Living document which describes how to build the installer and machine API to support static IPs for a given point in time.
Checklist:
- [D] SPLAT-828: Update the installer platform specification
- [D] SPLAT-846: Apply IP configuration to VM extraconfig to bootstrap/control plane nodes
- [R] SPLAT-843: Update OpenShift API to include vSphere CAPV Static Network Definitions
- [D] SPLAT-847: Generate machine manifests for compute nodes
- [D] SPLAT-848: Generate machine manifests for control plane nodes
- [R] SPLAT-873: start upstream CAPI enhancement for preCreate lifecycle hook
- [D] SPLAT-845: Apply IP configuration to VM extraconfig to compute nodes
- [R] SPLAT-841: Update OpenShift API to include preProvision hook
R=PR in review D=PR in draft
Within the context of static IPs, the installer is responsible for:
- creating bootstrap and control plane VMs with static IPs
- creating compute machinesets with vSphere CAPV Static Network Definitions. The machine API will render the compute VMs with the
- Clone the installer repo
- Apply the installer patches that comprise the current changeset:
curl https://patch-diff.githubusercontent.com/raw/openshift/installer/pull/6982.patch | git apply
curl https://patch-diff.githubusercontent.com/raw/openshift/installer/pull/7023.patch | git apply
curl https://patch-diff.githubusercontent.com/raw/openshift/installer/pull/6512.patch | git apply- Update go.mod to use API extensions in api#1338
replace github.com/openshift/api => github.com/rvanderp3/api v0.0.0-20230320203849-e0ab19eba3b2- Revendor
go mod tidy
go mod vendor- Build the installer
./hack/build.sh- Clone the machine API repo
- Apply the following patches:
curl https://patch-diff.githubusercontent.com/raw/openshift/machine-api-operator/pull/1079.patch | git apply- Update go.mod to use API extensions in api#1338
replace github.com/openshift/api => github.com/rvanderp3/api v0.0.0-20230425185222-828ab2f6180c- Revendor
go mod tidy
go mod vendor- Build the machine-api-operator and push to a registry accessible by the cluster.
REGISTRY="<your image registry>"
podman build . --tag ${REGISTRY}/init/openshift:machine-api-operator-test
podman push --authfile ~/auth.json ${REGISTRY}/init/openshift:machine-api-operator-test- Build an updated release image containing the test machine-api-operator image
RELEASE_IMAGE="<current cluster release image>"
REGISTRY="<your image registry>"
oc adm release new --from-release ${RELEASE_IMAGE} machine-api-operator=${REGISTRY}/init/openshift:machine-api-operator-test --to-image ${REGISTRY}/init/openshift:static-ip-release -a ~/pull-secret.txt- (Optional) Upgrade the cluster
REGISTRY="<your image registry>"
oc adm upgrade --to-image=${REGISTRY}/init/openshift:static-ip-release --force=true --allow-explicit-upgrade=true --allow-upgrade-with-warningsFunctions implemented in draft or higher maturity PRs:
- [*] Bootstrap and control plane nodes receive static IPs
- [*] Draft of openshift/api changes
- Control plane machine manifests reflect static IPs
- [*] Compute machine manifests reflect static IPs
- [*] Implementation of preProvision lifecycle hook
Prerequisites:
- [*] Build the installer
- [*] Build the machine API operator
- [*] Build a release image with the updated machine API operator
- [*] Create install-config.yaml with node IP addresses
- Create manifests
- Create compute machine manifests with a static IP
- Create cluster with the built release image:
export OPENSHIFT_INSTALL_RELEASE_IMAGE_OVERRIDE=${REGISTRY}/init/openshift:static-ip-release
openshift-install create clusterplatform:
vsphere:
datacenter: vanderlab
apiVIP: 192.168.100.200
ingressVIP: 192.168.100.201
network: "lab-pg"
defaultDatastore: workloadDatastore
password: "blahblah"
cluster: cluster1
username: [email protected]
vCenter: your.vcenter.net
hosts:
- role: bootstrap
networkDevice:
ipAddrs:
- 192.168.100.240/24
gateway4: 192.168.100.1
nameservers:
- 192.168.1.215
- role: control-plane
networkDevice:
ipAddrs:
- 192.168.100.241/24
gateway4: 192.168.100.1
nameservers:
- 192.168.1.215
- role: control-plane
networkDevice:
ipAddrs:
- 192.168.100.242/24
gateway4: 192.168.100.1
nameservers:
- 192.168.1.215
- role: control-plane
networkDevice:
ipAddrs:
- 192.168.100.243/24
gateway4: 192.168.100.1
nameservers:
- 192.168.1.215
- role: compute
networkDevice:
ipAddrs:
- 192.168.100.244/24
gateway4: 192.168.100.1
nameservers:
- 192.168.1.215
- role: compute
networkDevice:
ipAddrs:
- 192.168.100.245/24
gateway4: 192.168.100.1
nameservers:
- 192.168.1.215
- role: compute
networkDevice:
ipAddrs:
- 192.168.100.246/24
gateway4: 192.168.100.1
nameservers:
- 192.168.1.215apiVersion: machine.openshift.io/v1beta1
kind: Machine
metadata:
name: rvanderp5-dev-28z5n-worker-0-cp8gl-2
labels:
machine.openshift.io/cluster-api-cluster: rvanderp5-dev-28z5n
machine.openshift.io/cluster-api-machine-role: worker
machine.openshift.io/cluster-api-machine-type: worker
machine.openshift.io/region: region1
machine.openshift.io/zone: ''
spec:
lifecycleHooks: {}
metadata: {}
providerSpec:
value:
numCoresPerSocket: 2
diskGiB: 60
snapshot: ''
userDataSecret:
name: worker-user-data
memoryMiB: 16384
credentialsSecret:
name: vsphere-cloud-credentials
network:
devices:
- networkName: lab-pg
ipAddrs:
- 192.168.100.250/24
gateway4: 192.168.100.1
nameservers:
- 192.168.1.215
metadata:
creationTimestamp: null
numCPUs: 4
kind: VSphereMachineProviderSpec
workspace:
datacenter: vanderlab
datastore: /vanderlab/datastore/workloadDatastore
folder: /vanderlab/vm/rvanderp5-dev-5dhsb
resourcePool: /vanderlab/host/workload-cluster-1//Resources
server: vcenter.vanderlab.net
template: rvanderp5-dev-28z5n-rhcos-vanderlab-zone-a
apiVersion: machine.openshift.io/v1beta1