Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move the maintenance window from rolling updates to CA #1728

Merged
merged 3 commits into from
Jun 24, 2019
Merged

Move the maintenance window from rolling updates to CA #1728

merged 3 commits into from
Jun 24, 2019

Conversation

scholzj
Copy link
Member

@scholzj scholzj commented Jun 22, 2019
edited
Loading

Type of change

  • Bugfix

Description

The MaintenanceWindow currently doesn't work because change of certificates changes the strimzi.io/clients-ca-cert-generation and strimzi.io/cluster-ca-cert-generation annotations in the Pod template in STS and these trigger rolling update

The whole maintenance window seems to be rather unfortunately addressed in the rolling update and not in the CA it self. That can leave to the certificates being updated in the secrets possibly a long time before the rolling update activates them. This does not seem to be correct. The maintenance time window check should be moved to the Ca class so that the certificates are regenerated only when the maintenance window starts.

This should be picked for the 0.12.x branch for possible patch release.

Checklist

  • Write tests
  • Make sure all tests pass
  • Try your changes from Pod inside your Kubernetes and OpenShift cluster, not just locally

@scholzj scholzj added this to the 0.13.0 milestone Jun 22, 2019
@scholzj scholzj requested review from tombentley and ppatierno June 22, 2019 21:44
@scholzj
Copy link
Member Author

scholzj commented Jun 22, 2019

@strimzi-ci run tests

@strimzi-ci
Copy link

Test Failures

  • testCreatedWithoutTopicNameInKube in io.strimzi.operator.topic.TopicOperatorMockTest

@scholzj
Copy link
Member Author

scholzj commented Jun 23, 2019

@strimzi-ci run tests

@strimzi-ci
Copy link

Test Failures

  • testCreatedWithoutTopicNameInKube in io.strimzi.operator.topic.TopicOperatorMockTest

@scholzj
Copy link
Member Author

scholzj commented Jun 23, 2019

@strimzi-ci run tests

@strimzi-ci
Copy link

Test Failures

  • io.strimzi.systemtest.HelmChartST in io.strimzi.systemtest.HelmChartST
  • testKafkaJBODDeleteClaimsTrueFalse in io.strimzi.systemtest.KafkaST

@scholzj
Copy link
Member Author

scholzj commented Jun 23, 2019

@strimzi-ci run tests testcase=KafkaST#testKafkaJBODDeleteClaimsTrueFalse, HelmChartST#HelmChartST

tombentley
tombentley approved these changes Jun 24, 2019
View reviewed changes
Copy link
Member

@tombentley tombentley left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

ppatierno
ppatierno approved these changes Jun 24, 2019
View reviewed changes
Copy link
Member

@ppatierno ppatierno left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@scholzj scholzj merged commit 4935764 into master Jun 24, 2019
@scholzj scholzj deleted the fix-maintenance-window-and-certificate-renewals branch June 24, 2019 08:58
scholzj added a commit that referenced this pull request Jun 24, 2019
@scholzj
Move the maintenance window from rolling updates to CA (#1728)
9d93e07 
* Move the maintenance window from rolling updates to CA

* fix tests and fix findbugs

* Add tests for maintenance window in CA
@scholzj
Copy link
Member Author

scholzj commented Jun 24, 2019

Merged and picked for 0.12.x release branch.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tombentley tombentley tombentley approved these changes

@ppatierno ppatierno ppatierno approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
0.13.0
Development

Successfully merging this pull request may close these issues.
4 participants
@scholzj @strimzi-ci @tombentley @ppatierno