Fixes crd per-version validation field path #84560
Conversation
k8s-ci-robot
added
release-note-none
...apiextensions-apiserver/pkg/controller/nonstructuralschema/nonstructuralschema_controller.go
Outdated
Show resolved
Hide resolved
|
@sttts can you verify this will not trigger the dueling CRD condition messages? (this is the exact scenario the generation checking code was intended to protect against, but a verification would be good) |
yue9944882
force-pushed
the
bugfix/crd-per-version-validation-field-path
branch
from
bc0a784
to
65d2fe0
Compare
yue9944882
force-pushed
the
bugfix/crd-per-version-validation-field-path
branch
from
65d2fe0
to
0153473
Compare
|
currently the protection only works by checking whether the message is identical, which will not be helping the case where there are two apiservers writing different messages/conditions in HA setup: T0: for two apiservers in a cluster, one SVR1, the other SVR2 the condition will end up twiddling from TXT1 to TXT2, it can be even worse if the replicas are multiplied... |
|
This protects against updating condition more than once for the same generation: |
|
condition is in status and does not modify metadata.generation |
| @@ -112,7 +112,7 @@ func calculateCondition(in *apiextensions.CustomResourceDefinition) *apiextensio | |||
| return cond | |||
| } | |||
|
|
|||
| pth := field.NewPath("spec", "version").Key(v.Name).Child("schema", "openAPIV3Schema") | |||
There was a problem hiding this comment.
Is this an associative list? if so I think keyed by name is at least a somewhat acceptable way to index it. (version->versions seems correct though.)
But how to avoid fighting with a prior apiserver during an upgrade?
I'm not a fan of our current mechanism at all, it seems super brittle. Changes like this one shouldn't be so fraught with danger :/
There was a problem hiding this comment.
field path is intended to output the jsonpath to the field, so this should be an index
But how to avoid fighting with a prior apiserver during an upgrade?
we already protected against that, I just wanted a sanity check the mechanism was working
There was a problem hiding this comment.
field path is intended to output the jsonpath to the field, so this should be an index
Sounds like something that could (and therefore should) be tested...
the protection only works within one apiserver. in an HA setup where the replicas are partially upgraded, e.g. |
yes, though the normal HA replicas upgrade scenario which starts with M replicas in steady-state, then does a rolling upgrade to N replicas of the new version would only update the message a single time. |
sttts
added
the
priority/important-soon
k8s-ci-robot
removed
the
needs-priority
|
@liggitt Why should index based errors cause more flapping than name based? I remember that we talked about flapping in the review, but I don't remember the reasoning for the current code. Or is it just this change which you fear will cause flapping? Sure it will, for a 3 node HA cluster this will cause max 6 updates of the condition, per CRD. That does not sound like a big deal IMO. |
It's not specific to index-based errors, this is just the first message change I'm aware of where we have old apiservers in play, and I wanted a double-check of our flapping mitigation.
Agree. |
|
any more action item required in this pull? |
|
/lgtm |
k8s-ci-robot
added
the
lgtm
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: liggitt, yue9944882 The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
/sig api-machinery
/kind bug
/cc @sttts @liggitt @kubernetes/sig-api-machinery-misc
found this when resolving CI failures for #84005 , i dont think there will be compatiblity issues if we reword it directly?