Bug 1825976: cherrypick etcd-quorum-guard refactoring to 4.4

[vrutkovs]

- What I did
Cherrypicked #1552 and #1648 to release-4.4

- How to verify it
Run install / upgrade. etcd-quorum-guard pods should not fail or leak memory

- Description for the changelog
Cherrypicked etcd-quorum-guard refactoring on 4.4

[openshift-ci-robot]

@vrutkovs: This pull request references Bugzilla bug 1824137, which is invalid:

• expected dependent Bugzilla bug 1823677 to be in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), but it is ON_QA instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

Bug 1824137: cherrypick etcd-quorum-guard refactoring to 4.4

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[yuqi-zhang]

/retest
/approve

[openshift-ci-robot]

@yuqi-zhang: The /retest command does not accept any targets.
The following commands are available to trigger jobs:

• /test e2e-aws
• /test e2e-aws-disruptive
• /test e2e-aws-scaleup-rhel7
• /test e2e-gcp-op
• /test e2e-gcp-upgrade
• /test e2e-metal-ipi
• /test e2e-openstack
• /test e2e-ovirt
• /test e2e-vsphere
• /test images
• /test unit
• /test verify

Use /test all to run all jobs.

Details

In response to this:

/retest
/approve

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[vrutkovs]

/retest

[kikisdeliveryservice]

/bugzilla refresh

[openshift-ci-robot]

@kikisdeliveryservice: This pull request references Bugzilla bug 1824137, which is invalid:

• expected dependent Bugzilla bug 1823677 to be in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), but it is ON_QA instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

/bugzilla refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[kikisdeliveryservice]

/retest

[kikisdeliveryservice]

/assign @hexfusion

[runcom]

/retest
/lgtm

[openshift-ci-robot]

@runcom: The /retest command does not accept any targets.
The following commands are available to trigger jobs:

• /test e2e-aws
• /test e2e-aws-disruptive
• /test e2e-aws-scaleup-rhel7
• /test e2e-gcp-op
• /test e2e-gcp-upgrade
• /test e2e-metal-ipi
• /test e2e-openstack
• /test e2e-ovirt
• /test e2e-vsphere
• /test images
• /test unit
• /test verify

Use /test all to run all jobs.

Details

In response to this:

/retest
/lgtm

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: runcom, vrutkovs, yuqi-zhang

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [runcom,yuqi-zhang]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/bugzilla refresh

Recalculating validity in case the underlying Bugzilla bug has changed.

[openshift-ci-robot]

@openshift-bot: This pull request references Bugzilla bug 1824137, which is invalid:

• expected dependent Bugzilla bug 1823677 to be in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), but it is ON_QA instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

/bugzilla refresh

Recalculating validity in case the underlying Bugzilla bug has changed.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[eparis]

/hold

[eparis]

This PR conflates 2 distinct issue.

1. a cosmetic issue about traffic counts that, as best I can tell, hurts nothing
2. an oddity in NSS/kernel negative dentries which does have a negative impact.

Can we at least get this PR and bug to talk (primarily) about #2 instead of #1?

Let's not combine unrelated things in backports in the future, please. i know it's more 'paperwork' but please don't.

Also, how does moving from hostNetwork to SDN affect things if the SDN is down? previously I didn't need SDN to get quorum guard running. Now I will. What affects is that going to have? How do we test is this change is detrimental?

After that you may remove the hold.

Please also ping Bob Relyea and Nikos about the upstream nss/kernel issue to get it back on their radar.

[vrutkovs]

a cosmetic issue about traffic counts that, as best I can tell, hurts nothing

Correct

an oddity in NSS/kernel negative dentries which does have a negative impact.

There is no negative impact of this in 4.4 (there has been in 4.5). export NSS... needs to be moved in the script which is being run during health checks.

Also, how does moving from hostNetwork to SDN affect things if the SDN is down?

etcd-quorum-guard would be restarted if SDN on master is down. If its down then API container is not reachable anyway

What affects is that going to have? How do we test is this change is detrimental?

I tested it with running minor and major upgrade - SDN gets disrupted and etcd-quorum-guard survives that.

NSS env var is orthogonal to this PR - it merely moves it in the script which runs curl as this part is being refactored

[hexfusion]

Given the above, while I see this as a possible improvement in networking metrics moving quorum-guard to SDN. But I feel like we are missing coverage on full understanding on corner cases. With the CI data that exists, we should be able to better understand this.

So let's spend more time in that validation and this can drop into z-stream if we see the net gain.

[ashcrow]

/retest

[sdodson]

/bugzilla refresh
(to pick up retargetting to 4.4.z)

[openshift-ci-robot]

@sdodson: This pull request references Bugzilla bug 1825976, which is invalid:

• expected the bug to target the "4.4.0" release, but it targets "4.4.z" instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

/bugzilla refresh
(to pick up retargetting to 4.4.z)

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[runcom]

/bugzilla refresh

[openshift-ci-robot]

@runcom: This pull request references Bugzilla bug 1825976, which is valid.

6 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target release (4.4.z) matches configured target release for branch (4.4.z)
• bug is in the state POST, which is one of the valid states (NEW, ASSIGNED, ON_DEV, POST, POST)
• dependent bug Bugzilla bug 1825967 is in the state VERIFIED, which is one of the valid states (VERIFIED, RELEASE_PENDING, CLOSED (ERRATA))
• dependent Bugzilla bug 1825967 targets the "4.5.0" release, which is one of the valid target releases: 4.5.0, 4.5.z
• bug has dependents

Details

In response to this:

/bugzilla refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[runcom]

@hexfusion bz is now valid, pending your hold and approval to get in for the z stream

[LorbusChris]

/cherry-pick fcos

[openshift-cherrypick-robot]

@LorbusChris: once the present PR merges, I will cherry-pick it on top of fcos in a new PR and assign it to you.

Details

In response to this:

/cherry-pick fcos

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[LorbusChris]

/retest

[vrutkovs]

/retest

[ashcrow]

/retest

[sinnykumari]

/retest

[openshift-ci-robot]

@vrutkovs: The following test failed, say /retest to rerun all failed tests:

Test name	Commit	Details	Rerun command
ci/prow/e2e-gcp-upgrade	6836bb6	link	/test e2e-gcp-upgrade

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[sdodson]

My understanding is that our intent is to close this and revert the upstream change. As such not giving cherry-pick-approved despite this bug being marked high severity.

[hexfusion]

/close

After conversations with @eparis this is not what we want. Essentially this would run quorum-guard checks through SDN.

[openshift-ci-robot]

@hexfusion: Closed this PR.

Details

In response to this:

/close

After conversations with @eparis this is not what we want. Essentially this would run quorum-guard checks through SDN.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.