operating-system-manager

module

v0.3.4 Latest Latest Go to latest Published: Jan 7, 2022 License: Apache-2.0

README ¶

[Experimental] Kubermatic operating-system-manager

Operating System Manager is responsible for creating and managing the required configurations for worker nodes in a kubernetes cluster.

Project Status

This project is experimental and currently a work-in-progress. This is not supposed to be used in production environments.

Overview

Problem Statement

Machine-Controller can be used to create and manage worker nodes in a kubernetes clusters. For each supported operating system(based on the cloud provider), a specific plugin is used to generate cloud configs. These configs are then injected in the worker nodes using either cloud-init or (ignition)[https://coreos.github.io/ignition/] based on the operating system. Finally the nodes are bootstrapped.

Currently this workflow has the following limitations/issues:

Machine Controller expects ALL the supported OS plugins to exist and be ready. User might only be interested in a subset of the available operating systems.
The cloud-configs are generated against pre-defined templates like this. This is not ideal because code changes are required to update those templates.
Each cloud provider sets some limit for user-data size, machine won't be created in case of non-compliance. For example, at the time of writing this, AWS has set a hard limit of 16KB for user-data size.
Managing configs for multiple cloud providers, OS flavors and OS versions, adds a lot of complexity and redundancy in machine-controller.

Solution

Operating System Manager was created to solve the above mentioned issues. It decouples operating system configurations into dedicated and isolable resources for better modularity and maintainability.

Architecture

OSM introduces the following resources:

OperatingSystemProfile: A resource that represents the details of each operating system.
OperatingSystemConfig: A resource that contains the cloud-configs that are going to be used to bootstrap and provision the worker nodes.

OperatingSystemConfig are a subset of OperatingSystemProfile and are auto-generated by the osc-controller against a certain OSP and MachineDeployment. For each cluster there are at least two OSC objects:

OSC for accessing the cluster; OSC is sent to the worker node via user-data and processed as a cloud-init or ignition config, in order to fetch the second OSC object.
OSC for provisioning the machine; OSC represents the actual cloud-config that provision the worker node.

The created OSCs are processed by the controllers and they eventually generate a secret inside each user cluster. Which is then consumed by the worker nodes.

Architecture

OperatingSystemProfile Controller

This controller runs in the master cluster and operates on the OperatingSystemProfile custom resource. It is responsible for creating the OperatingSystemConfig resources.

OperatingSystemConfig Controller

This controller runs in the seed cluster in the namespace of the user cluster and operates on the OperatingSystemConfig custom resource. It is responsible for generating user-data secret through the OperatingSystemConfig resource.

Air-gapped Environment

This controller was designed by keeping air-gapped environments in mind. Customers can use their own VM images by creating custom OSP profiles to provision nodes in a cluster that doesn't have outbound internet access.

Architecture

More work is being done to make it even easier to use OSM in air-gapped environments.

Support

Information about supported OS versions can be found here.

Deploy OSM

[TBD]

The code and sample YAML files in the master branch of the operating-system-manager repository are under active development and are not guaranteed to be stable. Use them at your own risk!

Development

Testing

Simply run make test

Local Development

To run OSM locally:

Either use a kind cluster or actual cluster and make sure that the correct context is loaded
Run kubectl apply -f deploy/crds to install CRDs
Create relevant OperatingSystemProfile resources. Check sample for reference.
Run make run

Troubleshooting

If you encounter issues file an issue or talk to us on the #kubermatic channel on the Kubermatic Slack.

Contributing

Thanks for taking the time to join our community and start contributing!

Feedback and discussion are available on the mailing list.

Before you start

Please familiarize yourself with the Code of Conduct before contributing.
See CONTRIBUTING.md for instructions on the developer certificate of origin that we require.
Read how we're using ZenHub for project and roadmap planning

Pull requests

We welcome pull requests. Feel free to dig through the issues and jump in.

Changelog

See the list of releases to find out about feature changes.

Directories ¶

Path	Synopsis
cmd
osm-controller
webhook
codegen
reconcile
deploy
osps
pkg
admission
cloudprovider
cloudprovider/aws
cloudprovider/aws/types
cloudprovider/azure
cloudprovider/azure/types
cloudprovider/gce
cloudprovider/gce/types
cloudprovider/kubevirt
cloudprovider/kubevirt/types
cloudprovider/openstack
cloudprovider/openstack/types
cloudprovider/vsphere
cloudprovider/vsphere/types
controllers/osc
controllers/osc/resources
controllers/osp
crd/osm/v1alpha1 Package v1alpha1 defines the v1alpha1 version of the OSM API	Package v1alpha1 defines the v1alpha1 version of the OSM API
generator
providerconfig/amzn2
providerconfig/centos
providerconfig/config
providerconfig/config/types
providerconfig/flatcar
providerconfig/rhel
providerconfig/sles
providerconfig/ubuntu
resources
resources/reconciling This file is generated.	This file is generated.
test/util

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL