tkagn/rhodf

RHODF

Table of Contents

• Prerequisites
• kustomization.yaml
• namespace-openshift-storage.yaml
• operatorgroup-openshift-storage-operatorgroup.yaml
• subscription-odf-operator.yaml
• storagecluster-ocs-storagecluster.yaml
• Usage
• Tips

Red Hat OpenShift Data Foundation

Red Hat OpenShift Data Foundation is software-defined storage that is optimized for container environments. It runs as an operator on OpenShift Container Platform to provide highly integrated and simplified persistent storage management for containers.

Provides the following storage classes to Red Hat OpenShift:

• ocs-storagecluster-ceph-rbd - Block storage
• ocs-storagecluster-cephfs - Shared filesystem
• ocs-storagecluster-ceph-rgw - S3 object storage. Provides Object Bucket Claims (OBCs) using the RGW
• openshift-storage.noobaa.io - S3 object storage. Provides Object Bucket Claims (OBCs) using Multi-Cloud Gateway (MCG)

Some Links:

• Product Documentation for Red Hat OpenShift Data Foundation - https://access.redhat.com/documentation/en-us/red_hat_openshift_data_foundation

• GitHub - https://github.com/red-hat-storage/odf-operator

• Red Hat Openshift Data Foundation Customer Portal Articles - https://access.redhat.com/taxonomy/products/red-hat-openshift-data-foundation

• Red Hat OpenShift Data Foundation RSS feed - https://access.redhat.com/term/Red%20Hat%20OpenShift%20Data%20Foundation/feed

• What is supported in Red Hat OpenShift Data Foundation (previously known as OpenShift Container Storage) 4.X? - https://access.redhat.com/articles/5001441

• Creating infrastructure machine sets https://docs.openshift.com/container-platform/4.12/machine_management/creating-infrastructure-machinesets.html#creating-an-infra-node_creating-infrastructure-machinesets

• How to add toleration for the "non-ocs" taints to the OpenShift Data Foundation pods? - https://access.redhat.com/articles/6408481

• ArgoCD Deploys ODF - Data Services Office Hour - https://www.youtube.com/watch?v=ydrq6NPh6Pg

• Red Hat Bugzilla - https://bugzilla.redhat.com/

• https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/

Tools:

• Red Hat OpenShift Data Foundation Supportability and Interoperability Checker - https://access.redhat.com/labs/odfsi/
• Red Hat Storage Recovery Calculator - https://access.redhat.com/labs/rhsrc/
• Red Hat ODF Sizing Tool -https://access.redhat.com/labs/ocsst/

Training:

• DO370 - Enterprise Kubernetes Storage with Red Hat OpenShift Data Foundation - https://www.redhat.com/en/services/training/do370-enterprise-kubernetes-storage-with-red-hat-openshift-data-foundation
• EX370 Red Hat Certified Specialist in OpenShift Data Foundation exam - https://www.redhat.com/en/services/training/ex370-red-hat-certified-specialist-in-openshift-data-foundation-exam

Prerequisites

• Red Hat OpenShift 4.x Cluster

Infrastructure requirements:

Mode	Minimum	Per Additional
Internal	30 vCPU 72 GiB memory 3 Disks	6 vCPU 16GiB memory 3 Disks
External	4 vCPU 16GiB memory	N/A

Note: See Infrastructure requirements for RHODF

The RHODF Operator will install its components only on nodes labeled with cluster.ocs.openshift.io/openshift-storage=''.

Nodes can be labeled with:

oc label nodes <NodeName> cluster.ocs.openshift.io/openshift-storage=''

Note: A minimum of 3 nodes are required.

verify:

oc get nodes -l cluster.ocs.openshift.io/openshift-storage=

Nodes can be dedicated to solely RHODF workloads by tainting them with node.ocs.openshift.io/storage=true:NoSchedule.

oc adm taint nodes <NodeNames> node.ocs.openshift.io/storage=true:NoSchedule

Note: The dedicated/tainted nodes will only run RHODF components. The nodes will not run any apps. Therefore, if you taint, you need to have additional worker nodes that are untainted. If you don't, you will be unable to run any other apps in your OpenShift cluster.

Also, if deploying dedicated nodes, the nodes should be labeled with node-role.kubernetes.io/infra: "" to designate the dedicated RHODF nodes as infra nodes. See Infrastructure Nodes in OpenShift 4

oc label node <node-name> node-role.kubernetes.io/infra=""

ℹ️ The node labels and node taints are for internal mode. For external mode the nodes will outside the cluster.

kustomization.yaml

Use to by deploy manifests together

oc apply -k .

⚠️ Not needed if you are applying the manifest one at a time. This file is helpful when managing a cluster using GitOps.

Edit storagecluster-ocs-storagecluster.yaml to reflect the desired state (storage class and size). Run the apply once then edit and uncomment storagecluster-ocs-storagecluster.yaml with the desired state.

namespace-openshift-storage.yaml

Creates namespace openshift-storage namespace

oc apply -f namespace-openshift-storage.yaml

operatorgroup-openshift-storage-operatorgroup.yaml

Creates operatorgroup in openshift-storage namespace

oc apply -f operatorgroup-openshift-storage-operatorgroup.yaml

subscription-odf-operator.yaml

Adds RHODF subscription to RHOCP cluster

oc apply -f subscription-odf-operator.yaml

Edit this file with the desired RHODF version.

storagecluster-ocs-storagecluster.yaml

Creates the storage cluster

oc apply -f storagecluster-ocs-storagecluster

Edit this file with the respective size of each disk and the storage class that should be used to provision the OSD disks.

To get list of storage classes:

oc get storageclasses.storage.k8s.io

Usage

git clone  https://github.com/tkagn/rhodf.git

‼️ ⚠️ Use with your own discretion ‼️

Tips

How to safely reboot an OCS 4.x node

• Red Hat Customer Portal Article - How to safely reboot an OCS 4.x node

Rook Ceph Toolbox

Use the Rook-Ceph toolbox to go behind the curtains and check on Ceph:

oc patch OCSInitialization ocsinit -n openshift-storage --type json --patch  '[{ "op": "replace", "path": "/spec/enableCephTools", "value": true }]'

oc rsh -n openshift-storage $(oc get pod -n openshift-storage -l app=rook-ceph-tools -o jsonpath='{.items[0].metadata.name}')

Kubernetes universal toleration

An empty key with operator: Exists matches all keys, values and effects which means this will tolerate everything.

tolerations:
  - operator: Exists

Use when need to schedule RHODF components on tainted dedicated infra nodes.

Time sync

Setup Chrony to ensure timesync source for nodes:

chrony_base64=$(cat << EOF | base64 -w0
server clock.corp.redhat.com iburst
driftfile /var/lib/chrony/drift
makestep 1.0 3
rtcsync
logdir /var/log/chrony
EOF
)

for i in master worker; do
cat << EOF > ./${i}-chrony-configuration.yml
apiVersion: machineconfiguration.openshift.io/v1
kind: MachineConfig
metadata:
  labels:
    machineconfiguration.openshift.io/role: ${i}
  name: ${i}-chrony-configuration
spec:
  config:
    ignition:
      config: {}
      security:
        tls: {}
      timeouts: {}
      version: 2.2.0
    networkd: {}
    passwd: {}
    storage:
      files:
      - contents:
          source: data:text/plain;charset=utf-8;base64,${chrony_base64}
          verification: {}
        filesystem: root
        mode: 420
        path: /etc/chrony.conf
  osImageURL: ""
EOF
done

oc apply -f ./master-chrony-configuration.yml
oc apply -f ./worker-chrony-configuration.yml

Multi-Attach errors:

VolumeAttachment captures the intent to attach or detach the specified volume to/from the specified node. May have to delete:

oc get volumeattachments.storage.k8s.io

Matching PVs to RBDs

Determine the app to match the PV to RBD:

oc get pv -o 'custom-columns=NAME:.spec.claimRef.name,PVNAME:.metadata.name,STORAGECLASS:.spec.storageClassName,VOLUMEHANDLE:.spec.csi.volumeHandle'

APPNAME=''
CSIVOL=$(oc get pv $(oc get pv | grep ${APPNAME} | awk '{ print $1 }') -o jsonpath='{.spec.csi.volumeHandle}' | cut -d '-' -f 6- | awk '{print "csi-vol-"$1}')
echo $CSIVOL

Explanation of replica, count and worker scaling for Red Hat OpenShift Container Storage 4.x

• Explanation of replica, count and worker scaling for Red Hat OpenShift Container Storage 4.x - https://access.redhat.com/solutions/5567401