Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge pull request #7646 from smarterclayton/refactor_4

Automatic merge from submit-queue.

CSR approval should ignore errors when retrying

When waiting for approval, we should ignore transient errors like 409
conflicts. We already have a max retry limit in place.

If nodes are already registered, they can begin heartbeating which can cause conflicts and thus the task to fail.

Extracted from #7486

@kwoodson
OpenShift Merge Robot 7 years ago
parent
53fd5c21e1 e3e8df9d5a
commit
494c9f9c20
2 changed files with 20 additions and 16 deletions
Split View Show Diff Stats
  1. 10 8
      roles/lib_openshift/library/oc_adm_csr.py
  2. 10 8
      roles/lib_openshift/src/class/oc_adm_csr.py

+ 10 - 8
roles/lib_openshift/library/oc_adm_csr.py
View File 

@@ -1596,14 +1596,16 @@ class OCcsr(OpenShiftCLI):
 
             # if you passed in nodes, you must have a node that matches
 
             if self.approve_all or (node and OCcsr.action_needed(csr, action)):
 
                 result = self.openshift_cmd(['certificate', action, csr['metadata']['name']], oadm=True)
 
-                # client should have service account name in username field
 
-                # server should have node name in username field
 
-                if node and csr['metadata']['name'] not in node['csrs']:
 
-                    node['csrs'][csr['metadata']['name']] = csr
 
-
 
-                    # accept node in cluster
 
-                    if node['name'] in csr['spec']['username']:
 
-                        node['accepted'] = True
 
+                # if we successfully approved
 
+                if result['returncode'] == 0:
 
+                    # client should have service account name in username field
 
+                    # server should have node name in username field
 
+                    if node and csr['metadata']['name'] not in node['csrs']:
 
+                        node['csrs'][csr['metadata']['name']] = csr
 
+
 
+                        # accept node in cluster
 
+                        if node['name'] in csr['spec']['username']:
 
+                            node['accepted'] = True
 
 
                 results.append(result)

+ 10 - 8
roles/lib_openshift/src/class/oc_adm_csr.py
View File 

@@ -131,14 +131,16 @@ class OCcsr(OpenShiftCLI):
 
             # if you passed in nodes, you must have a node that matches
 
             if self.approve_all or (node and OCcsr.action_needed(csr, action)):
 
                 result = self.openshift_cmd(['certificate', action, csr['metadata']['name']], oadm=True)
 
-                # client should have service account name in username field
 
-                # server should have node name in username field
 
-                if node and csr['metadata']['name'] not in node['csrs']:
 
-                    node['csrs'][csr['metadata']['name']] = csr
 
-
 
-                    # accept node in cluster
 
-                    if node['name'] in csr['spec']['username']:
 
-                        node['accepted'] = True
 
+                # if we successfully approved
 
+                if result['returncode'] == 0:
 
+                    # client should have service account name in username field
 
+                    # server should have node name in username field
 
+                    if node and csr['metadata']['name'] not in node['csrs']:
 
+                        node['csrs'][csr['metadata']['name']] = csr
 
+
 
+                        # accept node in cluster
 
+                        if node['name'] in csr['spec']['username']:
 
+                            node['accepted'] = True
 
 
                 results.append(result)