Skip to content

Commit

Permalink
ignition: render bootstrap manifests using operator images
Browse files Browse the repository at this point in the history 
In order to switch from kube-core-operator renderer we need to make
sure that all manifests (bootstrap + phase 2) are provided from the
openshift kube/openshift operators.

All control plane operators from openshift implement a rendering
logic that lay down secrets, configs and YAML definitions for workload
resources as well as static pods for initial pivot.
  • Loading branch information
@mfojtik
mfojtik committed Oct 17, 2018
1 parent 079fe51 commit 1b78c47
Show file tree
Hide file tree
Showing 3 changed files with 14 additions and 43 deletions.
2 changes: 0 additions & 2 deletions pkg/asset/ignition/bootstrap/bootstrap.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,6 @@ type bootstrapTemplateData struct {
EtcdCluster string
EtcdctlImage string
HyperkubeImage string
KubeCoreRenderImage string
ReleaseImage string
}

Expand Down Expand Up @@ -160,7 +159,6 @@ func (a *Bootstrap) getTemplateData(installConfig *types.InstallConfig) (*bootst
CloudProvider: getCloudProvider(installConfig),
CloudProviderConfig: getCloudProviderConfig(installConfig),
DebugConfig: "",
KubeCoreRenderImage: "quay.io/coreos/kube-core-renderer-dev:375423a332f2c12b79438fc6a6da6e448e28ec0f",
EtcdCertSignerImage: "quay.io/coreos/kube-etcd-signer-server:678cc8e6841e2121ebfdb6e2db568fce290b67d6",
EtcdctlImage: "quay.io/coreos/etcd:v3.2.14",
BootkubeImage: "quay.io/coreos/bootkube:v0.10.0",
Expand Down
43 changes: 14 additions & 29 deletions pkg/asset/ignition/bootstrap/content/bootkube.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,7 @@ var (
BootkubeShFileTemplate = template.Must(template.New("bootkube.sh").Parse(`#!/usr/bin/env bash
set -e
mkdir --parents /etc/kubernetes/manifests/
mkdir --parents /etc/kubernetes/{manifests,bootstrap-configs,bootstrap-manifests}
MACHINE_CONFIG_OPERATOR_IMAGE=$(podman run --rm {{.ReleaseImage}} image machine-config-operator)
MACHINE_CONFIG_CONTROLLER_IMAGE=$(podman run --rm {{.ReleaseImage}} image machine-config-controller)
Expand All @@ -57,22 +57,7 @@ then
cp --recursive cvo-bootstrap/manifests .
fi
if [ ! -d kco-bootstrap ]
then
echo "Rendering Kubernetes core manifests..."
# shellcheck disable=SC2154
podman run \
--volume "$PWD:/assets:z" \
--volume /etc/kubernetes:/etc/kubernetes:z \
"{{.KubeCoreRenderImage}}" \
--config=/assets/kco-config.yaml \
--output=/assets/kco-bootstrap
cp --recursive kco-bootstrap/bootstrap-configs /etc/kubernetes/bootstrap-configs
cp --recursive kco-bootstrap/bootstrap-manifests .
cp --recursive kco-bootstrap/manifests .
fi
mkdir --parents ./{bootstrap-manifests,manifests}
if [ ! -d kube-apiserver-bootstrap ]
then
Expand All @@ -84,14 +69,14 @@ then
"${KUBE_APISERVER_OPERATOR_IMAGE}" \
/usr/bin/cluster-kube-apiserver-operator render \
--manifest-etcd-serving-ca=etcd-client-ca.crt \
--manifest-etcd-server-urls={{.EtcdCluster}} \
--asset-input-dir=/assets/tls \
--asset-output-dir=/assets/kube-apiserver-bootstrap \
--config-output-file=/assets/kube-apiserver-bootstrap/config
# TODO: copy the bootstrap manifests to replace kube-core-operator
cp --recursive kube-apiserver-bootstrap/manifests/00_openshift-kube-apiserver-ns.yaml manifests/00_openshift-kube-apiserver-ns.yaml
cp --recursive kube-apiserver-bootstrap/manifests/secret-* manifests/
cp --recursive kube-apiserver-bootstrap/manifests/configmap-* manifests/
cp kube-apiserver-bootstrap/config /etc/kubernetes/bootstrap-configs/kube-apiserver-config.yaml
cp kube-apiserver-bootstrap/bootstrap-manifests/* bootstrap-manifests/
cp kube-apiserver-bootstrap/manifests/* manifests/
fi
if [ ! -d kube-controller-manager-bootstrap ]
Expand All @@ -107,9 +92,9 @@ then
--asset-output-dir=/assets/kube-controller-manager-bootstrap \
--config-output-file=/assets/kube-controller-manager-bootstrap/config
# TODO: copy the bootstrap manifests to replace kube-core-operator
cp --recursive kube-controller-manager-bootstrap/manifests/00_openshift-kube-controller-manager-ns.yaml manifests/00_openshift-kube-controller-manager-ns.yaml
cp --recursive kube-controller-manager-bootstrap/manifests/configmap-* manifests/
cp kube-controller-manager-bootstrap/config /etc/kubernetes/bootstrap-configs/kube-controller-manager-config.yaml
cp kube-controller-manager-bootstrap/bootstrap-manifests/* bootstrap-manifests/
cp kube-controller-manager-bootstrap/manifests/* manifests/
fi
if [ ! -d kube-scheduler-bootstrap ]
Expand All @@ -125,9 +110,9 @@ then
--asset-output-dir=/assets/kube-scheduler-bootstrap \
--config-output-file=/assets/kube-scheduler-bootstrap/config
# TODO: copy the bootstrap manifests to replace kube-core-operator
cp --recursive kube-scheduler-bootstrap/manifests/00_openshift-kube-scheduler-ns.yaml manifests/00_openshift-kube-scheduler-ns.yaml
cp --recursive kube-scheduler-bootstrap/manifests/configmap-* manifests/
cp kube-scheduler-bootstrap/config /etc/kubernetes/bootstrap-configs/kube-scheduler-config.yaml
cp kube-scheduler-bootstrap/bootstrap-manifests/* bootstrap-manifests/
cp kube-scheduler-bootstrap/manifests/* manifests/
fi
if [ ! -d mco-bootstrap ]
Expand All @@ -152,8 +137,8 @@ then
# 1. read the controller config rendered by MachineConfigOperator
# 2. read the default MachineConfigPools rendered by MachineConfigOperator
# 3. read any additional MachineConfigs that are needed for the default MachineConfigPools.
mkdir --parents /etc/mcc/bootstrap/
cp --recursive mco-bootstrap/manifests /etc/mcc/bootstrap/manifests
mkdir --parents /etc/mcc/bootstrap/manifests /etc/kubernetes/manifests/
cp mco-bootstrap/manifests/* /etc/mcc/bootstrap/manifests/
cp mco-bootstrap/machineconfigoperator-bootstrap-pod.yaml /etc/kubernetes/manifests/
# /etc/ssl/mcs/tls.{crt, key} are locations for MachineConfigServer's tls assets.
Expand Down
12 changes: 0 additions & 12 deletions pkg/asset/manifests/content/bootkube/cvo-overrides.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,18 +19,6 @@ upstream: http://localhost:8080/graph
channel: fast
clusterID: {{.CVOClusterID}}
overrides:
- kind: Deployment # this conflicts with kube-core-operator
namespace: openshift-core-operators
name: openshift-cluster-kube-apiserver-operator
unmanaged: true
- kind: Deployment # this conflicts with kube-core-operator
namespace: openshift-core-operators
name: openshift-cluster-kube-scheduler-operator
unmanaged: true
- kind: Deployment # this conflicts with kube-core-operator
namespace: openshift-core-operators
name: openshift-cluster-kube-controller-manager-operator
unmanaged: true
- kind: Deployment # this conflicts with kube-core-operator
namespace: openshift-cluster-network-operator
name: cluster-network-operator
Expand Down

0 comments on commit 1b78c47

Please sign in to comment.