Azure · jackfrancis · Mar 3, 2022 · Feb 25, 2022 · Feb 28, 2022 · Feb 28, 2022
diff --git a/cmd/upgrade.go b/cmd/upgrade.go
@@ -222,6 +222,12 @@ func (uc *upgradeCmd) loadCluster() error {
 		}
 	}
 
+	// Enforce UseCloudControllerManager for Kubernetes 1.21+ on Azure Stack cloud
+	if uc.containerService.Properties.IsAzureStackCloud() && common.IsKubernetesVersionGe(uc.upgradeVersion, "1.21.0") {
+		log.Infoln("The in-tree cloud provider is not longer supported on Azure Stack Hub for v1.21+ clusters, overwriting UseCloudControllerManager to 'true'")
+		uc.containerService.Properties.OrchestratorProfile.KubernetesConfig.UseCloudControllerManager = to.BoolPtr(true)
+	}
+
 	// The cluster-init component is a cluster create-only feature, temporarily disable if enabled
 	if i := api.GetComponentsIndexByName(uc.containerService.Properties.OrchestratorProfile.KubernetesConfig.Components, common.ClusterInitComponentName); i > -1 {
 		if uc.containerService.Properties.OrchestratorProfile.KubernetesConfig.Components[i].IsEnabled() {

diff --git a/pkg/api/addons.go b/pkg/api/addons.go
@@ -926,6 +926,16 @@ func (cs *ContainerService) setAddonsConfig(isUpgrade bool) {
 		}
 	}
 
+	// Ensure cloud-node-manager is enabled on appropriate upgrades for Azure Stack cloud
+	if isUpgrade &&
+		cs.Properties.IsAzureStackCloud() &&
+		to.Bool(cs.Properties.OrchestratorProfile.KubernetesConfig.UseCloudControllerManager) {
+		// Force enabling cloud-node-manager addon
+		if i := getAddonsIndexByName(o.KubernetesConfig.Addons, common.CloudNodeManagerAddonName); i > -1 {
+			o.KubernetesConfig.Addons[i] = defaultCloudNodeManagerAddonsConfig
+		}
+	}
+
 	// Back-compat for older addon specs of cluster-autoscaler
 	if isUpgrade {
 		i := getAddonsIndexByName(o.KubernetesConfig.Addons, common.ClusterAutoscalerAddonName)

diff --git a/pkg/api/components.go b/pkg/api/components.go
@@ -147,6 +147,16 @@ func (cs *ContainerService) setComponentsConfig(isUpgrade bool) {
 		}
 	}
 
+	// Ensure cloud-controller-manager is enabled on appropriate upgrades for Azure Stack cloud
+	if isUpgrade &&
+		cs.Properties.IsAzureStackCloud() &&
+		to.Bool(cs.Properties.OrchestratorProfile.KubernetesConfig.UseCloudControllerManager) {
+		// Force enabling cloud-controller-manager
+		if i := GetComponentsIndexByName(kubernetesConfig.Components, common.CloudControllerManagerComponentName); i > -1 {
+			kubernetesConfig.Components[i] = defaultCloudControllerManagerComponentConfig
+		}
+	}
+
 	for _, component := range defaultComponents {
 		synthesizeComponentsConfig(kubernetesConfig.Components, component, isUpgrade)
 	}

diff --git a/pkg/api/defaults-kubelet.go b/pkg/api/defaults-kubelet.go
@@ -191,6 +191,10 @@ func (cs *ContainerService) setKubeletConfig(isUpgrade bool) {
 			// if upgrade, force default "--pod-infra-container-image" value
 			cs.Properties.MasterProfile.KubernetesConfig.KubeletConfig["--pod-infra-container-image"] = o.KubernetesConfig.KubeletConfig["--pod-infra-container-image"]
 		}
+		//Ensure cloud-provider setting
+		if to.Bool(o.KubernetesConfig.UseCloudControllerManager) {
+			cs.Properties.MasterProfile.KubernetesConfig.KubeletConfig["--cloud-provider"] = "external"
+		}
 		setMissingKubeletValues(cs.Properties.MasterProfile.KubernetesConfig, o.KubernetesConfig.KubeletConfig)
 		addDefaultFeatureGates(cs.Properties.MasterProfile.KubernetesConfig.KubeletConfig, o.OrchestratorVersion, "", "")
 

diff --git a/pkg/api/vlabs/validate.go b/pkg/api/vlabs/validate.go
@@ -300,6 +300,10 @@ func (a *Properties) ValidateOrchestratorProfile(isUpdate bool) error {
 			}
 
 			if a.IsAzureStackCloud() {
+				if common.IsKubernetesVersionGe(a.OrchestratorProfile.OrchestratorVersion, "1.21.0") && !to.Bool(o.KubernetesConfig.UseCloudControllerManager) {
+					return errors.New("useCloudControllerManager should be set to true for Kubernetes v1.21+ clusters on Azure Stack Hub")
+				}
+
 				if to.Bool(o.KubernetesConfig.UseInstanceMetadata) {
 					return errors.New("useInstanceMetadata shouldn't be set to true as feature not yet supported on Azure Stack")
 				}
@@ -809,7 +813,7 @@ func (a *Properties) validateAddons(isUpdate bool) error {
 				// Validation for addons if they are disabled
 				switch addon.Name {
 				case "cloud-node-manager":
-					if a.ShouldEnableAzureCloudAddon(addon.Name) {
+					if a.ShouldEnableAzureCloudAddon(addon.Name) && !a.IsAzureStackCloud() {
 						minVersion := "1.16.0"
 						if a.HasWindows() {
 							minVersion = "1.18.0"

diff --git a/pkg/api/vlabs/validate_test.go b/pkg/api/vlabs/validate_test.go
@@ -4719,6 +4719,27 @@ func TestValidateLocation(t *testing.T) {
 			},
 			expectedErr: errors.New("missing ContainerService Location"),
 		},
+		{
+			name:          "AzureStack UseCloudControllerManager is false",
+			location:      "local",
+			propertiesnil: false,
+			cs: &ContainerService{
+				Location: "local",
+				Properties: &Properties{
+					CustomCloudProfile: &CustomCloudProfile{
+						PortalURL: "https://portal.local.cotoso.com",
+					},
+					OrchestratorProfile: &OrchestratorProfile{
+						OrchestratorType:    Kubernetes,
+						OrchestratorVersion: common.RationalizeReleaseAndVersion(Kubernetes, "", "", false, false, true),
+						KubernetesConfig: &KubernetesConfig{
+							UseCloudControllerManager: to.BoolPtr(falseVal),
+						},
+					},
+				},
+			},
+			expectedErr: errors.New("useCloudControllerManager should be set to true for Kubernetes v1.21+ clusters on Azure Stack Hub"),
+		},
 		{
 			name:          "AzureStack UseInstanceMetadata is true",
 			location:      "local",
@@ -4733,7 +4754,8 @@ func TestValidateLocation(t *testing.T) {
 						OrchestratorType:    Kubernetes,
 						OrchestratorVersion: common.RationalizeReleaseAndVersion(Kubernetes, "", "", false, false, true),
 						KubernetesConfig: &KubernetesConfig{
-							UseInstanceMetadata: to.BoolPtr(trueVal),
+							UseCloudControllerManager: to.BoolPtr(trueVal),
+							UseInstanceMetadata:       to.BoolPtr(trueVal),
 						},
 					},
 				},
@@ -4754,7 +4776,8 @@ func TestValidateLocation(t *testing.T) {
 						OrchestratorType:    Kubernetes,
 						OrchestratorVersion: common.RationalizeReleaseAndVersion(Kubernetes, "", "", false, false, true),
 						KubernetesConfig: &KubernetesConfig{
-							EtcdDiskSizeGB: "1024",
+							UseCloudControllerManager: to.BoolPtr(trueVal),
+							EtcdDiskSizeGB:            "1024",
 						},
 					},
 				},
@@ -4775,7 +4798,8 @@ func TestValidateLocation(t *testing.T) {
 						OrchestratorType:    Kubernetes,
 						OrchestratorVersion: common.RationalizeReleaseAndVersion(Kubernetes, "", "", false, false, true),
 						KubernetesConfig: &KubernetesConfig{
-							EtcdDiskSizeGB: "1024GB",
+							UseCloudControllerManager: to.BoolPtr(trueVal),
+							EtcdDiskSizeGB:            "1024GB",
 						},
 					},
 				},

diff --git a/pkg/engine/testdata/azurestack/kubernetes-ubuntu16.json b/pkg/engine/testdata/azurestack/kubernetes-ubuntu16.json
@@ -6,6 +6,7 @@
             "kubernetesConfig": {
                 "kubernetesImageBase": "k8s.gcr.io/",
                 "useInstanceMetadata": false,
+                "useCloudControllerManager":  true,
                 "networkPolicy": "none"
             }
         },

diff --git a/pkg/engine/testdata/azurestack/kubernetes.json b/pkg/engine/testdata/azurestack/kubernetes.json
@@ -6,6 +6,7 @@
             "kubernetesConfig": {
                 "kubernetesImageBase": "k8s.gcr.io/",
                 "useInstanceMetadata": false,
+                "useCloudControllerManager":  true,
                 "networkPolicy": "none"
             }
         },