Audit KCP codebase for re-entrancy & error handling of non-key space operations #11184
Assignees
Labels
kind/bug
Categorizes issue or PR as related to a bug.
needs-triage
Indicates an issue or PR lacks a `triage/foo` label and requires one.
priority/important-soon
Must be staffed and worked on either currently, or very soon, ideally in time for the next release.
Comments
fabriziopandini
added
kind/bug
|
Stupid question, non-key space operations are all operations that don't read/write a key/data? |
YES. |
|
Note: look also at how we handle errors in case kubeadm join fails and a there is member not started (without a name) sticking around |
|
This issue is labeled with You can:
For more details on the triage process, see https://www.kubernetes.dev/docs/guide/issue-triage/ /remove-triage accepted |
k8s-ci-robot
added
needs-triage
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
There was a few interesting thread about error management for etcd's non-key space operations.
Serializableetcd-io/etcd#18424 (comment)As a first reaction, I think in KCP we are generally ok, because errors reported by etcd are usually handled by re-entracy, which implies we re-assess the current state of the world before deciding the course of action.
But this is also a good chance to audit the code base for when we use non-key space operations, mostly remove member and forward leadership.
NOTE: add member/join is a slight different case, because we rely on kubeadm for it.
PS. I classified this as a bug because I did know exactly which kind to use 😅, but to be clear we are not aware of bugs it this area and this issue is to double check our codebase is robust enough to handle edge cases described in the comment above.
The text was updated successfully, but these errors were encountered: