sjenning

Permissions needed for install (IPI)

https://github.com/openshift/installer/blob/master/pkg/asset/installconfig/aws/permissions.go#L32-L214

Below is documented what is required to operate for the UPI case (untested and not verified)

image-registry user

needed for integrated registry

sjenning

# cat horizon/custom_local_settings
LAUNCH_INSTANCE_DEFAULTS = {
    "create_volume": False,
}
SESSION_TIMEOUT = 86400

sjenning

# updated 10/11/18
# oc get is origin-v4.0 -n openshift -o yaml | grep tag: | cut -f6 -d' '

ansible
artifacts
aws-machine-controllers
base
catalog
cli
cluster-autoscaler

sjenning

// Place your settings in this file to overwrite the default settings
{
    "go.buildOnSave": true,
    "go.lintOnSave": true,
    "go.vetOnSave": true,
    "go.buildTags": "",
    "go.buildFlags": [],
    "go.lintFlags": [],
    "go.vetFlags": [],
    "go.coverOnSave": false,

sjenning

instances start with rhcos image + ignition configs (per role) generated by "tectonic init"
for aws: user_data
for libvirt: qemu_fw_cfg

== master ===
kubelet.service starts
runs bootstrap control plane runs as static pods on the bootstrap master
bootkube.service starts
runs kube-core-renderer container
https://github.com/coreos-inc/tectonic-operators/blob/master/renderer/Documentation/README.md

sjenning

platform: libvirt
libvirt:
  uri: qemu:///system
  network:
    name: tectonic
    ifName: tt0
    dnsServer: 10.42.10.1
    ipRange: 192.168.124.0/24
  imagePath: /home/sjennings/Downloads/rhcos-qemu.qcow2
containerLinux:

sjenning

package main

import (
	"fmt"
	"os"
	"time"

	"k8s.io/api/core/v1"
	"k8s.io/apimachinery/pkg/fields"
	"k8s.io/apimachinery/pkg/types"

sjenning

= start an openshift test cluster =
= download dep ==
cd $GOPATH/bin
wget https://github.com/golang/dep/releases/download/v0.5.0/dep-linux-amd64
mv dep-linux-amd64 dep
chmod +x dep
= build operator-sdk =
go get github.com/operator-framework/operator-sdk
cd $GOPATH/src/github.com/operator-framework/operator-sdk
make dep

sjenning

#!/bin/bash

set -euo pipefail
#set -x

# tree can be the name of a branch (master, release-3.8, etc) or a release tag (v3.9.0-alpha.4)
TREE="$1"

REPOURL=$(curl -s "https://storage.googleapis.com/origin-ci-test/releases/openshift/origin/$TREE/.latest-rpms")
echo "copy to following lines into your openshift-ansible inventory file"

sjenning

# edit /etc/sysconfig/docker-storage
DOCKER_STORAGE_OPTIONS=--storage-driver=overlay2

# edit /etc/sysconfig/docker
OPTIONS=' --selinux-enabled  --log-driver=journald --graph=/var/lib/containers/storage/docker'

# edit /etc/systemd/system/atomic-openshift-node.service
WorkingDirectory=/var/lib/containers/storage/origin/

# atomic-openshift-node.service has PreExec commands that expect the WorkingDirectory to exist already