v1: fix upgrade of older clusters (#815)

jan-g · web-flow · commit 90710e2b4fb4 · 2025-05-06T14:17:42.000+02:00
The sts initContainer code used `okToPatch` which attempted to avoid a superfluous
restart of the sts the first time it was patched for the new bootstrap mechanism.

Since then, the same CEL-based patching has been included in both node configuration
and bootstrap, and is thus required on any sts change (that is: the initContainer must
not fail), so we include the required env vars unconditionally here.
diff --git a/.changes/unreleased/operator-Fixed-20250506-111303.yaml b/.changes/unreleased/operator-Fixed-20250506-111303.yaml
@@ -0,0 +1,7 @@
+project: operator
+kind: Fixed
+body: |-
+    The operator now unconditionally produces statefulsets that have environment variables available to the initContainer that are used for CEL-based config patching.
+
+    Previously it attempted to leave existing sts resources unpatched if it seemed like they had already been bootstrapped. With the adoption of CEL patching for node configuration, that left sts pods unable to restart.
+time: 2025-05-06T11:13:03.863535+01:00
diff --git a/.changes/unreleased/operator-Fixed-20250506-111414.yaml b/.changes/unreleased/operator-Fixed-20250506-111414.yaml
@@ -0,0 +1,7 @@
+project: operator
+kind: Fixed
+body: |-
+    The operator now unconditionally produces an environment for the initContainer that supports CEL-based patching.
+
+    This is required to ensure that a pre-existing sts can roll over to new configuration correctly.
+time: 2025-05-06T11:14:14.360346+01:00
diff --git a/operator/CHANGELOG.md b/operator/CHANGELOG.md
@@ -67,6 +67,12 @@ operator helm chart. The same ports will continue to serve metrics using kubebui
   if correct FullNameOverride is not provided and handled the same way for both
   client creation and render function.
 * The Redpanda license was not set by operator. Now it will be set in the first reconciliation. After initial setup the consequent license re-set will be reconciled after client-go cache resync timeout (default 10h).
+* The operator now unconditionally produces statefulsets that have environment variables available to the initContainer that are used for CEL-based config patching.
+
+Previously it attempted to leave existing sts resources unpatched if it seemed like they had already been bootstrapped. With the adoption of CEL patching for node configuration, that left sts pods unable to restart.
+* The operator now unconditionally produces an environment for the initContainer that supports CEL-based patching.
+
+This is required to ensure that a pre-existing sts can roll over to new configuration correctly.
 
 ## [v25.1.1-beta2](https://github.com/redpanda-data/redpanda-operator/releases/tag/operator%2Fv25.1.1-beta2) - 2025-04-24
 ### Added
diff --git a/operator/pkg/resources/statefulset.go b/operator/pkg/resources/statefulset.go
@@ -723,37 +723,27 @@ func (r *StatefulSetResource) obj(
 		}
 	}
 
-	okToPatch, err := r.canOverwriteBootstrapForAnyPreexistingResource(ctx, ss)
+	// Bootstrap configuration and node configuration uses templating.
+	// If the operator encounters a STS that does not yet have the additional env
+	// variables it requires defined, then this may cause an STS roll since the
+	// initContainer definition will change to accommodate the new env vars.
+	// This roll should happen only once.
+	ss.Spec.Template.Spec.InitContainers[0].Env = append(ss.Spec.Template.Spec.InitContainers[0].Env,
+		corev1.EnvVar{
+			Name:  bootstrapTemplateEnvVar,
+			Value: filepath.Join(configSourceDir, bootstrapTemplateFile),
+		},
+		corev1.EnvVar{
+			Name:  bootstrapDestinationEnvVar,
+			Value: filepath.Join(configDestinationDir, bootstrapConfigFile),
+		},
+	)
+	// If the bootstrap template needs additional env vars, inject them here
+	additionalEnv, err := r.cfg.AdditionalInitEnvVars()
 	if err != nil {
-		return nil, err
-	}
-	if okToPatch {
-		// Bootstrap configuration is now templated; we don't need to mount the original here
-		ss.Spec.Template.Spec.InitContainers[0].Env = append(ss.Spec.Template.Spec.InitContainers[0].Env,
-			corev1.EnvVar{
-				Name:  bootstrapTemplateEnvVar,
-				Value: filepath.Join(configSourceDir, bootstrapTemplateFile),
-			},
-			corev1.EnvVar{
-				Name:  bootstrapDestinationEnvVar,
-				Value: filepath.Join(configDestinationDir, bootstrapConfigFile),
-			},
-		)
-		// If the bootstrap template needs additional env vars, inject them here
-		additionalEnv, err := r.cfg.AdditionalInitEnvVars()
-		if err != nil {
-			return nil, fmt.Errorf("cannot retrieve the configuration to extract environment variables: %w", err)
-		}
-		ss.Spec.Template.Spec.InitContainers[0].Env = append(ss.Spec.Template.Spec.InitContainers[0].Env, additionalEnv...)
-	} else {
-		// TODO: drop this. It'll trigger a restart when the operator moves, but as per discussions that's considered acceptable.
-		// Keep the old .bootstrap.yaml in place.
-		ss.Spec.Template.Spec.Containers[0].VolumeMounts = append(ss.Spec.Template.Spec.Containers[0].VolumeMounts, corev1.VolumeMount{
-			Name:      "configmap-dir",
-			MountPath: path.Join(configDestinationDir, bootstrapConfigFile),
-			SubPath:   bootstrapConfigFile,
-		})
+		return nil, fmt.Errorf("cannot retrieve the configuration to extract environment variables: %w", err)
 	}
+	ss.Spec.Template.Spec.InitContainers[0].Env = append(ss.Spec.Template.Spec.InitContainers[0].Env, additionalEnv...)
 
 	setVolumes(ss, r.pandaCluster, r.nodePool.Storage, r.nodePool.CloudCacheStorage)
 
@@ -770,44 +760,6 @@ func (r *StatefulSetResource) obj(
 	return ss, nil
 }
 
-// checkForPreexistingResource will check if the resource already exists.
-// If it does, we may want to avoid patching it to avoid a superfluous restart.
-func (r *StatefulSetResource) canOverwriteBootstrapForAnyPreexistingResource(ctx context.Context, sts *appsv1.StatefulSet) (bool, error) {
-	// Attempt to fetch the resource
-	var oldObj appsv1.StatefulSet
-	err := r.Get(ctx, types.NamespacedName{
-		Namespace: sts.Namespace,
-		Name:      sts.Name,
-	}, &oldObj)
-	if err != nil {
-		if apierrors.IsNotFound(err) {
-			// We should create the object fully patched, since it doesn't exist
-			return true, nil
-		}
-		return false, err
-	}
-	// Check to see if we have the signature env variable in the initContainer;
-	// if so we're good to continue.
-	if len(oldObj.Spec.Template.Spec.InitContainers) > 0 {
-		for _, ev := range oldObj.Spec.Template.Spec.InitContainers[0].Env {
-			if ev.Name == bootstrapTemplateEnvVar {
-				// This already has the hooks; it's fine to patch.
-				return true, nil
-			}
-		}
-		// Check to see if we are changing any images; if so, we can patch.
-		if sts.Spec.Template.Spec.InitContainers[0].Image != r.fullConfiguratorImage() {
-			return true, nil
-		}
-	}
-	if len(sts.Spec.Template.Spec.Containers) > 0 && sts.Spec.Template.Spec.Containers[0].Image != r.pandaCluster.FullImageName() {
-		return true, nil
-	}
-	// Otherwise, we'll leave this untouched for the moment; it's already running,
-	// and so the bootstrap configuration is irrelevant.
-	return false, nil
-}
-
 func (r *StatefulSetResource) getConfiguratorArgs() []string {
 	result := []string{"configure"}
 	if r.configuratorSettings.CloudSecretsEnabled {
