Add support for EKS Hybrid Nodes (#8062)

add support for hybrid nodes

.golangci.yml

@@ -1,188 +1,187 @@
 # options for analysis running
 run:
-  go: '1.21'
-
-  # default concurrency is a available CPU number
-  concurrency: 4
-
-  # timeout for analysis, e.g. 30s, 5m, default is 1m
-  timeout: 10m
-
-  # exit code when at least one issue was found, default is 1
-  issues-exit-code: 1
-
-  # include test files or not, default is true
-  tests: true
-
-  # list of build tags, all linters use it. Default is empty list.
-  build-tags:
-    - release
-    - integration
-
-  # which dirs to skip: they won't be analyzed;
-  # can use regexp here: generated.*, regexp is applied on full path;
-  # default value is empty list, but next dirs are always skipped independently
-  # from this option's value:
-  #   	vendor$, third_party$, testdata$, examples$, Godeps$, builtin$
-  skip-dirs:
-    - ^vendor$
-    - ^build$
-    - ^pkg\/eks\/mocks$
-
-  # which files to skip: they will be analyzed, but issues from them
-  # won't be reported. Default value is empty list, but there is
-  # no need to include all autogenerated files, we confidently recognize
-  # autogenerated files. If it's not please let us know.
-  skip-files:
-  #  - ".*\\.my\\.go$"
-  #  - lib/bad.go
-    - ^pkg\/nodebootstrap\/assets.go
-    - .*\/export_test.go
-
+    go: "1.21"
+
+    # default concurrency is a available CPU number
+    concurrency: 4
+
+    # timeout for analysis, e.g. 30s, 5m, default is 1m
+    timeout: 10m
+
+    # exit code when at least one issue was found, default is 1
+    issues-exit-code: 1
+
+    # include test files or not, default is true
+    tests: true
+
+    # list of build tags, all linters use it. Default is empty list.
+    build-tags:
+        - release
+        - integration
+
+    # which dirs to skip: they won't be analyzed;
+    # can use regexp here: generated.*, regexp is applied on full path;
+    # default value is empty list, but next dirs are always skipped independently
+    # from this option's value:
+    #   	vendor$, third_party$, testdata$, examples$, Godeps$, builtin$
+    skip-dirs:
+        - ^vendor$
+        - ^build$
+        - ^pkg\/eks\/mocks$
+
+    # which files to skip: they will be analyzed, but issues from them
+    # won't be reported. Default value is empty list, but there is
+    # no need to include all autogenerated files, we confidently recognize
+    # autogenerated files. If it's not please let us know.
+    skip-files:
+        #  - ".*\\.my\\.go$"
+        #  - lib/bad.go
+        - ^pkg\/nodebootstrap\/assets.go
+        - .*\/export_test.go
+        - ^pkg\/cfn\/builder\/fakes\/fake_cfn_template.go
 
 # output configuration options
 output:
-  # colored-line-number|line-number|json|tab|checkstyle, default is "colored-line-number"
-  format: tab
-
-  # print lines of code with issue, default is true
-  print-issued-lines: true
+    # colored-line-number|line-number|json|tab|checkstyle, default is "colored-line-number"
+    format: tab
 
-  # print linter name in the end of issue text, default is true
-  print-linter-name: true
+    # print lines of code with issue, default is true
+    print-issued-lines: true
 
+    # print linter name in the end of issue text, default is true
+    print-linter-name: true
 
 # all available settings of specific linters
 linters-settings:
-  errcheck:
-    # report about not checking of errors in type assetions: `a := b.(MyStruct)`;
-    # default is false: such cases aren't reported by default.
-    check-type-assertions: false
-
-    # report about assignment of errors to blank identifier: `num, _ := strconv.Atoi(numStr)`;
-    # default is false: such cases aren't reported by default.
-    check-blank: false
-  govet:
-    # report about shadowed variables
-    check-shadowing: false
-
-    # Obtain type information from installed (to $GOPATH/pkg) package files:
-    # golangci-lint will execute `go install -i` and `go test -i` for analyzed packages
-    # before analyzing them.
-    # By default this option is disabled and govet gets type information by loader from source code.
-    # Loading from source code is slow, but it's done only once for all linters.
-    # Go-installing of packages first time is much slower than loading them from source code,
-    # therefore this option is disabled by default.
-    # But repeated installation is fast in go >= 1.10 because of build caching.
-    # Enable this option only if all conditions are met:
-    #  1. you use only "fast" linters (--fast e.g.): no program loading occurs
-    #  2. you use go >= 1.10
-    #  3. you do repeated runs (false for CI) or cache $GOPATH/pkg or `go env GOCACHE` dir in CI.
-    use-installed-packages: false
-  revive:
-    confidence: 0.8
-    severity: warning
-    errorCode: 0
-    warningCode: 0
-    rules:
-      - name: blank-imports
-      - name: context-as-argument
-      - name: context-keys-type
-      - name: error-return
-      - name: error-strings
-      - name: error-naming
-      - name: exported
-      - name: if-return
-      - name: increment-decrement
-      - name: var-naming
-      - name: var-declaration
-      - name: package-comments
-      - name: range
-      - name: receiver-naming
-      - name: time-naming
-      - name: unexported-return
-      - name: indent-error-flow
-      - name: errorf
-  gofmt:
-    # simplify code: gofmt with `-s` option, true by default
-    simplify: false
-  gocyclo:
-    # minimal code complexity to report, 30 by default (but we recommend 10-20)
-    min-complexity: 10
-  maligned:
-    # print struct with more effective memory layout or not, false by default
-    suggest-new: true
-  dupl:
-    # tokens count to trigger issue, 150 by default
-    threshold: 100
-  goconst:
-    # minimal length of string constant, 3 by default
-    min-len: 3
-    # minimal occurrences count to trigger, 3 by default
-    min-occurrences: 3
-  depguard:
-    list-type: blacklist
-    include-go-root: false
-    packages:
-      - github.com/golang/glog
-  lll:
-    # max line length, lines longer will be reported. Default is 120.
-    # '\t' is counted as 1 character by default, and can be changed with the tab-width option
-    line-length: 120
-    # tab width in spaces. Default to 1.
-    tab-width: 1
-  unused:
-    # treat code as a program (not a library) and report unused exported identifiers; default is false.
-    # XXX: if you enable this setting, unused will report a lot of false-positives in text editors:
-    # if it's called for subdir of a project it can't find funcs usages. All text editor integrations
-    # with golangci-lint call it on a directory with the changed file.
-    check-exported: false
-  unparam:
-    # call graph construction algorithm (cha, rta). In general, use cha for libraries,
-    # and rta for programs with main packages. Default is cha.
-    algo: cha
-
-    # Inspect exported functions, default is false. Set to true if no external program/library imports your code.
-    # XXX: if you enable this setting, unparam will report a lot of false-positives in text editors:
-    # if it's called for subdir of a project it can't find external interfaces. All text editor integrations
-    # with golangci-lint call it on a directory with the changed file.
-    check-exported: false
-  nakedret:
-    # make an issue if func has more lines of code than this setting and it has naked returns; default is 30
-    max-func-lines: 30
-  prealloc:
-    # XXX: we don't recommend using this linter before doing performance profiling.
-    # For most programs usage of prealloc will be a premature optimization.
-
-    # Report preallocation suggestions only on simple loops that have no returns/breaks/continues/gotos in them.
-    # True by default.
-    simple: true
-    range-loops: true # Report preallocation suggestions on range loops, true by default
-    for-loops: false # Report preallocation suggestions on for loops, false by default
+    errcheck:
+        # report about not checking of errors in type assetions: `a := b.(MyStruct)`;
+        # default is false: such cases aren't reported by default.
+        check-type-assertions: false
+
+        # report about assignment of errors to blank identifier: `num, _ := strconv.Atoi(numStr)`;
+        # default is false: such cases aren't reported by default.
+        check-blank: false
+    govet:
+        # report about shadowed variables
+        check-shadowing: false
+
+        # Obtain type information from installed (to $GOPATH/pkg) package files:
+        # golangci-lint will execute `go install -i` and `go test -i` for analyzed packages
+        # before analyzing them.
+        # By default this option is disabled and govet gets type information by loader from source code.
+        # Loading from source code is slow, but it's done only once for all linters.
+        # Go-installing of packages first time is much slower than loading them from source code,
+        # therefore this option is disabled by default.
+        # But repeated installation is fast in go >= 1.10 because of build caching.
+        # Enable this option only if all conditions are met:
+        #  1. you use only "fast" linters (--fast e.g.): no program loading occurs
+        #  2. you use go >= 1.10
+        #  3. you do repeated runs (false for CI) or cache $GOPATH/pkg or `go env GOCACHE` dir in CI.
+        use-installed-packages: false
+    revive:
+        confidence: 0.8
+        severity: warning
+        errorCode: 0
+        warningCode: 0
+        rules:
+            - name: blank-imports
+            - name: context-as-argument
+            - name: context-keys-type
+            - name: error-return
+            - name: error-strings
+            - name: error-naming
+            - name: exported
+            - name: if-return
+            - name: increment-decrement
+            - name: var-naming
+            - name: var-declaration
+            - name: package-comments
+            - name: range
+            - name: receiver-naming
+            - name: time-naming
+            - name: unexported-return
+            - name: indent-error-flow
+            - name: errorf
+    gofmt:
+        # simplify code: gofmt with `-s` option, true by default
+        simplify: false
+    gocyclo:
+        # minimal code complexity to report, 30 by default (but we recommend 10-20)
+        min-complexity: 10
+    maligned:
+        # print struct with more effective memory layout or not, false by default
+        suggest-new: true
+    dupl:
+        # tokens count to trigger issue, 150 by default
+        threshold: 100
+    goconst:
+        # minimal length of string constant, 3 by default
+        min-len: 3
+        # minimal occurrences count to trigger, 3 by default
+        min-occurrences: 3
+    depguard:
+        list-type: blacklist
+        include-go-root: false
+        packages:
+            - github.com/golang/glog
+    lll:
+        # max line length, lines longer will be reported. Default is 120.
+        # '\t' is counted as 1 character by default, and can be changed with the tab-width option
+        line-length: 120
+        # tab width in spaces. Default to 1.
+        tab-width: 1
+    unused:
+        # treat code as a program (not a library) and report unused exported identifiers; default is false.
+        # XXX: if you enable this setting, unused will report a lot of false-positives in text editors:
+        # if it's called for subdir of a project it can't find funcs usages. All text editor integrations
+        # with golangci-lint call it on a directory with the changed file.
+        check-exported: false
+    unparam:
+        # call graph construction algorithm (cha, rta). In general, use cha for libraries,
+        # and rta for programs with main packages. Default is cha.
+        algo: cha
+
+        # Inspect exported functions, default is false. Set to true if no external program/library imports your code.
+        # XXX: if you enable this setting, unparam will report a lot of false-positives in text editors:
+        # if it's called for subdir of a project it can't find external interfaces. All text editor integrations
+        # with golangci-lint call it on a directory with the changed file.
+        check-exported: false
+    nakedret:
+        # make an issue if func has more lines of code than this setting and it has naked returns; default is 30
+        max-func-lines: 30
+    prealloc:
+        # XXX: we don't recommend using this linter before doing performance profiling.
+        # For most programs usage of prealloc will be a premature optimization.
+
+        # Report preallocation suggestions only on simple loops that have no returns/breaks/continues/gotos in them.
+        # True by default.
+        simple: true
+        range-loops: true # Report preallocation suggestions on range loops, true by default
+        for-loops: false # Report preallocation suggestions on for loops, false by default
 
 issues:
-  max-same-issues: 20
-  # Excluding configuration per-path, per-linter, per-text and per-source
-  exclude-rules:
-    - linters: [golint]
-      text: "should not use dot imports|don't use an underscore in package name"
+    max-same-issues: 20
+    # Excluding configuration per-path, per-linter, per-text and per-source
+    exclude-rules:
+        - linters: [golint]
+          text: "should not use dot imports|don't use an underscore in package name"
 
 linters:
-  disable-all: true
-  enable:
-    - bodyclose
-    - errcheck
-    - gofmt
-    - goimports
-    - revive
-    - gosimple
-    - govet
-    - ineffassign
-    - misspell
-    - staticcheck
-    - typecheck
-    - unused
-    # TODO: enable the below linter in the future
+    disable-all: true
+    enable:
+        - bodyclose
+        - errcheck
+        - gofmt
+        - goimports
+        - revive
+        - gosimple
+        - govet
+        - ineffassign
+        - misspell
+        - staticcheck
+        - typecheck
+        - unused
+        # TODO: enable the below linter in the future
 #    - maligned
 #    - prealloc
 #    - gocyclo

examples/43-hybrid-nodes.yaml

@@ -0,0 +1,23 @@
+# An example of cluster config with remote networking configured.
+apiVersion: eksctl.io/v1alpha5
+kind: ClusterConfig
+
+metadata:
+  name: hybrid-nodes
+  region: us-west-2
+
+accessConfig:
+  authenticationMode: API_AND_CONFIG_MAP
+
+vpc:
+  cidr: 10.226.98.0/23
+
+remoteNetworkConfig:
+  vpcGatewayID: tgw-028fbe2348e6eed74
+  iam:
+    provider: IRA # default is ssm
+    caBundleCert: xxxx
+  remoteNodeNetworks:
+    # eksctl will create, behind the scenes, SG rules, routes, and a VPC gateway attachment,
+    # to facilitate communication between remote network(s) and EKS control plane, via the attached gateway
+    - cidrs: ["10.80.146.0/24"]