SIG-OpenStack/SIG-K8s and

Adjacent Communities Update

Chris Hoge, OpenStack Foundation

Melvin Hillsman, Huawei

Davanum Srinivas, Huawei

​

02.26.2018

The OpenStack and K8s Communities Have Solid Integrations

• K8s-SIG-OpenStack Work and the OpenStack Provider
• Chris Hoge and Davanum Srinivas (Dims)

​

• Testing with OpenStack Infra and OpenLab
• Melvin Hillsman and Dims

​

• Container-Focused OpenStack Project Updates
• Chris Hoge

SIG OpenStack Leadership Update

• CHRIS HOGE, OPENSTACK FOUNDATION
• DAVID LYLE, INTEL
• ROBERT MORSE, TICKETMASTER

​

• SPECIAL THANKS TO OUTGOING SIG LEADS:
• IHOR DVORETSKYI, CNCF
• STEPHEN GORDON, RED HAT

Previous Events with SIG-OpenStack/SIG-K8s Representation

• OPENSTACK PTG DENVER
• Initial meetings on OpenLab Formation
• First meeting on SIG-K8s formation
• OPENSTACK SUMMIT AUSTRALIA
• Second Meeting on SIG-K8s formation.
• 25 Presentations, workshops, and forum sessions devoted to OpenStack and Kubernetes Integrations.
• KUBECONF/CLOUD NATIVE CON NORTH AMERICA
• Joint community leadership meetings through the week, organized and led by Thierry Carrez.
• First K8s-SIG-OpenStack/OpenStack-SIG-K8s joint update and deep-dive.
• INAUGURAL HELM SUMMIT PORTLAND
• Participation by Kolla, OpenStack-Helm, and LOCI core contributors, as well as SIG leadership.

Upcoming Events with SIG-OpenStack/SIG-K8s Representation

• OPENSTACK PROJECT TEAMS GATHERING (PTG) DUBLIN, FEBRUARY 26-30
• Full day of meeting and work space on Tuesday, February 27
• K8S COMMUNITY AND SIG MEETINGS, MARCH 8-9
• SIG-OpenStack Update at Weekly K8s Community Meeting, Attendance at SIG-Docs sprint in Portland
• OPEN NETWORKING SUMMIT LOS ANGELES, MARCH 26-29
• Community meetings with OpenStack and K8s leaders.
• KUBECONF/CLOUD NATIVE CON EUROPE, MAY 2-4
• SIG Updates and working sessions, along with a Kata Containers talk and an OS provider intro talk.
• OPENSTACK SUMMIT VANCOUVER, MAY 21-24
• Schedule selection underway, including full Container Infrastructure track.
• OPENDEV CONF, MAY 22-23
• Collaborative community event focused on CI/CD.

Major SIG Efforts in 1.10 Release

• FORMATION OF OPENSTACK-SIG-K8S
• Within the OpenStack community, we have formed OpenStack-SIG-K8s.
• https://review.openstack.org/#/c/541489/
• The SIG is an official recognition of the K8s-SIG-OpenStack leadership and organization within the OpenStack community.
• Same leaders, meetings, and objectives.
• Allows the SIG to take advantage of OpenStack resources.
• Forum sessions at OpenStack Summits
• Development rooms at Project Team Gatherings (PTG)
• Repository hosting with Gerrit Code Review and OpenStack Infra testing.
• A unique governance structure to encourage cross community collaboration.

Major SIG Efforts in 1.10 Release

• EXTERNAL OPENSTACK PROVIDER
• Work is underway to fork the OpenStack cloud provider into an external project managed in the OpenStack Community (note that full forked code authorship history will remain intact).
• OpenStack Cloud Controller Manager repository
• https://github.com/dims/openstack-cloud-controller-manager
• Targeting end of February for transition to OpenStack community management.
• This, and other integration work will happen F2F at the OpenStack Project Teams Gathering (PTH) happening in Dublin, February 26 - March 2.

Major SIG Efforts in 1.10 Release

• EXTERNAL OPENSTACK PROVIDER (CONTINUED)
• Several integration points into OpenStack
• In-tree OpenStack Provider, to be deprecated in 1.11 and removed in 1.12
• External provider with Cloud Controller Manager
• External and Internal LbaaS with Neutron LBaaSv2
• LVM/iSCSI with Cinder
• Ceph/RBD with Cinder
• Cinder Integrations
• Standalone provider with LVM/iSCSI and Ceph/RDB scenarios
• Flex volume driver work in progress
• CSI volume driver work in progress

Major SIG Efforts in 1.10 Release

• Routing and IPV6 Improvements
• For nodes with more than one internal IP address, new algorithm chooses correct route
• Works for both IPv4 and IPv6.
• Fixed IPv6 support by matching network types by forcing nexthop to be in same network space

​

• REMOVAL OF EXPERIMENTAL KEYSTONE AUTHENTICATION CODE
• Experimental Keystone Authentication Code was removed from upstream.
• Replaced with external provider Keystone web hooks.
• Example usage documented by Saverio Proto (ziproto)
• https://cloudblog.switch.ch/2018/02/02/openstack-keystone-authentication-for-your-kubernetes-cluster/

Major SIG Efforts in 1.10 Release

• OPENSTACK PROVIDER E2E TESTING IN CNCF/CICD
• Merged OpenStack deployment code into CNCF/CICD cross-cloud repository
• https://github.com/crosscloudci/cross-cloud
• Updates in progress to use up-to-date Terraform OpenStack provider with bug fixes and improvements.
• Targeting full test integration for late February/early March
• Future work to include loading and testing external cloud provider.

Future Efforts

• TESTING TESTING TESTING
• Gate jobs for external provider in OpenStack Infra.
• K8s third-party testing on OpenLab, with goal of adding as gate job.
• https://openlabtesting.org
• Resource for testing open source SDK and platform plugins
• Continued work with CNCF/CICD to support external provider.

Gopher Cloud and Terraform:

OpenLab supported projects

• New Features
• Cinder v3 support
• Microversions are a work in progress, designs welcome!
• Octavia support
• Nova aggregates, hypervisor, quota and usage support
• Flavor management
• Keystone v3 support (special thanks to David Lyle)
• Work has translated into improved support in K8s and Terraform.

​

“Oh, and OpenLab testing.

It's been a great asset and Melvin's team also deserves a lot of praise.” - Joe Topjian, Cybera Inc.

​

OpenLab General Update

• Recent Project Additions
• Misty (Ruby SDK)
• Lead Developer - Gilles Dubreil
• JenkinsCI OpenStack Cloud Plugin
• Being driven by Mohammed Naser (VEXXHOST)
• Lead Developer - Oliver Gondza

OpenLab General Update

• Recent Infrastructure Additions
• CloudLab
• Dedicated Servers
• Virtual Machines (non-OpenStack)
• Chameleon Cloud
• OpenStack Baremetal
• OpenStack Virtual Machines
• Emulab
• Dedicated Servers
• Virtual Machines (non-OpenStack)
• Networking Hardware (ex: switches)

OpenStack Project Updates

• OpenStack on K8s:
• OpenStack-Helm
• Switched to using LOCI base images, still have support for Kolla Images.
• Ceph SDS integrations for Glance, object store, and database storage.
• Ironic chart integration leveraging KubeADM enabling bare metal Kubernetes cluster deployments.
• Companies working to put into production include SK Telecom, AT&T, and Workday.
• Major progress on third party integrations including Ceph, OpenContrail, and Calico.

OpenStack Project Updates

• K8s on OpenStack
• Magnum
• supports latest versions (including 1.10).
• RBAC support by default.
• Flannel and Calico support.
• Upcoming features include host OS and K8s control plane updates.
• Current and future users:
• CERN with 115 K8s clusters ranging from 1.7.4 to 1.10.0 (alpha)
• Vexxhost, City Network in two data centers, Easystack.
• Catalyst and American Airlines working towards production.

OpenStack Project Updates

• K8s on OpenStack (continued)
• Zun
• Ability to bind mount Cinder into Zun containers.
• PCI passthrough GPUs and NICs with scheduler support.
• Support for Clear Containers (feature in progress before Kata announcement)

OpenStack Project Updates

• Container Networking
• Kuryr
• CNI daemon support to increase scalability and speed of network operations.
• New SDN backend gate jobs including OVN and Dragonflow.
• Mapping of Kubernetes network policies to Neutron Security Groups, enabling security by default for pod communication.
• IPv6 support.
• Octavia support.
• Containerized and installable with kubeadm

Collaboration Channels

• SLACK:
• #sig-openstack
• GOOGLE GROUPS
• k8s-sig-openstack
• https://groups.google.com/forum/#!forum/kubernetes-sig-openstack
• OPENSTACK MAILING LISTS
• OpenStack SIGs mailing list
• http://lists.openstack.org/pipermail/openstack-sigs/

Get Involved!

• CONTRIBUTE INFRASTRUCTURE RESOURCES TO OPENLAB:
• Start with as little as 20 virtual cores to help build an open SDK and Application test pool.
• ASSIGN DEVELOPERS TO HELP MAINTAIN THE OPENSTACK PROVIDER
• We’re looking for contributors and OpenStack API experts to make the provider even better!
• JOIN SIG EFFORTS
• Come to weekly meetings, give updates on your work, propose talks that highlight integrations.
• If you’re doing cross community work, this one of the best ways to give it exposure!
• ADVOCATE FOR OPEN APPS ON OPEN INFRASTRUCTURE!
• We have many common colleagues across our community.
• Share this knowledge and encourage the use of open APIs across the entire stack!

THANKS!

Questions?

openstack

openstack

OpenStackFoundation

@OpenStack