✨ Check control plane version skew before creating new launch template version #5560
Conversation
|
Skipping CI for Draft Pull Request. |
k8s-ci-robot
added
do-not-merge/work-in-progress
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
size/M
fiunchinho
changed the title
k8s-ci-robot
added
release-note
fiunchinho
changed the title
fiunchinho
force-pushed
the
control-plane-skew
branch
from
d872e60 to
ebb7acc
Compare
fiunchinho
changed the title
fiunchinho
force-pushed
the
control-plane-skew
branch
2 times, most recently
from
09f90d8 to
8a507ce
Compare
k8s-ci-robot
added
size/L
fiunchinho
changed the title
|
/test all |
fiunchinho
force-pushed
the
control-plane-skew
branch
from
8a507ce to
5e4e6e8
Compare
|
/retest |
k8s-ci-robot
removed
the
do-not-merge/work-in-progress
| // isMachinePoolAllowedToUpgradeDueToControlPlaneVersionSkew checks if the control plane is being upgraded, in which case we shouldn't update the launch template. | ||
| func (r *AWSMachinePoolReconciler) isMachinePoolAllowedToUpgradeDueToControlPlaneVersionSkew(clusterScope cloud.ClusterScoper, machinePoolScope *scope.MachinePoolScope) (bool, error) { | ||
| if machinePoolScope.Cluster.Spec.ControlPlaneRef == nil { | ||
| return true, nil |
There was a problem hiding this comment.
I don't think we'd want to proceed in this case with the upgrade.
There was a problem hiding this comment.
I changed the logic to return an error in this case, PTAL.
|
/milestone v2.9 |
fiunchinho
force-pushed
the
control-plane-skew
branch
from
5e4e6e8 to
5b92730
Compare
|
/test ? |
|
@fiunchinho: The following commands are available to trigger required jobs: The following commands are available to trigger optional jobs: Use In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
|
/test pull-cluster-api-provider-aws-e2e |
|
/test pull-cluster-api-provider-aws-test |
fiunchinho
force-pushed
the
control-plane-skew
branch
from
5b92730 to
c4d8dc1
Compare
|
/test pull-cluster-api-provider-aws-e2e |
|
/retest |
|
|
||
| cpVersion, found, err := unstructured.NestedString(controlPlane.Object, "status", "version") | ||
| if !found || err != nil { | ||
| return false, errors.Wrapf(err, "failed to get version of ControlPlane %s", machinePoolScope.Cluster.Spec.ControlPlaneRef.Name) |
There was a problem hiding this comment.
With the || here, is it possible that we'll get a case where !found = true && err == nil? That may cause an issue when generating the wrapped error here.
| asgSvc.EXPECT().CanStartASGInstanceRefresh(gomock.Any()).Times(0) | ||
| // Won't be called due to version skew | ||
| ec2Svc.EXPECT().CreateLaunchTemplateVersion(gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any()).Times(0) | ||
| // Won't be called due to version skew |
There was a problem hiding this comment.
Appreciate these comments, thank you!
|
We found this doesn't work if the This patch improves the situation if the objects are deployed around the same time (before reconciliation runs), so I think we could keep it as a first step in the right direction. For a full skew check, we'd need to synchronize the @fiunchinho One more question on behavior: The patch avoids the instance refresh. But what if the ASG scales up or replaces instances – would they have the new Kubernetes version? Also, we currently get |
It prevents creating a new launch template version, so new nodes (even when scaling up) won't get the new k8s version. |
/kind feature
What this PR does / why we need it:
This is a draft PR to gather feedback about a potential approach to solve the k8s version skew problem, where AWSMachinePool workers are upgraded to newer k8s versions before the control plane nodes are upgraded.
Release note: