Skip to content

Commit 4d1f5ba

Browse files
LukaszCzarnotaSabreLukaszCzarnotaSabre
committed
feat: Add support for gVisor per node pool
1 parent bc41a98 commit 4d1f5ba

File tree

10 files changed

+10
-20
lines changed

10 files changed

+10
-20
lines changed

autogen/main/cluster.tf.tmpl

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -577,9 +577,9 @@ resource "google_container_node_pool" "pools" {
577577
}
578578
{% if beta_cluster %}
579579
dynamic "sandbox_config" {
580-
for_each = local.cluster_sandbox_enabled
581-
580+
for_each = tobool((lookup(each.value, "sandbox_enabled", var.sandbox_enabled))) ? ["gvisor"] : []
582581
content {
582+
583583
sandbox_type = sandbox_config.value
584584
}
585585
}

autogen/main/main.tf.tmpl

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -105,8 +105,6 @@ locals {
105105

106106
cluster_gce_pd_csi_config = var.gce_pd_csi_driver ? [{ enabled = true }] : [{ enabled = false }]
107107

108-
cluster_sandbox_enabled = var.sandbox_enabled ? ["gvisor"] : []
109-
110108
{% endif %}
111109

112110
cluster_authenticator_security_group = var.authenticator_security_group == null ? [] : [{

modules/beta-private-cluster-update-variant/cluster.tf

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -523,9 +523,9 @@ resource "google_container_node_pool" "pools" {
523523
}
524524
}
525525
dynamic "sandbox_config" {
526-
for_each = local.cluster_sandbox_enabled
527-
526+
for_each = tobool((lookup(each.value, "sandbox_enabled", var.sandbox_enabled))) ? ["gvisor"] : []
528527
content {
528+
529529
sandbox_type = sandbox_config.value
530530
}
531531
}

modules/beta-private-cluster-update-variant/main.tf

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -96,8 +96,6 @@ locals {
9696

9797
cluster_gce_pd_csi_config = var.gce_pd_csi_driver ? [{ enabled = true }] : [{ enabled = false }]
9898

99-
cluster_sandbox_enabled = var.sandbox_enabled ? ["gvisor"] : []
100-
10199

102100
cluster_authenticator_security_group = var.authenticator_security_group == null ? [] : [{
103101
security_group = var.authenticator_security_group

modules/beta-private-cluster/cluster.tf

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -439,9 +439,9 @@ resource "google_container_node_pool" "pools" {
439439
}
440440
}
441441
dynamic "sandbox_config" {
442-
for_each = local.cluster_sandbox_enabled
443-
442+
for_each = tobool((lookup(each.value, "sandbox_enabled", var.sandbox_enabled))) ? ["gvisor"] : []
444443
content {
444+
445445
sandbox_type = sandbox_config.value
446446
}
447447
}

modules/beta-private-cluster/main.tf

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -96,8 +96,6 @@ locals {
9696

9797
cluster_gce_pd_csi_config = var.gce_pd_csi_driver ? [{ enabled = true }] : [{ enabled = false }]
9898

99-
cluster_sandbox_enabled = var.sandbox_enabled ? ["gvisor"] : []
100-
10199

102100
cluster_authenticator_security_group = var.authenticator_security_group == null ? [] : [{
103101
security_group = var.authenticator_security_group

modules/beta-public-cluster-update-variant/cluster.tf

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -504,9 +504,9 @@ resource "google_container_node_pool" "pools" {
504504
}
505505
}
506506
dynamic "sandbox_config" {
507-
for_each = local.cluster_sandbox_enabled
508-
507+
for_each = tobool((lookup(each.value, "sandbox_enabled", var.sandbox_enabled))) ? ["gvisor"] : []
509508
content {
509+
510510
sandbox_type = sandbox_config.value
511511
}
512512
}

modules/beta-public-cluster-update-variant/main.tf

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -96,8 +96,6 @@ locals {
9696

9797
cluster_gce_pd_csi_config = var.gce_pd_csi_driver ? [{ enabled = true }] : [{ enabled = false }]
9898

99-
cluster_sandbox_enabled = var.sandbox_enabled ? ["gvisor"] : []
100-
10199

102100
cluster_authenticator_security_group = var.authenticator_security_group == null ? [] : [{
103101
security_group = var.authenticator_security_group

modules/beta-public-cluster/cluster.tf

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -420,9 +420,9 @@ resource "google_container_node_pool" "pools" {
420420
}
421421
}
422422
dynamic "sandbox_config" {
423-
for_each = local.cluster_sandbox_enabled
424-
423+
for_each = tobool((lookup(each.value, "sandbox_enabled", var.sandbox_enabled))) ? ["gvisor"] : []
425424
content {
425+
426426
sandbox_type = sandbox_config.value
427427
}
428428
}

modules/beta-public-cluster/main.tf

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -96,8 +96,6 @@ locals {
9696

9797
cluster_gce_pd_csi_config = var.gce_pd_csi_driver ? [{ enabled = true }] : [{ enabled = false }]
9898

99-
cluster_sandbox_enabled = var.sandbox_enabled ? ["gvisor"] : []
100-
10199

102100
cluster_authenticator_security_group = var.authenticator_security_group == null ? [] : [{
103101
security_group = var.authenticator_security_group

0 commit comments

Comments
 (0)