Reconcile ipset when osnetconfig changes #1112
Merged
+52
−2
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
When e.g. a network definition changes, the IPsets have to
reconcile to update its information. This allows changing network
definition, but needs to be done carefully and tests in a pre-prod
env as it is an invasive change.
The process looks like this:
* update the OpenStackNetConfig to do the network change
* validate the IPSet for the role and the OpenStackNetConfig status reflects the new IPs for the nodes
```
172.18.3.20/24
```
* Make sure you have a parameter file to allow update the network config for the role:
```
network-environment.yaml: |
parameter_defaults:
ControllerNetworkConfigUpdate: True
ComputeNetworkConfigUpdate: True
ComputeLeaf1NetworkConfigUpdate: True
```
* use the OpenStackConfigGenerator resource to create a new configversion
* when config generator process finished, depending on the number of changed, the new created openstackconfigversion will show the diff (gets trunkated if it is too big)
```
diff: |
diff --git a/source-templates/environments/deployed-network-environment.yaml b/source-templates/environments/deployed-network-environment.yaml
index 168a9242caa93630d17ade3d254604b967a3a3f0..d08508054b2fc8e01d8f6499b08fba25fbe84860 100644
--- a/source-templates/environments/deployed-network-environment.yaml
+++ b/source-templates/environments/deployed-network-environment.yaml
@@ -99,2 +98,2 @@ storage_subnet:
- cidr: '172.18.3.0/24'
- gateway_ip: '172.18.3.1'
+ cidr: '172.18.0.0/24'
+ gateway_ip: '172.18.0.1'
@@ -208 +207 @@ storage:
- - 172.18.3.0/24
+ - 172.18.0.0/24
...
```
* use the OpenStackDeploy resource to apply the generated configversion to the overcloud
Notes:
* from checking the overcloud node, the /etc/os-net-config/config.yaml and /etc/sysconfig/network-scripts/ifcfg-enp5s0 are correct.
When checking the running interface configuration we still see the old IP address 172.18.0.10. Reboot the node/if-down|if-up would fix it.
This is not an OSPdO issue.
6: enp5s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP group default qlen 1000
link/ether 02:c8:20:00:00:04 brd ff:ff:ff:ff:ff:ff
inet 172.18.0.10/32 brd 172.18.0.255 scope global enp5s0
valid_lft forever preferred_lft forever
inet 172.18.3.20/24 scope global enp5s0
valid_lft forever preferred_lft forever
inet 172.18.3.10/32 scope global enp5s0
valid_lft forever preferred_lft forever
inet6 fe80::c8:20ff:fe00:4/64 scope link
valid_lft forever preferred_lft forever
* General on changing networks. when e.g. removing a network from the openstackclient will still have a reservation on that network
resolved: https://bugzilla.redhat.com/show_bug.cgi?id=2325902
currently if a new network gets added to the openstackclient network list, the ipset and pod annotation gets updated, but the interface is not configured. Therefore this change makes sure that the openstackclient pod gets restarted when the network list changes related https://bugzilla.redhat.com/show_bug.cgi?id=2325902 Signed-off-by: Martin Schuppert <mschuppert@redhat.com>
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: olliewalsh, stuggi The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
openshift-merge-bot
bot
merged commit 3ac6cfd
into
openstack-k8s-operators:master
10 checks passed
|
/cherry-pick v1.3.x |
|
@stuggi: #1112 failed to apply on top of branch "v1.3.x": In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
When e.g. a network definition changes, the IPsets have to reconcile to update its information. This allows changing network definition, but needs to be done carefully and tests in a pre-prod env as it is an invasive change.
The process looks like this:
Notes:
/etc/os-net-config/config.yamland/etc/sysconfig/network-scripts/ifcfg-enp5s0are correct.When checking the running interface configuration we still see the old IP address 172.18.0.10. Reboot the node/if-down|if-up would fix it.
This is not an OSPdO issue.
Also restart openstackclient pod if network attachment list changes currently if a new network gets added to the openstackclient network list, the ipset and pod annotation gets updated, but the interface is not configured. Therefore this change makes sure that the openstackclient pod gets restarted when the network list changes
resolves: https://bugzilla.redhat.com/show_bug.cgi?id=2325902