bootstrapper: plumb ip-family through kubeadm, kubelet and control-plane alias

Author: kartikjoshi21

pkg/drivers/kic/oci/network_create.go

@@ -163,7 +163,7 @@ func CreateNetworkWithIPFamily(ociBin, networkName, subnet, subnetv6, staticIP,
 				klog.Errorf("error creating dual-stack network %s: %v", networkName, err)
 				return nil, fmt.Errorf("un-retryable: %w", err)
 			}
-			return nil, fmt.Errorf("failed to create %s network %s (dual): %w", ociBin, networkName, lastErr)
+			return nil, fmt.Errorf("failed to create %s network %s (dual): %v", ociBin, networkName, lastErr)
 		}
 
 		// ipv6-only (no IPv4)

pkg/minikube/bootstrapper/bsutil/ktmpl/v1beta1.go

@@ -36,8 +36,10 @@ bootstrapTokens:
 nodeRegistration:
   criSocket: {{if .CRISocket}}{{.CRISocket}}{{else}}/var/run/dockershim.sock{{end}}
   name: "{{.NodeName}}"
+{{- if .NodeIP }}
   kubeletExtraArgs:
     node-ip: {{.NodeIP}}
+{{- end }}
   taints: []
 ---
 apiVersion: kubeadm.k8s.io/v1beta1
@@ -93,7 +95,7 @@ staticPodPath: {{.StaticPodPath}}
 apiVersion: kubeproxy.config.k8s.io/v1alpha1
 kind: KubeProxyConfiguration
 clusterCIDR: "{{.PodSubnet }}"
-metricsBindAddress: 0.0.0.0:10249
+metricsBindAddress: {{.KubeProxyMetricsBindAddress}}
 conntrack:
   maxPerCore: 0
 # Skip setting "net.netfilter.nf_conntrack_tcp_timeout_established"

pkg/minikube/bootstrapper/bsutil/ktmpl/v1beta2.go

@@ -24,7 +24,7 @@ var V1Beta2 = template.Must(template.New("configTmpl-v1beta2").Funcs(template.Fu
 }).Parse(`apiVersion: kubeadm.k8s.io/v1beta2
 kind: InitConfiguration
 localAPIEndpoint:
-  advertiseAddress: {{.AdvertiseAddress}}
+  advertiseAddress: "{{.AdvertiseAddress}}"
   bindPort: {{.APIServerPort}}
 bootstrapTokens:
   - groups:
@@ -36,16 +36,28 @@ bootstrapTokens:
 nodeRegistration:
   criSocket: {{if .CRISocket}}{{.CRISocket}}{{else}}/var/run/dockershim.sock{{end}}
   name: "{{.NodeName}}"
+{{- if .NodeIP }}
   kubeletExtraArgs:
-    node-ip: {{.NodeIP}}
+    node-ip: "{{.NodeIP}}"
+{{- end }}
   taints: []
 ---
 apiVersion: kubeadm.k8s.io/v1beta2
 kind: ClusterConfiguration
 {{ if .ImageRepository}}imageRepository: {{.ImageRepository}}
 {{end}}{{range .ComponentOptions}}{{.Component}}:
+{{- if eq .Component "apiServer" }}
+  {{- if $.APIServerCertSANs }}
+  certSANs:
+  {{- range $.APIServerCertSANs }}
+    - "{{ . }}"
+  {{- end }}
+  {{- end }}
+{{- end }}
 {{- range $k, $v := .Pairs }}
+  {{- if not (and (eq .Component "apiServer") (eq $k "certSANs")) }}
   {{$k}}: {{$v}}
+  {{- end }}
 {{- end}}
   extraArgs:
 {{- range $i, $val := printMapInOrder .ExtraArgs ": " }}
@@ -72,7 +84,7 @@ kubernetesVersion: {{.KubernetesVersion}}
 networking:
   dnsDomain: {{if .DNSDomain}}{{.DNSDomain}}{{else}}cluster.local{{end}}
   podSubnet: "{{.PodSubnet }}"
-  serviceSubnet: {{.ServiceCIDR}}
+  serviceSubnet: "{{.ServiceCIDR}}"
 ---
 apiVersion: kubelet.config.k8s.io/v1beta1
 kind: KubeletConfiguration
@@ -96,7 +108,7 @@ staticPodPath: {{.StaticPodPath}}
 apiVersion: kubeproxy.config.k8s.io/v1alpha1
 kind: KubeProxyConfiguration
 clusterCIDR: "{{.PodSubnet }}"
-metricsBindAddress: 0.0.0.0:10249
+metricsBindAddress: "{{.KubeProxyMetricsBindAddress}}"
 conntrack:
   maxPerCore: 0
 # Skip setting "net.netfilter.nf_conntrack_tcp_timeout_established"

pkg/minikube/bootstrapper/bsutil/ktmpl/v1beta3.go

@@ -24,7 +24,7 @@ var V1Beta3 = template.Must(template.New("configTmpl-v1beta3").Funcs(template.Fu
 }).Parse(`apiVersion: kubeadm.k8s.io/v1beta3
 kind: InitConfiguration
 localAPIEndpoint:
-  advertiseAddress: {{.AdvertiseAddress}}
+  advertiseAddress: "{{.AdvertiseAddress}}"
   bindPort: {{.APIServerPort}}
 bootstrapTokens:
   - groups:
@@ -36,16 +36,28 @@ bootstrapTokens:
 nodeRegistration:
   criSocket: {{if .CRISocket}}{{if .PrependCriSocketUnix}}unix://{{end}}{{.CRISocket}}{{else}}{{if .PrependCriSocketUnix}}unix://{{end}}/var/run/dockershim.sock{{end}}
   name: "{{.NodeName}}"
+{{- if .NodeIP }}
   kubeletExtraArgs:
-    node-ip: {{.NodeIP}}
+    node-ip: "{{.NodeIP}}"
+{{- end }}
   taints: []
 ---
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
 {{ if .ImageRepository}}imageRepository: {{.ImageRepository}}
 {{end}}{{range .ComponentOptions}}{{.Component}}:
+{{- if eq .Component "apiServer" }}
+  {{- if $.APIServerCertSANs }}
+  certSANs:
+  {{- range $.APIServerCertSANs }}
+    - "{{ . }}"
+  {{- end }}
+  {{- end }}
+{{- end }}
 {{- range $k, $v := .Pairs }}
+  {{- if not (and (eq .Component "apiServer") (eq $k "certSANs")) }}
   {{$k}}: {{$v}}
+  {{- end }}
 {{- end}}
   extraArgs:
 {{- range $i, $val := printMapInOrder .ExtraArgs ": " }}
@@ -70,7 +82,7 @@ kubernetesVersion: {{.KubernetesVersion}}
 networking:
   dnsDomain: {{if .DNSDomain}}{{.DNSDomain}}{{else}}cluster.local{{end}}
   podSubnet: "{{.PodSubnet }}"
-  serviceSubnet: {{.ServiceCIDR}}
+  serviceSubnet: "{{.ServiceCIDR}}"
 ---
 apiVersion: kubelet.config.k8s.io/v1beta1
 kind: KubeletConfiguration
@@ -95,7 +107,7 @@ resolvConf: /etc/kubelet-resolv.conf{{end}}
 apiVersion: kubeproxy.config.k8s.io/v1alpha1
 kind: KubeProxyConfiguration
 clusterCIDR: "{{.PodSubnet }}"
-metricsBindAddress: 0.0.0.0:10249
+metricsBindAddress: "{{.KubeProxyMetricsBindAddress}}"
 conntrack:
   maxPerCore: 0
 # Skip setting "net.netfilter.nf_conntrack_tcp_timeout_established"

pkg/minikube/bootstrapper/bsutil/ktmpl/v1beta4.go

@@ -24,7 +24,7 @@ var V1Beta4 = template.Must(template.New("configTmpl-v1beta4").Funcs(template.Fu
 }).Parse(`apiVersion: kubeadm.k8s.io/v1beta4
 kind: InitConfiguration
 localAPIEndpoint:
-  advertiseAddress: {{.AdvertiseAddress}}
+  advertiseAddress: "{{.AdvertiseAddress}}"
   bindPort: {{.APIServerPort}}
 bootstrapTokens:
   - groups:
@@ -36,20 +36,34 @@ bootstrapTokens:
 nodeRegistration:
   criSocket: {{if .CRISocket}}{{if .PrependCriSocketUnix}}unix://{{end}}{{.CRISocket}}{{else}}{{if .PrependCriSocketUnix}}unix://{{end}}/var/run/dockershim.sock{{end}}
   name: "{{.NodeName}}"
+{{- if .NodeIP }}
   kubeletExtraArgs:
     - name: "node-ip"
       value: "{{.NodeIP}}"
+{{- end }}
   taints: []
 ---
 apiVersion: kubeadm.k8s.io/v1beta4
 kind: ClusterConfiguration
 {{ if .ImageRepository}}imageRepository: {{.ImageRepository}}
-{{end}}{{range .ComponentOptions}}{{.Component}}:
-{{- range $k, $v := .Pairs }}
+{{end}}{{range .ComponentOptions }}
+  {{- $co := . }}
+{{$co.Component}}:
+{{- if eq $co.Component "apiServer" }}
+  {{- if $.APIServerCertSANs }}
+  certSANs:
+  {{- range $.APIServerCertSANs }}
+    - "{{ . }}"
+  {{- end }}
+  {{- end }}
+{{- end }}
+{{- range $k, $v := $co.Pairs }}
+  {{- if not (and (eq $co.Component "apiServer") (eq $k "certSANs")) }}
   {{$k}}: {{$v}}
+  {{- end }}
 {{- end}}
   extraArgs:
-{{- range $key, $val := .ExtraArgs }}
+{{- range $key, $val := $co.ExtraArgs }}
     - name: "{{$key}}"
       value: "{{$val}}"
 {{- end}}
@@ -59,7 +73,7 @@ kind: ClusterConfiguration
 {{end -}}{{end -}}
 certificatesDir: {{.CertDir}}
 clusterName: mk
-controlPlaneEndpoint: {{.ControlPlaneAddress}}:{{.APIServerPort}}
+controlPlaneEndpoint: "{{.ControlPlaneEndpoint}}"
 etcd:
   local:
     dataDir: {{.EtcdDataDir}}
@@ -73,7 +87,7 @@ kubernetesVersion: {{.KubernetesVersion}}
 networking:
   dnsDomain: {{if .DNSDomain}}{{.DNSDomain}}{{else}}cluster.local{{end}}
   podSubnet: "{{.PodSubnet }}"
-  serviceSubnet: {{.ServiceCIDR}}
+  serviceSubnet: "{{.ServiceCIDR}}"
 ---
 apiVersion: kubelet.config.k8s.io/v1beta1
 kind: KubeletConfiguration
@@ -98,7 +112,7 @@ resolvConf: /etc/kubelet-resolv.conf{{end}}
 apiVersion: kubeproxy.config.k8s.io/v1alpha1
 kind: KubeProxyConfiguration
 clusterCIDR: "{{.PodSubnet }}"
-metricsBindAddress: 0.0.0.0:10249
+metricsBindAddress: "{{.KubeProxyMetricsBindAddress}}"
 conntrack:
   maxPerCore: 0
 # Skip setting "net.netfilter.nf_conntrack_tcp_timeout_established"