🐛 [WIP] Update MachineSet and MachineDeployment ownerRef versions on reconcile #7509
Conversation
Signed-off-by: killianmuldoon <kmuldoon@vmware.com>
k8s-ci-robot
added
the
cncf-cla: yes
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
size/L
|
This is an interesting one, and I think there might be some cases of this in the CAPV codebase. The gist here is we should always update the OwnerRefs to use the latest API version served by the api server. |
Yup exactly! In general every controller which sets ownerReferences in a CRD is responsible to keep them up-to-date. Otherwise there's a chance garbage collection is broken when apiVersions are removed. @killianmuldoon Would you mind surfacing this general topic in the office hours and pointing folks to the issue? Just that everyone has a chance to be aware of it. |
| if metav1.GetControllerOf(ms).APIVersion != md.APIVersion { | ||
| err := r.updateControllerRef(ctx, md, ms) | ||
| if err != nil { | ||
| log.Error(err, "Failed to update Machine controller reference.") |
There was a problem hiding this comment.
I wonder if we should return the error in this case.
In general this request should work anyway, right?
| @@ -165,9 +165,9 @@ func (r *Reconciler) Reconcile(ctx context.Context, req ctrl.Request) (_ ctrl.Re | |||
| return result, err | |||
| } | |||
|
|
|||
| func patchMachineDeployment(ctx context.Context, patchHelper *patch.Helper, d *clusterv1.MachineDeployment, options ...patch.Option) error { | |||
| func patchMachineDeployment(ctx context.Context, patchHelper *patch.Helper, md *clusterv1.MachineDeployment, options ...patch.Option) error { | |||
There was a problem hiding this comment.
nit: I would highly recommend to split out a general m=>md rename into a separate PR next time.
Just helps to de-obfuscate the actual changes in this PR and keeps everything nicely separated
(just resolve for this PR)
| if metav1.GetControllerOf(machine).APIVersion != machineSet.APIVersion { | ||
| err := r.updateControllerReference(ctx, machineSet, machine) | ||
| if err != nil { | ||
| log.Error(err, "Failed to update Machine controller reference.") |
There was a problem hiding this comment.
I would also return the error here
| @@ -278,6 +279,15 @@ func (r *Reconciler) reconcile(ctx context.Context, cluster *clusterv1.Cluster, | |||
| r.recorder.Eventf(machineSet, corev1.EventTypeNormal, "SuccessfulAdopt", "Adopted Machine %q", machine.Name) | |||
| } | |||
|
|
|||
| // Ensure that the version of the controllerReference is up-to-date. | |||
| if metav1.GetControllerOf(machine).APIVersion != machineSet.APIVersion { | |||
There was a problem hiding this comment.
Are sure the machineSet.APIVersion is set? (afaik per default it's not in CR / client-go)
I think we should use the same source of truth as updateControllerReference (which is machineSetKind)
| continue | ||
| } | ||
|
|
||
| // Ensure that the version of the controllerReference is up-to-date. | ||
| if metav1.GetControllerOf(ms).APIVersion != md.APIVersion { |
There was a problem hiding this comment.
Are sure the md.APIVersion is set? (afaik per default it's not in CR / client-go)
I think we should use the same source of truth as updateControllerReference (which is machineDeploymentKind)
| // adoptOrphan sets the MachineSet as a controller OwnerReference to the Machine. | ||
| func (r *Reconciler) adoptOrphan(ctx context.Context, machineSet *clusterv1.MachineSet, machine *clusterv1.Machine) error { | ||
| // updateControllerReference sets the MachineSet as a controller OwnerReference to the Machine. | ||
| func (r *Reconciler) updateControllerReference(ctx context.Context, machineSet *clusterv1.MachineSet, machine *clusterv1.Machine) error { |
There was a problem hiding this comment.
nit: let's be consistent between MD and MS and pick either updateControllerRef or updateControllerReference
| @@ -437,6 +437,20 @@ func HasOwner(refList []metav1.OwnerReference, apiVersion string, kinds []string | |||
| return false | |||
| } | |||
|
|
|||
| // HasOwnerWithSameVersion checks if any of the references in the passed list match the given group from apiVersion and one of the given kinds. | |||
| func HasOwnerWithSameVersion(refList []metav1.OwnerReference, apiVersion string, kinds []string) bool { | |||
There was a problem hiding this comment.
I know it's relatively trivial but let's ~ copy&paste the unit tests of HasOwner
|
Overall I really like the simplicity of the change, nice work! |
k8s-ci-robot
added
the
needs-rebase
|
@killianmuldoon: PR needs rebase. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Should be considered entirely unrelated. |
fabriziopandini
added
the
do-not-merge/work-in-progress
|
@killianmuldoon: Closed this PR. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Signed-off-by: killianmuldoon kmuldoon@vmware.com
Currently if the apiVersion of an ownerReference doesn't match any version that is served by the Kubernetes apiServer garbage collection of resources based on ownerReferences fails. Ref: kubernetes/kubernetes#96650
When Cluster API stops serving deprecated APIVersions - i.e. v1alpha3 and v1alpha4 when they're removed - we want to ensure garbage collection continues to work as expected. This change ensures that these ownerReferences are kept up to date on each reconcile for a subset of resources.
Specifically this changes ensures updates for the apiVersion in OwnerReferences of:
Fixes #7224