Initial oVirt provisioning support.

Author: abutcher

config/crds/hive.openshift.io_clusterdeployments.yaml

@@ -423,6 +423,27 @@ spec:
                   - cloud
                   - credentialsSecretRef
                   type: object
+                ovirt:
+                  description: Ovirt is the configuration used when installing on
+                    oVirt
+                  properties:
+                    credentialsSecretRef:
+                      description: 'CredentialsSecretRef refers to a secret that contains
+                        the oVirt account access credentials with fields: ovirt_url,
+                        ovirt_username, ovirt_password, ovirt_ca_bundle'
+                      properties:
+                        name:
+                          description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                            TODO: Add other useful fields. apiVersion, kind, uid?'
+                          type: string
+                      type: object
+                    ovirt_cluster_id:
+                      description: The target cluster under which all VMs will run
+                      type: string
+                  required:
+                  - credentialsSecretRef
+                  - ovirt_cluster_id
+                  type: object
                 vsphere:
                   description: VSphere is the configuration used when installing on
                     vSphere

config/crds/hive.openshift.io_clusterdeprovisions.yaml

@@ -127,6 +127,25 @@ spec:
                   required:
                   - cloud
                   type: object
+                ovirt:
+                  description: Ovirt contains oVirt-specific deprovision settings
+                  properties:
+                    credentialsSecretRef:
+                      description: CredentialsSecretRef is the oVirt account credentials
+                        to use for deprovisioning the cluster
+                      properties:
+                        name:
+                          description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                            TODO: Add other useful fields. apiVersion, kind, uid?'
+                          type: string
+                      type: object
+                    ovirt_cluster_id:
+                      description: The oVirt cluster ID
+                      type: string
+                  required:
+                  - credentialsSecretRef
+                  - ovirt_cluster_id
+                  type: object
                 vsphere:
                   description: VSphere contains VMWare vSphere-specific deprovision
                     settings

config/crds/hive.openshift.io_machinepools.yaml

@@ -201,6 +201,10 @@ spec:
                   required:
                   - flavor
                   type: object
+                ovirt:
+                  description: Ovirt is the configuration used when installing on
+                    oVirt.
+                  type: object
                 vsphere:
                   description: VSphere is the configuration used when installing on
                     vSphere

contrib/pkg/createcluster/create.go

@@ -28,6 +28,7 @@ import (
 	azurecredutil "github.com/openshift/hive/contrib/pkg/utils/azure"
 	gcputils "github.com/openshift/hive/contrib/pkg/utils/gcp"
 	openstackutils "github.com/openshift/hive/contrib/pkg/utils/openstack"
+	ovirtutils "github.com/openshift/hive/contrib/pkg/utils/ovirt"
 	"github.com/openshift/hive/pkg/apis"
 	hivev1 "github.com/openshift/hive/pkg/apis/hive/v1"
 	"github.com/openshift/hive/pkg/clusterresource"
@@ -92,6 +93,7 @@ const (
 	cloudGCP             = "gcp"
 	cloudOpenStack       = "openstack"
 	cloudVSphere         = "vsphere"
+	cloudOVirt           = "ovirt"
 
 	testFailureManifest = `apiVersion: v1
 kind: NotARealSecret
@@ -109,6 +111,7 @@ var (
 		cloudGCP:       true,
 		cloudOpenStack: true,
 		cloudVSphere:   true,
+		cloudOVirt:     true,
 	}
 )
 
@@ -172,6 +175,14 @@ type Options struct {
 	VSphereNetwork          string
 	VSphereCACerts          string
 
+	// Ovirt
+	OvirtClusterID       string
+	OvirtStorageDomainID string
+	OvirtNetworkName     string
+	OvirtAPIVIP          string
+	OvirtDNSVIP          string
+	OvirtIngressVIP      string
+
 	homeDir string
 }
 
@@ -199,7 +210,8 @@ create-cluster CLUSTER_DEPLOYMENT_NAME --cloud=aws
 create-cluster CLUSTER_DEPLOYMENT_NAME --cloud=azure --azure-base-domain-resource-group-name=RESOURCE_GROUP_NAME
 create-cluster CLUSTER_DEPLOYMENT_NAME --cloud=gcp
 create-cluster CLUSTER_DEPLOYMENT_NAME --cloud=openstack --openstack-api-floating-ip=192.168.1.2 --openstack-cloud=mycloud
-create-cluster CLUSTER_DEPLOYMENT_NAME --cloud=vsphere --vsphere-vcenter=vmware.devcluster.com --vsphere-datacenter=dc1 --vsphere-default-datastore=nvme-ds1 --vsphere-api-vip=192.168.1.2 --vsphere-ingress-vip=192.168.1.3 --vsphere-cluster=devel --vsphere-network="VM Network" --vsphere-ca-certs=/path/to/cert`,
+create-cluster CLUSTER_DEPLOYMENT_NAME --cloud=vsphere --vsphere-vcenter=vmware.devcluster.com --vsphere-datacenter=dc1 --vsphere-default-datastore=nvme-ds1 --vsphere-api-vip=192.168.1.2 --vsphere-ingress-vip=192.168.1.3 --vsphere-cluster=devel --vsphere-network="VM Network" --vsphere-ca-certs=/path/to/cert
+create-cluster CLUSTER_DEPLOYMENT_NAME --cloud=ovirt`,
 		Short: "Creates a new Hive cluster deployment",
 		Long:  fmt.Sprintf(longDesc, defaultSSHPublicKeyFile, defaultPullSecretFile),
 		Args:  cobra.ExactArgs(1),
@@ -279,6 +291,14 @@ create-cluster CLUSTER_DEPLOYMENT_NAME --cloud=vsphere --vsphere-vcenter=vmware.
 	flags.StringVar(&opt.VSphereNetwork, "vsphere-network", "", "Name of the network to be used by the cluster")
 	flags.StringVar(&opt.VSphereCACerts, "vsphere-ca-certs", "", "Path to vSphere CA certificate, multiple CA paths can be : delimited")
 
+	// oVirt flags
+	flags.StringVar(&opt.OvirtClusterID, "ovirt-cluster-id", "", "The oVirt cluster under which all VMs will run")
+	flags.StringVar(&opt.OvirtStorageDomainID, "ovirt-storage-domain-id", "", "oVirt storage domain under which all VM disk would be created")
+	flags.StringVar(&opt.OvirtNetworkName, "ovirt-network-name", "ovirtmgmt", "oVirt network of all the network interfaces of the nodes")
+	flags.StringVar(&opt.OvirtAPIVIP, "ovirt-api-vip", "", "IP which will be served by bootstrap and then pivoted masters, using keepalived")
+	flags.StringVar(&opt.OvirtDNSVIP, "ovirt-dns-vip", "", "IP of the internal DNS which will be operated by the cluster")
+	flags.StringVar(&opt.OvirtIngressVIP, "ovirt-ingress-vip", "", "External IP which routes to the default ingress controller")
+
 	return cmd
 }
 
@@ -595,6 +615,22 @@ func (o *Options) GenerateObjects() ([]runtime.Object, error) {
 			CACert:           bytes.Join(caCerts, []byte("\n")),
 		}
 		builder.CloudBuilder = vsphereProvider
+	case cloudOVirt:
+		oVirtConfigYAMLContent, err := ovirtutils.GetCreds(o.CredsFile)
+		if err != nil {
+			return nil, err
+		}
+		oVirtProvider := &clusterresource.OvirtCloudBuilder{
+			OVirtConfigYAMLContent: oVirtConfigYAMLContent,
+			ClusterID:              o.OvirtClusterID,
+			StorageDomainID:        o.OvirtStorageDomainID,
+			NetworkName:            o.OvirtNetworkName,
+			APIVIP:                 o.OvirtAPIVIP,
+			DNSVIP:                 o.OvirtDNSVIP,
+			IngressVIP:             o.OvirtIngressVIP,
+		}
+		builder.CloudBuilder = oVirtProvider
+		builder.SkipMachinePoolGeneration = true
 	}
 
 	if len(o.ServingCert) != 0 {

contrib/pkg/deprovision/deprovision.go

@@ -17,5 +17,6 @@ func NewDeprovisionCommand() *cobra.Command {
 	cmd.AddCommand(NewDeprovisionGCPCommand())
 	cmd.AddCommand(NewDeprovisionOpenStackCommand())
 	cmd.AddCommand(NewDeprovisionvSphereCommand())
+	cmd.AddCommand(NewDeprovisionOvirtCommand())
 	return cmd
 }

contrib/pkg/deprovision/ovirt.go

@@ -0,0 +1,94 @@
+package deprovision
+
+import (
+	"errors"
+	"os"
+
+	log "github.com/sirupsen/logrus"
+	"github.com/spf13/cobra"
+
+	"github.com/openshift/installer/pkg/destroy/ovirt"
+	"github.com/openshift/installer/pkg/types"
+	typesovirt "github.com/openshift/installer/pkg/types/ovirt"
+)
+
+// oVirtOptions is the set of options to deprovision an oVirt cluster
+type oVirtOptions struct {
+	logLevel  string
+	infraID   string
+	clusterID string
+}
+
+// NewDeprovisionOvirtCommand is the entrypoint to create the oVirt deprovision subcommand
+func NewDeprovisionOvirtCommand() *cobra.Command {
+	opt := &oVirtOptions{}
+	cmd := &cobra.Command{
+		Use:   "ovirt INFRAID",
+		Short: "Deprovision oVirt assets (as created by openshift-installer)",
+		Args:  cobra.ExactArgs(1),
+		Run: func(cmd *cobra.Command, args []string) {
+			if err := opt.Complete(cmd, args); err != nil {
+				log.WithError(err).Fatal("failed to complete options")
+			}
+			if err := opt.Validate(cmd); err != nil {
+				log.WithError(err).Fatal("validation failed")
+			}
+			if err := opt.Run(); err != nil {
+				log.WithError(err).Fatal("Runtime error")
+			}
+		},
+	}
+	flags := cmd.Flags()
+	flags.StringVar(&opt.logLevel, "loglevel", "info", "log level, one of: debug, info, warn, error, fatal, panic")
+	flags.StringVar(&opt.clusterID, "ovirt-cluster-id", "", "oVirt cluster ID")
+	return cmd
+}
+
+// Complete finishes parsing arguments for the command
+func (o *oVirtOptions) Complete(cmd *cobra.Command, args []string) error {
+	o.infraID = args[0]
+	return nil
+}
+
+// Validate ensures that option values make sense
+func (o *oVirtOptions) Validate(cmd *cobra.Command) error {
+	if o.clusterID == "" {
+		return errors.New("must provide --ovirt-cluster-id or set")
+	}
+	return nil
+}
+
+// Run executes the command
+func (o *oVirtOptions) Run() error {
+	// Set log level
+	level, err := log.ParseLevel(o.logLevel)
+	if err != nil {
+		log.WithError(err).Error("cannot parse log level")
+		return err
+	}
+
+	logger := log.NewEntry(&log.Logger{
+		Out: os.Stdout,
+		Formatter: &log.TextFormatter{
+			FullTimestamp: true,
+		},
+		Hooks: make(log.LevelHooks),
+		Level: level,
+	})
+
+	metadata := &types.ClusterMetadata{
+		InfraID: o.infraID,
+		ClusterPlatformMetadata: types.ClusterPlatformMetadata{
+			Ovirt: &typesovirt.Metadata{
+				ClusterID: o.clusterID,
+			},
+		},
+	}
+
+	destroyer, err := ovirt.New(logger, metadata)
+	if err != nil {
+		return err
+	}
+
+	return destroyer.Run()
+}

contrib/pkg/utils/ovirt/ovirt.go

@@ -0,0 +1,32 @@
+package ovirt
+
+import (
+	"io/ioutil"
+	"os"
+	"path/filepath"
+
+	"k8s.io/client-go/util/homedir"
+
+	"github.com/openshift/hive/pkg/constants"
+)
+
+// GetCreds reads oVirt credentials either from the specified credentials file,
+// or ~/.ovirt/ovirt-config.yaml
+func GetCreds(credsFile string) ([]byte, error) {
+	if credsFile == "" {
+		for _, filePath := range []string{filepath.Join(homedir.HomeDir(), ".ovirt", constants.OvirtCredentialsName)} {
+
+			_, err := os.Stat(filePath)
+			if err != nil && !os.IsNotExist(err) {
+				return nil, err
+			}
+			if os.IsNotExist(err) {
+				continue
+			}
+			credsFile = filePath
+			break
+		}
+	}
+	// log.WithField("credsFile", credsFile).Info("Loading oVirt creds")
+	return ioutil.ReadFile(credsFile)
+}

pkg/apis/hive/v1/clusterdeployment_types.go

@@ -10,6 +10,7 @@ import (
 	"github.com/openshift/hive/pkg/apis/hive/v1/baremetal"
 	"github.com/openshift/hive/pkg/apis/hive/v1/gcp"
 	"github.com/openshift/hive/pkg/apis/hive/v1/openstack"
+	"github.com/openshift/hive/pkg/apis/hive/v1/ovirt"
 	"github.com/openshift/hive/pkg/apis/hive/v1/vsphere"
 )
 
@@ -334,6 +335,9 @@ type Platform struct {
 
 	// VSphere is the configuration used when installing on vSphere
 	VSphere *vsphere.Platform `json:"vsphere,omitempty"`
+
+	// Ovirt is the configuration used when installing on oVirt
+	Ovirt *ovirt.Platform `json:"ovirt,omitempty"`
 }
 
 // ClusterIngress contains the configurable pieces for any ClusterIngress objects

pkg/apis/hive/v1/clusterdeprovision_types.go

@@ -36,6 +36,8 @@ type ClusterDeprovisionPlatform struct {
 	OpenStack *OpenStackClusterDeprovision `json:"openstack,omitempty"`
 	// VSphere contains VMWare vSphere-specific deprovision settings
 	VSphere *VSphereClusterDeprovision `json:"vsphere,omitempty"`
+	// Ovirt contains oVirt-specific deprovision settings
+	Ovirt *OvirtClusterDeprovision `json:"ovirt,omitempty"`
 }
 
 // AWSClusterDeprovision contains AWS-specific configuration for a ClusterDeprovision
@@ -80,6 +82,14 @@ type VSphereClusterDeprovision struct {
 	VCenter string `json:"vCenter"`
 }
 
+// OvirtClusterDeprovision contains oVirt-specific configuration for a ClusterDeprovision
+type OvirtClusterDeprovision struct {
+	// The oVirt cluster ID
+	ClusterID string `json:"ovirt_cluster_id"`
+	// CredentialsSecretRef is the oVirt account credentials to use for deprovisioning the cluster
+	CredentialsSecretRef corev1.LocalObjectReference `json:"credentialsSecretRef"`
+}
+
 // +genclient
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
 

pkg/apis/hive/v1/machinepool_types.go

@@ -8,6 +8,7 @@ import (
 	"github.com/openshift/hive/pkg/apis/hive/v1/azure"
 	"github.com/openshift/hive/pkg/apis/hive/v1/gcp"
 	"github.com/openshift/hive/pkg/apis/hive/v1/openstack"
+	"github.com/openshift/hive/pkg/apis/hive/v1/ovirt"
 	"github.com/openshift/hive/pkg/apis/hive/v1/vsphere"
 )
 
@@ -77,6 +78,8 @@ type MachinePoolPlatform struct {
 	OpenStack *openstack.MachinePool `json:"openstack,omitempty"`
 	// VSphere is the configuration used when installing on vSphere
 	VSphere *vsphere.MachinePool `json:"vsphere,omitempty"`
+	// Ovirt is the configuration used when installing on oVirt.
+	Ovirt *ovirt.MachinePool `json:"ovirt,omitempty"`
 }
 
 // MachinePoolStatus defines the observed state of MachinePool