-
Notifications
You must be signed in to change notification settings - Fork 2.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Prow control plane migration (k8s-prow > k8s-infra-prow) #33350
Comments
/sig testing |
We should probably just drop write permissions and park the buckets, when we delete them the name can be re-created by someone else and for a bucket that we're still widely using as of this morning that's iffy. |
Keep forgetting about that point >< Updated! |
Scale down PR for k8s-prow at #33351 (comment) And I believe the corresponding scale-up is kubernetes/k8s.io#7141 |
resolving issue with webhook delivery: |
PR to switch DNS over: kubernetes/k8s.io#7206 |
Let's do these now.
Going to confirm, but I think we already fully transitioned the webhook config.
No big harm leaving them scaled down but I think we're also ready for this.
This is going to take a bit but we should start on that and point people to the k8s.io configs. I think mainly we need to sort out rotating off of gs://kubernetes-jenkins still, and that probably deserves it's own migration tracking issue / plan (it won't be super complex, but it does have a few parts and some follow-up, and it's not strictly required for the control plane migration).
Already has a TTL, crossing off that part. Removing permissions will have to be after we rotate the buckets. |
kubernetes/k8s.io#7205 also needs doing soon I think. |
I can handle deletion/turndown for the old CRs and components as well. (And clean up the deployment config while I'm at it). ETA: lol nevermind, Ben got there first XD |
Cleaned up some of the resources in k8s-prow (scaled-down deployments/components, the public IP addresses for the former deck deployment). We can likely clear objects from most buckets in k8s-prow as well (most haven't been modified in years), but it's not a high priority. Last remaining big item is to clear up files/references in this repo, though at low priority. |
Using this to track what's done/to-do, and communicate higher-traffic updates.
Broader updates should go to https://groups.google.com/a/kubernetes.io/g/dev/c/qzNYpcN5la4.
Based on the proposal doc at https://docs.google.com/document/d/1erBhuCwY26d0UfPbzt8lEj6bYT2hOUKzc2j36YHVqfM.
Pre-migration:
List and drop prowjobs that will not be migrated (k/t-i#33272)Add banner warning people about migration date (Wed, August 21) (Prow + TestGrid, done)Spin down Boskos use (k/t-i#33129)Ban use of default/unspecified cluster (k/t-i#33272)- PR should update the deployment replicas; run the make target to manually deploy
- cd test-infra/config/prow
- make deploy-prow?
- (Rollback is just a revert to a previous Git commit + make target)
Ensure that some key people have access to both the Google and community projectsBen, Cole, and Michelle should or already have access on both (k8s-prow and k8s-infra-prow)(not doing) Set up a new domain (e.g. k8s-infra-prow.k8s.io) pointing at the new Deck deploymentCreate Prow certificates (Create prow certificates k8s.io#7194)Right before migration:
gs://kubernetes-jenkins (there's a transfer job running for this bucket to kubernetes-ci-logs)During migration:
Begins ~10:30am PT, Wednesday August 21
Trigger a final run of https://console.cloud.google.com/transfer/jobs/transferJobs%2Fkubernetes-jenkins-transfer/runs?project=k8s-infra-prow and delete it.Post-migration:
Remove gs://kubernetes-jenkins-pullOther resources may need to remain in the k8s-prow project (esp. images)
The text was updated successfully, but these errors were encountered: