Inject CoreOS stream metadata as configmap via CVO manifest

[cgwalters]

Split out from #4582

This copies the bits from https://github.com/cgwalters/rhel-coreos-bootimages
which builds a ConfigMap out of the stream metadata and injects
it into the cluster.

We have an installer image in the release image today; this adds
the "is an operator" label, even though it's not really an
operator. We just want the CVO to inject the manifest.

Among other important semantics, this will ensure that in-place
cluster upgrades that have new pinned CoreOS stream data will
have this configmap updated.

[openshift-ci-robot]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[cgwalters]

OK so I believe that basically what this commit needs to do is what's in https://github.com/cgwalters/rhel-coreos-bootimages - basically. This would be the first time that the installer image in the release image is installing manifests. Does that make sense to everyone?

[staebler]

OK so I believe that basically what this commit needs to do is what's in https://github.com/cgwalters/rhel-coreos-bootimages - basically. This would be the first time that the installer image in the release image is installing manifests. Does that make sense to everyone?

My understanding is that we need the ConfigMap added under the manifests directory in the installer image that is included in the release.

The installer image may also need the io.openshift.release.operator=true label for CVO to consider its manifests.

[staebler]

Per discussion, the real fix here will probably require adding minimal CVO bits to the installer image.

Did you need the temporary fix in order to unblock something? Or can we do the real fix from the start?

[cgwalters]

Did you need the temporary fix in order to unblock something? Or can we do the real fix from the start?

I think this latest code will work - it was pretty easy to copy over the approach from https://github.com/cgwalters/rhel-coreos-bootimages .

If it does work we'll see it in the CI artifacts.

[cgwalters]

https://gcsweb-ci.apps.ci.l2s4.p1.openshiftapps.com/gcs/origin-ci-test/pr-logs/pull/openshift_installer/4760/pull-ci-openshift-installer-master-e2e-aws/1371905428375474176/artifacts/e2e-aws/gather-extra/artifacts/oc_cmds/configmaps has
openshift-machine-config-operator coreos-bootimages 2 64m

🎉

[staebler]

Looks great. I just have a couple questions for things that are not clear to me, since operator manifests are a new experience for me.

[staebler]

Would you happen to have a reference for what these annotations signify?

[cgwalters]

See
https://github.com/openshift/enhancements/blob/master/enhancements/update/cluster-profiles.md

Admittedly I cargo culted these from the MCO; we want this data in all of them I think. It's not directly relevant for e.g. single-node-developer but it also doesn't do anything and it's tiny.

[staebler]

Is this something that is automatically updated by the CVO or by the release tooling?

[cgwalters]

It's replaced by oc adm release new yep.

[staebler]

Is there some reason why you don't want to have the type here be corev1.ConfigMap? If it were, then we would get type safety later when filling out the data and not have to do any casting.

[cgwalters]

In the original repo I wasn't vendoring anything, it was basically just a git repo with a JSON file, so adding all the kube stuff to vendor/ felt like overkill.

But here, we're already vendoring, so indeed - fixed!

[cgwalters]

Any further thoughts on this?

[cgwalters]

openshift/origin#25993 is a quick sanity test for this that can merge after this does.

[cgwalters]

/test e2e-gcp
/test e2e-azure

[staebler]

Any further thoughts on this?

Sorry, I lost track of this. I'll take another look at this PR and the dependent PR early next week. From the last time I looked at it, it looked generally good, save for maybe a few nits.

[cgwalters]

Rebased 🏄

[staebler]

Small nit that we can leave.
/lgtm

[staebler]

Is -mod=vendor necessary here since we are using go 1.15?

[staebler]

/retest

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: staebler

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [staebler]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[cgwalters]

/test e2e-aws-upgrade

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-ci]

@cgwalters: The following tests failed, say /retest to rerun all failed tests:

Test name	Commit	Details	Rerun command
ci/prow/e2e-azure	dd1326baddbfbe2aabaaf2b7b7a5e77e0c5d6aa9	link	/test e2e-azure
ci/prow/e2e-aws-workers-rhel7	260b21c	link	/test e2e-aws-workers-rhel7
ci/prow/e2e-crc	260b21c	link	/test e2e-crc

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.