Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

azurerm_kubernetes_cluster: Support for upgrade path from Azure CNI to Azure CNI Overlay #26260

Open
wants to merge 14 commits into
base: main
Choose a base branch
from
Open

azurerm_kubernetes_cluster: Support for upgrade path from Azure CNI to Azure CNI Overlay #26260

wants to merge 14 commits into from
+23 −4

Conversation

jkroepke
Copy link
Contributor

@jkroepke jkroepke commented Jun 6, 2024
edited
Loading

Community Note

  • Please vote on this PR by adding a 👍 reaction to the original PR to help the community and maintainers prioritize for review
  • Please do not leave comments along the lines of "+1", "me too" or "any updates", they generate extra noise for PR followers and do not help prioritize for review

Description

This PR adds support upgrade-path from Azure CNI to Azure CNI Overlay

Ref: https://learn.microsoft.com/en-us/azure/aks/azure-cni-overlay?tabs=kubectl#azure-cni-cluster-upgrade

PR Checklist

  • I have followed the guidelines in our Contributing Documentation.
  • I have checked to ensure there aren't other open Pull Requests for the same update/change.
  • I have checked if my changes close any open issues. If so please include appropriate closing keywords below.
  • I have updated/added Documentation as required written in a helpful and kind way to assist users that may be unfamiliar with the resource / data source.
  • I have used a meaningful PR title to help maintainers and other users understand this change and help prevent duplicate work.
    For example: “resource_name_here - description of change e.g. adding property new_property_name_here

Changes to existing Resource / Data Source

  • I have added an explanation of what my changes do and why I'd like you to include them (This may be covered by linking to an issue above, but may benefit from additional explanation).
  • I have written new tests for my resource or datasource changes & updated any relevent documentation.
  • I have successfully run tests with my changes locally. If not, please provide details on testing challenges that prevented you running the tests.
  • (For changes that include a state migration only). I have manually tested the migration path between relevant versions of the provider.

The existing test TestAccKubernetesCluster_networkPluginModeUpdate cover this scenario.

Testing

  • My submission includes Test coverage as described in the Contribution Guide and the tests pass. (if this is not possible for any reason, please include details of why you did or could not add test coverage)
=== RUN   TestAccKubernetesCluster_networkPluginModeUpdate
=== PAUSE TestAccKubernetesCluster_networkPluginModeUpdate
=== CONT  TestAccKubernetesCluster_networkPluginModeUpdate
--- PASS: TestAccKubernetesCluster_networkPluginModeUpdate (1500.61s)
PASS

Observing that the upgrade is done in-place:

image

image

Change Log

Below please provide what should go into the changelog (if anything) conforming to the Changelog Format documented here.

  • azurerm_kubernetes_cluster: Support for upgrade path from Azure CNI to Azure CNI Overlay [GH-00000]

This is a (please select all that apply):

  • Bug Fix
  • New Feature (ie adding a service, resource, or data source)
  • Enhancement
  • Breaking Change

Related Issue(s)

Fixes #26259

Note

If this PR changes meaningfully during the course of review please update the title and description as required.

@jkroepke jkroepke marked this pull request as ready for review June 6, 2024 16:28
@jkroepke jkroepke requested a review from stephybun August 14, 2024 06:06
@jkroepke
Copy link
Contributor Author

jkroepke commented Sep 4, 2024

@stephybun could you please take a look here?

@uyless
Copy link

uyless commented Sep 30, 2024

Hey, any news here?

@jkroepke jkroepke requested review from katbyte and a team as code owners November 8, 2024 16:13
@stephybun stephybun self-assigned this Nov 21, 2024
stephybun
stephybun requested changes Jan 8, 2025
View reviewed changes
Copy link
Member

@stephybun stephybun left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Apologies for taking so long to circle back to this @jkroepke. I was umm'ing and ahh'ing over whether this was OK or not since on the surface the change looks small and harmless but this would still require a more in-depth investigation which turned out to be correct.

I left an explanation on my findings in-line, we want to be careful not to introduce issues for users that are using other networking modes. Details are in the comment, let me know if you have any questions!

internal/services/containers/kubernetes_cluster_resource.go
Comment on lines +115 to +120
pluginsdk.ForceNewIfChange("network_profile.0.pod_cidr", func(ctx context.Context, old, new, meta interface{}) bool {
return old.(string) != ""
}),
pluginsdk.ForceNewIfChange("network_profile.0.pod_cidrs", func(ctx context.Context, old, new, meta interface{}) bool {
return len(old.([]interface{})) > 0
}),
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Although this will work for upgrading from Azure CNI to Azure CNI Overlay, it will cause issues for users that are using other networking configurations which we still need to support.

pod_cidr and pod_cidrs are both Optional and Computed because there are instances where the API will assign values to these if they're omitted e.g. when using kubenet, this compounds with the fact that these value change checks performed in the CustomizeDiff compare the old state value and the new state value and not whether the value in the users configuration has changed.

Ultimately this will end up triggering a ForceNew for users that are still using kubenet but haven't specified pod_cidr or pod_cidrs (and potentially other scenarios!).

I would appreciate if you could add some test cases (or extend existing test cases) to ensure that we're not triggering a ForceNew in situations where we shouldn't be, those should also help you to refine the condition needed here to enable the behaviour you're after without introducing unwanted side effects.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@stephybun stephybun stephybun requested changes

@katbyte katbyte Awaiting requested review from katbyte

Requested changes must be addressed to merge this pull request.

Assignees

@stephybun stephybun

Labels
documentation enhancement service/kubernetes-cluster size/XS waiting-response
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

azurerm_kubernetes_cluster: Support for upgrade path from Azure CNI to Azure CNI Overlay
4 participants
@jkroepke @uyless @stephybun @rcskosir