✨ Add bootCommands to cloud-init file generation #11271
Conversation
k8s-ci-robot
added
cncf-cla: yes
|
Welcome @davidumea! |
k8s-ci-robot
added
size/M
|
Hi @davidumea. Thanks for your PR. I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
|
Are there version constraints around What happens if we render it but the cloud-init version in the machine does not support it? Does it make cloud-init fail as a whole or is it just ignored? Edit: looks like it is already there for a long time (from the start?) at |
Exactly I don't think that should be an issue as
During my testing, if the bootcmd module fails e.g. due to invalid commands, cloud-init still continues with the following modules. I haven't been able to test running this with a cloud-init version that doesn't support bootcmd. |
|
@chrischdi Is there anything I can do to get this reviewed? |
|
/ok-to-test |
k8s-ci-robot
added
ok-to-test
There was a problem hiding this comment.
Bootcmd module has been in cloud-init for as long as I can remember (which is back to 2010), so don't see an issue there.
I would like the documentation to be more explicit though, particularly about how this will have no effect on Ignition. Have suggested some changes.
fabriziopandini
added
the
area/provider/bootstrap-kubeadm
| // BootCommands specifies extra commands to run very early in the boot process via the cloud-init bootcmd | ||
| // module. This is typically run in the cloud-init.service systemd unit. This has no effect in Ignition. | ||
| // +optional | ||
| BootCommands []BootCommand `json:"bootCommands,omitempty"` |
There was a problem hiding this comment.
shouldn't it be added only to v1beta1 which is the actively maintained API version?
There was a problem hiding this comment.
If I remove this and run make verify, it removes bootCommands from the CRDs.
Might be an issue in the verify logic, what do you think?
diff --git a/bootstrap/kubeadm/config/crd/bases/bootstrap.cluster.x-k8s.io_kubeadmconfigs.yaml b/bootstrap/kubeadm/config/crd/bases/bootstrap.cluster.x-k8s.io_kubeadmconfigs.yaml
index 79c3b19e0..4e1852f77 100644
--- a/bootstrap/kubeadm/config/crd/bases/bootstrap.cluster.x-k8s.io_kubeadmconfigs.yaml
+++ b/bootstrap/kubeadm/config/crd/bases/bootstrap.cluster.x-k8s.io_kubeadmconfigs.yaml
@@ -47,17 +47,6 @@ spec:
KubeadmConfigSpec defines the desired state of KubeadmConfig.
Either ClusterConfiguration and InitConfiguration should be defined or the JoinConfiguration should be defined.
properties:
- bootCommands:
- description: |-
- BootCommands specifies extra commands to run very early in the boot process via the cloud-init bootcmd
- module. This is typically run in the cloud-init.service systemd unit. This has no effect in Ignition.
- items:
- description: BootCommand defines input for each bootcmd command
- in cloud-init.
- items:
- type: string
- type: array
- type: array
clusterConfiguration:
description: ClusterConfiguration along with InitConfiguration are
the configurations necessary for the init commandetc
There was a problem hiding this comment.
New fields should not be added to older API versions.
Conversions should be implemented instead.
See eg
cluster-api/internal/apis/bootstrap/kubeadm/v1alpha3/conversion.go
Lines 47 to 56 in 3db18fb
There was a problem hiding this comment.
I reverted my changes to the v1alpha3 and v1alpha4 versions and added conversions instead a9c426a
There was a problem hiding this comment.
If I remove this and run make verify, it removes bootCommands from the CRDs.
Disregard this, I didn't realize that all versions of the crds were in the same manifest.
| // BootCommands specifies extra commands to run very early in the boot process via the cloud-init bootcmd | ||
| // module. This is typically run in the cloud-init.service systemd unit. This has no effect in Ignition. | ||
| // +optional | ||
| BootCommands []BootCommand `json:"bootCommands,omitempty"` |
There was a problem hiding this comment.
New fields should not be added to older API versions.
Conversions should be implemented instead.
See eg
cluster-api/internal/apis/bootstrap/kubeadm/v1alpha3/conversion.go
Lines 47 to 56 in 3db18fb
| @@ -34,6 +34,7 @@ func TestNewInitControlPlaneAdditionalFileEncodings(t *testing.T) { | |||
| cpinput := &ControlPlaneInput{ | |||
| BaseUserData: BaseUserData{ | |||
| Header: "test", | |||
| BootCommands: nil, | |||
There was a problem hiding this comment.
Can we have a test for BootCommands not nil for init, join CP, join workers?
There was a problem hiding this comment.
I added non-nil values for BootCommands in TestNewInitControlPlaneCommands and TestNewJoinControlPlaneAdditionalFileEncodings, did you want me to add more tests or is this enough? I couldn't find one for "join workers" daf4f97
There was a problem hiding this comment.
WRT to changes in TestNewInitControlPlaneCommands, TestNewJoinControlPlaneAdditionalFileEncodings I have dedicated comments.
We still need test coverage for join and join CP (if they are missing, kindly add them so we pay down some tech debt before adding more on top)
| @@ -548,7 +548,7 @@ func TestMatchInitOrJoinConfiguration(t *testing.T) { | |||
| }, | |||
| JoinConfiguration: nil, | |||
| Files: nil, | |||
| ... // 10 identical fields | |||
| ... // 11 identical fields | |||
There was a problem hiding this comment.
I need to take some time to dig into impact of this change on existing clusters, because we need to make sure this change does not trigger rollouts
However, I'm not sure when I will get to it 😓
There was a problem hiding this comment.
Do you think it's feasible to have this included in the next minor release?
There was a problem hiding this comment.
Sorry if I missed this notification before.
Unfortunately code freeze is tomorrow, but let's first focus on getting the PR right first, then we can think about what options do we have
I took some time to look into this, and it should not trigger a rollout even if message in the logs could change after we deploy this change.
@chrischdi could you kindly double check this assumption
There was a problem hiding this comment.
Should be fine. Especially clusterctl upgrade tests should catch this if it happens and we are wrong.
Edit: sorry for the long round-trip, forgot to send the review / comment... (was pending)
k8s-ci-robot
added
the
needs-rebase
… PostKubeadmCommands
| @@ -65,6 +65,9 @@ func (webhook *KubeadmConfig) ValidateCreate(_ context.Context, obj runtime.Obje | |||
| if !ok { | |||
| return nil, apierrors.NewBadRequest(fmt.Sprintf("expected a KubeadmConfig but got a %T", obj)) | |||
| } | |||
| if c.Spec.BootCommands != nil && c.Spec.Format != bootstrapv1.CloudConfig { | |||
There was a problem hiding this comment.
It seems this commands need to be a part of webhook.validate, otherwise the check looks fine.
There was a problem hiding this comment.
I had to update the validateIgnition function so that allErrs wouldn't be empty, which was probably for the best, thanks
There was a problem hiding this comment.
I guess the webhook check isn't needed anymore then? 🤔
There was a problem hiding this comment.
@Danil-Grigorev Please take a look if you have time 🙂
|
/lgtm Seems good to me now, thank you |
k8s-ci-robot
added
the
lgtm
|
LGTM label has been added. Git tree hash: cfb7529d6229e954dee72fe86ec8bc891b33ffb2
|
|
/assign justinsb Pinging @justinsb for approval |
| BootCommands: []bootstrapv1.BootCommand{ | ||
| { | ||
| "boot-command", "another-boot-command", | ||
| }, | ||
| }, |
There was a problem hiding this comment.
This does not make sense to get set right? Because ignition does not have bootCommands and we block this getting set?
There was a problem hiding this comment.
You're right, it doesn't make sense to have that there.
| @@ -94,9 +95,12 @@ func TestNewInitControlPlaneCommands(t *testing.T) { | |||
|
|
|||
| cpinput := &ControlPlaneInput{ | |||
| BaseUserData: BaseUserData{ | |||
| BootCommands: []bootstrapv1.BootCommand{ | |||
| {"echo", "$(date) hello BootCommands!"}, | |||
There was a problem hiding this comment.
Question: can't this be the same as below?
| {"echo", "$(date) hello BootCommands!"}, | |
| {`"echo $(date) ': hello BootCommands!'"`}, |
There was a problem hiding this comment.
I wanted to test the output when having multiple commands, but it didn't make sense to split it there.
This should be clearer 1874ba8
k8s-ci-robot
removed
the
lgtm
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
lgtm
|
LGTM label has been added. Git tree hash: d22ebeacfe3f5a77c7855fcad5303341e19d2e92
|
What this PR does / why we need it:
Adds the ability to provide bootcmd commands to cloud-init via the KubeadmConfig or KubeadmConfigTemplates custom resources. (Same for KubeadmControlPlane)
One thing that I know that does not work at the time of creating this PR is validating/mutating webhooks for KubeadmConfig and KubeadmConfigTemplates. Some pointers to where to change that would be appreciated.Which issue(s) this PR fixes
Fixes #