Adding validation, test and field changes.

Author: rna-afk

data/data/install.openshift.io_installconfigs.yaml

@@ -5304,6 +5304,44 @@ spec:
                       This resource group must be empty with no other resources when trying to use it for creating a cluster.
                       If empty, a new resource group will created for the cluster.
                     type: string
+                  subnets:
+                    description: Subnets is the list of subnets the user can bring
+                      into the cluster to be used.
+                    items:
+                      description: SubnetSpec specifies the properties the subnet
+                        needs to be used in the cluster.
+                      properties:
+                        cidr:
+                          description: |-
+                            SubnetCIDR specifies the CIDR for the subnet if it needs to be created.
+                            Should not be mentioned if the subnet is a bring your own subnet.
+                          items:
+                            type: string
+                          type: array
+                        name:
+                          description: Name of the subnet.
+                          type: string
+                        natGateway:
+                          description: |-
+                            NatGatewayName specifies the name of the NAT gateway to be created for this subnet.
+                            Can only be used if the outbound type is set to MultiZoneNatGateway.
+                          type: string
+                        role:
+                          description: Role specifies the actual role which the subnet
+                            should be used in.
+                          type: string
+                        zone:
+                          description: Zone specifies the availability zone the NAT
+                            gateway needs to be placed in.
+                          type: string
+                      required:
+                      - cidr
+                      - name
+                      - natGateway
+                      - role
+                      - zone
+                      type: object
+                    type: array
                   userProvisionedDNS:
                     default: Disabled
                     description: |-

pkg/asset/installconfig/azure/validation.go

@@ -71,6 +71,7 @@ func Validate(client API, ic *types.InstallConfig) error {
 	}
 	allErrs = append(allErrs, validateMarketplaceImages(client, ic)...)
 	allErrs = append(allErrs, validateBootDiagnostics(client, ic)...)
+	// allErrs = append(allErrs, validateCustomSubnetsAndNatGateways(client, ic.Azure)...)
 	return allErrs.ToAggregate()
 }
 

pkg/explain/printer_test.go

@@ -342,6 +342,10 @@ resource group.
 This resource group must be empty with no other resources when trying to use it for creating a cluster.
 If empty, a new resource group will created for the cluster.
 
+    subnets <[]object>
+      Subnets is the list of subnets the user can bring into the cluster to be used.
+      SubnetSpec specifies the properties the subnet needs to be used in the cluster.
+
     userProvisionedDNS <string>
       Default: "Disabled"
       Valid Values: "Enabled","Disabled"

pkg/types/azure/validation/platform.go

@@ -127,6 +127,11 @@ func ValidatePlatform(p *azure.Platform, publish types.PublishingStrategy, fldPa
 			allErrs = append(allErrs, field.Required(fldPath.Child("clusterOSImage"), fmt.Sprintf("clusterOSImage must not be set when the cloud name is %s", cloud)))
 		}
 	}
+	for index, subnet := range p.Subnets {
+		if subnet.NatGatewayName != "" && p.OutboundType != azure.NATGatewayMultiZoneOutboundType {
+			allErrs = append(allErrs, field.Invalid(fldPath.Child("subnet").Index(index), subnet.NatGatewayName, "cannot specify nat gateway if outbound type is not MultiZoneNatGateway"))
+		}
+	}
 
 	return allErrs
 }
@@ -239,6 +244,7 @@ func findDuplicateTagKeys(tagSet map[string]string) error {
 var (
 	validOutboundTypes = map[azure.OutboundType]struct{}{
 		azure.LoadbalancerOutboundType:         {},
+		azure.NATGatewayMultiZoneOutboundType:  {},
 		azure.NATGatewaySingleZoneOutboundType: {},
 		azure.UserDefinedRoutingOutboundType:   {},
 	}

pkg/types/azure/validation/platform_test.go

@@ -134,7 +134,7 @@ func TestValidatePlatform(t *testing.T) {
 				p.OutboundType = "random-egress"
 				return p
 			}(),
-			expected: `^test-path\.outboundType: Unsupported value: "random-egress": supported values: "Loadbalancer", "NATGatewaySingleZone", "UserDefinedRouting"$`,
+			expected: `^test-path\.outboundType: Unsupported value: "random-egress": supported values: "Loadbalancer", "MultiZoneNatGateway", "NATGatewaySingleZone", "UserDefinedRouting"$`,
 		},
 		{
 			name: "invalid user defined type",
@@ -217,6 +217,17 @@ func TestValidatePlatform(t *testing.T) {
 			}(),
 			expected: `^test-path\.customerManagedKey: Invalid value: "-": invalid user assigned identity key for encryption$`,
 		},
+		{
+			name: "mentioned nat gateway when outbound type is not multi zone",
+			platform: func() *azure.Platform {
+				p := validPlatform()
+				p.Subnets = []azure.SubnetSpec{{
+					NatGatewayName: "test-invalid",
+				}}
+				return p
+			}(),
+			expected: `^test-path\.subnet\[0\]: Invalid value: "test-invalid": cannot specify nat gateway if outbound type is not MultiZoneNatGateway$`,
+		},
 	}
 	ic := types.InstallConfig{}
 	for _, tc := range cases {