Skip to content
This repository has been archived by the owner on Mar 23, 2020. It is now read-only.

Added post-install script to apply mcos #28

Merged
merged 1 commit into from
Aug 28, 2019
Merged

Added post-install script to apply mcos #28

merged 1 commit into from
Aug 28, 2019

Conversation

e-minguez
Copy link
Member

@e-minguez e-minguez commented Aug 14, 2019
edited
Loading

Once the storage VLAN is clear (see #4) the mco object can be hosted in
assets/post-install/ as well

@phoracek
Copy link
Contributor

The bridge should have vlan_filtering enabled and set trunk on the default NIC port. I'm not sure whether it is possible to do that via ifcfg or we would need to have a custom systemd script on top of it, calling ip link ....

@e-minguez
Copy link
Member Author

e-minguez commented Aug 14, 2019
edited
Loading

There are a couple of handy variables here such as BRIDGE_PORT_VLANS and BRIDGING_OPTS: vlan_filtering=

I've modified the commit to only include the post-install script that will create the mcos until we figure out how to do the vlan filtering and such. Any help @phoracek ? Thanks!

@phoracek
Copy link
Contributor

@e-minguez sounds great! Will open an issue to track the VLAN part separately.

@phoracek phoracek mentioned this pull request Aug 14, 2019
Closed
@russellb
Copy link
Member

What does mcos mean?

russellb
russellb reviewed Aug 17, 2019
View reviewed changes
99_post_install.sh Outdated
oc patch --type=merge --patch='{"spec":{"paused":false}}' machineconfigpool/${node_type}

# This sleep is required because the machine-config changes are not immediate
sleep 30
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What needs to happen in these 30 seconds? There's a wait right after this. Will that one fail if this wait doesn't happen? What does it fix?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If the oc wait is performed just after applying the machine configs, it finishes as the machine config operator takes a while to notice the changes and create the rendered machine config. 30 seconds is just random, but definitely in my tests I needed to wait a few seconds.

@e-minguez
Copy link
Member Author

What does mcos mean?

machine config objects (I've modified the comment to be more explicit)

markmc
markmc reviewed Aug 19, 2019
View reviewed changes
99_post_install.sh Outdated Show resolved Hide resolved
@e-minguez
Copy link
Member Author

Actually, I'm not sure about this PR as it seems that we are about to be able to add manifests at installation time #30 #35

@russellb
Copy link
Member

Actually, I'm not sure about this PR as it seems that we are about to be able to add manifests at installation time #30 #35

Don't wait on that, as we'll intentionally limit the install-time manifest mangling as much as possible

@e-minguez e-minguez mentioned this pull request Aug 21, 2019
Closed
@rdoxenham
Copy link

@russellb @e-minguez - don't count on adding MCO's at boot time, especially if they involve configuring interfaces that DHCP...

level=debug msg="Still waiting for the cluster to initialize: Cluster operator machine-config is reporting a failure: Failed to resync 4.2.0-0.ci-2019-08-21-102306-rhte.0 because: timed out waiting for the condition during syncRequiredMachineConfigPools: pool master has not progressed to latest configuration: configuration status for pool master is empty: pool is degraded because nodes fail with \"3 nodes are reporting degraded status on sync\": \"Node master-0 is reporting: \\\"unexpected on-disk state validating against rendered-master-cc6f4aca4fbe45fc61faacf77b7057de\\\", Node master-2 is reporting: \\\"machineconfig.machineconfiguration.openshift.io \\\\\\\"rendered-master-cc6f4aca4fbe45fc61faacf77b7057de\\\\\\\" not found\\\", Node master-1 is reporting: \\\"machineconfig.machineconfiguration.openshift.io \\\\\\\"rendered-master-cc6f4aca4fbe45fc61faacf77b7057de\\\\\\\" not found\\\"\", retrying"

I was trying to setup ens4 to be part of a brext bridge via an MCO, but upon DHCP it overrides the config I want to lay down, whereas it successfully creates the brext bridge-

$ ssh core@master-0 cat /etc/sysconfig/network-scripts/ifcfg-ens4
# Generated by dracut initrd
NAME="ens4"
DEVICE="ens4"
ONBOOT=yes
NETBOOT=yes
UUID="293f27a8-2247-44f9-a26d-5fa665d8658b"
IPV6INIT=yes
BOOTPROTO=dhcp

$ ssh core@master-0 cat /etc/sysconfig/network-scripts/ifcfg-brext
DEVICE=brext
NAME=brext
TYPE=Bridge
ONBOOT=yes
NM_CONTROLLED=yes
BOOTPROTO=dhcp

For reference, he's my MCO object-

$ cat dev-scripts/assets/generated/99_master-brext.yaml
apiVersion: machineconfiguration.openshift.io/v1
kind: MachineConfig
metadata:
  labels:
    machineconfiguration.openshift.io/role: master
  name: 99-master-brext
spec:
  config:
    ignition:
      version: 2.2.0
    storage:
      files:
      - contents:
          source: data:text/plain;charset=utf-8;base64,REVWSUNFPWVuczQKQlJJREdFPWJyZXh0Ck9OQk9PVD15ZXMKTk1fQ09OVFJPTExFRD15ZXMKQk9PVFBST1RPPW5vbmUK
          verification: {}
        filesystem: root
        mode: 420
        path: /etc/sysconfig/network-scripts/ifcfg-ens4
      - contents:
          source: data:text/plain;charset=utf-8;base64,REVWSUNFPWJyZXh0Ck5BTUU9YnJleHQKVFlQRT1CcmlkZ2UKT05CT09UPXllcwpOTV9DT05UUk9MTEVEPXllcwpCT09UUFJPVE89ZGhjcAo=
          verification: {}
        filesystem: root
        mode: 420
        path: /etc/sysconfig/network-scripts/ifcfg-brext

@rdoxenham
Copy link

To follow this up, I managed to get this working by adding a dispatcher.d script-

$ cat work/dev-scripts/assets/files/etc/NetworkManager/dispatcher.d/98-brextscript
#!/usr/bin/env bash

IF=$(ip r | grep default | grep -Po '(?<=dev )(\S+)')
if $(grep -q "dracut" /etc/sysconfig/network-scripts/ifcfg-$IF); then
echo brext acting on $IF
cat <<EOF > /etc/sysconfig/network-scripts/ifcfg-$IF
DEVICE=$IF
BRIDGE=brext
ONBOOT=yes
NM_CONTROLLED=yes
BOOTPROTO=none
EOF
systemctl restart NetworkManager
nmcli conn down $IF
fi

@e-minguez
Copy link
Member Author

I've mixed this PR with #33 in order to create the bridge as a function in the post-install script instead doing it just for CNV

@e-minguez
Copy link
Member Author

Ping @rlopez133 @sreichar as it looks like you own the repo now :)

yprokule
yprokule reviewed Aug 28, 2019
View reviewed changes
99_post_install.sh Outdated Show resolved Hide resolved
yprokule
yprokule reviewed Aug 28, 2019
View reviewed changes
99_post_install.sh Outdated Show resolved Hide resolved
@e-minguez
Added post-install script to apply mcos
f3610fd 
Also added the bridge creation as a function instead a different script.
@e-minguez e-minguez mentioned this pull request Aug 28, 2019
Merged
@sreichar sreichar merged commit a36e6ac into openshift-kni:master Aug 28, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@yprokule yprokule yprokule left review comments

@russellb russellb russellb left review comments

@markmc markmc markmc left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@e-minguez @phoracek @russellb @rdoxenham @markmc @yprokule @sreichar