Add basic OpenShift support and setup [Part 1]

[tnozicka]

Description of your changes:
This PR brings the initial support for running on OpenShift.

It also fixes the operator when run on platforms where OwnerReferencesPermissionEnforcement is enabled.

It also moves all persistent storage to /var/lib which is available on all OSes, including atomic ones / CoreOS.

Note: This is part 1 that wires everything together and fixes most of the issues. Some tests that fail only on OpenShift still fail and need individual followups and we also needs to wire in proper cpu limits that flake a lot of tests waiting for certs to be generated.

Which issue is resolved by this Pull Request:
Resolves #713 #1935

[scylla-operator-bot]

@tnozicka: GitHub didn't allow me to request PR reviews from the following users: tnozicka.

Note that only scylladb members and repo collaborators can review this PR, and authors cannot review their own PRs.

In response to this:

Description of your changes:
TODO

Which issue is resolved by this Pull Request:
Resolves #713 #1935

/cc

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[scylla-operator-bot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: tnozicka

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [tnozicka]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[tnozicka]

/test e2e-openshift-aws-parallel
/test e2e-openshift-aws-serial
(out of interest, but expected to fail on some)

[rzetelskik]

we should either add a dedicated script running ci-deploy-release.sh and set it up in CI or at the very least have a tracking issue

[tnozicka]

for openshift? the manifests are shared

[rzetelskik]

Is the split for GKE only coming from the fact ci-deploy.sh was there before the periodics or is there a different reason that's not there for openshift? In other words why would GKE periodics run a different script than the OpenShift ones (GKE periodics run ci-deploy-release.sh through run-e2e-gke-release.sh, while this runs ci-deploy.sh for both presubmits and periodics).

[tnozicka]

ci-deploy-release.sh uses the manifests from a real commit (which is not there for PRs because it's a local merge, so they use ci-deploy.sh, by design.

run-e2e-openshift-aws.sh is the entrypoint for presubmits (actually wired for periodics as well at this point)
run-e2e-openshift-aws-release.sh needs to be added later on and wired for postsubmits and periodics

[rzetelskik]

Also please make the PR title a bit more descriptive

[tnozicka]

/test e2e-openshift-aws-serial
(cluster provisioning failed)

[tnozicka]

/retest
e2e-gke-release-script-latest should be unborked now

[tnozicka]

/test e2e-openshift-aws-parallel
/test e2e-openshift-aws-serial
(for reference - some of the failures are races / easy wins for the next PR)

[scylla-operator-bot]

@tnozicka: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-openshift-aws-serial	f0db302	link	false	/test e2e-openshift-aws-serial
ci/prow/e2e-openshift-aws-parallel	f0db302	link	false	/test e2e-openshift-aws-parallel

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[tnozicka]

ci/prow/e2e-gke-release-script-latest

this has to fail because it deploys local-csi-driver from a released image and we have changed the mount paths

https://prow.scylla-operator.scylladb.com/view/gs/scylla-operator-prow/pr-logs/pull/scylladb_scylla-operator/1955/pull-scylla-operator-master-e2e-gke-release-script-latest/1872752453217161216#1:test-build-log.txt%3A287

note: 'MountVolume.SetUp failed for volume "volumes-dir" : hostPath type check failed:
  /mnt/persistent-volumes is not a directory'

https://gcsweb.scylla-operator.scylladb.com/gcs/scylla-operator-prow/pr-logs/pull/scylladb_scylla-operator/1955/pull-scylla-operator-master-e2e-gke-release-script-latest/1872752453217161216/artifacts/must-gather/0/namespaces/local-csi-driver/events.events.k8s.io/local-csi-driver-jtsx9.1815258d6c62fdda.yaml

/override ci/prow/e2e-gke-release-script-latest

[scylla-operator-bot]

@tnozicka: Overrode contexts on behalf of tnozicka: ci/prow/e2e-gke-release-script-latest

In response to this:

ci/prow/e2e-gke-release-script-latest

this has to fail because it deploys local-csi-driver from a released image and we have changed the mount paths

https://prow.scylla-operator.scylladb.com/view/gs/scylla-operator-prow/pr-logs/pull/scylladb_scylla-operator/1955/pull-scylla-operator-master-e2e-gke-release-script-latest/1872752453217161216#1:test-build-log.txt%3A287

note: 'MountVolume.SetUp failed for volume "volumes-dir" : hostPath type check failed:
 /mnt/persistent-volumes is not a directory'

https://gcsweb.scylla-operator.scylladb.com/gcs/scylla-operator-prow/pr-logs/pull/scylladb_scylla-operator/1955/pull-scylla-operator-master-e2e-gke-release-script-latest/1872752453217161216/artifacts/must-gather/0/namespaces/local-csi-driver/events.events.k8s.io/local-csi-driver-jtsx9.1815258d6c62fdda.yaml

/override ci/prow/e2e-gke-release-script-latest

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[rzetelskik]

(one outstanding comment)