kubectl: wait for all errors and successes on podEviction

[rphillips]

What this PR does / why we need it: This fixes kubectl drain to wait until all errors and successes are processed, instead of returning the first error. It also tweaks the behavior of the cleanup to check to see if the pod is already terminating, and if it is to not reissue the pod terminate which leads to an error getting thrown. This fix will allow kubectl drain to complete successfully when a node is draining.

Which issue(s) this PR fixes (optional, in fixes #<issue number>(, fixes #<issue_number>, ...) format, will close the issue(s) when PR gets merged):
Fixes #

Special notes for your reviewer:
/cc @sjenning

Release note:

NONE

Reproduction steps

sleep.yml

apiVersion: v1
kind: Pod
metadata:
  name: bash
spec: 
  containers:
  - name: bash
    image: bash
    resources:
      limits:
        cpu: 500m
        memory: 500Mi
    command:
    - bash
    - -c
    - "nothing() { sleep 1; } ; trap nothing 15 ; while true; do echo \"hello\"; sleep 10; done"
  terminationGracePeriodSeconds: 3000
  restartPolicy: Never

$ kubectl create ns testing
$ kubectl create -f sleep.yml
$ kubectl delete ns testing
$ kubectl drain 127.0.0.1 --force

[rphillips]

/retest

[rphillips]

/retest

[rphillips]

/assign @apelisse

[rphillips]

/assign @apelisse

[frobware]

Do we not now lose the underlying reason? Looking below I see we just do "Drain did not complete...".

[rphillips]

Since there can be N different errors, they get glogged and counted. A summary error is returned on line 635. Do you think we should capture all the error messages?

[liggitt]

outputting via glog like this rather than actually returning errors means DrainOptions can't easily be used programmatically or composed into larger commands

[liggitt]

print to o.ErrOut if you're going to print here, and I would probably accumulate and return the actual errors

[sjenning]

/cc @kubernetes/sig-cli-maintainers

This fix will allow kubectl drain to complete successfully when a node is draining.

The particular issue we hit is if the node has a pod in a terminating namespace, the drain will immediately fail with a "can't modify resource in a terminating namespace" error and fail to remove the remaining pods.

With this PR, the drain still fails, but not before trying to remove every pod on the node. This is a better situation in that all pods will be in a terminating state after the first drain.

[sjenning]

/cc @kubernetes/sig-cli-maintainers

This fix will allow kubectl drain to complete successfully when a node is draining.

The particular issue we hit is if the node has a pod in a terminating namespace, the drain will immediately fail with a "can't modify resource in a terminating namespace" error and fail to remove the remaining pods.

With this PR, the drain still fails, but not before trying to remove every pod on the node. This is a better situation in that all pods will be in a terminating state after the first drain.

[sjenning]

using wider cc that I just found out about
/cc @kubernetes/sig-cli-pr-reviews

[sjenning]

using wider cc that I just found out about
/cc @kubernetes/sig-cli-pr-reviews

[rphillips]

@liggitt I refactored this PR to collect all the errors and make it more reusable.

[rphillips]

@liggitt I refactored this PR to collect all the errors and make it more reusable.

[adohe]

we already have AggregateError, what's the difference? seems no need to define multi error here.

[rphillips]

I didn't know about Aggregate. I updated the PR to use the Aggregate API. Thanks!

[rphillips]

/test pull-kubernetes-integration

[rphillips]

/test pull-kubernetes-integration

[rphillips]

/test pull-kubernetes-e2e-gce

[rphillips]

/test pull-kubernetes-e2e-gce

[rphillips]

@sjenning @liggitt ready for review

[rphillips]

@sjenning @liggitt ready for review

[sjenning]

thanks!
/lgtm

[sjenning]

thanks!
/lgtm

[apelisse]

? :-)

[apelisse]

You're losing the timeout error information here, which means if it times out before the first error is reported, that's going to become a success. Maybe consider just returning timeout error in that case (as it was done before)?

[rphillips]

good catch on both. fixed.

[apelisse]

This condition could have been part of the "for" statement: for doneCount < numPods { ... }.

[apelisse]

Thanks for fixing quickly! Feel free to fix the "while" loop (now or later).
/lgtm
/approve

[apelisse]

Thanks for fixing quickly! Feel free to fix the "while" loop (now or later).
/lgtm
/approve

[rphillips]

@apelisse I fixed the for loop, this will need one more approval. Thank you!

[rphillips]

@apelisse I fixed the for loop, this will need one more approval. Thank you!

[apelisse]

It'd be great if I could leave all my comments once and for all :-). How hard would it be to add tests?

/lgtm

[apelisse]

It'd be great if I could leave all my comments once and for all :-). How hard would it be to add tests?

/lgtm

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: apelisse, rphillips, sjenning

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• pkg/kubectl/OWNERS [apelisse]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: apelisse, rphillips, sjenning

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• pkg/kubectl/OWNERS [apelisse]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[k8s-merge-robot]

Automatic merge from submit-queue (batch tested with PRs 65776, 64896). If you want to cherry-pick this change to another branch, please follow the instructions here.

[k8s-merge-robot]

Automatic merge from submit-queue (batch tested with PRs 65776, 64896). If you want to cherry-pick this change to another branch, please follow the instructions here.