Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[release-v3.30] Auto pick #10015: Install Calico in OCP with eBPF mode as the default #10108

Draft
wants to merge 10 commits into
base: release-v3.30
Choose a base branch
from
Draft

[release-v3.30] Auto pick #10015: Install Calico in OCP with eBPF mode as the default #10108

wants to merge 10 commits into from

Conversation

lucastigera
Copy link
Contributor

@lucastigera lucastigera commented Mar 28, 2025
edited
Loading

Cherry pick of #10015 on release-v3.30.

#10015: Install Calico in OCP with eBPF mode as the default

Original PR Body below

Description

This PR creates/changes manifests to install Calico with the eBPF dataplane in an OpenShift cluster by default.

Changes on the user docs might look like this:

Install with eBPF mode

  • Set the KUBERNETES_SERVICE_HOST attribute in 01-configmap-kubernetes-services-endpoint.yaml file. The values can be accessed using the command below.
grep -E '"BaseDomain"|"ClusterName"' .openshift_install_state.json -B 1 -A 1

The output would look like this:

    "*installconfig.baseDomain": {
        "BaseDomain": "base.domain.com",
        "Publish": ""
--
    "*installconfig.clusterName": {
        "ClusterName": "ocp-cluster-name"
    },

You can set the values in the file using the command below:

CLUSTER_NAME=`grep -o '"ClusterName": "[^"]*' .openshift_install_state.json | sed 's/"ClusterName": "//'` && \
sed -i "s|<cluster_name>|$CLUSTER_NAME|g" manifests/01-configmap-kubernetes-services-endpoint.yaml && \
BASE_DOMAIN=`grep -o '"BaseDomain": "[^"]*' .openshift_install_state.json | sed 's/"BaseDomain": "//'` && \
sed -i "s|<base_domain>|$BASE_DOMAIN|g" manifests/01-configmap-kubernetes-services-endpoint.yaml
  • Include spec.template.spec.dnsConfig.nameservers value to resolve the apiserver DNS in 02-tigera-operator.yaml file:
    • For clusters in AWS, the DNS server address is 169.254.169.253.
dnsConfig:
  nameservers:
  - 169.254.169.253

Install with Iptables mode

  • Change linuxDataplane to Iptables in manifests/01-cr-installation.yaml file.
  • Set deployKubeProxy to true in cluster-network-operator.yaml file.
  • Comment out the KUBERNETES_SERVICE_HOST and KUBERNETES_SERVICE_PORT lines in 01-configmap-kubernetes-services-endpoint.yaml file.
sed -i 's/^\(\s*linuxDataplane:\s*\)BPF/\1Iptables/' manifests/01-cr-installation.yaml && \
sed -i 's/^\(\s*deployKubeProxy:\s*\)false/\1true/' manifests/cluster-network-operator.yaml && \
sed -i '/^\s*KUBERNETES_SERVICE_HOST:/s/^\(\s*\)/#\1/' manifests/01-configmap-kubernetes-services-endpoint.yaml && \
sed -i '/^\s*KUBERNETES_SERVICE_PORT:/s/^\(\s*\)/#\1/' manifests/01-configmap-kubernetes-services-endpoint.yaml

Related issues/PRs

Todos

  • Tests
  • Documentation
  • Release note

Release Note

- New manifests to install Calico with the eBPF dataplane in an OpenShift cluster.

Reminder for the reviewer

Make sure that this PR has the correct labels and milestone set.

Every PR needs one docs-* label.

  • docs-pr-required: This change requires a change to the documentation that has not been completed yet.
  • docs-completed: This change has all necessary documentation completed.
  • docs-not-required: This change has no user-facing impact and requires no docs.

Every PR needs one release-note-* label.

  • release-note-required: This PR has user-facing changes. Most PRs should have this label.
  • release-note-not-required: This PR has no user-facing changes.

Other optional labels:

  • cherry-pick-candidate: This PR should be cherry-picked to an earlier release. For bug fixes only.
  • needs-operator-pr: This PR is related to install and requires a corresponding change to the operator.

@lucastigera lucastigera requested a review from a team as a code owner March 28, 2025 23:43
@lucastigera lucastigera added release-note-required Change has user-facing impact (no matter how small) docs-pr-required Change is not yet documented labels Mar 28, 2025
@marvin-tigera marvin-tigera added this to the Calico v3.30.0 milestone Mar 28, 2025
@lucastigera lucastigera marked this pull request as draft March 28, 2025 23:44
@caseydavenport caseydavenport changed the title [release-v3.30] Auto pick #10015: Adding ocp-bpf.tgz to the release process. [release-v3.30] Auto pick #10015: Install Calico in OCP with eBPF mode as the default Mar 29, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@coutinhop coutinhop coutinhop approved these changes

Assignees
No one assigned
Labels
docs-pr-required Change is not yet documented release-note-required Change has user-facing impact (no matter how small)
Projects
None yet
Milestone
Calico v3.30.0
Development

Successfully merging this pull request may close these issues.
3 participants
@lucastigera @coutinhop @marvin-tigera