testing OpenShift 4-17

Author: ryanj

instruqt-tracks/developing-on-openshift-serverless/01-01-prepare/assignment.md

@@ -58,7 +58,7 @@ tabs:
 - id: h4dwu6aq1s9o
   title: Web Console
   type: website
-  url: https://console-openshift-console.crc-lgph7-master-0.crc.${_SANDBOX_ID}.instruqt.io
+  url: https://console-openshift-console.crc.${_SANDBOX_ID}.instruqt.io
   new_window: true
 difficulty: intermediate
 timelimit: 360

instruqt-tracks/developing-on-openshift-serverless/01-01-prepare/setup-crc

@@ -0,0 +1,37 @@
+#!/bin/bash
+
+export KN_VERSION=1.6.1
+
+curl -kL https://hey-release.s3.us-east-2.amazonaws.com/hey_linux_amd64 -o /root/hey
+mv /root/hey /usr/local/bin/
+chmod +x /usr/local/bin/hey
+
+curl -kL https:/mirror.openshift.com/pub/openshift-v4/x86_64/clients/serverless/${KN_VERSION}/kn-linux-amd64.tar.gz -o /usr/local/bin/kn.tar.gz
+tar -xvzf /usr/local/bin/kn.tar.gz -C /usr/local/bin
+mv /usr/local/bin/kn-linux-amd64 /usr/local/bin/kn
+chmod +x /usr/local/bin/kn
+
+mkdir -p /root/02-serving
+
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/02-serving/service.yaml -o /root/02-serving/service.yaml
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/02-serving/watch-service.bash -o /root/02-serving/watch-service.bash
+
+mkdir -p /root/03-traffic-distribution
+
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/03-traffic-distribution/greeter-v1-service.yaml -o /root/03-traffic-distribution/greeter-v1-service.yaml
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/03-traffic-distribution/greeter-v2-service.yaml -o /root/03-traffic-distribution/greeter-v2-service.yaml
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/03-traffic-distribution/service-pinned.yaml -o /root/03-traffic-distribution/service-pinned.yaml
+
+mkdir -p /root/04-canary-releases
+
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/04-canary-releases/greeter-canary-service.yaml -o /root/04-canary-releases/greeter-canary-service.yaml
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/04-canary-releases/poll-svc-10.bash -o /root/04-canary-releases/poll-svc-10.bash
+
+mkdir -p /root/05-scaling
+
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/05-scaling/service-50.yaml -o /root/05-scaling/service-50.yaml
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/05-scaling/service-hpa.yaml -o /root/05-scaling/service-hpa.yaml
+curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/05-scaling/service-min-max-scale.yaml -o /root/05-scaling/service-min-max-scale.yaml
+
+# Setting up Serverless
+curl https://raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/01-prepare/install-serverless.bash | bash

instruqt-tracks/developing-on-openshift-serverless/02-02-serving/assignment.md

@@ -11,7 +11,7 @@ tabs:
 - id: zbwm6xrxibe5
   title: Web Console
   type: website
-  url: https://console-openshift-console.crc-lgph7-master-0.crc.${_SANDBOX_ID}.instruqt.io
+  url: https://console-openshift-console.crc.${_SANDBOX_ID}.instruqt.io
   new_window: true
 difficulty: intermediate
 timelimit: 360
@@ -130,7 +130,7 @@ The output should be similar to:
 
 ```
 NAME      URL  LATEST            AGE     CONDITIONS   READY   REASON
-greeter   https://greeter-serverless-tutorial.crc-lgph7-master-0.crc.gr82i7rvhrlg.instruqt.io   greeter-00001   52s   3 OK / 3   True
+greeter   https://greeter-serverless-tutorial.crc.gr82i7rvhrlg.instruqt.io   greeter-00001   52s   3 OK / 3   True
 ```
 
 > **Note:** It also is possible to use the `oc` command to see the serverless resources, to see the services execute: `oc get -n serverless-tutorial services.serving.knative.dev
@@ -149,7 +149,7 @@ The output should be similar to:
 Name:       greeter
 Namespace:  serverless-tutorial
 Age:        2m
-URL:        https://greeter-serverless-tutorial.crc-lgph7-master-0.crc.gr82i7rvhrlg.instruqt.io
+URL:        https://greeter-serverless-tutorial.crc.gr82i7rvhrlg.instruqt.io
 
 Revisions:
   100%  @latest (greeter-00001) [1] (2m)
@@ -180,7 +180,7 @@ kn route list
 See the `NAME` of the route, the `URL`, as well as if it is `READY` (your URL will be different):
 ```bash
 NAME      URL                                                                                   READY
-greeter   https://greeter-serverless-tutorial.crc-lgph7-master-0.crc.gr82i7rvhrlg.instruqt.io   True
+greeter   https://greeter-serverless-tutorial.crc.gr82i7rvhrlg.instruqt.io   True
 ```
 
 ### Revision

instruqt-tracks/developing-on-openshift-serverless/03-03-traffic-distribution/assignment.md

@@ -11,7 +11,7 @@ tabs:
 - id: cfpjxlweovou
   title: Web Console
   type: website
-  url: https://console-openshift-console.crc-lgph7-master-0.crc.${_SANDBOX_ID}.instruqt.io
+  url: https://console-openshift-console.crc.${_SANDBOX_ID}.instruqt.io
   new_window: true
 difficulty: intermediate
 timelimit: 360
@@ -111,16 +111,16 @@ The output should be similar to:
 Name:       greeter
 Namespace:  serverless-tutorial
 Age:        1m
-URL:        https://greeter-serverless-tutorial.crc-lgph7-master-0.crc.9yhetjexy8dv.instruqt.io
+URL:        https://greeter-serverless-tutorial.crc.9yhetjexy8dv.instruqt.io
 Service:    greeter
 
 Traffic Targets:
     0%  @latest (greeter-v2) #latest
-        URL:  https://latest-greeter-serverless-tutorial.crc-lgph7-master-0.crc.9yhetjexy8dv.instruqt.io
+        URL:  https://latest-greeter-serverless-tutorial.crc.9yhetjexy8dv.instruqt.io
   100%  greeter-v1 #current
-        URL:  https://current-greeter-serverless-tutorial.crc-lgph7-master-0.crc.9yhetjexy8dv.instruqt.io
+        URL:  https://current-greeter-serverless-tutorial.crc.9yhetjexy8dv.instruqt.io
     0%  greeter-v2 #prev
-        URL:  https://prev-greeter-serverless-tutorial.crc-lgph7-master-0.crc.9yhetjexy8dv.instruqt.io
+        URL:  https://prev-greeter-serverless-tutorial.crc.9yhetjexy8dv.instruqt.io
 
 Conditions:
   OK TYPE                      AGE REASON

instruqt-tracks/developing-on-openshift-serverless/04-04-canary-releases/assignment.md

@@ -11,7 +11,7 @@ tabs:
 - id: motxbpcik6hy
   title: Web Console
   type: website
-  url: https://console-openshift-console.crc-lgph7-master-0.crc.${_SANDBOX_ID}.instruqt.io
+  url: https://console-openshift-console.crc.${_SANDBOX_ID}.instruqt.io
   new_window: true
 difficulty: intermediate
 timelimit: 360

instruqt-tracks/developing-on-openshift-serverless/05-05-scaling/assignment.md

@@ -11,7 +11,7 @@ tabs:
 - id: sdf1bjuiqg3i
   title: Web Console
   type: website
-  url: https://console-openshift-console.crc-lgph7-master-0.crc.${_SANDBOX_ID}.instruqt.io
+  url: https://console-openshift-console.crc.${_SANDBOX_ID}.instruqt.io
   new_window: true
 difficulty: intermediate
 timelimit: 360

instruqt-tracks/developing-on-openshift-serverless/config.yml

@@ -1,9 +1,10 @@
 version: "3"
 virtualmachines:
 - name: crc
-  image: rhd-devx-instruqt/openshift-4-11-7-lgph7
+  image: rhd-devx-instruqt/openshift-4-17-0
   machine_type: n1-standard-8
   allow_external_ingress:
   - http
   - https
   - high-ports
+  provision_ssl_certificate: true

instruqt-tracks/developing-on-openshift-serverless/scripts/01-prepare/install-serverless.bash

@@ -3,29 +3,27 @@ echo "Setting up Serverless..."
 # Login as admin
 oc login -u admin -p admin
 
-# Wait for katacoda to copy our stuff?
-while [ ! -f 01-prepare/operator-subscription.yaml ]
-do
-	sleep 5
-done
+mkdir -p 01-prepare
 
 # Apply the serverless operator
-oc create -f 01-prepare/operator-subscription.yaml
+oc create -f https://raw.githubusercontent.com/openshift-instruqt/instruqt/refs/heads/master/instruqt-tracks/developing-on-openshift-serverless/scripts/01-prepare/operator-subscription.yaml
 sleep 3
 
 echo "Serverless Operator Subscribed, waiting for deployment..."
 # Setup waiting function
+curl https://github.com/openshift-instruqt/instruqt/blob/master/instruqt-tracks/developing-on-openshift-serverless/scripts/01-prepare/watch-serverless-operator.bash > 01-prepare\watch-serverless-operator.bash
 bash 01-prepare/watch-serverless-operator.bash
 sleep 3
 
 echo "Serverless Operator deployed. Deploying knative-serving..."
 # If we make it this far we have deployed the Serverless Operator!
 # Next, Knative Serving
-oc create -f 01-prepare/serving.yaml
+oc create -f https://raw.githubusercontent.com/openshift-instruqt/instruqt/refs/heads/master/instruqt-tracks/developing-on-openshift-serverless/scripts/01-prepare/serving.yaml
 sleep 3
 
 echo "Serving created, waiting for deployment..."
 # Wait for Serving to install
+curl https://raw.githubusercontent.com/openshift-instruqt/instruqt/refs/heads/master/instruqt-tracks/developing-on-openshift-serverless/scripts/01-prepare/watch-knative-serving.bash > 01-prepare/watch-knative-serving.bash
 bash 01-prepare/watch-knative-serving.bash
 sleep 3
 

instruqt-tracks/developing-on-openshift-serverless/track.yml

@@ -53,15 +53,15 @@ tags:
 - openshift
 owner: openshift
 developers:
-- [email protected]
 - [email protected]
 - [email protected]
 - [email protected]
+- [email protected]
 lab_config:
   feedback_recap_enabled: true
   loadingMessages: true
   hideStopButton: false
   default_layout: AssignmentRight
   default_layout_sidebar_size: 33
-checksum: "12290518478159966148"
+checksum: "15571526813669916245"
 enhanced_loading: false

instruqt-tracks/developing-on-openshift-serverless/track_scripts/setup-crc

@@ -2,41 +2,45 @@
 set -x
 
 # setup vars
+export HOME=/root
 export TERM=xterm-color
 export KUBECONFIG=/opt/kubeconfig
 echo "export TERM=xterm-color" >> /root/.bashrc
 echo "export KUBECONFIG=/opt/kubeconfig" >> /root/.bashrc
-echo "export HOME=/root" >> /root/.bashrc
-
-ENS4IP=$(ip -4 -o addr show ens4 | awk '{print $4}' | cut -d "/" -f 1)
+echo "export HOME=/root" > /tmp/.bashrc
+cat /root/.bashrc >> /tmp/.bashrc
+mv /tmp/.bashrc /root/.bashrc
 
 # set hostname
 #INSTRUQT_HOSTNAME=$(curl -H "Metadata-Flavor: Google" http://metadata.google.internal/computeMetadata/v1/instance/attributes/hostname)
 
-# Don't do this below causes issues later on, i believe.
-# hostnamectl set-hostname $HOSTNAME
-
 eval $(curl -H "Metadata-Flavor: Google" http://metadata.google.internal/computeMetadata/v1/instance/attributes/startup-script | grep INSTRUQT_PARTICIPANT_ID)
 
-# dnsmasq config for crc-dnsmasq.service
-cat << EOF > /var/srv/dnsmasq.conf
-user=root
-port= 53
-bind-interfaces
+# start openshift
+systemctl start ovs-configuration.service
+BREXIP=$(ip -4 -o addr show br-ex  | awk '{print $4}' | cut -d "/" -f 1)
+
+cat << EOF > /etc/resolv.conf
+search c.rhd-devx-instruqt.internal google.internal
+nameserver $BREXIP
+nameserver 169.254.169.254
+EOF
+
+systemctl reload NetworkManager
+
+cat << EOF > /etc/dnsmasq.d/crc-dnsmasq.conf
+listen-address=$BREXIP
 expand-hosts
 log-queries
 local=/crc.testing/
 domain=crc.testing
-address=/apps-crc.testing/$ENS4IP
-address=/api.crc.testing/$ENS4IP
-address=/api-int.crc.testing/$ENS4IP
-address=/$HOSTNAME.crc.testing/192.168.126.11
+address=/apps-crc.testing/$BREXIP
+address=/api.crc.testing/$BREXIP
+address=/api-int.crc.testing/$BREXIP
+address=/crc.crc.testing/192.168.126.11
 EOF
 
-sed -i '/^search.*/a nameserver 10.88.0.8' /etc/resolv.conf
-
-# start openshift
-systemctl start crc-dnsmasq.service
+systemctl start dnsmasq.service
 systemctl start kubelet
 
 # INGRESS
@@ -110,12 +114,17 @@ do
     echo "AVAILABLE"
 done
 
-
+# SSL Setup
+curl -s -o /etc/ssl/certs/sandbox.crt -H "Metadata-Flavor: Google"     "http://metadata.google.internal/computeMetadata/v1/instance/attributes/ssl-certificate"
+curl -s -o /etc/ssl/certs/sandbox.key -H "Metadata-Flavor: Google"     "http://metadata.google.internal/computeMetadata/v1/instance/attributes/ssl-certificate-key"
+oc --namespace openshift-ingress create secret tls custom-certs-default --cert=/etc/ssl/certs/sandbox.crt --key=/etc/ssl/certs/sandbox.key
+rm /etc/ssl/certs/sandbox.key
+#oc patch --type=merge --namespace openshift-ingress-operator ingresscontrollers/default --patch '{"spec":{"defaultCertificate":{"name":"custom-certs-default"}}}'
 
 # INGRESS
 
 # check if ingresses.config.openshift.io cluster is present
-oc patch -p '{"spec": {"domain": "'$HOSTNAME'.crc.'$INSTRUQT_PARTICIPANT_ID'.instruqt.io"}}' ingresses.config.openshift.io cluster --type=merge
+oc patch -p '{"spec": {"domain": "'$HOSTNAME'.'$INSTRUQT_PARTICIPANT_ID'.instruqt.io"}}' ingresses.config.openshift.io cluster --type=merge
 
 # Wait 30 seconds for the old pod to be terminated
 sleep 30
@@ -130,7 +139,9 @@ metadata:
   namespace: openshift-ingress-operator
 spec:
   replicas: 1
-  domain: $HOSTNAME.crc.$INSTRUQT_PARTICIPANT_ID.instruqt.io
+  domain: $HOSTNAME.$INSTRUQT_PARTICIPANT_ID.instruqt.io
+  defaultCertificate:
+    name: custom-certs-default
 EOF
 
 oc rollout status deploy/oauth-openshift -n openshift-authentication
@@ -141,11 +152,11 @@ oc rollout status deploy/apiserver -n openshift-apiserver
 until oc get routes -A 2>/dev/null 1>&2; do echo "Changing routes, waiting for cluster operators..."; sleep 5; done
 
 
-oc patch -p '{"spec": {"host": "console-openshift-console.'$HOSTNAME'.crc.'$INSTRUQT_PARTICIPANT_ID'.instruqt.io"}}' route console -n openshift-console --type=merge
+oc patch -p '{"spec": {"host": "console-openshift-console.'$HOSTNAME'.'$INSTRUQT_PARTICIPANT_ID'.instruqt.io"}}' route console -n openshift-console --type=merge
 
-oc patch -p '{"spec": {"host": "downloads-openshift-console.'$HOSTNAME'.crc.'$INSTRUQT_PARTICIPANT_ID'.instruqt.io"}}' route downloads -n openshift-console --type=merge
+oc patch -p '{"spec": {"host": "downloads-openshift-console.'$HOSTNAME'.'$INSTRUQT_PARTICIPANT_ID'.instruqt.io"}}' route downloads -n openshift-console --type=merge
 
-oc patch -p '{"spec": {"host": "default-route-openshift-image-registry.'$HOSTNAME'.crc.'$INSTRUQT_PARTICIPANT_ID'.instruqt.io"}}' route default-route -n openshift-image-registry --type=merge
+oc patch -p '{"spec": {"host": "default-route-openshift-image-registry.'$HOSTNAME'.'$INSTRUQT_PARTICIPANT_ID'.instruqt.io"}}' route default-route -n openshift-image-registry --type=merge
 
 
 #wait until cluster operators are "available"
@@ -184,43 +195,7 @@ done
 # In this way we try to optimize the flow while we wait for oauth and routes to be finally OK
 # https://bugzilla.redhat.com/show_bug.cgi?id=2082539
 
-export KN_VERSION=1.6.1
-
-curl -kL https://hey-release.s3.us-east-2.amazonaws.com/hey_linux_amd64 -o /root/hey
-mv /root/hey /usr/local/bin/
-chmod +x /usr/local/bin/hey
-
-curl -kL https:/mirror.openshift.com/pub/openshift-v4/x86_64/clients/serverless/${KN_VERSION}/kn-linux-amd64.tar.gz -o /usr/local/bin/kn.tar.gz
-tar -xvzf /usr/local/bin/kn.tar.gz -C /usr/local/bin
-mv /usr/local/bin/kn-linux-amd64 /usr/local/bin/kn
-chmod +x /usr/local/bin/kn
-
-mkdir -p /root/02-serving
-
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/02-serving/service.yaml -o /root/02-serving/service.yaml
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/02-serving/watch-service.bash -o /root/02-serving/watch-service.bash
-
-mkdir -p /root/03-traffic-distribution
-
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/03-traffic-distribution/greeter-v1-service.yaml -o /root/03-traffic-distribution/greeter-v1-service.yaml
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/03-traffic-distribution/greeter-v2-service.yaml -o /root/03-traffic-distribution/greeter-v2-service.yaml
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/03-traffic-distribution/service-pinned.yaml -o /root/03-traffic-distribution/service-pinned.yaml
-
-mkdir -p /root/04-canary-releases
-
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/04-canary-releases/greeter-canary-service.yaml -o /root/04-canary-releases/greeter-canary-service.yaml
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/04-canary-releases/poll-svc-10.bash -o /root/04-canary-releases/poll-svc-10.bash
-
-mkdir -p /root/05-scaling
-
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/05-scaling/service-50.yaml -o /root/05-scaling/service-50.yaml
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/05-scaling/service-hpa.yaml -o /root/05-scaling/service-hpa.yaml
-curl -s https:/raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/05-scaling/service-min-max-scale.yaml -o /root/05-scaling/service-min-max-scale.yaml
-
-# Setting up Serverless
-curl https://raw.githubusercontent.com/openshift-instruqt/instruqt/master/instruqt-tracks/developing-on-openshift-serverless/scripts/01-prepare/install-serverless.bash | bash
-
-
+###
 
 until [[ `oc get routes -A | awk '!/^(NAME|openshift-ingress-canary)/{print$3}' |grep $HOSTNAME` ]]; do
     echo "Routes not patched yet, waiting 30 seconds..";
@@ -259,11 +234,23 @@ do
 done
 
 # Wait until web console is available
-until curl -k https://console-openshift-console.$HOSTNAME.crc.$INSTRUQT_PARTICIPANT_ID.instruqt.io > /dev/null 2>/dev/null
+while [ "$(oc rollout status deploy console -n openshift-console)" != "deployment \"console\" successfully rolled out" ]
+do
+    echo "Waiting for web console - rollout incomplete"
+    sleep 5
+done
+
+while [ "$(curl -k -I https://console-openshift-console.$HOSTNAME.$INSTRUQT_PARTICIPANT_ID.instruqt.io -o /dev/null -w '%{http_code}\n' -s 2>/dev/null)" != "200" ]
+do
+    echo "Waiting for web console - unavailable via curl"
+    sleep 5
+done
+
+while [ "$(oc rollout status deploy apiserver -n openshift-oauth-apiserver)" != "deployment \"apiserver\" successfully rolled out" ]
 do
-    echo "Waiting for web console - not available yet"
-    sleep 6
+    echo "Waiting for oauth API - rollout incomplete"
+    sleep 5
 done
 
 echo $(date)
-echo "### Boostrap END ###"
+echo "### Boostrap END ###"