Trying to deploy clusters on multiple-azs in vSphere. Build succeeds, no regressions

saji-pivotal · saji-pivotal · commit 1b410902072e · 2021-11-09T15:33:38.000-08:00
Signed-off-by: Sudarshan &lt;asudarshan@vmware.com&gt;
diff --git a/pkg/v1/providers/config_default.yaml b/pkg/v1/providers/config_default.yaml
@@ -111,6 +111,10 @@ VSPHERE_PASSWORD:
 VSPHERE_REGION:
 VSPHERE_ZONE:
 
+VSPHERE_AZ_0:
+VSPHERE_AZ_1:
+VSPHERE_AZ_2:
+
 #! FQDN or IP address to vCenter
 VSPHERE_SERVER:
 
diff --git a/pkg/v1/providers/infrastructure-vsphere/v1.0.1/ytt/overlay.yaml b/pkg/v1/providers/infrastructure-vsphere/v1.0.1/ytt/overlay.yaml
@@ -302,6 +302,11 @@ spec:
       infrastructureRef:
         name: #@ "{}-worker".format(data.values.CLUSTER_NAME)
       version: #@ data.values.KUBERNETES_VERSION
+      #@overlay/match missing_ok=True
+      #@ if data.values.VSPHERE_AZ_0:
+      failureDomain: #@ data.values.VSPHERE_AZ_0
+      #@ end
+
 #@overlay/match by=overlay.subset({"kind": "Secret", "metadata":{"name": "${ CLUSTER_NAME }"}})
 ---
 apiVersion: v1
diff --git a/pkg/v1/providers/infrastructure-vsphere/ytt/vsphere-overlay.yaml b/pkg/v1/providers/infrastructure-vsphere/ytt/vsphere-overlay.yaml
@@ -1 +1,228 @@
-#! Please add any overlays specific to vSphere provider under this file.
+#! Please add any overlays specific to vSphere provider under this file.
+#@ load("@ytt:overlay", "overlay")
+#@ load("@ytt:data", "data")
+
+
+#@ load("lib/helpers.star", "get_bom_data_for_tkr_name", "get_default_tkg_bom_data", "kubeadm_image_repo", "get_image_repo_for_component", "get_vsphere_thumbprint")
+
+#@ load("lib/validate.star", "validate_configuration")
+#@ load("@ytt:yaml", "yaml")
+#@ validate_configuration("vsphere")
+
+#@ bomDataForK8sVersion = get_bom_data_for_tkr_name()
+
+#@ if data.values.CLUSTER_PLAN == "prod":
+#@overlay/match by=overlay.subset({"kind":"VSphereCluster"})
+---
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+kind: VSphereCluster
+metadata:
+  name: #@ data.values.CLUSTER_NAME
+spec:
+  #@ if not data.values.AVI_CONTROL_PLANE_HA_PROVIDER:
+  controlPlaneEndpoint:
+    host: #@ data.values.VSPHERE_CONTROL_PLANE_ENDPOINT
+  #@ else:
+  #@overlay/remove
+  controlPlaneEndpoint:
+  #@ end
+  thumbprint: #@ get_vsphere_thumbprint()
+  server: #@ data.values.VSPHERE_SERVER
+  identityRef:
+    kind: Secret
+    name: #@ data.values.CLUSTER_NAME
+---
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+kind: VSphereMachineTemplate
+metadata:
+  name: #@ "{}-md-1".format(data.values.CLUSTER_NAME)
+spec:
+  template:
+    spec:
+      cloneMode:  #@ data.values.VSPHERE_CLONE_MODE
+      datacenter: #@ data.values.VSPHERE_DATACENTER
+      datastore: #@ data.values.VSPHERE_DATASTORE
+      storagePolicyName: #@ data.values.VSPHERE_STORAGE_POLICY_ID
+      diskGiB: #@ data.values.VSPHERE_WORKER_DISK_GIB
+      folder: #@ data.values.VSPHERE_FOLDER
+      memoryMiB: #@ data.values.VSPHERE_WORKER_MEM_MIB
+      network:
+        devices:
+          #@overlay/match by=overlay.index(0)
+          #@overlay/replace
+          - networkName: #@ data.values.VSPHERE_NETWORK
+            #@ if data.values.WORKER_NODE_NAMESERVERS:
+            nameservers: #@ data.values.WORKER_NODE_NAMESERVERS.replace(" ", "").split(",")
+            #@ end
+            #@ if data.values.TKG_IP_FAMILY == "ipv6":
+            dhcp6: true
+            #@ elif data.values.TKG_IP_FAMILY in ["ipv4,ipv6", "ipv6,ipv4"]:
+            dhcp4: true
+            dhcp6: true
+            #@ else:
+            dhcp4: true
+            #@ end
+      numCPUs: #@ data.values.VSPHERE_WORKER_NUM_CPUS
+      resourcePool: #@ data.values.VSPHERE_RESOURCE_POOL
+      server: #@ data.values.VSPHERE_SERVER
+      template: #@ data.values.VSPHERE_TEMPLATE
+---
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+kind: VSphereMachineTemplate
+metadata:
+  name: #@ "{}-md-2".format(data.values.CLUSTER_NAME)
+spec:
+  template:
+    spec:
+      cloneMode:  #@ data.values.VSPHERE_CLONE_MODE
+      datacenter: #@ data.values.VSPHERE_DATACENTER
+      datastore: #@ data.values.VSPHERE_DATASTORE
+      storagePolicyName: #@ data.values.VSPHERE_STORAGE_POLICY_ID
+      diskGiB: #@ data.values.VSPHERE_WORKER_DISK_GIB
+      folder: #@ data.values.VSPHERE_FOLDER
+      memoryMiB: #@ data.values.VSPHERE_WORKER_MEM_MIB
+      network:
+        devices:
+          #@overlay/match by=overlay.index(0)
+          #@overlay/replace
+          - networkName: #@ data.values.VSPHERE_NETWORK
+            #@ if data.values.WORKER_NODE_NAMESERVERS:
+            nameservers: #@ data.values.WORKER_NODE_NAMESERVERS.replace(" ", "").split(",")
+            #@ end
+            #@ if data.values.TKG_IP_FAMILY == "ipv6":
+            dhcp6: true
+            #@ elif data.values.TKG_IP_FAMILY in ["ipv4,ipv6", "ipv6,ipv4"]:
+            dhcp4: true
+            dhcp6: true
+            #@ else:
+            dhcp4: true
+            #@ end
+      numCPUs: #@ data.values.VSPHERE_WORKER_NUM_CPUS
+      resourcePool: #@ data.values.VSPHERE_RESOURCE_POOL
+      server: #@ data.values.VSPHERE_SERVER
+      template: #@ data.values.VSPHERE_TEMPLATE
+---
+apiVersion: cluster.x-k8s.io/v1beta1
+kind: MachineDeployment
+metadata:
+  labels:
+    cluster.x-k8s.io/cluster-name: #@ data.values.CLUSTER_NAME
+  name: #@ "{}-md-1".format(data.values.CLUSTER_NAME)
+spec:
+  clusterName: #@ data.values.CLUSTER_NAME
+  replicas: #@ data.values.WORKER_MACHINE_COUNT_1
+  selector:
+    matchLabels:
+      cluster.x-k8s.io/cluster-name: #@ data.values.CLUSTER_NAME
+  template:
+    metadata:
+      labels:
+        cluster.x-k8s.io/cluster-name: #@ data.values.CLUSTER_NAME
+        node-pool: #@ "{}-worker-pool".format(data.values.CLUSTER_NAME)
+    spec:
+      bootstrap:
+        configRef:
+          apiVersion: bootstrap.cluster.x-k8s.io/v1beta1
+          kind: KubeadmConfigTemplate
+          name: #@ "{}-md-1".format(data.values.CLUSTER_NAME)
+      clusterName: #@ data.values.CLUSTER_NAME
+      infrastructureRef:
+        apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+        kind: VSphereMachineTemplate
+        name: #@ "{}-md-1".format(data.values.CLUSTER_NAME)
+      version: #@ data.values.KUBERNETES_VERSION
+      #@ if data.values.VSPHERE_AZ_1:
+      failureDomain: #@ data.values.VSPHERE_AZ_1
+      #@ end
+---
+apiVersion: cluster.x-k8s.io/v1beta1
+kind: MachineDeployment
+metadata:
+  labels:
+    cluster.x-k8s.io/cluster-name: #@ data.values.CLUSTER_NAME
+  name: #@ "{}-md-2".format(data.values.CLUSTER_NAME)
+spec:
+  clusterName: #@ data.values.CLUSTER_NAME
+  replicas: #@ data.values.WORKER_MACHINE_COUNT_2
+  selector:
+    matchLabels:
+      cluster.x-k8s.io/cluster-name: #@ data.values.CLUSTER_NAME
+  template:
+    metadata:
+      labels:
+        cluster.x-k8s.io/cluster-name: #@ data.values.CLUSTER_NAME
+        node-pool: #@ "{}-worker-pool".format(data.values.CLUSTER_NAME)
+    spec:
+      bootstrap:
+        configRef:
+          apiVersion: bootstrap.cluster.x-k8s.io/v1beta1
+          kind: KubeadmConfigTemplate
+          name: #@ "{}-md-2".format(data.values.CLUSTER_NAME)
+      clusterName: #@ data.values.CLUSTER_NAME
+      infrastructureRef:
+        apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+        kind: VSphereMachineTemplate
+        name: #@ "{}-md-2".format(data.values.CLUSTER_NAME)
+      version: #@ data.values.KUBERNETES_VERSION
+      #@ if data.values.VSPHERE_AZ_2:
+      failureDomain: #@ data.values.VSPHERE_AZ_2
+      #@ end
+---
+apiVersion: bootstrap.cluster.x-k8s.io/v1beta1
+kind: KubeadmConfigTemplate
+metadata:
+  name: #@ "{}-md-1".format(data.values.CLUSTER_NAME)
+  namespace: '${ NAMESPACE }'
+spec:
+  template:
+    spec:
+      useExperimentalRetryJoin: true
+      joinConfiguration:
+        nodeRegistration:
+          criSocket: /var/run/containerd/containerd.sock
+          kubeletExtraArgs:
+            cloud-provider: external
+            tls-cipher-suites: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
+          name: '{{ ds.meta_data.hostname }}'
+      preKubeadmCommands:
+        - hostname "{{ ds.meta_data.hostname }}"
+        - echo "::1         ipv6-localhost ipv6-loopback" >/etc/hosts
+        - echo "127.0.0.1   localhost" >>/etc/hosts
+        - echo "127.0.0.1   {{ ds.meta_data.hostname }}" >>/etc/hosts
+        - echo "{{ ds.meta_data.hostname }}" >/etc/hostname
+      files: []
+      users:
+      - name: capv
+        sshAuthorizedKeys:
+        - '${ VSPHERE_SSH_AUTHORIZED_KEY }'
+        sudo: ALL=(ALL) NOPASSWD:ALL
+---
+apiVersion: bootstrap.cluster.x-k8s.io/v1beta1
+kind: KubeadmConfigTemplate
+metadata:
+  name: #@ "{}-md-2".format(data.values.CLUSTER_NAME)
+  namespace: '${ NAMESPACE }'
+spec:
+  template:
+    spec:
+      useExperimentalRetryJoin: true
+      joinConfiguration:
+        nodeRegistration:
+          criSocket: /var/run/containerd/containerd.sock
+          kubeletExtraArgs:
+            cloud-provider: external
+            tls-cipher-suites: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
+          name: '{{ ds.meta_data.hostname }}'
+      preKubeadmCommands:
+        - hostname "{{ ds.meta_data.hostname }}"
+        - echo "::1         ipv6-localhost ipv6-loopback" >/etc/hosts
+        - echo "127.0.0.1   localhost" >>/etc/hosts
+        - echo "127.0.0.1   {{ ds.meta_data.hostname }}" >>/etc/hosts
+        - echo "{{ ds.meta_data.hostname }}" >/etc/hostname
+      files: []
+      users:
+      - name: capv
+        sshAuthorizedKeys:
+        - '${ VSPHERE_SSH_AUTHORIZED_KEY }'
+        sudo: ALL=(ALL) NOPASSWD:ALL
+#@ end
diff --git a/pkg/v1/tkg/client/client_suite_test.go b/pkg/v1/tkg/client/client_suite_test.go
@@ -1378,11 +1378,11 @@ var _ = Describe("DistributeMachineDeploymentWorkers", func() {
 			isManagementCluster = false
 			infraProviderName = constants.InfrastructureProviderVSphere
 		})
-		It("should put all workers in first MD", func() {
+		It("should distribute evenly", func() {
 			Expect(err).To(Not(HaveOccurred()))
-			Expect(workerCounts[0]).To(Equal(3))
-			Expect(workerCounts[1]).To(Equal(0))
-			Expect(workerCounts[2]).To(Equal(0))
+			Expect(workerCounts[0]).To(Equal(1))
+			Expect(workerCounts[1]).To(Equal(1))
+			Expect(workerCounts[2]).To(Equal(1))
 		})
 	})
 
diff --git a/pkg/v1/tkg/client/validate.go b/pkg/v1/tkg/client/validate.go
@@ -1351,10 +1351,6 @@ func (c *TkgClient) ConfigureAndValidateCNIType(cniType string) error {
 // DistributeMachineDeploymentWorkers distributes machine deployment for worker nodes
 func (c *TkgClient) DistributeMachineDeploymentWorkers(workerMachineCount int64, isProdConfig, isManagementCluster bool, infraProviderName string) ([]int, error) { // nolint:gocyclo
 	workerCounts := make([]int, 3)
-	if infraProviderName != AWSProviderName && infraProviderName != AzureProviderName {
-		workerCounts[0] = int(workerMachineCount)
-		return workerCounts, nil
-	}
 	workerCount1Str, err1 := c.TKGConfigReaderWriter().Get(constants.ConfigVariableWorkerMachineCount0)
 	workerCount2Str, err2 := c.TKGConfigReaderWriter().Get(constants.ConfigVariableWorkerMachineCount1)
 	workerCount3Str, err3 := c.TKGConfigReaderWriter().Get(constants.ConfigVariableWorkerMachineCount2)
