Here are my notes from the week:
Announcement of OpenShift 4.14 on Power
Power Developer Exchange: Red Hat OpenShift 4.14 Now Available on IBM Power
IBM® is very excited to announce that Red Hat OpenShift 4.14 has been released and is available to run natively on IBM Power.
Multi-Architecture Compute
With Red Hat OpenShift 4.14, Multi-Architecture Compute comes to IBM Power and IBM Z platforms. Multi-Architecture Compute provides a single heterogeneous cluster, enabling fit-for-purpose computing, so that customers can align tasks and applications to CPU strengths and software availability rather than to one architecture. This also helps reduce the cost and complexity of solutions that require multiple architectures.
https://community.ibm.com/community/user/powerdeveloper/blogs/brandon-pederson1/2023/11/08/red-hat-openshift-414-now-available-on-ibm-power
Brunch and Learn with MAC
Paul Chapman is hosting a lunch and learn on Multi-architecture Compute. It’s a good session to join.
https://ibm.biz/BdPYQHHey, would you like to join me for this short brunch and learn? I will discuss and demonstrate Red Hat OpenShift Multi-Architecture Computing (MAC). MAC now supports x86, ARM, and Power Worker Nodes, all within the same Red Hat OpenShift Cluster. It should be an exciting and informative event. I'd love to have your company and hear your feedback. –10:30 GMT/UTC 17th November 2023 –Register here https://ibm.biz/BdPYQH #powermod #power10 #ibmpowersystems #ibmpowersystemsvirtualservers #redhatopenshiftcontainerplatform #redhatopenshift #containersolutions #containers
Butane with Key File
On a linux intel or arm machine, y ou can run the following:
- Create the butane alias
alias butane='podman run --rm --interactive \
--security-opt label=disable \
--volume "$(pwd)":/pwd --workdir /pwd \
quay.io/coreos/butane:latest'
- Generate the key_file contents
openssl genrsa -out out.rsa 4096
- Use this file
cat <<EOF > 99-worker-luks.bu
variant: openshift
version: 4.14.0
metadata:
name: 99-worker-luks
labels:
machineconfiguration.openshift.io/role: worker
storage:
luks:
- name: luks-encrypt-worker
device: /dev/disk/by-partlabel/root
key_file:
source: data:;base64,$(cat out.rsa | gzip - | base64 --wrap=0)
compression: gzip
EOF
- Run the Butane command
butane 99-worker-luks.bu -o 99-worker-luks.yaml
It generates:
# Generated by Butane; do not edit
apiVersion: machineconfiguration.openshift.io/v1
kind: MachineConfig
metadata:
labels:
machineconfiguration.openshift.io/role: worker
name: 99-worker-luks
spec:
config:
ignition:
version: 3.4.0
storage:
luks:
- device: /dev/disk/by-partlabel/root
keyFile:
compression: gzip
source: data:;base64,<EXCLUDED>
name: luks-encrypt-worker
You probably need to consider:
luks:
enabled: false
filesystem_device: /dev/mapper/root
format: xfs
wipeFileSystem: true
device: /dev/disk/by-partlabel/root
label: luks-root
options:
- --cipher
- aes-cbc-essiv:sha256
wipeVolume: true
name: root
The cipher options probably needs some work.
Ref: https://coreos.github.io/butane/upgrading-openshift/
Ref: https://coreos.github.io/butane/config-openshift-v4_14/
Ref: https://coreos.github.io/butane/examples/
List of Red Hat Products released in October 2023
In the month of October, the following Red Hat products were released on IBM Power.
https://community.ibm.com/community/user/powerdeveloper/blogs/ashwini-sule/2023/11/09/red-hat-products-oct-2023
Leave a Reply