Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

cluster name cannot contain dash (-) #198

Closed
antoniobeyah opened this issue Sep 11, 2017 · 10 comments
Closed

cluster name cannot contain dash (-) #198

antoniobeyah opened this issue Sep 11, 2017 · 10 comments
Labels
kind/feature Categorizes issue or PR as related to a new feature.
Milestone
1.0: ALB Stabiliz...

Comments

@antoniobeyah
Copy link

When loading the latest image, I get the error:

F0911 19:30:22.099545       1 alb-controller.go:79] [ALB-INGRESS] [controller] [ERROR]: Cluster name cannot contain '-'

This issue is not present on the 0.8 image. Can some details be added on why this is a restriction and/or just remove the check?

Ref

Full Log (latest image b58d0f278b):

-> kubectl logs alb-ingress-controller-276746378-09qt2 -n cloudplatform
I0911 19:30:22.064659       1 main.go:24] [ALB-INGRESS] [controller] [INFO]: Log level read as "", defaulting to INFO. To change, set LOG_LEVEL environment variable to WARN, ERROR, or DEBUG.
I0911 19:30:22.064963       1 launch.go:108] &{ALB Ingress Controller 1.0.0 git-00000000 git://github.com/coreos/alb-ingress-controller}
I0911 19:30:22.064984       1 launch.go:111] Watching for ingress class: alb
I0911 19:30:22.065211       1 launch.go:270] Creating API server client for https://10.0.0.1:443
I0911 19:30:22.081043       1 launch.go:127] validated cloudplatform/alb-ingress-controller-default-backend as the default backend
I0911 19:30:22.099498       1 alb-controller.go:67] [ALB-INGRESS] [controller] [INFO]: Ingress class set to alb
F0911 19:30:22.099545       1 alb-controller.go:79] [ALB-INGRESS] [controller] [ERROR]: Cluster name cannot contain '-'

`https://github.com/coreos/alb-ingress-controller/blob/a8342042c7be1ca6ea1ab935924a440c0d7d4ea9/pkg/controller/alb-controller.go#L76-L78
@antoniobeyah antoniobeyah mentioned this issue Sep 14, 2017
Merged
20 tasks
@joshrosso joshrosso added the kind/feature Categorizes issue or PR as related to a new feature. label Sep 14, 2017
@joshrosso
Copy link

@antoniobeyah Please note for your potential PR that the restriction on the dash is rooted in how resolution of the loadbalancer is done in AWS.

Specifically for when we're assembling an ingress list from existing AWS resources.

https://github.com/coreos/alb-ingress-controller/blob/0e1c716458fcd0fd228b1690be76e516f5699b1a/pkg/albingresses/albingresses.go#L81-L86

We use the dash to discern cluster name from other properties.

https://github.com/coreos/alb-ingress-controller/blob/53b0c222aaec9b00605b1f1bf3d57c256e4de78c/pkg/aws/elbv2/elbv2.go#L86-L108

The PR would need to take this in account. I recall ALB naming being quite restrictive, so this might be something to look into.

@alexmbird
Copy link

alexmbird commented Sep 14, 2017
edited
Loading

I've just run into this. Personally I'd be happy with any separator character to use in CLUSTER_NAME. How about an underscore?

NB: just tried an underscore and it results in ValidationError: The load balancer name 'kcl_sand_a-default-myappa-52a9' can only contain characters that are alphanumeric characters and hyphens(-)

@joshrosso
Copy link

joshrosso commented Sep 15, 2017
edited
Loading

Right, that's our biggest limitation at the moment.

Really the CLUSTER_NAME is our way of qualifying that ALB resources belong to an instance of an ALB controller. As I was working on automated subnet detection (meaning qualifying subnets to deploy the ALB to without an annotation #7) CLUSTER_NAME is even more relevant as method that provisioned the kubernetes cluster may have set these tags with a CLUSTER_NAME greater than 11 characters and containing -s.

I'd like to propose we add another environment variable CONTROLLER_ID that has the limitation of no -s and 11 characters. CLUSTER_NAME can then be unrestricted (or at least more so).

I'd like to try implementing this today so let me know your thoughts @antoniobeyah as I know you may have already started on a PR.

@antoniobeyah
Copy link
Author

Instead of trying to control the name of the LB based on the cluster name would it make more sense to just use a tag on the load balancer? That way you can just do an exact match against the tag value?

@joshrosso
Copy link

joshrosso commented Sep 15, 2017
edited
Loading

While that's possible, I think I still like the idea of being able to login to the AWS console and see clearly at a glance what LBs belong to what controller.

I'd rather not just drop a bunch of arbitrary UID(s) or hashs of some sort.

I'm open to adding CLUSTER_NAME as a tag, but would prefer a configurable variable of some sort (e.g. CONTROLLER_ID) to be attached to the name. If CONTROLLER_ID.

This would also prevent us from having to rework a bunch of the assembly logic today.

Thoughts?

@antoniobeyah
Copy link
Author

In that case my vote would be to use the cluster name tag for discovery and just stripping the invalid characters from the LB name for display (use CONTROLLER_ID if present). There is already some precedence for using a cluster tag for cluster specific resources, and it fits naturally into the way AWS expects you to work.

Some use cases for the cluster tag:

  • Tracking costs for a given cluster (the tag can be added as a cost allocation tag and be automatically calculated in aws billing)
  • IAM permissions can be assigned and determined based on tags
  • Aligns with other products (i.e. Tectonic adds in a kubernetes.io/cluster/<cluster_name> tag)
  • No need for a person to understand the logic if the name creation when trying to narrow resources down to a specific cluster

I'm not opposed to having a CONTROLLER_ID but I would ask that it not be a required value and we use the cluster name tag as the discovery mechanism because it aligns with how a person would discover the resources if they were drilling down to a specific cluster.

@joshrosso
Copy link

@antoniobeyah, stripping the invalid characters for just the alb naming sgtm.

@joshrosso
Copy link

Let me know if/when you start work on this so I don't duplicate effort.

@joshrosso joshrosso added this to the 1.0: ALB Stabilization milestone Sep 16, 2017
joshrosso added a commit that referenced this issue Sep 20, 2017
@joshrosso
Remove character restriction from CLUSTER_NAME env var
918d034 
- No longer limited to 11 characters and no `-` characters in the
CLUSTER_NAME environment variable.

- This restriction was originally introduced due to naming limitations
in the ALB controller. Going forward, we create a second field to hold
the albNamePrefix. This field still uses the value of CLUSTER_NAME but
strips any `-` characters and limits it to 11 characters.

- Resolves: #198
@joshrosso
Copy link

This limitation has been removed in 918d034

joshrosso added a commit that referenced this issue Sep 20, 2017
@joshrosso
Ensure ALBNamePrefix always complies with AWS
aca9241 
- In AWS, ALB naming must comply with "^[a-zA-Z0-9]+$".

- This commit ensures the CLUSTER_NAME (used as the base for the ALB
Name prefix) is cleaned of any chars that don't match the regex above.

- Relates: #198
@joshrosso
Copy link

Enhanced in aca9241 to ensure ALB name always complies with ^[a-zA-Z0-9]+$

@joshrosso joshrosso mentioned this issue Sep 21, 2017
Closed
@joshrosso joshrosso mentioned this issue Oct 4, 2017
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/feature Categorizes issue or PR as related to a new feature.
Projects
None yet
Milestone
1.0: ALB Stabilization
Development

No branches or pull requests
3 participants
@alexmbird @joshrosso @antoniobeyah