When BeforeClusterUpgrade is blocking an upgrade new MachineDeployments are being created with new version
#8695
Comments
k8s-ci-robot
added
kind/bug
|
@ykakarap: The label(s) In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
k8s-ci-robot
added
the
needs-triage
|
/triage accepted
Completely agree. Would it be easiest to prevent this in the upgrade part of the topology code? i.e. to never allow an MD to get ahead of the control plane version, instead of trying to make the runtime hook call more conditional / complex. |
k8s-ci-robot
added
triage/accepted
I think this conflicts with our work on: #8656 Seems to me the right thing to do is to not create the MD until CP is upgraded. |
This seems like it could have unintended consequences - the runtime extension could be blocking to wait for some maintenance window or similar. I think when we implemented this hook the idea was to ensure that no other Cluster operations are blocked. When this hook is blocking the CP can't be upgraded so new machines should be able to join etc. |
|
The problem is that if we create an MD with 1.25.3 but with the new state of the Cluster topology we end up with mixed configuration. The 1.25.3 version with whatever else a user changed in Cluster topology. It was a major goal of avoiding double rollouts to avoid those scenarios. |
I think a consequence of holding back "other changes" to roll them out together with the version is that if the version is blocked by a hook "other changes" are blocked as well. So we will definitely block operations like scaling up / changing config of existing MDs. That's the idea of avoiding double rollouts. |
Yes. I agree that the right way to approach this is to handle the case in the topology controller and not try to make the hook call more complex.
I should have worded this better. The correct expectation is a MD should not be created with version v1.26.2. To align with #8656 we should not create the new MachineDeployment. |
|
I agree. What is key IMO is to clearly surface what the topology controller is doing in conditions at the cluster level; then, after we gather some more feedback we can decide if and how to allow users to relax some of the checks if necessary. We should also make it clear in the BeforeClusterUpgrade hook what are the implications. |
What steps did you take and what happened?
Steps to reproduce:
BeforeClusterUpgradehookWhat did you expect to happen?
The MachineDeployment should not be created with version v1.26.2 since the upgrade is blocked by the runtime extension.
Cluster API version
main
Kubernetes version
No response
Anything else you would like to add?
Since none of the other components of the cluster have picked up the new version (v1.26.2), specifically since the ControlPlane has not yet picked up the new version it looks unsafe to allow creating new MachineDeployments to be created with the new version.
Label(s) to be applied
/kind bug
/area clusterclass
/area topology
One or more /area label. See https://github.com/kubernetes-sigs/cluster-api/labels?q=area for the list of labels.
The text was updated successfully, but these errors were encountered: