Skip to content

mikejoh/capi-capo-devstack

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Running Cluster API and Cluster API Provider for OpenStack ontop of Devstack!

Try out your favourite tools totally locally finally! 🚀

This repository shows you step-by-step on how to run a complete environment locally to test Cluster API, Cluster API Provider OpenStack (on kind) and a minimal Devstack (local OpenStack).

I've performed these steps in KVM on Arch.

Step-by-step

  1. Deploy Devstack locally, see this repository on how to do this on top of KVM.

  2. Download the OpenStack RC file via Horizon.

  3. Create a kind cluster:

kind create cluster
  1. Enable connectivity between kind Pods and the Devstack VM:

Note which bridge the Devstack VM are attached to:

sudo virsh net-info devstack_net

Create a new Docker mcvlan network using the same subnet and gateway as configured for the devstack_net in KVM, example:

docker network create -d macvlan --subnet=192.168.11.0/24 --gateway=192.168.11.1 -o parent=virbr2 devstack_net

Connect the kind container to this network

docker network connect devstack_net <container ID>

Please make sure you test the connectivity between a Pod in the kind cluster and the Devstack VM IP with e.g. curl before proceeding!

kubectl run curl-pod --image=radial/busyboxplus:curl -i --tty --rm
  1. Download clusterctl, change the destination directory if needed:
curl -L https://github.com/kubernetes-sigs/cluster-api/releases/download/v1.9.4/clusterctl-linux-amd64 -o ~/.local/bin/clusterctl
  1. Install CAPO in the managment cluster (kind):
export CLUSTER_TOPOLOGY=true
kubectl apply -f https://github.com/k-orc/openstack-resource-controller/releases/latest/download/install.yaml
clusterctl init --infrastructure openstack
  1. Build an image using image-builder, i used the qemu builder or (untested at the moment) the OpenStack builder. The build-qemu-ubuntu-2404 make target was broken when writing this. I built an 22.04 image like this:
git clone https://github.com/kubernetes-sigs/image-builder.git
image-builder/images/capi/
make build-qemu-ubuntu-2204
  1. Upload the built image to OpenStack if you built it using anything else than the OpenStack builder:
openstack image create "ubuntu-2204-kube-v1.31.4" \
  --progress \
  --disk-format qcow2 \
  --property os_type=linux \
  --property os_distro=ubuntu2204 \
  --public \
  --file output/ubuntu-2204-kube-v1.31.4/ubuntu-2204-kube-v1.31.4
  1. Create a SSH keypair:
openstack keypair create --type ssh k8s-devstack01

Take a note of that the private SSH key and store it somewhere safe.

  1. Install needed CAPO prerequisites and generate cluster manifests:

Make sure you've prepared your clouds.yaml accordingly.

wget https://raw.githubusercontent.com/kubernetes-sigs/cluster-api-provider-openstack/master/templates/env.rc -O /tmp/env.rc
source /tmp/env.rcclouds.yaml openstack

Export more environment variables that we'll need to define the workload cluster:

export KUBERNETES_VERSION=v1.31.4
export OPENSTACK_DNS_NAMESERVERS=1.1.1.1
export OPENSTACK_FAILURE_DOMAIN=nova
export OPENSTACK_CONTROL_PLANE_MACHINE_FLAVOR=m1.medium
export OPENSTACK_NODE_MACHINE_FLAVOR=m1.medium
export OPENSTACK_IMAGE_NAME=ubuntu-2204-kube-v1.31.4
export OPENSTACK_SSH_KEY_NAME=k8s-devstack01
export OPENSTACK_EXTERNAL_NETWORK_ID=<ID>
export CLUSTER_NAME=k8s-devstack01
export CONTROL_PLANE_MACHINE_COUNT=1
export WORKER_MACHINE_COUNT=0

Please note that you'll need to fetch the public network ID and add it to the OPENSTACK_EXTERNAL_NETWORK_ID environment variable. Also the flavor needs to have at least 2 cores otherwise kubeadm will fail, this can be ignored from a kubeadm perspective but that's not covered here.

  1. Generate the cluster manifests and apply them in the kind cluster:
clusterctl generate cluster k8s-devstack01 --infrastructure openstack > k8s-devstack01.yaml
kubectl apply -f k8s-devstack01.yaml
  1. Check the cluster status in the kind cluster, also check the logs of, primarily, the capo-controller:
kubectl get clusters
  1. Download the cluster kubeconfig and test connectivity:
clusterctl get kubeconfig k8s-devstack01 > k8s-devstack01.kubeconfig
export KUBECONFIG=k8s-devstack01.kubeconfig

You should now be able to reach the cluster running within the DevStack environment! 🎉

  1. Install a CNI (Cilium), manually for now:

Please note that we're replacing kube-proxy with Cilium at the same time in the steps below.

helm repo add cilium https://helm.cilium.io/

kubectl -n kube-system delete ds kube-proxy
kubectl -n kube-system delete cm kube-proxy

k8sServiceHost below should be set to the control-plane VM IP, not the floating IP:

helm upgrade --install cilium cilium/cilium --version 1.17.1 \
  --namespace kube-system \
  --set kubeProxyReplacement=true \
  --set k8sServiceHost=10.6.0.177 \
  --set k8sServicePort=6443 \
  --set hubble.enabled=false \
  --set envoy.enabled=false \
  --set operator.replicas=1
  1. Install the OpenStack cloud provider:
git clone --depth=1 https://github.com/kubernetes-sigs/cluster-api-provider-openstack.git

Generate the external cloud provider configuration with the provided helper script:

./templates/create_cloud_conf.sh ~/Downloads/clouds.yaml openstack > /tmp/cloud.conf

Create the needed secret:

kuebctl create secret -n kube-system generic cloud-config --from-file=/tmp/cloud.conf

Create the needed Kubernetes resources for the OpenStack cloud provider:

kubectl apply -f https://raw.githubusercontent.com/kubernetes/cloud-provider-openstack/master/manifests/controller-manager/cloud-controller-manager-roles.yaml
kubectl apply -f https://raw.githubusercontent.com/kubernetes/cloud-provider-openstack/master/manifests/controller-manager/cloud-controller-manager-role-bindings.yaml
kubectl apply -f https://raw.githubusercontent.com/kubernetes/cloud-provider-openstack/master/manifests/controller-manager/openstack-cloud-controller-manager-ds.yaml

If everything went as expected the coredns Pods would be scheduled since they didn't tolerate the special taint added by Kubernetes, this taint is removed when the external cloud provider successfully initializes all nodes.

kubectl get pods -A
NAMESPACE     NAME                                                         READY   STATUS    RESTARTS   AGE
kube-system   cilium-operator-cd959bc7b-ctbr7                              1/1     Running   0          13h
kube-system   cilium-vwzg6                                                 1/1     Running   0          13h
kube-system   coredns-7c65d6cfc9-n2zrh                                     1/1     Running   0          14h
kube-system   coredns-7c65d6cfc9-qj97n                                     1/1     Running   0          14h
kube-system   etcd-k8s-devstack01-control-plane-hmjss                      1/1     Running   0          14h
kube-system   kube-apiserver-k8s-devstack01-control-plane-hmjss            1/1     Running   0          14h
kube-system   kube-controller-manager-k8s-devstack01-control-plane-hmjss   1/1     Running   0          14h
kube-system   kube-scheduler-k8s-devstack01-control-plane-hmjss            1/1     Running   0          14h
kube-system   openstack-cloud-controller-manager-q8sbk                     1/1     Running   0          13h

About

Run CAPI + CAPO and Devstack locally!

Topics

openstack devstack cluster-api cluster-api-provider-openstack

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published