubectl" "kubelet")
+      # Define the base URL and version
+      BASE_URL="https://kubernetesreleases.blob.core.windows.net/dalec-packages"
+      VERSION="${KUBERNETES_VERSION}"
+      VERSION=$${VERSION#v}
+      OS_VERSION="ubuntu24.04"
+      ARCH="amd64"
+      for BINARY in "$${BINARIES[@]}"; do
+        if [[ "$${BINARY}" == "kubelet" ]]; then
+          DEB_VERSION="ubuntu24.04u1"
+        else
+          DEB_VERSION="ubuntu24.04u2"
+        fi
+        echo "* downloading and extracting binary: $${BINARY} $${VERSION} with deb version $${DEB_VERSION}"
+        DEB_FILE="/tmp/$${BINARY}_$${VERSION}-$${DEB_VERSION}_$${ARCH}.deb"
+        DEB_URL="$${BASE_URL}/$${BINARY}/$${VERSION}/$${OS_VERSION}/$${ARCH}/$${BINARY}_$${VERSION}-$${DEB_VERSION}_$${ARCH}.deb"
+        echo "Downloading from: $${DEB_URL}"
+        curl -L --retry 10 --retry-delay 5 "$${DEB_URL}" --output "$${DEB_FILE}"
+        # Extract just the binary from the deb package directly to /usr/bin
+        echo "Extracting $${BINARY} binary to /usr/bin"
+        dpkg-deb --fsys-tarfile "$${DEB_FILE}" | tar -xf - --strip-components=3 -C /usr/bin ./usr/bin/$${BINARY}
+        chmod +x "/usr/bin/$${BINARY}"
+        # Clean up the downloaded deb file
+        rm -f "$${DEB_FILE}"
+      done
+      systemctl restart kubelet
+      echo "kubeadm version: $(kubeadm version -o=short)"
+      echo "kubectl version: $(kubectl version --client=true)"
+      echo "kubelet version: $(kubelet --version)"
+    path: /tmp/replace-k8s-binaries.sh
+    owner: "root:root"
+    permissions: "0744"
+- op: add
+  path: /spec/kubeadmConfigSpec/preKubeadmCommands/-
+  value:
+    bash -c /tmp/replace-k8s-binaries.sh
+  

templates/test/ci/prow-dalec-custom-builds/patches/control-plane-custom-builds.yaml

@@ -0,0 +1,6 @@
+apiVersion: cluster.x-k8s.io/v1beta1
+kind: MachineHealthCheck
+metadata:
+  name: ${CLUSTER_NAME}-control-plane
+  namespace: default
+$patch: delete

templates/test/ci/prow-dalec-custom-builds/patches/delete-machine-health-check.yaml

@@ -0,0 +1,45 @@
+- op: add
+  path: /spec/template/spec/files/-
+  value:
+    content: |
+      #!/bin/bash
+      set -o nounset
+      set -o pipefail
+      set -o errexit
+      systemctl stop kubelet
+      declare -a BINARIES=("kubeadm" "kubectl" "kubelet")
+      # Define the base URL and version
+      BASE_URL="https://kubernetesreleases.blob.core.windows.net/dalec-packages"
+      VERSION="${KUBERNETES_VERSION}"
+      VERSION=$${VERSION#v}
+      OS_VERSION="ubuntu24.04"
+      ARCH="amd64"
+      for BINARY in "$${BINARIES[@]}"; do
+        if [[ "$${BINARY}" == "kubelet" ]]; then
+          DEB_VERSION="ubuntu24.04u1"
+        else
+          DEB_VERSION="ubuntu24.04u2"
+        fi
+        echo "* downloading and extracting binary: $${BINARY} $${VERSION} with deb version $${DEB_VERSION}"
+        DEB_FILE="/tmp/$${BINARY}_$${VERSION}-$${DEB_VERSION}_$${ARCH}.deb"
+        DEB_URL="$${BASE_URL}/$${BINARY}/$${VERSION}/$${OS_VERSION}/$${ARCH}/$${BINARY}_$${VERSION}-$${DEB_VERSION}_$${ARCH}.deb"
+        echo "Downloading from: $${DEB_URL}"
+        curl -L --retry 10 --retry-delay 5 "$${DEB_URL}" --output "$${DEB_FILE}"
+        # Extract just the binary from the deb package directly to /usr/bin
+        echo "Extracting $${BINARY} binary to /usr/bin"
+        dpkg-deb --fsys-tarfile "$${DEB_FILE}" | tar -xf - --strip-components=3 -C /usr/bin ./usr/bin/$${BINARY}
+        chmod +x "/usr/bin/$${BINARY}"
+        # Clean up the downloaded deb file
+        rm -f "$${DEB_FILE}"
+      done
+      systemctl restart kubelet
+      echo "kubeadm version: $(kubeadm version -o=short)"
+      echo "kubectl version: $(kubectl version --client=true)"
+      echo "kubelet version: $(kubelet --version)"
+    path: /tmp/replace-k8s-binaries.sh
+    owner: "root:root"
+    permissions: "0744"
+- op: add
+  path: /spec/template/spec/preKubeadmCommands/-
+  value:
+    bash -c /tmp/replace-k8s-binaries.sh

templates/test/ci/prow-dalec-custom-builds/patches/kubeadm-bootstrap-custom-builds.yaml

@@ -186,6 +186,12 @@ providers:
         targetName: "cluster-template-apiserver-ilb.yaml"
       - sourcePath: "${PWD}/templates/test/ci/cluster-template-prow-apiserver-ilb-custom-images.yaml"
         targetName: "cluster-template-apiserver-ilb-custom-images.yaml"
+      - sourcePath: "${PWD}/templates/test/ci/cluster-template-prow-custom-builds-apiserver-ilb-custom-images.yaml"
+        targetName: "cluster-template-custom-builds-apiserver-ilb-custom-images.yaml"
+      - sourcePath: "${PWD}/templates/test/ci/cluster-template-prow-custom-builds-azl3.yaml"
+        targetName: "cluster-template-custom-builds-azl3.yaml"
+      - sourcePath: "${PWD}/templates/test/ci/cluster-template-prow-dalec-custom-builds.yaml"
+        targetName: "cluster-template-dalec-custom-builds.yaml"
       - sourcePath: "${PWD}/templates/test/ci/cluster-template-prow-azl3.yaml"
         targetName: "cluster-template-azl3.yaml"
       replacements: