diff --git a/README.md b/README.md index 275486209..c4a1ce3af 100644 --- a/README.md +++ b/README.md @@ -102,7 +102,7 @@ kubectl patch clusterextension argocd --type='merge' -p '{"spec": {"source": {"c ``` -For information on the downgrade process, see [here](./docs/drafts/Tasks/downgrading-an-extension.md). +For information on the downgrade process, see [here](docs/drafts/downgrading-an-extension.md). ### Uninstall the Cluster Extension diff --git a/docs/drafts/Tasks/downgrading-an-extension.md b/docs/drafts/Tasks/downgrading-an-extension.md deleted file mode 100644 index 58d9ec846..000000000 --- a/docs/drafts/Tasks/downgrading-an-extension.md +++ /dev/null @@ -1,3 +0,0 @@ -# Downgrade an Extension - -Placeholder. This topic is under development. \ No newline at end of file diff --git a/docs/drafts/Tasks/upgrading-an-extension.md b/docs/drafts/Tasks/upgrading-an-extension.md index 648093e87..ec13c7317 100644 --- a/docs/drafts/Tasks/upgrading-an-extension.md +++ b/docs/drafts/Tasks/upgrading-an-extension.md @@ -2,7 +2,7 @@ Existing extensions can be upgraded by updating the version field in the ClusterExtension resource. -For information on downgrading an extension, see [Downgrade an Extension](downgrading-an-extension). +For information on downgrading an extension, see [Downgrade an Extension](../downgrading-an-extension.md). ## Prerequisites diff --git a/docs/drafts/downgrading-an-extension.md b/docs/drafts/downgrading-an-extension.md new file mode 100644 index 000000000..c372ce8e2 --- /dev/null +++ b/docs/drafts/downgrading-an-extension.md @@ -0,0 +1,199 @@ + +# Downgrade a ClusterExtension + +## Introduction + +Downgrading a `ClusterExtension` involves reverting the extension to a previously available version. This process may be necessary due to compatibility issues, unexpected behavior in the newer version, or specific feature requirements only available in an earlier release. However, downgrading carries inherent risks, such as potential data loss, issues with new CRD versions, and possible breakage of clients that rely on the newer version. Users should carefully consider these risks and be confident in their decision to proceed with the downgrade. This guide provides step-by-step instructions for performing a downgrade, including overrides to bypass default constraints and disable CRD safety checks. + +## Prerequisites + +Before initiating the downgrade process, ensure the following prerequisites are met: + +- **Backup Configurations:** Always back up your current configurations and data to prevent potential loss during the downgrade. +- **Access Rights:** Ensure you have the necessary permissions to modify `ClusterExtension` resources and perform administrative tasks. +- **Version Availability:** Verify that the target downgrade version is available in your catalogs. +- **Compatibility Check:** Ensure that the target version is compatible with your current system and other dependencies. + +## Steps to Downgrade + +### 1. Disabling the CRD Upgrade Safety Check + +Custom Resource Definitions (CRDs) ensure that the resources used by the `ClusterExtension` are valid and consistent. During a downgrade, the CRD Upgrade Safety check might prevent reverting to an incompatible version. Disabling the CRD Upgrade Safety check allows the downgrade to proceed without these validations. + +**Disable CRD Safety Check Configuration:** + +Add the `crdUpgradeSafety` field and set its `policy` to `Disabled` in the `ClusterExtension` resource under the `preflight` section. + +**Example:** + +```yaml +apiVersion: olm.operatorframework.io/v1alpha1 +kind: ClusterExtension +metadata: + name: example-extension +spec: + install: + preflight: + crdUpgradeSafety: + policy: Disabled + namespace: argocd + serviceAccount: + name: argocd-installer + source: + sourceType: Catalog + catalog: + packageName: argocd-operator + version: 0.6.0 + upgradeConstraintPolicy: SelfCertified +``` + +** Disable CRD Upgrade Safety Check:** + +**Patch the ClusterExtension Resource:** + + ```bash + kubectl patch clusterextension --patch '{"spec":{"install":{"preflight":{"crdUpgradeSafety":{"policy":"Disabled"}}}}}' --type=merge + ``` + Kubernetes will apply the updated configuration, disabling CRD safety checks during the downgrade process. + +### 2. Ignoring Catalog Provided Upgrade Constraints + +By default, Operator Lifecycle Manager (OLM) enforces upgrade constraints based on semantic versioning and catalog definitions. To allow downgrades, you need to override these constraints. + +**Override Configuration:** + +Set the `upgradeConstraintPolicy` to `SelfCertified` in the `ClusterExtension` resource. This configuration permits downgrades, sidegrades, and any version changes without adhering to the predefined upgrade paths. + +**Example:** + +```yaml +apiVersion: olm.operatorframework.io/v1alpha1 +kind: ClusterExtension +metadata: + name: example-extension +spec: + source: + sourceType: Catalog + catalog: + packageName: argocd-operator + version: 0.6.0 + upgradeConstraintPolicy: SelfCertified + install: + namespace: argocd + serviceAccount: + name: argocd-installer +``` + +**Command Example:** + +If you prefer using the command line, you can use `kubectl` to modify the upgrade constraint policy. + +```bash +kubectl patch clusterextension --patch '{"spec":{"upgradeConstraintPolicy":"SelfCertified"}}' --type=merge +``` + +### 3. Executing the Downgrade + +Once the CRD safety checks are disabled and upgrade constraints are set, you can proceed with the actual downgrade. + +1. **Edit the ClusterExtension Resource:** + + Modify the `ClusterExtension` custom resource to specify the target version and adjust the upgrade constraints. + + ```bash + kubectl edit clusterextension + ``` + +2. **Update the Version:** + + Within the YAML editor, update the `spec` section as follows: + + ```yaml + apiVersion: olm.operatorframework.io/v1alpha1 + kind: ClusterExtension + metadata: + name: + spec: + source: + sourceType: Catalog + catalog: + packageName: + version: + install: + namespace: + serviceAccount: + name: + ``` + + - **`version`:** Specify the target version you wish to downgrade to. + +3. **Apply the Changes:** + + Save and exit the editor. Kubernetes will apply the changes and initiate the downgrade process. + +### 4. Post-Downgrade Verification + +After completing the downgrade, verify that the `ClusterExtension` is functioning as expected. + +**Verification Steps:** + +1. **Check the Status of the ClusterExtension:** + + ```bash + kubectl get clusterextension -o yaml + ``` + + Ensure that the `status` reflects the target version and that there are no error messages. + +2. **Validate CRD Integrity:** + + Confirm that all CRDs associated with the `ClusterExtension` are correctly installed and compatible with the downgraded version. + + ```bash + kubectl get crd | grep + ``` + +3. **Test Extension Functionality:** + + Perform functional tests to ensure that the extension operates correctly in its downgraded state. + +4. **Monitor Logs:** + + Check the logs of the operator managing the `ClusterExtension` for any warnings or errors. + + ```bash + kubectl logs deployment/ -n + ``` + +## Troubleshooting + +During the downgrade process, you might encounter issues. Below are common problems and their solutions: + +### Downgrade Fails Due to Version Constraints + +**Solution:** + +- Ensure that the `upgradeConstraintPolicy` is set to `SelfCertified`. +- Verify that the target version exists in the catalog. +- Check for typos or incorrect version numbers in the configuration. + +### CRD Compatibility Issues + +**Solution:** + +- Review the changes in CRDs between versions to ensure compatibility. +- If disabling the CRD safety check, ensure that the downgraded version can handle the existing CRDs without conflicts. +- Consider manually reverting CRDs if necessary, but proceed with caution to avoid data loss. + +### Extension Becomes Unresponsive After Downgrade + +**Solution:** + +- Restore from the backup taken before the downgrade. +- Investigate logs for errors related to the downgraded version. +- Verify that all dependencies required by the downgraded version are satisfied. + +## Additional Resources + +- [Semantic Versioning Specification](https://semver.org/) +- [Manually Verified Upgrades and Downgrades](https://github.com/operator-framework/operator-controller/blob/main/docs/drafts/upgrade-support.md#manually-verified-upgrades-and-downgrades)