Skip to content

Commit

Permalink
Ignore sriovLiveMigration FG on SNO (#1820)
Browse files Browse the repository at this point in the history
The default value of sriovLiveMigration is
true but the value is meaningless on SNO
cluster, let's simply ignore it:
the CRD defaulting mechanism on the
APIServer is not so flexible to allow to
specify a default based on the cluster topology.
On the other side, validating it with the webhook is overkilling
for users that simply expect to have the simplest possible
CR always accepted.

Bug-Url: https://bugzilla.redhat.com/show_bug.cgi?id=2062227

Signed-off-by: Simone Tiraboschi <[email protected]>

Co-authored-by: Simone Tiraboschi <[email protected]>
  • Loading branch information
kubevirt-bot and tiraboschi authored Mar 16, 2022
1 parent 9c826c9 commit 207918f
Show file tree
Hide file tree
Showing 9 changed files with 107 additions and 19 deletions.
1 change: 1 addition & 0 deletions deploy/crds/hco00.crd.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -869,6 +869,7 @@ spec:
sriovLiveMigration:
default: true
description: Allow migrating a virtual machine with SRIOV interfaces.
Ignored on single node clusters.
type: boolean
withHostPassthroughCPU:
default: false
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -869,6 +869,7 @@ spec:
sriovLiveMigration:
default: true
description: Allow migrating a virtual machine with SRIOV interfaces.
Ignored on single node clusters.
type: boolean
withHostPassthroughCPU:
default: false
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -130,6 +130,7 @@ spec:
sriovLiveMigration:
default: true
description: Allow migrating a virtual machine with SRIOV interfaces.
Ignored on single node clusters.
type: boolean
withHostPassthroughCPU:
default: false
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -869,6 +869,7 @@ spec:
sriovLiveMigration:
default: true
description: Allow migrating a virtual machine with SRIOV interfaces.
Ignored on single node clusters.
type: boolean
withHostPassthroughCPU:
default: false
Expand Down
2 changes: 1 addition & 1 deletion docs/api.md
Original file line number Diff line number Diff line change
Expand Up @@ -89,7 +89,7 @@ HyperConvergedFeatureGates is a set of optional feature gates to enable or disab
| Field | Description | Scheme | Default | Required |
| ----- | ----------- | ------ | -------- |-------- |
| withHostPassthroughCPU | Allow migrating a virtual machine with CPU host-passthrough mode. This should be enabled only when the Cluster is homogeneous from CPU HW perspective doc here | bool | false | true |
| sriovLiveMigration | Allow migrating a virtual machine with SRIOV interfaces. | bool | true | true |
| sriovLiveMigration | Allow migrating a virtual machine with SRIOV interfaces. Ignored on single node clusters. | bool | true | true |
| enableCommonBootImageImport | Opt-in to automatic delivery/updates of the common data import cron templates. There are two sources for the data import cron templates: hard coded list of common templates, and custom templates that can be added to the dataImportCronTemplates field. This feature gates only control the common templates. It is possible to use custom templates by adding them to the dataImportCronTemplates field. | bool | true | true |

[Back to TOC](#table-of-contents)
Expand Down
2 changes: 1 addition & 1 deletion docs/cluster-configuration.md
Original file line number Diff line number Diff line change
Expand Up @@ -143,7 +143,7 @@ Additional information: [LibvirtXMLCPUModel](https://wiki.openstack.org/wiki/Lib

Set the `sriovLiveMigration` feature gate in order to allow migrating a virtual machine with SRIOV interfaces. When
enabled virt-launcher pods of virtual machines with SRIOV interfaces run with CAP_SYS_RESOURCE capability. This may
degrade virt-launcher security.
degrade virt-launcher security. `sriovLiveMigration` is ignored on single node clusters.

**Default**: `true`

Expand Down
2 changes: 1 addition & 1 deletion pkg/apis/hco/v1beta1/hyperconverged_types.go
Original file line number Diff line number Diff line change
Expand Up @@ -225,7 +225,7 @@ type HyperConvergedFeatureGates struct {
// +kubebuilder:default=false
WithHostPassthroughCPU bool `json:"withHostPassthroughCPU"`

// Allow migrating a virtual machine with SRIOV interfaces.
// Allow migrating a virtual machine with SRIOV interfaces. Ignored on single node clusters.
// +optional
// +kubebuilder:default=true
SRIOVLiveMigration bool `json:"sriovLiveMigration"`
Expand Down
2 changes: 1 addition & 1 deletion pkg/controller/operands/kubevirt.go
Original file line number Diff line number Diff line change
Expand Up @@ -517,7 +517,7 @@ func getFeatureGateChecks(featureGates *hcov1beta1.HyperConvergedFeatureGates) [
fgs = append(fgs, kvWithHostPassthroughCPU)
}

if featureGates.SRIOVLiveMigration {
if featureGates.SRIOVLiveMigration && hcoutil.GetClusterInfo().IsInfrastructureHighlyAvailable() {
fgs = append(fgs, kvSRIOVLiveMigration)
}

Expand Down
114 changes: 99 additions & 15 deletions pkg/controller/operands/kubevirt_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,7 @@ import (
var _ = Describe("KubeVirt Operand", func() {
var (
basicNumFgOnOpenshift = len(hardCodeKvFgs) + len(sspConditionKvFgs)
deltaFGNotSNO = 1
)

Context("KubeVirt Priority Classes", func() {
Expand Down Expand Up @@ -1214,6 +1215,19 @@ Version: 1.2.3`)
})

Context("Feature Gates", func() {

getClusterInfo := hcoutil.GetClusterInfo

BeforeEach(func() {
hcoutil.GetClusterInfo = func() hcoutil.ClusterInfo {
return &commonTestUtils.ClusterInfoMock{}
}
})

AfterEach(func() {
hcoutil.GetClusterInfo = getClusterInfo
})

Context("test feature gates in NewKubeVirt", func() {
It("should add the WithHostPassthroughCPU feature gate if it's set in HyperConverged CR", func() {
// one enabled, one disabled and one missing
Expand Down Expand Up @@ -1271,6 +1285,42 @@ Version: 1.2.3`)
})
})

Context("should ignore SRIOVLiveMigration on SNO ", func() {
BeforeEach(func() {
hcoutil.GetClusterInfo = func() hcoutil.ClusterInfo {
return &commonTestUtils.ClusterInfoSNOMock{}
}
})

It("should not add the SRIOVLiveMigration feature gate if it's set in HyperConverged on SNO", func() {
// one enabled, one disabled and one missing
hco.Spec.FeatureGates = hcov1beta1.HyperConvergedFeatureGates{
SRIOVLiveMigration: true,
}

existingResource, err := NewKubeVirt(hco)
Expect(err).ToNot(HaveOccurred())
By("KV CR should contain the HotplugVolumes feature gate", func() {
Expect(existingResource.Spec.Configuration.DeveloperConfiguration).NotTo(BeNil())
Expect(existingResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).ToNot(ContainElement(kvSRIOVLiveMigration))
})
})

It("should not add the SRIOVLiveMigration feature gate if it's disabled in HyperConverged CR on SNO", func() {
// one enabled, one disabled and one missing
hco.Spec.FeatureGates = hcov1beta1.HyperConvergedFeatureGates{
SRIOVLiveMigration: false,
}

existingResource, err := NewKubeVirt(hco)
Expect(err).ToNot(HaveOccurred())
By("KV CR should contain the HotplugVolumes feature gate", func() {
Expect(existingResource.Spec.Configuration.DeveloperConfiguration).NotTo(BeNil())
Expect(existingResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).ToNot(ContainElement("SRIOVLiveMigration"))
})
})
})

It("should not add the feature gates if FeatureGates field is empty", func() {
mandatoryKvFeatureGates = getMandatoryKvFeatureGates(false)
hco.Spec.FeatureGates = hcov1beta1.HyperConvergedFeatureGates{}
Expand All @@ -1280,13 +1330,26 @@ Version: 1.2.3`)

Expect(existingResource.Spec.Configuration.DeveloperConfiguration).ToNot(BeNil())
fgList := getKvFeatureGateList(&hco.Spec.FeatureGates)
Expect(fgList).To(HaveLen(basicNumFgOnOpenshift))
Expect(fgList).To(HaveLen(basicNumFgOnOpenshift + deltaFGNotSNO))
Expect(fgList).Should(ContainElements(hardCodeKvFgs))
Expect(fgList).Should(ContainElements(sspConditionKvFgs))
})
})

Context("test feature gates in KV handler", func() {

getClusterInfo := hcoutil.GetClusterInfo

BeforeEach(func() {
hcoutil.GetClusterInfo = func() hcoutil.ClusterInfo {
return &commonTestUtils.ClusterInfoMock{}
}
})

AfterEach(func() {
hcoutil.GetClusterInfo = getClusterInfo
})

It("should add feature gates if they are set to true", func() {
existingResource, err := NewKubeVirt(hco)
Expect(err).ToNot(HaveOccurred())
Expand Down Expand Up @@ -1346,7 +1409,7 @@ Version: 1.2.3`)
mandatoryKvFeatureGates = getMandatoryKvFeatureGates(false)
Expect(foundResource.Spec.Configuration.DeveloperConfiguration).ToNot(BeNil())
fgList := getKvFeatureGateList(&hco.Spec.FeatureGates)
Expect(fgList).To(HaveLen(basicNumFgOnOpenshift))
Expect(fgList).To(HaveLen(basicNumFgOnOpenshift + deltaFGNotSNO))
Expect(fgList).Should(ContainElements(hardCodeKvFgs))
Expect(fgList).Should(ContainElements(sspConditionKvFgs))
})
Expand Down Expand Up @@ -1377,15 +1440,15 @@ Version: 1.2.3`)
mandatoryKvFeatureGates = getMandatoryKvFeatureGates(false)
Expect(foundResource.Spec.Configuration.DeveloperConfiguration).ToNot(BeNil())
fgList := getKvFeatureGateList(&hco.Spec.FeatureGates)
Expect(fgList).To(HaveLen(basicNumFgOnOpenshift))
Expect(fgList).To(HaveLen(basicNumFgOnOpenshift + deltaFGNotSNO))
Expect(fgList).Should(ContainElements(hardCodeKvFgs))
Expect(fgList).Should(ContainElements(sspConditionKvFgs))
})
})

It("should keep FG if already exist", func() {
mandatoryKvFeatureGates = getMandatoryKvFeatureGates(true)
fgs := append(hardCodeKvFgs, kvWithHostPassthroughCPU, kvSRIOVLiveMigration)
fgs := append(hardCodeKvFgs, kvWithHostPassthroughCPU, kvSRIOVLiveMigration, kvLiveMigrationGate)
existingResource, err := NewKubeVirt(hco)
Expect(err).ToNot(HaveOccurred())
existingResource.Spec.Configuration.DeveloperConfiguration.FeatureGates = fgs
Expand All @@ -1398,7 +1461,7 @@ Version: 1.2.3`)
By("Make sure the existing KV is with the the expected FGs", func() {
Expect(existingResource.Spec.Configuration.DeveloperConfiguration).NotTo(BeNil())
Expect(existingResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).
To(ContainElements(kvWithHostPassthroughCPU, kvSRIOVLiveMigration))
To(ContainElements(kvLiveMigrationGate, kvWithHostPassthroughCPU, kvSRIOVLiveMigration))
})

cl := commonTestUtils.InitClient([]runtime.Object{hco, existingResource})
Expand All @@ -1419,6 +1482,8 @@ Version: 1.2.3`)
Expect(foundResource.Spec.Configuration.DeveloperConfiguration).NotTo(BeNil())
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).
To(ContainElements(kvWithHostPassthroughCPU, kvSRIOVLiveMigration))

Expect(res.Updated).To(BeFalse())
})

It("should remove FG if it disabled in HC CR", func() {
Expand Down Expand Up @@ -1456,7 +1521,7 @@ Version: 1.2.3`)
).To(BeNil())

Expect(foundResource.Spec.Configuration.DeveloperConfiguration).ToNot(BeNil())
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(HaveLen(basicNumFgOnOpenshift))
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(HaveLen(basicNumFgOnOpenshift + deltaFGNotSNO))
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(ContainElements(hardCodeKvFgs))
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(ContainElements(sspConditionKvFgs))
})
Expand Down Expand Up @@ -1493,7 +1558,7 @@ Version: 1.2.3`)
).To(BeNil())

Expect(foundResource.Spec.Configuration.DeveloperConfiguration).ToNot(BeNil())
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(HaveLen(basicNumFgOnOpenshift))
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(HaveLen(basicNumFgOnOpenshift + deltaFGNotSNO))
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(ContainElements(hardCodeKvFgs))
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(ContainElements(sspConditionKvFgs))
})
Expand Down Expand Up @@ -1530,7 +1595,7 @@ Version: 1.2.3`)
).To(BeNil())

Expect(foundResource.Spec.Configuration.DeveloperConfiguration).ToNot(BeNil())
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(HaveLen(len(hardCodeKvFgs)))
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(HaveLen(len(hardCodeKvFgs) + deltaFGNotSNO))
Expect(foundResource.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(ContainElements(hardCodeKvFgs))
})
})
Expand All @@ -1539,6 +1604,12 @@ Version: 1.2.3`)

getClusterInfo := hcoutil.GetClusterInfo

BeforeEach(func() {
hcoutil.GetClusterInfo = func() hcoutil.ClusterInfo {
return &commonTestUtils.ClusterInfoMock{}
}
})

AfterEach(func() {
hcoutil.GetClusterInfo = getClusterInfo
})
Expand All @@ -1555,37 +1626,37 @@ Version: 1.2.3`)
Entry("When not using kvm-emulation and FG is empty",
false,
&hcov1beta1.HyperConvergedFeatureGates{},
basicNumFgOnOpenshift,
basicNumFgOnOpenshift+deltaFGNotSNO,
[][]string{hardCodeKvFgs, sspConditionKvFgs},
),
Entry("When using kvm-emulation and FG is empty",
true,
&hcov1beta1.HyperConvergedFeatureGates{},
len(hardCodeKvFgs),
len(hardCodeKvFgs)+deltaFGNotSNO,
[][]string{hardCodeKvFgs},
),
Entry("When not using kvm-emulation and all FGs are disabled",
false,
&hcov1beta1.HyperConvergedFeatureGates{SRIOVLiveMigration: false, WithHostPassthroughCPU: false},
basicNumFgOnOpenshift,
basicNumFgOnOpenshift+deltaFGNotSNO,
[][]string{hardCodeKvFgs, sspConditionKvFgs},
),
Entry("When using kvm-emulation all FGs are disabled",
true,
&hcov1beta1.HyperConvergedFeatureGates{SRIOVLiveMigration: false, WithHostPassthroughCPU: false},
len(hardCodeKvFgs),
len(hardCodeKvFgs)+deltaFGNotSNO,
[][]string{hardCodeKvFgs},
),
Entry("When not using kvm-emulation and all FGs are enabled",
false,
&hcov1beta1.HyperConvergedFeatureGates{SRIOVLiveMigration: true, WithHostPassthroughCPU: true},
basicNumFgOnOpenshift+2,
basicNumFgOnOpenshift+deltaFGNotSNO+2,
[][]string{hardCodeKvFgs, sspConditionKvFgs, {kvWithHostPassthroughCPU}},
),
Entry("When using kvm-emulation all FGs are enabled",
true,
&hcov1beta1.HyperConvergedFeatureGates{SRIOVLiveMigration: true, WithHostPassthroughCPU: true},
len(hardCodeKvFgs)+2,
len(hardCodeKvFgs)+deltaFGNotSNO+2,
[][]string{hardCodeKvFgs, {kvWithHostPassthroughCPU}},
))

Expand Down Expand Up @@ -2397,6 +2468,19 @@ Version: 1.2.3`)
})

Context("jsonpath Annotation", func() {

getClusterInfo := hcoutil.GetClusterInfo

BeforeEach(func() {
hcoutil.GetClusterInfo = func() hcoutil.ClusterInfo {
return &commonTestUtils.ClusterInfoMock{}
}
})

AfterEach(func() {
hcoutil.GetClusterInfo = getClusterInfo
})

mandatoryKvFeatureGates = getMandatoryKvFeatureGates(false)
It("Should create KV object with changes from the annotation", func() {

Expand Down Expand Up @@ -2597,7 +2681,7 @@ Version: 1.2.3`)
).ToNot(HaveOccurred())

Expect(kv.Spec.Configuration.DeveloperConfiguration).ToNot(BeNil())
Expect(kv.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(HaveLen(len(mandatoryKvFeatureGates) + 1))
Expect(kv.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(HaveLen(len(mandatoryKvFeatureGates) + deltaFGNotSNO + 1))
Expect(kv.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(ContainElements(hardCodeKvFgs))
Expect(kv.Spec.Configuration.DeveloperConfiguration.FeatureGates).To(ContainElement(kvSRIOVGate))
Expect(kv.Spec.Configuration.CPURequest).To(BeNil())
Expand Down

0 comments on commit 207918f

Please sign in to comment.