Skip to content

modules/dr-recover-lost-control-plane-hosts: update setup-etcd-environment #16216

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
bergerhoffer merged 1 commit into from
Aug 22, 2019
Merged

modules/dr-recover-lost-control-plane-hosts: update setup-etcd-environment #16216

bergerhoffer merged 1 commit into from
Aug 22, 2019

Conversation

@hexfusion
Copy link
Contributor

@hexfusion hexfusion commented Aug 13, 2019

This PR updates the location of setup-etcd-environment image. This used to be its own image but is now part of the machine-config-operator [1]. I also prefixed all oc commands withsudo because core user does not have access to /var/lib/kubelet/config.json

$ ls -la /var/lib/kubelet/config.json
-rw-------. 1 root root 120 Aug 12 23:50 /var/lib/kubelet/config.json

[1] openshift/machine-config-operator#1028

@openshift-ci-robot openshift-ci-robot added the size/S Denotes a PR that changes 10-29 lines, ignoring generated files. label Aug 13, 2019
@hexfusion
Copy link
Contributor Author

hexfusion commented Aug 13, 2019

/cc @alaypatel07 @retroflexer

alaypatel07
alaypatel07 reviewed Aug 13, 2019
View reviewed changes
Copy link

@alaypatel07 alaypatel07 left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is sudo required on other oc get calls? For instance, 2.i.a) oc get csr

@retroflexer
Copy link

retroflexer commented Aug 13, 2019

I also prefixed all oc commands withsudo because core user does not have access to /var/lib/kubelet/config.json

$ ls -la /var/lib/kubelet/config.json
-rw-------. 1 root root 120 Aug 12 23:50 /var/lib/kubelet/config.json

Who creates this file? Why doesn't it have at least read permissions for group and others? If there is a way to avoid using sudo we should do it so.

@hexfusion
Copy link
Contributor Author

hexfusion commented Aug 13, 2019

Is sudo required on other oc get calls? For instance, 2.i.a) oc get csr

nope will update.

@openshift-ci-robot openshift-ci-robot added size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. and removed size/S Denotes a PR that changes 10-29 lines, ignoring generated files. labels Aug 13, 2019
@hexfusion
Copy link
Contributor Author

hexfusion commented Aug 13, 2019

I also prefixed all oc commands withsudo because core user does not have access to /var/lib/kubelet/config.json

$ ls -la /var/lib/kubelet/config.json
-rw-------. 1 root root 120 Aug 12 23:50 /var/lib/kubelet/config.json

Who creates this file? Why doesn't it have at least read permissions for group and others? If there is a way to avoid using sudo we should do it so.

In general, I would agree but this is locked down for security purposes.
openshift/machine-config-operator#827

@alaypatel07
Copy link

alaypatel07 commented Aug 13, 2019

/lgtm

@openshift-ci-robot openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Aug 13, 2019
@hexfusion hexfusion changed the base branch from enterprise-4.2 to master August 14, 2019 16:23
@openshift-ci-robot openshift-ci-robot added size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. and removed size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Aug 14, 2019
@hexfusion
Copy link
Contributor Author

hexfusion commented Aug 14, 2019

/hold

@openshift-ci-robot openshift-ci-robot added the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Aug 14, 2019
@openshift-ci-robot
Copy link

openshift-ci-robot commented Aug 14, 2019

New changes are detected. LGTM label has been removed.

@openshift-ci-robot openshift-ci-robot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. and removed lgtm Indicates that a PR is ready to be merged. size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. labels Aug 14, 2019
@openshift-ci-robot openshift-ci-robot added size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. and removed size/L Denotes a PR that changes 100-499 lines, ignoring generated files. labels Aug 14, 2019
@bergerhoffer bergerhoffer added the peer-review-done Signifies that the peer review team has reviewed this PR label Aug 14, 2019
@hexfusion
Copy link
Contributor Author

hexfusion commented Aug 14, 2019

/hold cancel

@openshift-ci-robot openshift-ci-robot removed the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Aug 14, 2019
@bergerhoffer bergerhoffer self-requested a review August 14, 2019 16:36
@hexfusion hexfusion changed the title modules/dr-recover-lost-control-plane-hosts: update kube-etcd-signer-server modules/dr-recover-lost-control-plane-hosts: update setup-etcd-environment Aug 14, 2019
@bergerhoffer bergerhoffer added this to the Future Release milestone Aug 15, 2019
@bergerhoffer bergerhoffer mentioned this pull request Aug 15, 2019
Merged
@bergerhoffer bergerhoffer merged commit acf59b1 into openshift:master Aug 22, 2019
@bergerhoffer
Copy link
Contributor

bergerhoffer commented Aug 22, 2019

/cherrypick enterprise-4.2

@openshift-cherrypick-robot openshift-cherrypick-robot mentioned this pull request Aug 22, 2019
Merged
@openshift-cherrypick-robot
Copy link

openshift-cherrypick-robot commented Aug 22, 2019

@bergerhoffer: new pull request created: #16359

Details

In response to this:

/cherrypick enterprise-4.2

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bergerhoffer bergerhoffer bergerhoffer approved these changes

@retroflexer retroflexer Awaiting requested review from retroflexer

+1 more reviewer

@alaypatel07 alaypatel07 alaypatel07 left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@alaypatel07 alaypatel07

Labels

branch/enterprise-4.2 peer-review-done Signifies that the peer review team has reviewed this PR size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.

Projects

None yet

Milestone

OCP 4.2 GA

Development

Successfully merging this pull request may close these issues.

7 participants

@hexfusion @retroflexer @alaypatel07 @openshift-ci-robot @bergerhoffer @openshift-cherrypick-robot @vikram-redhat