OPNET-678: Make VIPs optional with external loadbalancer

[cybertron]

No description provided.

[openshift-ci-robot]

@cybertron: This pull request references OPNET-678 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the epic to target the "4.20.0" version, but no target version was set.

In response to this:

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign dougbtv for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• enhancements/network/OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[cybertron]

/cc @mkowalski @emy

[mkowalski]

After first pass all good, I do not see anything particularly concerning

[cybertron]

/cc @JoelSpeed

[everettraven]

What configuration is this? Who is creating it? What is reading it?

[mkowalski]

This snippet comes from the install-config.yaml

[everettraven]

Can we clarify this in the enhancement?

[cybertron]

Sure

[everettraven]

What happens if I provide only one of those fields? Is that a valid configuration? Are there any risks in place if a user manually specifies either or both of the VIPs fields and uses one of these more advanced external loadbalancers?

[mkowalski]

if a user manually specifies [...] both of the VIPs fields and uses one of these more advanced external loadbalancers?

This is what happens today, so what we want to have is that you are no longer forced to specify VIP(s) when you use external loadbalancer

[mkowalski]

What happens if I provide only one of those fields? Is that a valid configuration?

We should have a syntax check in place that you either provide both of them or none

[everettraven]

A syntax check sounds reasonable.

I'm also wondering if it would make sense to have a new loadbalancer.type field (assuming this is a discriminated union) that just removes the ability to set those options altogether?

I'm not very familiar with the existing API, so if we could also link to the existing API in the enhancement, that would be helpful for further review.

[cybertron]

We already do: https://github.com/openshift/installer/blob/fe225d16eef71880ba4cd8027f6f9e5b2b0d3063/pkg/types/validation/installconfig.go#L983 and https://github.com/openshift/installer/blob/fe225d16eef71880ba4cd8027f6f9e5b2b0d3063/pkg/types/validation/installconfig.go#L1034

However, after looking through that validation logic I have realized we already allow 0 VIPs, which is problematic for this proposal because it conflicts with the behavior I was planning to implement. A pretty significant re-work of this enhancement is on the way.

[everettraven]

Why should this new variation not go through the proper promotion channels before being supported?

[cybertron]

Honestly, we've had pretty bad luck with tech preview features for baremetal customers. They won't even try them.

However, given that I think this is going to be a more substantial change than I initially expected I'm discussing this with the field team asking for it.

[JoelSpeed]

/cc @JoelSpeed

@everettraven Is taking the first pass from an API review perspective, he will ping me for review once he's happy from the API review perspective

[cybertron]

Since I discovered that we already allow zero VIPs (it triggers a DNS lookup for those values) we're going to need a different approach. New revision coming shortly to reflect that.

[cybertron]

We already do: https://github.com/openshift/installer/blob/fe225d16eef71880ba4cd8027f6f9e5b2b0d3063/pkg/types/validation/installconfig.go#L983 and https://github.com/openshift/installer/blob/fe225d16eef71880ba4cd8027f6f9e5b2b0d3063/pkg/types/validation/installconfig.go#L1034

However, after looking through that validation logic I have realized we already allow 0 VIPs, which is problematic for this proposal because it conflicts with the behavior I was planning to implement. A pretty significant re-work of this enhancement is on the way.

[cybertron]

Sure

[cybertron]

Honestly, we've had pretty bad luck with tech preview features for baremetal customers. They won't even try them.

However, given that I think this is going to be a more substantial change than I initially expected I'm discussing this with the field team asking for it.

[openshift-bot]

Inactive enhancement proposals go stale after 28d of inactivity.

See https://github.com/openshift/enhancements#life-cycle for details.

Mark the proposal as fresh by commenting /remove-lifecycle stale.
Stale proposals rot after an additional 7d of inactivity and eventually close.
Exclude this proposal from closing by commenting /lifecycle frozen.

If this proposal is safe to close now please do so with /close.

/lifecycle stale

[cybertron]

@everettraven I've had some discussions with the customer that asked for this and they agreed to try it in tech preview, so I've included details about that. I also did some prototyping of the new API and modified the proposal to better reflect the OpenShift API guidelines. I have a working implementation now so if we can get the API details worked out I think we'll be able to move forward pretty quickly with this. Thanks!

[openshift-ci]

@cybertron: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[cybertron]

/remove-lifecycle stale