[GEP-17] Add owner checks and taking of final snapshots #383

stoyanr · 2021-09-30T16:21:36Z

What this PR does / why we need it:
Adds functionality to check if the owner domain name resolves to the specified owner ID and if not, take a final full snapshot and disable the cluster, as described in GEP-17.

Which issue(s) this PR fixes:
Fixes #

Special notes for your reviewer:

Release note:

The backup-restore sidecar will now check if the owner domain name resolves to the specified owner ID and if not, take a final full snapshot and disable the cluster.

stoyanr · 2021-09-30T16:23:02Z

Still in Draft because it depends on #369 but I would really appreciate early feedback if you have time.
/cc @plkokanov @kris94 @timuthy

stoyanr · 2021-10-01T14:00:45Z

Rebased on latest master and removed Draft.

plkokanov · 2021-10-01T14:02:44Z

/assign

stoyanr · 2021-10-07T12:10:38Z

@ishan16696 Addressed your latest feedback with a new commit.

Also added a new commit to make sure the owner checks are disabled (and not simply always succeeding), if the owner name or id are not specified.

timuthy

Even though I haven't completely reviewed this PR, I already want to address one topic that has drawn my attention while reviewing gardener/etcd-druid#239.

pkg/server/init.go

shreyas-s-rao

@stoyanr Thanks for the well-written PR! I have a few doubts/suggestions. Can you please address them? Thanks

pkg/snapshot/snapshotter/snapshotter.go

pkg/snapshot/copier/copier.go

pkg/server/backuprestoreserver.go

shreyas-s-rao

@stoyanr Thanks for addressing my comments. /lgtm

ishan16696

LGTM

timuthy

Thanks for adapting the PR. Just one last thing I noticed when I skimmed over the changes.

go.mod

timuthy

/lgtm

stoyanr requested a review from a team as a code owner September 30, 2021 16:21

gardener-robot added needs/review Needs review size/xl Size of pull request is huge (see gardener-robot robot/bots/size.py) needs/second-opinion Needs second review by someone else labels Sep 30, 2021

gardener-robot-ci-3 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Sep 30, 2021

stoyanr marked this pull request as draft September 30, 2021 16:21

gardener-robot-ci-1 added needs/ok-to-test Needs approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels Sep 30, 2021

stoyanr force-pushed the cpm/add-owner-check branch from cfa49c8 to f930f67 Compare October 1, 2021 08:21

gardener-robot-ci-1 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

gardener-robot-ci-2 removed the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

stoyanr force-pushed the cpm/add-owner-check branch from f930f67 to 4bf6b02 Compare October 1, 2021 14:00

gardener-robot-ci-2 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

stoyanr marked this pull request as ready for review October 1, 2021 14:00

gardener-robot assigned plkokanov Oct 1, 2021

gardener-robot-ci-3 removed the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

gardener-robot-ci-1 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

gardener-robot-ci-2 removed the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

stoyanr force-pushed the cpm/add-owner-check branch from 987c103 to 836b838 Compare October 1, 2021 15:12

gardener-robot-ci-1 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

gardener-robot-ci-3 removed the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

stoyanr force-pushed the cpm/add-owner-check branch from 836b838 to 654d96d Compare October 1, 2021 15:38

gardener-robot-ci-3 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

gardener-robot-ci-2 removed the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 1, 2021

stoyanr force-pushed the cpm/add-owner-check branch from 654d96d to c606c87 Compare October 1, 2021 15:47

gardener-robot-ci-3 added reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels Oct 1, 2021

gardener-robot-ci-3 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 7, 2021

gardener-robot-ci-2 removed the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 7, 2021

timuthy reviewed Oct 14, 2021

View reviewed changes

pkg/server/init.go Outdated Show resolved Hide resolved

stoyanr added 2 commits October 15, 2021 18:45

Replace PIDCommandProcessKiller by NamedProcessKiller

7ae01ae

Remove PIDCommandProcessKiller

caa53d0

gardener-robot-ci-3 added reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels Oct 15, 2021

stoyanr mentioned this pull request Oct 16, 2021

☂️ [GEP-17] Shoot Control Plane Migration "Bad Case" Scenario gardener/gardener#4866

Closed

46 tasks

ishan16696 mentioned this pull request Oct 18, 2021

[Feature] To discuss the impact of PR #383(Add owner checks and taking of final snapshots) on Multi-Node Etcd gardener/etcd-druid#242

Closed

shreyas-s-rao requested changes Oct 19, 2021

View reviewed changes

Ensure that the etcd process is killed only when the owner check fails

52ef4b1

gardener-robot-ci-3 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 19, 2021

gardener-robot-ci-2 removed the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label Oct 19, 2021

shreyas-s-rao approved these changes Oct 20, 2021

View reviewed changes

timuthy requested a review from ishan16696 October 20, 2021 09:39

ishan16696 approved these changes Oct 20, 2021

View reviewed changes

timuthy suggested changes Oct 20, 2021

View reviewed changes

go.mod Show resolved Hide resolved

Update LICENSE.md

485f374

gardener-robot-ci-1 added reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels Oct 21, 2021

timuthy approved these changes Oct 21, 2021

View reviewed changes

gardener-robot added reviewed/lgtm Has approval for merging and removed needs/changes Needs (more) changes needs/review Needs review needs/second-opinion Needs second review by someone else labels Oct 21, 2021

timuthy merged commit 035593f into gardener:master Oct 21, 2021

stoyanr mentioned this pull request Oct 27, 2021

Adding functionality to start copy job gardener/etcd-druid#234

Merged

plkokanov mentioned this pull request Jul 12, 2022

Finalise "Bad Case" Control Plane Migration gardener/gardener#6302

Closed

31 tasks

plkokanov mentioned this pull request Jul 28, 2022

Disables owner checks for clustered ETCD gardener/gardener#6412

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[GEP-17] Add owner checks and taking of final snapshots #383

[GEP-17] Add owner checks and taking of final snapshots #383

stoyanr commented Sep 30, 2021 •

edited

Loading

stoyanr commented Sep 30, 2021

stoyanr commented Oct 1, 2021

plkokanov commented Oct 1, 2021

stoyanr commented Oct 7, 2021

timuthy left a comment

shreyas-s-rao left a comment

shreyas-s-rao left a comment

ishan16696 left a comment

timuthy left a comment

timuthy left a comment

[GEP-17] Add owner checks and taking of final snapshots #383

[GEP-17] Add owner checks and taking of final snapshots #383

Conversation

stoyanr commented Sep 30, 2021 • edited Loading

stoyanr commented Sep 30, 2021

stoyanr commented Oct 1, 2021

plkokanov commented Oct 1, 2021

stoyanr commented Oct 7, 2021

timuthy left a comment

Choose a reason for hiding this comment

shreyas-s-rao left a comment

Choose a reason for hiding this comment

shreyas-s-rao left a comment

Choose a reason for hiding this comment

ishan16696 left a comment

Choose a reason for hiding this comment

timuthy left a comment

Choose a reason for hiding this comment

timuthy left a comment

Choose a reason for hiding this comment

stoyanr commented Sep 30, 2021 •

edited

Loading