Skip to content

NetworkCompartmentId implementation + fixes for OCIManagedMachinePool #455

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 7 commits into
base: main
Choose a base branch
from
Open

NetworkCompartmentId implementation + fixes for OCIManagedMachinePool #455

wants to merge 7 commits into from

Conversation

alcampag
Copy link
Member

What this PR does / why we need it:
This PR introduces a new field for OCIManagedCluster that allows for the network to be created in a different compartment than the one specified in OCIManagedCluster.Spec.CompartmentId

The new field is called OCIManagedCluster.Spec.NetworkSpec.CompartmentId, it is optional and if not set it will default to the only compartment specified.

In addition, this PR fixes many bugs on the managed machine pool controller. The controller logic caused continues updates on the node pool if the original OCIManagedCluster was modified. This is because not all fields were set as the actual managed node pool state and updated correctly.

The new reconciliation logic is following this design:

  • If the user has defined a value for a field in the OCIManagedCluster object, then the controller will try to synchronize it
  • If the field is not specified entirely, the controller will try to keep it as defined in the actual state of the node pool

Which issue(s) this PR fixes:
Fixes #450

@oracle-contributor-agreement oracle-contributor-agreement bot added the OCA Verified All contributors have signed the Oracle Contributor Agreement. label Sep 26, 2025
@joekr joekr added bug Something isn't working enhancement New feature or request labels Sep 26, 2025
@joekr
Copy link
Member

joekr commented Sep 29, 2025

What happens if a user 1) updates the network compartment ID to a new compartment or 2) deletes the network compartment id?

@joekr
Copy link
Member

joekr commented Sep 29, 2025

Instead of calling out all the places tests need to be added I'll just make the blanket statement here. We need to make sure we have some unit test coverage for this update. I know we talked about adding e2e tests around this already as well, but I'm just putting this in the comment for posterity.

joekr
joekr reviewed Sep 29, 2025
View reviewed changes
@alcampag
Copy link
Member Author

I will need to think how to handle the networkCompartmentId update/deletion.

@joekr
Copy link
Member

joekr commented Sep 30, 2025

I will need to think how to handle the networkCompartmentId update/deletion.

We talked about this and we came to the conclusion that update/delete of the compartmentID won't work as it is setup now. We won't address this as part of this PR. At somepoint in the future we will induce this but it will need to leverage https://docs.oracle.com/en-us/iaas/api/#/en/iaas/latest/Vcn/ChangeVcnCompartment. This will be a bigger lift than just adding it as part of this PR.

alcampag and others added 5 commits October 2, 2025 14:37
@alcampag
Merge branch 'oracle:main' into main
c58e517
@alcampag
Finished implementing NetworkCompartmentId feature + some more fixes
31f6ecb
@alcampag
Merge branch 'main' of https://github.com/oracle/cluster-api-provider…
070fd4b 
…-oci
@alcampag
feat(tests): add e2e support for OCI managed network compartment
c3ec65e 
- Introduce new cluster template for OCIManagedCluster with separate network compartment.
- Update e2e_conf.yaml to include the template and OCI_NETWORK_COMPARTMENT_ID variable.
- Modify Makefile to generate the new template (replacing node-recycling build).
- Add --load flag to docker-build for local image loading.
- Create cluster.yaml defining the managed cluster and control plane specs.
@alcampag
Fixed and merged with main branch
7dcb15c
@alcampag alcampag marked this pull request as ready for review October 16, 2025 07:30
@alcampag alcampag requested a review from joekr October 16, 2025 07:30
@alcampag
Copy link
Member Author

@joekr I have added the e2e template and merged with the latest release. If you see a test failing locally, it's because @vladcristi has implemented a new unit test for instance principals, which will fail on a local environment.
Only thing missing is the e2e for the NetworkCompartmentId, but I have already done my share of tests manually with different configurations.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vladcristi vladcristi Awaiting requested review from vladcristi

@dranicu dranicu Awaiting requested review from dranicu

@joekr joekr Awaiting requested review from joekr

At least 1 approving review is required to merge this pull request.

Assignees

@alcampag alcampag

Labels

bug Something isn't working enhancement New feature or request OCA Verified All contributors have signed the Oracle Contributor Agreement.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Possibility to provision OCI Managed Control Plane and network on different compartments

2 participants

@alcampag @joekr