hierarchical-namespaces icon indicating copy to clipboard operation
hierarchical-namespaces copied to clipboard

Published 20 hours ago verified publisher icon kubernetes-sigs

Update to controller-tools 0.14.0

Open pjonsson opened this issue 1 year ago • 19 comments

This updates golang.org/x/tools to a later version which fixes the crash in https://github.com/kubernetes-sigs/controller-tools/issues/880, which I believe is what is happening on the current main branch in this repository.

I'm really after the security fixes, so pick #373 if that smaller change is preferable to this.

pjonsson avatar Apr 20 '24 10:04 pjonsson

Hi @pjonsson. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

k8s-ci-robot avatar Apr 20 '24 10:04 k8s-ci-robot

The Kubernetes project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle stale
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

k8s-triage-robot avatar Jul 19 '24 11:07 k8s-triage-robot

The Kubernetes project currently lacks enough active contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle rotten
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle rotten

k8s-triage-robot avatar Sep 11 '24 13:09 k8s-triage-robot

/remove-lifecycle rotten

pjonsson avatar Sep 11 '24 14:09 pjonsson

The Kubernetes project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle stale
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

k8s-triage-robot avatar Dec 10 '24 14:12 k8s-triage-robot

/ok-to-test /lgtm

rjbez17 avatar Jan 01 '25 21:01 rjbez17

New changes are detected. LGTM label has been removed.

k8s-ci-robot avatar Jan 01 '25 23:01 k8s-ci-robot

The build failure in the test is because controller-runtime is < v0.15.0 and some version of something in a dependency isn't updated yet. Controller-tools 0.15 should not have this problem, but my reading of the Compatibility section at https://pkg.go.dev/sigs.k8s.io/controller-tools#section-readme is that it requires Go 1.22.

@rjbez17 I know this project uses Go 1.20, do you have any advice?

pjonsson avatar Jan 02 '25 00:01 pjonsson

The Kubernetes project currently lacks enough active contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle rotten
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle rotten

k8s-triage-robot avatar Feb 01 '25 00:02 k8s-triage-robot

/remove-lifecycle rotten

pjonsson avatar Feb 02 '25 15:02 pjonsson

If you wanted to take a stab at updating to go 1.22 I'd happily support that.

rjbez17 avatar Feb 28 '25 15:02 rjbez17

@rjbez17 I don't really know Go, but let me get back to you on that next week. And Go 1.21 doesn't help us for this particular issue, but I'm guessing starting with that will be easier since it is a smaller change.

Can I get the CI to trigger without your explicit approval, or do I need to join the kubernetes-sigs to make that happen?

pjonsson avatar Feb 28 '25 16:02 pjonsson

The ok-to-test label should trigger the tests now. You can use /test all in a comment as well

rjbez17 avatar Feb 28 '25 18:02 rjbez17

And thanks for taking a look!

rjbez17 avatar Feb 28 '25 18:02 rjbez17

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: pjonsson Once this PR has been reviewed and has the lgtm label, please ask for approval from rjbez17. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment Approvers can cancel approval by writing /approve cancel in a comment

k8s-ci-robot avatar Mar 01 '25 17:03 k8s-ci-robot

@rjbez17 Considering I have no idea what I'm doing, I started with Go 1.21 in #406.

I will take a look at 1.22 tomorrow, but that seems more difficult, so if you believe the 1.21 PR works I suggest start with merging that.

Even if Go 1.21 and the latest main branch "just" fixes a few of the security issues that Trivy is complaining about, we're closing up on 2 years since the last release so it would be nice with a release sometime soonish too.

pjonsson avatar Mar 01 '25 20:03 pjonsson

@rjbez17 Considering I have no idea what I'm doing, I started with Go 1.21 in #406.

I will take a look at 1.22 tomorrow, but that seems more difficult, so if you believe the 1.21 PR works I suggest start with merging that.

Even if Go 1.21 and the latest main branch "just" fixes a few of the security issues that Trivy is complaining about, we're closing up on 2 years since the last release so it would be nice with a release sometime soonish too.

I agree and really appreciate your help here. Once we get this merged I'll try to find some time to time box a 1.22 upgrade and if not release a maintenance release within the next week or so.

rjbez17 avatar Mar 02 '25 05:03 rjbez17

PR needs rebase.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

k8s-ci-robot avatar Mar 02 '25 13:03 k8s-ci-robot

@pjonsson: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
pull-hnc-test e7f864a086aa6c4b8f3b422c9f65e4b00a7315b7 link true /test pull-hnc-test

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

k8s-ci-robot avatar Mar 02 '25 13:03 k8s-ci-robot