cockroach-operator icon indicating copy to clipboard operation
cockroach-operator copied to clipboard

Published 20 hours ago verified publisher icon cockroachdb

To branch or not to branch on k8s API versions

Open chrislovecnm opened this issue 3 years ago • 6 comments

This is the question.

Issue

The operator uses the k8s api and we have to follow the versioning practice that k8s maintains.

https://kubernetes.io/docs/concepts/overview/kubernetes-api/

So we cannot run an operator with k8s api 1.22 on an 1.20 k8s cluster.

Open questions

So what do we need to support? How many versions of k8s does the operator need to support? At this point we are upgrading master with the API version.

Solutions

Two ways to handle this in my mind. I would love more ideas

  1. The latest operator does not support very old versions of k8s
  2. We maintain branch releases and multiple versions of the operator. Much like k8s and crdb

We do need a documented support matrix.

I also do not know how supporting multiple different released versions works with open shift.

chrislovecnm avatar Jun 17 '21 17:06 chrislovecnm

@udnay @johnrk lets use this issue to determine our support matrix and branching policy

chrislovecnm avatar Jun 21 '21 15:06 chrislovecnm

Documentation to help with this

https://github.com/kubernetes/community/blob/master/contributors/devel/sig-release/cherry-picks.md

Another component figuring out a support matrix https://github.com/kubernetes-sigs/descheduler/issues/273

This is way more than needed, but we can probably use snippets of this https://github.com/kubernetes/sig-release/tree/master/release-engineering/role-handbooks

chrislovecnm avatar Jun 21 '21 15:06 chrislovecnm

Kops versioning

https://kops.sigs.k8s.io/welcome/releases/

chrislovecnm avatar Jun 21 '21 15:06 chrislovecnm

Here is how k8s does tagging https://github.com/kubernetes/sig-release/blob/master/release-engineering/versioning.md

chrislovecnm avatar Jun 21 '21 16:06 chrislovecnm

Let's punt on this until our hand is forced. We currently use the client libraries for Kubernetes 1.20 which allows for backwards compatibility with 1.18 and 1.19 officially.

Once openshift upgrades and we need to move to 1.21 or 1.22 lets discuss this again. The main issue is the added cost and complexity of adjusting our CI/CD pipelines now before we need to and the extra burden of back ports.

Thoughts @keith-mcclellan @piyush-singh ?

udnay avatar Jul 15 '21 15:07 udnay

We are going to need to update to controller-runtime 0.9.x on a new branch and put the current master on a new branch as well. We are going to need to maintain a 1.20 and a 1.21 k8s version on different branches and have master at k8s 1.21. K8s 1.19 will only run on the 1.20 branch.

  1. Create new branches for versions "release-1.20" and "release-1.21" (don't really care about the branch names, maybe master is release-1.21 and we do not need it)
  2. Update the release process to tag our version numbers from the branches
  3. Update the release process to push an operator container that will support k8s 1.20 and 1.21
  4. Update the release process to push an Openshift release that will support 4.6 and another that will support 4.7, 4.8 and 4.9
  5. Nightly testing on both branches with the correct version of GCP
  6. Update the binaries to also match 1.20 on one branch and 1.21 on another
  7. Create a cherry-pick process to update the older branch.
  8. Documentation

@pseudomuto what did I miss?

chrislovecnm avatar Sep 20 '21 16:09 chrislovecnm