helm/azure: Fatal error for CNI Azure installation #13024

sayboras · 2020-08-31T12:33:56Z

Setting global.azure.enabled will change operator image to
operator-azure, which only accepts azure IPAM, and throw
fatal error for cluster-pool.

This PR is to enable node init azure step for both cases (e.g. CNI
and Azure IPAM)

Closes #13023

Signed-off-by: Tam Mach sayboras@yahoo.com

helm/azure: Fix fatal error for CNI Azure installation

TODO

Follow GSG for azure one more time

Testing Azure CNI Chaining

$ helm install cilium install/kubernetes/cilium \
  --namespace cilium \
  --set global.cni.chainingMode=generic-veth \
  --set global.cni.customConf=true \
  --set global.nodeinit.enabled=true \
  --set nodeinit.azure=true \
  --set global.cni.configMap=cni-configuration \
  --set global.tunnel=disabled \
  --set global.masquerade=false
NAME: cilium
LAST DEPLOYED: Mon Aug 31 22:45:39 2020
NAMESPACE: cilium
STATUS: deployed
REVISION: 1
TEST SUITE: None
NOTES:
You have successfully installed Cilium.

Your release version is 1.8.90.

For any further help, visit https://docs.cilium.io/en/v1.8/gettinghelp

$ kgpoowiden cilium                                                  
NAME                               READY   STATUS    RESTARTS   AGE     IP            NODE                                NOMINATED NODE   READINESS GATES
cilium-5hwmr                       1/1     Running   0          2m29s   10.240.0.35   aks-nodepool1-14356785-vmss000001   <none>           <none>
cilium-lj9fw                       1/1     Running   0          2m29s   10.240.0.4    aks-nodepool1-14356785-vmss000000   <none>           <none>
cilium-node-init-b28ts             1/1     Running   0          2m29s   10.240.0.4    aks-nodepool1-14356785-vmss000000   <none>           <none>
cilium-node-init-brjrn             1/1     Running   0          2m29s   10.240.0.35   aks-nodepool1-14356785-vmss000001   <none>           <none>
cilium-operator-65456488b8-74p79   1/1     Running   0          2m29s   10.240.0.35   aks-nodepool1-14356785-vmss000001   <none>           <none>
cilium-operator-65456488b8-z645x   1/1     Running   0          2m29s   10.240.0.4    aks-nodepool1-14356785-vmss000000   <none>           <none>

christarazi

LGTM pending one question.

christarazi · 2020-09-01T00:23:07Z

Documentation/gettingstarted/k8s-install-azure-cni-steps.rst

@@ -66,7 +66,7 @@ Deploy Cilium release via Helm:
     --set global.cni.chainingMode=generic-veth \\
     --set global.cni.customConf=true \\
     --set global.nodeinit.enabled=true \\
-     --set global.azure.enabled=true \\
+     --set nodeinit.azure=true \\


Do we still need to set global.azure.enabled also?

Setting global.azure.enabled=true will change operator image to cilium-operator-azure as per https://github.com/cilium/cilium/blob/master/install/kubernetes/cilium/charts/operator/templates/deployment.yaml#L60. And cilium-operator-azure only allows ipam.azure mode.

Understand that global.azure.enabled might cause some confusion, keen to hear your input to make it clearer as well as backward compatible.

How about we rename .azure in nodeinit to .expect-azure-vnet or similar to make it more clear?

And then maybe add an additional comment on the of this value the about its use-case? AFAIU, this is when we want to use azure but without using cilium-operator-azure that only allows ipam.azure.

joestringer

@kkourt 's suggestion seems reasonable. Other than that, makes sense, sounds like this should resolve the error in Azure chaining guide.

Setting `global.azure.enabled` will change operator image to `operator-azure`, which only accepts azure IPAM, and throw fatal error for `cluster-pool`. This PR is to enable node init to wait for azure vnet for both cases (e.g. CNI and Azure IPAM) Closes cilium#13023 Signed-off-by: Tam Mach <sayboras@yahoo.com>

kkourt

Thanks!

maintainer-s-little-helper bot added the dont-merge/needs-release-note-label The author needs to describe the release impact of these changes. label Aug 31, 2020

sayboras added area/helm Impacts helm charts and user deployment experience release-note/bug This PR fixes an issue in a previous release of Cilium. release-note/misc This PR makes changes that have no direct user impact. labels Aug 31, 2020

maintainer-s-little-helper bot removed the dont-merge/needs-release-note-label The author needs to describe the release impact of these changes. label Aug 31, 2020

sayboras added the area/azure Impacts Azure based IPAM. label Aug 31, 2020

sayboras marked this pull request as ready for review August 31, 2020 12:49

sayboras requested review from a team as code owners August 31, 2020 12:49

sayboras requested a review from a team August 31, 2020 12:49

sayboras force-pushed the feature/azure-helm branch from 28c95c5 to 9a9b6ac Compare August 31, 2020 12:51

sayboras added the needs-backport/1.8 label Aug 31, 2020

maintainer-s-little-helper bot added this to Needs backport from master in 1.8.3 Aug 31, 2020

sayboras force-pushed the feature/azure-helm branch 2 times, most recently from 6027208 to 9ecddc5 Compare August 31, 2020 13:03

christarazi reviewed Sep 1, 2020

View reviewed changes

joestringer requested changes Sep 2, 2020

View reviewed changes

sayboras force-pushed the feature/azure-helm branch from 9ecddc5 to b4c0ea5 Compare September 3, 2020 10:30

sayboras requested review from joestringer, kkourt and christarazi September 3, 2020 10:30

kkourt approved these changes Sep 3, 2020

View reviewed changes

christarazi approved these changes Sep 3, 2020

View reviewed changes

kkourt approved these changes Sep 4, 2020

View reviewed changes

aanm approved these changes Sep 4, 2020

View reviewed changes

aanm merged commit 011546b into cilium:master Sep 4, 2020

aanm added this to Needs backport from master in 1.8.4 Sep 4, 2020

aanm removed this from Needs backport from master in 1.8.3 Sep 4, 2020

sayboras deleted the feature/azure-helm branch September 4, 2020 11:26

pchaigno mentioned this pull request Sep 7, 2020

v1.8 backports 2020-09-07 #13100

Merged

pchaigno added backport-pending/1.8 and removed needs-backport/1.8 labels Sep 7, 2020

maintainer-s-little-helper bot added this to Backport pending to v1.8 in 1.8.3 Sep 7, 2020

pchaigno added backport-done/1.8 and removed backport-pending/1.8 labels Sep 9, 2020

maintainer-s-little-helper bot moved this from Backport pending to v1.8 to Backport done to v1.8 in 1.8.3 Sep 9, 2020

sayboras mentioned this pull request Sep 11, 2020

[Azure -AKS] Cilium Operator Failing #12875

Closed

joestringer moved this from Needs backport from master to Backport done to v1.8 in 1.8.4 Sep 30, 2020

joestringer mentioned this pull request Oct 1, 2020

Prepare for release v1.8.4 #13361

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

helm/azure: Fatal error for CNI Azure installation #13024

helm/azure: Fatal error for CNI Azure installation #13024

sayboras commented Aug 31, 2020 •

edited

christarazi left a comment

christarazi Sep 1, 2020

sayboras Sep 1, 2020

kkourt Sep 1, 2020

joestringer left a comment

kkourt left a comment

helm/azure: Fatal error for CNI Azure installation #13024

helm/azure: Fatal error for CNI Azure installation #13024

Conversation

sayboras commented Aug 31, 2020 • edited

christarazi left a comment

Choose a reason for hiding this comment

christarazi Sep 1, 2020

Choose a reason for hiding this comment

sayboras Sep 1, 2020

Choose a reason for hiding this comment

kkourt Sep 1, 2020

Choose a reason for hiding this comment

joestringer left a comment

Choose a reason for hiding this comment

kkourt left a comment

Choose a reason for hiding this comment

sayboras commented Aug 31, 2020 •

edited