Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vpc: Error when running with FIPS endpoint enabled #28238

Closed
omriman12 opened this issue Dec 3, 2023 · 4 comments
Closed

Vpc: Error when running with FIPS endpoint enabled #28238

omriman12 opened this issue Dec 3, 2023 · 4 comments
Labels
@aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud bug This issue is a bug. effort/small Small work item – less than a day of effort p1

Comments

@omriman12
Copy link

omriman12 commented Dec 3, 2023
edited
Loading

Describe the bug

Deploying a stack with a Vpc construct while AWS_USE_FIPS_ENDPOINT=true fails with an error:

"Inaccessible host: ec2-fips.us-gov-west-1.amazonaws.com' at port undefined'. This service may not be available in the `us-gov-west-1' region.: getaddrinfo ENOTFOUND ec2-fips.us-gov-west-1.amazonaws.com"

Running with AWS_ENDPOINT_URL_EC2=https://ec2.{region_name}.amazonaws.com doesn't help!

Expected Behavior

Stack should be deployed using FIPS endpoints

Current Behavior

Error in synth process

Reproduction Steps

AWS_USE_FIPS_ENDPOINT=true cdk deploy

Stack code in python:


import aws_cdk as cdk
import boto3
from boto3 import session
from constructs import Construct
from aws_cdk.aws_ec2 import Vpc


class TestStack(cdk.Stack):

    def __init__(self, scope: Construct, _id: str, **kwargs) -> None:
        region = session.Session().region_name
        account_id = boto3.client('sts').get_caller_identity().get('Account')
        super().__init__(scope=scope, id=_id, env=cdk.Environment(account=account_id, region=region))

        Vpc(
            self,
            'Vpc',
        )


app = cdk.App()
stack = TestStack(app, "TestStack")
app.synth()

Possible Solution

No response

Additional Information/Context

No response

CDK CLI Version

2.113.0 (build ccd534a)

Framework Version

No response

Node.js Version

v18.1.0

OS

MacOS

Language

Python

Language Version

Python 3.8.15

Other information

No response
@omriman12 omriman12 added bug This issue is a bug. needs-triage This issue or PR still needs to be triaged. labels Dec 3, 2023
@github-actions github-actions bot added the @aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud label Dec 3, 2023
@khushail
Copy link
Contributor

khushail commented Dec 4, 2023

Hi @omriman12 , thanks for reporting this. This issue has been reported earlier and we have internal investigation going on through internal ticket -P106273204. Will keep posting updates here.

@khushail khushail added p1 effort/medium Medium work item – several days of effort needs-review and removed needs-triage This issue or PR still needs to be triaged. labels Dec 4, 2023
@khushail
Copy link
Contributor

khushail commented Dec 6, 2023

@omriman12 , the issue lies with EC2 team and a request has been submitted with the team for resolving this issue. Thanks for keeping patience.

@khushail
Copy link
Contributor

khushail commented Dec 6, 2023
edited
Loading

@omriman12 , the endpoint is updated. you should be unblocked now.

@khushail khushail added effort/small Small work item – less than a day of effort and removed effort/medium Medium work item – several days of effort labels Dec 6, 2023
@khushail khushail closed this as completed Dec 6, 2023
@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 6, 2023

⚠️COMMENT VISIBILITY WARNING⚠️

Comments on closed issues are hard for our team to see.
If you need more assistance, please either tag a team member or open a new issue that references this one.
If you wish to keep having a conversation with other community members under this issue feel free to do so.

@github-actions github-actions bot mentioned this issue Jan 1, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
@aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud bug This issue is a bug. effort/small Small work item – less than a day of effort p1
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@omriman12 @khushail