Update entrypoint scripts and document to align with new CLI #1097
Conversation
Update entrypoint scripts for k8s, docker v2plugin to align with new CLI, update documents, k8s config yaml. Drive by update vagrantfile, kubeadm_test, utils/configs.go to make codes more readable. Signed-off-by: Wei Tie <wtie@cisco.com>
|
build PR |
install/v2plugin/README.md
Outdated
| ``` | ||
| ### docker hub | ||
| Developer release of v2plugin from contiv repo is also pushed to docker hub | ||
| Please update mode, forward modemode, net mode according to your deployment. |
install/v2plugin/README.md
Outdated
| @@ -49,8 +73,11 @@ make demo-v2plugin | |||
|
|
|||
| ## Contiv plugin-roles | |||
| Contiv plugin runs both netplugin and netmaster by default. Contiv v2plugin can be run with only netplugin by setting the plugin_role to worker. | |||
| Please update mode, forward modemode, net mode according to your deployment. | |||
install/v2plugin/startcontiv.sh
Outdated
| if [ "$log_dir" == "" ]; then | ||
| log_dir="/var/log/contiv" | ||
| # setting up logs | ||
| if [ ! -z "$CONTIV_LOG_DIR" ]; then |
There was a problem hiding this comment.
isn't ! -z "" == -n "" ? is it a concern ?
There was a problem hiding this comment.
just a minor nitpick... you can avoid negation by using the opposing operator
There was a problem hiding this comment.
[chrisplo:~] $
$ CONTIV_LOG_DIR=foo
[chrisplo:~] $
$ if [ ! -z "$CONTIV_LOG_DIR" ]; then echo setting log dir; fi
setting log dir
[chrisplo:~] $
$ unset CONTIV_LOG_DIR
[chrisplo:~] $
$ if [ ! -z "$CONTIV_LOG_DIR" ]; then echo setting log dir; fi
[chrisplo:~] $
the logic is wrong I think, drop the !
|
|
||
| if [ $cleanup == true ]; then | ||
| exit 0 | ||
| if [ ! -z "$CONTIV_MODE" ]; then |
| mkdir -p /var/contiv/config | ||
| echo ${CONTIV_CONFIG} >/var/contiv/config/contiv.json | ||
| cp /var/contiv/config/contiv.json /opt/contiv/config/contiv.json | ||
| if [ -d /var/contiv/log ]; then |
There was a problem hiding this comment.
Could both of these dirs even even exist at the same time? I think that implies both bindmounts are active... and in that case, the mv here is moving a bindmount onto another bindmount (gonna fail)
I think moving the contents will work, but moving the dir (possibly mountpoint) is not safe
There was a problem hiding this comment.
Ah yeah I see these are both bindmounts... you'll need to mv the contents (or cp -r), not the directory (which is actually a mountpoint)
|
build PR |
| # The location of your cluster store. This is set to the | ||
| # avdertise-client value below from the contiv-etcd service. | ||
| # Change it to an external etcd/consul instance if required. | ||
| cluster_store: "etcd://__NETMASTER_IP__:6666" | ||
| contiv_etcd: "http://__NETMASTER_IP__:6666" |
There was a problem hiding this comment.
were changing these three to have contiv_ necessary since we're in a contiv.yaml file? for example I see that calico doesn't namespace:
https://github.com/projectcalico/calico/blob/master/v2.6/getting-started/kubernetes/installation/hosted/calico.yaml#L19
same q for other deployments like contiv_devtest.yaml
There was a problem hiding this comment.
it's just to make it more readable, it's useful when we split the yaml file to several yamls
install/v2plugin/README.md
Outdated
|
|
||
| ARG : DESCRIPTION : DEFAULT VALUE | ||
| ----------------------------------:---------------------------------------------------------------------------:---------------------- | ||
| CONTIV_ROLE : contiv net service net, options: [netmaster, netplugin] : "" |
There was a problem hiding this comment.
why not default to netplugin? that should line up when we eventually pull out netmaster from the container . .
There was a problem hiding this comment.
default to netplugin will not bring up netmaster, is it what we wanted ?
There was a problem hiding this comment.
my thinking was that all nodes will be running netplugin (now and after we split)
the netmaster are special, as there are only 3 (or so) of them, and it seems to make more sense to tag the special ones?
install/v2plugin/README.md
Outdated
| CONTIV_ROLE : contiv net service net, options: [netmaster, netplugin] : "" | ||
| CONTIV_LOG_DIR : contiv log file directory : "/var/log/contiv" | ||
| CONTIV_NETPLUGIN_CONSUL_ENDPOINTS : a comma-delimited list of netplugin consul endpoints : "" | ||
| CONTIV_NETPLUGIN_ETCD_ENDPOINTS : a comma-delimited list of netplugin etcd endpoints : "" |
There was a problem hiding this comment.
I'm sad we lost the etcd default, what if we:
- default etcd to http://localhost:2379, consul to ""
- if consul is set and etcd is default value, then use consul
- if both explicitly set, error
There was a problem hiding this comment.
that introduce extra layer in the startcontiv.sh and i'm trying to avoid it ...
we can default to use etcd http://127.0.0.1:2379 if none of them are set, but it needs to be in configs.go instead of startcontiv.sh. thought ?
There was a problem hiding this comment.
if you meant "none" instead of "one" . . seems good, we can still document the default as etcd even if it's not done in startcontiv?
install/v2plugin/startcontiv.sh
Outdated
| if [ "$log_dir" == "" ]; then | ||
| log_dir="/var/log/contiv" | ||
| # setting up logs | ||
| if [ ! -z "$CONTIV_LOG_DIR" ]; then |
install/v2plugin/startcontiv.sh
Outdated
| if [[ "$cluster_store" =~ ^etcd://.+ ]]; then | ||
| store_arg="--etcd-endpoints $(echo $cluster_store | sed s/etcd/http/)" | ||
| mkdir -p /var/run/openvswitch | ||
| mkdir -p /var/log/contiv/ |
There was a problem hiding this comment.
not blocking, mkdir can take multiple args I think
install/v2plugin/startcontiv.sh
Outdated
| --private-key=db:Open_vSwitch,SSL,private_key \ | ||
| --certificate=db:Open_vSwitch,SSL,certificate \ | ||
| --bootstrap-ca-cert=db:Open_vSwitch,SSL,ca_cert \ | ||
| --log-file=/var/log/contiv/ovs-db.log -vsyslog:info -vfile:info \ |
There was a problem hiding this comment.
shouldn't vsyslog and vfile be based on the CLI setting?
There was a problem hiding this comment.
not for ovs log, there was a PR to set to use info level specifically, this is just to make it align between docker and k8s
install/v2plugin/startcontiv.sh
Outdated
| set -x | ||
| /contiv/bin/netmaster "$@" &> "$CONTIV_LOG_DIR/netmaster.log" | ||
| set +x | ||
| echo "ERROR: Contiv netmaster has exited, restarting in 5s" |
There was a problem hiding this comment.
did log rotation happen elsewhere now?
There was a problem hiding this comment.
no, there's no log rotation today
There was a problem hiding this comment.
| if [ "$i" -ge "10" ]; then | ||
| echo "netmaster port not open (needed to set forwarding mode), plugin failed" | ||
| exit 1 | ||
| fi |
There was a problem hiding this comment.
why are we getting rid of the wait for the listen port?
There was a problem hiding this comment.
b/c the fwd config are in passed CLI, don't have to wait for it's ready
| @@ -1,14 +1,15 @@ | |||
| #!/bin/bash | |||
| #Start OVS in the Contiv container | |||
|
|
|||
| set -euo pipefail | |||
There was a problem hiding this comment.
the modprobe will not trigger pipefail, leave here?
#!/bin/bash
set -eo pipefail
(exit 1) || echo i am fine
test/systemtests/kubeadm_test.go
Outdated
| @@ -554,7 +554,8 @@ func (k *kubePod) startNetmaster(args string) error { | |||
| if k.node.suite.basicInfo.AciMode == "on" { | |||
| infraType = " --infra aci " | |||
| } | |||
| netmasterStartCmd := k.node.suite.basicInfo.BinPath + `/netmaster` + infraType + k.commonArgs() + args + ` > ` + netmasterLogLocation + ` 2>&1` | |||
| // unset CONTIV_NETMASTER_ETCD_ENDPOINTS to be able to use other endpoint | |||
| netmasterStartCmd := "unset CONTIV_NETMASTER_ETCD_ENDPOINTS && " + k.node.suite.basicInfo.BinPath + `/netmaster` + infraType + k.commonArgs() + args + ` > ` + netmasterLogLocation + ` 2>&1` | |||
|
build PR |
1 similar comment
|
build PR |
This commit make netplugin and netmaster to use etcd at http://127.0.0.1:2379 if neither etcd or consul endpoints are provided. Also make v2plugin by default as netplugin role. Signed-off-by: Wei Tie <wtie@cisco.com>
|
build PR |
install/v2plugin/startcontiv.sh
Outdated
| if [ "$log_dir" == "" ]; then | ||
| log_dir="/var/log/contiv" | ||
| # setting up logs | ||
| if [ ! -z "$CONTIV_LOG_DIR" ]; then |
There was a problem hiding this comment.
[chrisplo:~] $
$ CONTIV_LOG_DIR=foo
[chrisplo:~] $
$ if [ ! -z "$CONTIV_LOG_DIR" ]; then echo setting log dir; fi
setting log dir
[chrisplo:~] $
$ unset CONTIV_LOG_DIR
[chrisplo:~] $
$ if [ ! -z "$CONTIV_LOG_DIR" ]; then echo setting log dir; fi
[chrisplo:~] $
the logic is wrong I think, drop the !
|
build PR |
| @@ -14,7 +14,9 @@ data: | |||
| # The location of your cluster store. This is set to the | |||
| # avdertise-client value below from the contiv-etcd service. | |||
| # Change it to an external etcd/consul instance if required. | |||
| contiv_etcd: "http://__NETMASTER_IP__:6666" | |||
| # this is not required for dev test, etcd or consul endpoints | |||
There was a problem hiding this comment.
i read this like A, B, or C . . . maybe dev test: etcd or ...
|
build PR |
2 similar comments
|
build PR |
|
build PR |
Update entrypoint scripts for k8s, docker v2plugin to align with
new CLI, update documents, k8s config yaml.
Drive by update vagrantfile, kubeadm_test, utils/configs.go to make
codes more readable.
Signed-off-by: Wei Tie wtie@cisco.com