OTA-1272: pkg/cli/admin/upgrade/recommend: Show most-recent update options

[wking]

Building on the CI that merged in #1885.

We had been showing all the recommended updates in decreasing order with --include-not-recommended to see all the updates-with-assessed-risks in decreasing order. But sometimes users want to update to the longest-hop, even if there are known risks. Or they want to read about the assessed risks, in case there's something they can do to their cluster to mitigate a currently-assessed risk before kicking off the update. This commit adjusts the output to order roughly by release freshness For example, for a 4.y cluster in a 4.(y+1) channel:

• 4.(y+1).tip
• 4.(y+1).(tip-1)
• 4.y.tip
• 4.y.(tip-1)
• ...

Because users are more likely to care about 4.(y+1).tip, even if it has assessed risks, than they are to care about 4.y.reallyOld, even if it doesn't have assessed risks.

I'm showing two releases per z-stream at the moment, with --show-outdated-releases to see all the results ("releases" to leave the door open to having things like a single-arch and a multi-arch target with the same version string). And I'm dropping --include-not-recommended, now that we are only filtering by age.

I'm also dropping "where are we now?" details, like Progressing=False, because those are less relevant for folks who are trying to pick which release they want to target next. I still call out Failing=True and Progressing=True, because oc adm upgrade ... has client-side checks for those. Folks who are concerned with how their cluster is currently doing can run oc adm upgrade ... or the tech-preview oc adm upgrade status ...).

I'm also dropping ReleaseAccepted, which is in a weird space after the admin requests an update but before the cluster-version operator accepts the retarget request. Because oc adm upgrade is the subcommand used to request an update (--to and --to-image), I think that's the appropriate place to surface that condition (and it already does), so we don't need to surface that condition in the recommend subcommand (which is only relevant in helping the admin decide if and how to request an update).

[openshift-ci-robot]

@wking: This pull request references OTA-1272 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.18.0" version, but no target version was set.

Details

In response to this:

Building on the CI that merged in #1885.

We had been showing all the recommended updates in decreasing order with --include-not-recommended to see all the updates-with-assessed-risks in decreasing order. But sometimes users want to update to the longest-hop, even if there are known risks. Or they want to read about the assessed risks, in case there's something they can do to their cluster to mitigate a currently-assessed risk before kicking off the update. This commit adjusts the output to order roughly by release freshness For example, for a 4.y cluster in a 4.(y+1) channel:

• 4.(y+1).tip
• 4.(y+1).(tip-1)
• 4.y.tip
• 4.y.(tip-1)
• ...

Because users are more likely to care about 4.(y+1).tip, even if it has assessed risks, than they are to care about 4.y.reallyOld, even if it doesn't have assessed risks.

I'm showing two releases per z-stream at the moment, with --show-outdated-releases to see all the results ("releases" to leave the door open to having things like a single-arch and a multi-arch target with the same version string). And I'm dropping --include-not-recommended, now that we are only filtering by age.

I'm also dropping "where are we now?" details, like Progressing=False, because those are less relevant for folks who are trying to pick which release they want to target next. I still call out Failing=True and Progressing=True, because oc adm upgrade ... has client-side checks for those. Folks who are concerned with how their cluster is currently doing can run oc adm upgrade ... or the tech-preview oc adm upgrade status ...).

I'm also dropping ReleaseAccepted, which is in a weird space after the admin requests an update but before the cluster-version operator accepts the retarget request. Because oc adm upgrade is the subcommand used to request an update (--to and --to-image), I think that's the appropriate place to surface that condition (and it already does), so we don't need to surface that condition in the recommend subcommand (which is only relevant in helping the admin decide if and how to request an update).

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[DavidHurta]

/cc

[openshift-ci]

@DavidHurta: GitHub didn't allow me to request PR reviews from the following users: DavidHurta.

Note that only openshift members and repo collaborators can review this PR, and authors cannot review their own PRs.

Details

In response to this:

/cc

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[petr-muller]

/cc

[DavidHurta]

/cc

[petr-muller]

Several minor code suggestions inline, most are fine to ignore.

Thinking out loud about the proposed output:

• Feels like the section that contains available paths should be more prominently separated. Right now there's only the Updates: "header" but it is small and drowns in clutter.
• I think we should help the users in understanding that the full list now has version "subsections". There's a little hint about that in the "... and X older 4.13 updates" line that suggests that the above lines are 4.13 updates but I don't think it's enough.
• I think interleaving the non-recommended updates as 4-line - minimum - paragraphs with recommended updates rendered as two-item lines formatted as a table is not a great UX, especially when we start interleaving many of them like in the 4.12.16-longest-recommended.show-outdated-releases-output example. I wonder if we could come with some unified presentation for both types (maybe a table with just the version/recommended status/known risk reason in the short form, and a paragraph-per-item for both types of them in long form?

I don't think these need to block this specific PR because we're building the new command in stealth mode and can improve UX as we go, but I wonder if we have a UX target eventually.

[petr-muller]

Interleaving a multi-paragraph item for a single 4.13.0 release with a table is confusing to me - I know this is a full output but this could happen even in normal output - one item would be heavy like this and then we would have a single-item VERSION/IMAGE table with a version without a risk? I think we should try finding a more consistent presentation.

[wking]

I agree with your volume concerns (also these). Follow-up work planned in OTA-1273 will add --to and give us the option to avoid rendering messages for some releases. For example, we could go down to one-line-per-target tables, and have a new column for matching risk slugs. But for now, without --to, I think the volume is acceptable while we step towards a more complete solution. Because part of the push here is to put at least the longest-hop risk message in front of the admin, without them having to opt-in to see that text.

[wking]

and now #1897 is up, and part of what it does is drop the multi-line entries from --show-outdated-releases, which hopefully addresses this concern :).

[petr-muller]

/meow

[openshift-ci]

@petr-muller:

Details

In response to this:

/meow

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[petr-muller]

/lgtm

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: petr-muller, wking

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• pkg/cli/admin/upgrade/OWNERS [petr-muller,wking]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[wking]

e2e-agnostic-ovn-cmd:

: [bz-etcd][invariant] alert/etcdHighCommitDurations should not be at or above info	0s
{  etcdHighCommitDurations was at or above info for at least 12s on platformidentification.JobType{Release:"4.18", FromRelease:"", Platform:"azure", Architecture:"amd64", Network:"ovn", Topology:"ha"} (maxAllowed=0s): pending for 5m56s, firing for 12s:

Oct 04 18:59:12.584 - 12s   W namespace/openshift-etcd node/10.0.0.4:9979 pod/etcd-ci-op-lz2hjldb-67d47-2h66q-master-0 alert/etcdHighCommitDurations alertstate/firing severity/warning ALERTS{alertname="etcdHighCommitDurations", alertstate="firing", endpoint="etcd-metrics", instance="10.0.0.4:9979", job="etcd", namespace="openshift-etcd", pod="etcd-ci-op-lz2hjldb-67d47-2h66q-master-0", prometheus="openshift-monitoring/k8s", service="etcd", severity="warning"}}

But my tech-preview command isn't overheating etcd, that's between etcd and Azure. Try again:

/test e2e-agnostic-ovn-cmd

[openshift-ci]

@wking: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[openshift-bot]

[ART PR BUILD NOTIFIER]

Distgit: openshift-enterprise-cli
This PR has been included in build openshift-enterprise-cli-container-v4.18.0-202410042310.p0.g026e481.assembly.stream.el9.
All builds following this will include this PR.

[openshift-bot]

[ART PR BUILD NOTIFIER]

Distgit: ose-tools
This PR has been included in build ose-tools-container-v4.18.0-202410042310.p0.g026e481.assembly.stream.el9.
All builds following this will include this PR.

[openshift-bot]

[ART PR BUILD NOTIFIER]

Distgit: openshift-enterprise-deployer
This PR has been included in build openshift-enterprise-deployer-container-v4.18.0-202410042310.p0.g026e481.assembly.stream.el9.
All builds following this will include this PR.

[openshift-bot]

[ART PR BUILD NOTIFIER]

Distgit: ose-cli-artifacts
This PR has been included in build ose-cli-artifacts-container-v4.18.0-202410042310.p0.g026e481.assembly.stream.el9.
All builds following this will include this PR.

[JianLi-RH]

hi @wking could you let me know how to enable the new option --show-outdated-releases? I tried set OC_ENABLE_CMD_UPGRADE_STATUS=true and set OC_ENABLE_CMD_UPGRADE_RECOMMEND=true, but still get error:

 [jianl@jianl-thinkpadt14gen4 418]$ oc adm upgrade --show-outdated-releases
error: unknown flag: --show-outdated-releases
See 'oc adm upgrade --help' for usage.
[jianl@jianl-thinkpadt14gen4 418]$

And how subcommand recommend works, what's the expected output of oc adm upgrade recommend?

Thanks!