pkg/destroy/bootstrap: Separate load-balancer target teardown

cmd/openshift-install/create.go

@@ -229,7 +229,7 @@ func destroyBootstrap(ctx context.Context, config *rest.Config, directory string
 	events := client.CoreV1().Events("kube-system")
 
 	eventTimeout := 30 * time.Minute
-	logrus.Infof("Waiting up to %v for the bootstrap-complete event...", eventTimeout)
+	logrus.Infof("Waiting up to %v for the bootstrap-success event...", eventTimeout)
 	eventContext, cancel := context.WithTimeout(ctx, eventTimeout)
 	defer cancel()
 	_, err = Until(
@@ -268,13 +268,16 @@ func destroyBootstrap(ctx context.Context, config *rest.Config, directory string
 			}
 
 			logrus.Debugf("added %s: %s", event.Name, event.Message)
-			return event.Name == "bootstrap-complete", nil
+			return event.Name == "bootstrap-success", nil
 		},
 	)
 	if err != nil {
-		return errors.Wrap(err, "waiting for bootstrap-complete")
+		return errors.Wrap(err, "waiting for bootstrap-success")
 	}
 
+	logrus.Info("Waiting 30 seconds for the production control-plane to enter the load balancer")
+	time.Sleep(30*time.Second)
+
 	logrus.Info("Destroying the bootstrap resources...")
 	return destroybootstrap.Destroy(rootOpts.dir)
 }

data/data/aws/main.tf

@@ -18,8 +18,8 @@ module "bootstrap" {
   iam_role                 = "${var.aws_master_iam_role_name}"
   ignition                 = "${var.ignition_bootstrap}"
   subnet_id                = "${module.vpc.master_subnet_ids[0]}"
-  target_group_arns        = "${module.vpc.aws_lb_target_group_arns}"
-  target_group_arns_length = "${module.vpc.aws_lb_target_group_arns_length}"
+  target_group_arns        = "${var.bootstrap_load_balancer_targets ? module.vpc.aws_lb_target_group_arns : []}"
+  target_group_arns_length = "${var.bootstrap_load_balancer_targets ? module.vpc.aws_lb_target_group_arns_length : 0}"
   vpc_id                   = "${module.vpc.vpc_id}"
   vpc_security_group_ids   = "${list(module.vpc.master_sg_id)}"
 

data/data/bootstrap/files/usr/local/bin/bootkube.sh.template

@@ -211,7 +211,11 @@ podman run \
 	--volume /etc/kubernetes:/etc/kubernetes:z \
 	--network=host \
 	"${CLUSTER_BOOTSTRAP_IMAGE}" \
-	start --asset-dir=/assets --required-pods openshift-kube-apiserver/openshift-kube-apiserver,openshift-kube-scheduler/openshift-kube-scheduler,openshift-kube-controller-manager/openshift-kube-controller-manager,openshift-cluster-version/cluster-version-operator
+	start \
+		--asset-dir=/assets \
+		--strict \
+		--tear-down-event run-forever \
+		--required-pods openshift-kube-apiserver/openshift-kube-apiserver,openshift-kube-scheduler/openshift-kube-scheduler,openshift-kube-controller-manager/openshift-kube-controller-manager,openshift-cluster-version/cluster-version-operator
 
 # Workaround for https://github.com/opencontainers/runc/pull/1807
 touch /opt/openshift/.bootkube.done

data/data/config.tf

@@ -2,6 +2,11 @@ terraform {
   required_version = ">= 0.10.7"
 }
 
+variable "bootstrap_load_balancer_targets" {
+  default     = true
+  description = "Whether to include load-balancer targets for the bootstrap machine."
+}
+
 variable "machine_cidr" {
   type = "string"
 

data/data/libvirt/main.tf

@@ -90,7 +90,7 @@ resource "libvirt_domain" "master" {
 }
 
 data "libvirt_network_dns_host_template" "bootstrap" {
-  count    = "${var.bootstrap_dns ? 1 : 0}"
+  count    = "${var.bootstrap_load_balancer_targets ? 1 : 0}"
   ip       = "${var.libvirt_bootstrap_ip}"
   hostname = "${var.cluster_name}-api"
 }

data/data/libvirt/variables-libvirt.tf

@@ -1,8 +1,3 @@
-variable "bootstrap_dns" {
-  default     = true
-  description = "Whether to include DNS entries for the bootstrap node or not."
-}
-
 variable "libvirt_uri" {
   type        = "string"
   description = "libvirt connection URI"

docs/design/assetgeneration.md

@@ -76,7 +76,7 @@ $ openshift-install create install-config
 # Generate install-config.yaml
 
 $ openshift-install create manifests
-# Generate manifests/ and openshift/ dir, also remove install-config.yaml
+# Generate manifests/ and post-pod-manifests/ directories, also remove install-config.yaml
 ```
 
 ## Target generation

docs/user/aws/install.md

@@ -23,7 +23,7 @@ Step 3: Download the Installer.
 [~]$ openshift-install-linux-amd64 create cluster
 INFO Waiting up to 30m0s for the Kubernetes API...
 INFO API v1.11.0+85a0623 up
-INFO Waiting up to 30m0s for the bootstrap-complete event...
+INFO Waiting up to 30m0s for the bootstrap-success event...
 INFO Destroying the bootstrap resources...
 INFO Waiting up to 10m0s for the openshift-console route to be created...
 INFO Install complete!

pkg/asset/ignition/bootstrap/bootstrap.go

@@ -221,7 +221,7 @@ func (a *Bootstrap) addStorageFiles(base string, uri string, templateData *boots
 
 func (a *Bootstrap) addSystemdUnits(uri string, templateData *bootstrapTemplateData) (err error) {
 	enabled := map[string]struct{}{
-		"progress.service":                {},
+		"bootkube.service":                {},
 		"kubelet.service":                 {},
 		"systemd-journal-gatewayd.socket": {},
 	}

pkg/asset/manifests/openshift.go

@@ -23,7 +23,7 @@ import (
 )
 
 const (
-	openshiftManifestDir = "openshift"
+	openshiftManifestDir = "post-pod-manifests"
 )
 
 var (

pkg/destroy/bootstrap/bootstrap.go

@@ -6,6 +6,7 @@ import (
 	"io/ioutil"
 	"os"
 	"path/filepath"
+	"time"
 
 	"github.com/openshift/installer/pkg/asset/cluster"
 	"github.com/openshift/installer/pkg/terraform"
@@ -24,17 +25,12 @@ func Destroy(dir string) (err error) {
 		return errors.New("no platform configured in metadata")
 	}
 
-	copyNames := []string{terraform.StateFileName, cluster.TfVarsFileName}
-
-	if platform == "libvirt" {
-		err = ioutil.WriteFile(filepath.Join(dir, "disable-bootstrap.tfvars"), []byte(`{
-  "bootstrap_dns": false
+	err = ioutil.WriteFile(filepath.Join(dir, "disable-bootstrap-load-balancer-targets.tfvars"), []byte(`{
+  "bootstrap_load_balancer_targets": false
 }
 `), 0666)
-		if err != nil {
-			return err
-		}
-		copyNames = append(copyNames, "disable-bootstrap.tfvars")
+	if err != nil {
+		return err
 	}
 
 	tempDir, err := ioutil.TempDir("", "openshift-install-")
@@ -43,20 +39,24 @@ func Destroy(dir string) (err error) {
 	}
 	defer os.RemoveAll(tempDir)
 
-	for _, filename := range copyNames {
+	for _, filename := range []string{
+		terraform.StateFileName,
+		cluster.TfVarsFileName,
+		"disable-bootstrap-load-balancer-targets.tfvars",
+	} {
 		err = copy(filepath.Join(dir, filename), filepath.Join(tempDir, filename))
 		if err != nil {
 			return errors.Wrapf(err, "failed to copy %s to the temporary directory", filename)
 		}
 	}
 
-	if platform == "libvirt" {
-		_, err = terraform.Apply(tempDir, platform, fmt.Sprintf("-var-file=%s", filepath.Join(tempDir, "disable-bootstrap.tfvars")))
-		if err != nil {
-			return errors.Wrap(err, "Terraform apply")
-		}
+	_, err = terraform.Apply(tempDir, platform, fmt.Sprintf("-var-file=%s", filepath.Join(tempDir, "disable-bootstrap-load-balancer-targets.tfvars")))
+	if err != nil {
+		return errors.Wrap(err, "Terraform apply")
 	}
 
+	time.Sleep(10 * time.Second)
+
 	err = terraform.Destroy(tempDir, platform, "-target=module.bootstrap")
 	if err != nil {
 		return errors.Wrap(err, "Terraform destroy")