Skip to content

feat(windows): add credential provider mirror config for network isolated cluster#8708

Open
fseldow wants to merge 4 commits into
mainfrom
xinhl/cpconfig
Open

feat(windows): add credential provider mirror config for network isolated cluster#8708
fseldow wants to merge 4 commits into
mainfrom
xinhl/cpconfig

Conversation

@fseldow

@fseldow fseldow commented Jun 15, 2026

Copy link
Copy Markdown
Contributor

What this PR does / why we need it:

Which issue(s) this PR fixes:

Fixes #

Copilot AI review requested due to automatic review settings June 15, 2026 10:17
Copilot AI reviewed Jun 15, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the Windows CSE credential provider configuration generation to support network-isolated clusters by adding a registry mirror mapping for MCR when BootstrapProfileContainerRegistryServer is set.

Changes:

  • Add a new Config-CredentialProvider branch that appends mcr.microsoft.com (or MCRRepositoryBase) to matchImages.
  • Add a --registry-mirror argument to the credential provider config when BootstrapProfileContainerRegistryServer is set.

Comment thread staging/cse/windows/configfunc.ps1 Outdated
Comment thread staging/cse/windows/configfunc.ps1
Comment thread staging/cse/windows/configfunc.ps1
fseldow and others added 2 commits June 15, 2026 20:26
@fseldow
ut
fedfd66
@fseldow
Potential fix for pull request finding
d1221d9 
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
Copilot AI review requested due to automatic review settings June 15, 2026 10:42
Copilot AI reviewed Jun 15, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 4 out of 4 changed files in this pull request and generated 2 comments.

Comment thread staging/cse/windows/configfunc.ps1
Comment on lines +401 to 425
elseif (![string]::IsNullOrEmpty($global:BootstrapProfileContainerRegistryServer)) {
$mcrRegistry = if ((Test-Path variable:global:MCRRepositoryBase) -and
-not [string]::IsNullOrEmpty($global:MCRRepositoryBase)) {
([string]$global:MCRRepositoryBase).TrimEnd("/")
}
else {
"mcr.microsoft.com"
}
$credentialProviderConfig = @"
apiVersion: kubelet.config.k8s.io/v1
kind: CredentialProviderConfig
providers:
- name: acr-credential-provider
matchImages:
- "*.azurecr.io"
- "*.azurecr.cn"
- "*.azurecr.de"
- "*.azurecr.us"
- "${mcrRegistry}"
defaultCacheDuration: "10m"
apiVersion: credentialprovider.kubelet.k8s.io/v1
args:
- $azureConfigFile
- --registry-mirror=${mcrRegistry}:$global:BootstrapProfileContainerRegistryServer
"@

@fseldow fseldow Jun 17, 2026

Copy link
Copy Markdown
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we already has trim logic in aks-rp side, so prefer not to implement normalizing the variable every time.
https://msazure.visualstudio.com/CloudNativeCompute/_git/aks-rp?path=/resourceprovider/sharedlib/agentbaker/typeconversion.go&version=GBmaster&line=934&lineEnd=935&lineStartColumn=1&lineEndColumn=1&lineStyle=plain&_a=contents

do we think we should still put trim logic in cse script?

Comment thread staging/cse/windows/configfunc.tests.ps1
Comment on lines +156 to +174
Context 'BootstrapProfileContainerRegistryServer is set with default MCR' {
BeforeEach {
$global:BootstrapProfileContainerRegistryServer = "myregistry.azurecr.io"
# Ensure MCRRepositoryBase is not set so it falls back to mcr.microsoft.com
Remove-Variable -Name MCRRepositoryBase -Scope Global -ErrorAction SilentlyContinue
}
AfterEach {
$global:BootstrapProfileContainerRegistryServer = $null
}
It "should include mcr.microsoft.com in matchImages and registry-mirror arg" {
$expectedCredentialProviderConfig = Read-Format-Yaml ([Io.path]::Combine($credentialProviderConfigDir, "BootstrapProfileContainerRegistryServerDefault.config.yaml"))
Config-CredentialProvider -KubeDir $credentialProviderConfigDir -CredentialProviderConfPath $CredentialProviderConfPATH -CustomCloudContainerRegistryDNSSuffix ""
$acutalCredentialProviderConfig = Read-Format-Yaml $CredentialProviderConfPATH

$normalizedExpected = $expectedCredentialProviderConfig.Trim().Replace("`r`n", "`n")
$normalizedActual = $acutalCredentialProviderConfig.Trim().Replace("`r`n", "`n")
$normalizedActual | Should -Be $normalizedExpected
}
}
timmy-wright
timmy-wright reviewed Jun 16, 2026
View reviewed changes
Comment thread staging/cse/windows/configfunc.ps1 Outdated
apiVersion: credentialprovider.kubelet.k8s.io/v1
args:
- $azureConfigFile
- --registry-mirror=${mcrRegistry}:$global:BootstrapProfileContainerRegistryServer

@timmy-wright timmy-wright Jun 16, 2026

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[HIGH] Zoe — Customer-controlled registry host injected into config without validation

$global:BootstrapProfileContainerRegistryServer is expanded verbatim into a double-quoted YAML here-string and written as a privileged kubelet CredentialProviderConfig. A crafted value containing newlines or YAML metacharacters can inject additional list items or flags into args, changing how acr-credential-provider runs under SYSTEM during node bootstrap.

Suggestion: Validate $global:BootstrapProfileContainerRegistryServer against a strict hostname-only regex (e.g., ^[a-zA-Z0-9.\-]+(:[0-9]+)?$) before interpolation. Reject values with newlines, whitespace, or YAML metacharacters. Consider generating the config via structured YAML serialization rather than here-string concatenation.

@fseldow fseldow Jun 17, 2026

Copy link
Copy Markdown
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

quote added

@timmy-wright

timmy-wright commented Jun 16, 2026

Copy link
Copy Markdown
Contributor

Code Review — feat(windows): add credential provider mirror config for network isolated cluster

Reviewers: Wash (testing), Zoe (security), Simon (correctness), Kaylee (design), Book (resilience), Badger (auth/API contract)

Findings Summary

Severity Count
Critical 0
High 1
Medium 3
Low 1

High

[Zoe] Customer-controlled registry host injected into config without validationstaging/cse/windows/configfunc.ps1 ~L424

$global:BootstrapProfileContainerRegistryServer is expanded verbatim into a double-quoted YAML here-string written as kubelet CredentialProviderConfig. A crafted value containing newlines or YAML metacharacters can inject additional list items or flags into args, changing how acr-credential-provider runs under SYSTEM during node bootstrap. While the value is control-plane-supplied, defence in depth is warranted here given the privilege level.

Fix: Validate against ^[a-zA-Z0-9.\-]+(:[0-9]+)?$ before interpolation; reject anything with whitespace or newlines. Or generate the config via structured YAML serialization.

(Inline comment posted)

Medium

[Wash] TrimEnd("/") normalization not testedstaging/cse/windows/configfunc.tests.ps1

The custom-MCR test uses custom.mcr.contoso.com (no trailing slash). If normalization were broken, the test would still pass. Add a test variant with a trailing-slash value (e.g., custom.mcr.contoso.com/) and verify the fixture matches the trimmed form.

[Kaylee] Function depends on hidden global inputsstaging/cse/windows/configfunc.ps1

Config-CredentialProvider now silently changes behaviour based on $global:BootstrapProfileContainerRegistryServer and $global:MCRRepositoryBase — neither is in its signature. Makes call-site intent invisible and test isolation brittle. Consider passing these as explicit parameters or resolving them at a higher call layer.

[Kaylee] YAML config duplicated across branches (DRY violation)staging/cse/windows/configfunc.ps1

Three near-identical YAML here-strings now exist, varying only in one extra matchImages entry and one extra arg. Any future schema change must be applied in all three. Build shared matchImages/args lists, apply conditional additions, render once.

Low

[Wash] Typo in variable namestaging/cse/windows/configfunc.tests.ps1 (3 occurrences)

$acutalCredentialProviderConfig$actualCredentialProviderConfig

No Issues Found

  • Simon (correctness/logic): No findings
  • Book (resilience/failure modes): No findings
  • Badger (auth/API contract): No findings

Process Note

PR description is unfilled — the template fields ("What this PR does", issue link) are blank. Please fill them in before merge.

Overall Recommendation

✅ Approve with suggestions

The core logic is correct and tests cover the main happy paths. The High finding (input validation) should be addressed before merge given the privileged execution context. The Medium findings are reasonable follow-ups but don't block the feature.

r2k1
r2k1 reviewed Jun 16, 2026
View reviewed changes
Comment thread staging/cse/windows/configfunc.ps1 Outdated
r2k1
r2k1 reviewed Jun 16, 2026
View reviewed changes
Comment thread staging/cse/windows/configfunc.tests.ps1
Context 'BootstrapProfileContainerRegistryServer is set with custom MCRRepositoryBase' {
BeforeEach {
$global:BootstrapProfileContainerRegistryServer = "myregistry.azurecr.io"
$global:MCRRepositoryBase = "custom.mcr.contoso.com"

@r2k1 r2k1 Jun 16, 2026

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🟢 Low / Test Coverage — This value has no trailing slash, so the .TrimEnd("/") you added in configfunc.ps1 never runs in the tests. Set it to custom.mcr.contoso.com/ and keep the fixture without the slash, so the test proves the trim works.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@r2k1 r2k1 r2k1 left review comments

@timmy-wright timmy-wright timmy-wright left review comments

Copilot code review Copilot Copilot left review comments

@cameronmeissner cameronmeissner Awaiting requested review from cameronmeissner cameronmeissner is a code owner

@ganeshkumarashok ganeshkumarashok Awaiting requested review from ganeshkumarashok ganeshkumarashok is a code owner

@Devinwong Devinwong Awaiting requested review from Devinwong Devinwong is a code owner

@lilypan26 lilypan26 Awaiting requested review from lilypan26 lilypan26 is a code owner

@AbelHu AbelHu Awaiting requested review from AbelHu AbelHu is a code owner

@djsly djsly Awaiting requested review from djsly djsly is a code owner

@phealy phealy Awaiting requested review from phealy phealy is a code owner

@zachary-bailey zachary-bailey Awaiting requested review from zachary-bailey zachary-bailey is a code owner

@awesomenix awesomenix Awaiting requested review from awesomenix awesomenix is a code owner

@mxj220 mxj220 Awaiting requested review from mxj220 mxj220 is a code owner

@pdamianov-dev pdamianov-dev Awaiting requested review from pdamianov-dev pdamianov-dev is a code owner

@calvin197 calvin197 Awaiting requested review from calvin197 calvin197 is a code owner

@sulixu sulixu Awaiting requested review from sulixu sulixu is a code owner

@surajssd surajssd Awaiting requested review from surajssd surajssd is a code owner

@SriHarsha001 SriHarsha001 Awaiting requested review from SriHarsha001 SriHarsha001 is a code owner

@runzhen runzhen Awaiting requested review from runzhen runzhen is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@fseldow @timmy-wright @r2k1