OCPBUGS-51305: ccm: disable unused secure-serving port and webhook

[chrischdi]

Disables the secure-serving port which is unused for all providers, except ibm and powervs where it is used as livenessprobe.

[openshift-ci-robot]

@chrischdi: This pull request references Jira Issue OCPBUGS-51305, which is invalid:

• expected the bug to target the "4.21.0" version, but no target version was set

Comment /jira refresh to re-evaluate validity if changes to the Jira bug are made, or edit the title of this pull request to link to a different bug.

The bug has been updated to refer to the pull request using the external bug tracker.

In response to this:

Disables the secure-serving port which is unused.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[chrischdi]

/jira sync

[chrischdi]

/jira refresh

[openshift-ci-robot]

@chrischdi: This pull request references Jira Issue OCPBUGS-51305, which is valid. The bug has been moved to the POST state.

3 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target version (4.21.0) matches configured target version for branch (4.21.0)
• bug is in the state ASSIGNED, which is one of the valid states (NEW, ASSIGNED, POST)

Requesting review from QA contact:
/cc @sunzhaohua2

In response to this:

/jira refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@chrischdi: This pull request references Jira Issue OCPBUGS-51305, which is valid.

3 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target version (4.21.0) matches configured target version for branch (4.21.0)
• bug is in the state POST, which is one of the valid states (NEW, ASSIGNED, POST)

Requesting review from QA contact:
/cc @sunzhaohua2

In response to this:

Disables the secure-serving port which is unused for all providers, except ibm and powervs where it is used as livenessprobe.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[chrischdi]

/retest

[chrischdi]

/retest-required

[chrischdi]

/retest

[chrischdi]

/retest-required

[chrischdi]

/retest

[chrischdi]

/retest

[chrischdi]

/assign mdbooth
/assign theobarberbany

Kindly asking fro some review :-)

[chrischdi]

/hold

Reverting the change for nutanix to see if that fixes CI

[chrischdi]

/retes

[chrischdi]

/retest

[chrischdi]

/retest

[openshift-ci]

@chrischdi: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-openstack-ovn	ca9e78f	link	false	/test e2e-openstack-ovn
ci/prow/e2e-nutanix-ovn	ca9e78f	link	false	/test e2e-nutanix-ovn

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[chrischdi]

/verified bypass

nutanix and openstack e2e permafailing. Verified manually that they don't have any active CCM webhooks:

❯ pwd
/Users/cschlott/go/src/github.com/openshift/cloud-provider-nutanix
❯ go run ./ --help | grep -e "--webhooks" -A 4
      --webhooks strings   A list of webhooks to enable. '*' enables all on-by-default webhooks, 'foo' enables the webhook named 'foo', '-foo' disables the webhook named 'foo'.
                           All webhooks:
                           Disabled-by-default webhooks:

Webhook serving flags:

❯ pwd
/Users/cschlott/go/src/github.com/openshift/cloud-provider-openstack
❯ go run ./cmd/openstack-cloud-controller-manager --help | grep -e "--webhooks" -A 4
      --webhooks strings   A list of webhooks to enable. '*' enables all on-by-default webhooks, 'foo' enables the webhook named 'foo', '-foo' disables the webhook named 'foo'.
                           All webhooks:
                           Disabled-by-default webhooks:

Webhook serving flags:

[openshift-ci-robot]

@chrischdi: The verified label has been added.

In response to this:

/verified bypass

nutanix and openstack e2e permafailing. Verified manually that they don't have any active CCM webhooks:

❯ pwd
/Users/cschlott/go/src/github.com/openshift/cloud-provider-nutanix
❯ go run ./ --help | grep -e "--webhooks" -A 4
     --webhooks strings   A list of webhooks to enable. '*' enables all on-by-default webhooks, 'foo' enables the webhook named 'foo', '-foo' disables the webhook named 'foo'.
                          All webhooks:
                          Disabled-by-default webhooks:

Webhook serving flags:

❯ pwd
/Users/cschlott/go/src/github.com/openshift/cloud-provider-openstack
❯ go run ./cmd/openstack-cloud-controller-manager --help | grep -e "--webhooks" -A 4
     --webhooks strings   A list of webhooks to enable. '*' enables all on-by-default webhooks, 'foo' enables the webhook named 'foo', '-foo' disables the webhook named 'foo'.
                          All webhooks:
                          Disabled-by-default webhooks:

Webhook serving flags:

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@chrischdi: Jira Issue OCPBUGS-51305 is in an unrecognized state (ON_QA) and will not be moved to the MODIFIED state.

In response to this:

Disables the secure-serving port which is unused for all providers, except ibm and powervs where it is used as livenessprobe.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[chrischdi]

/jira backport release-4.20,release-4.19,release-4.18,release-4.17,release-4.16,release-4.15,release-4.14

[openshift-ci-robot]

@chrischdi: The following backport issues have been created:

• OCPBUGS-63164 for branch release-4.20
• OCPBUGS-63165 for branch release-4.19
• OCPBUGS-63166 for branch release-4.18
• OCPBUGS-63167 for branch release-4.17
• OCPBUGS-63168 for branch release-4.16
• OCPBUGS-63169 for branch release-4.15
• OCPBUGS-63170 for branch release-4.14

Queuing cherrypicks to the requested branches to be created after this PR merges:
/cherrypick release-4.20
/cherrypick release-4.19
/cherrypick release-4.18
/cherrypick release-4.17
/cherrypick release-4.16
/cherrypick release-4.15
/cherrypick release-4.14

In response to this:

/jira backport release-4.20,release-4.19,release-4.18,release-4.17,release-4.16,release-4.15,release-4.14

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-cherrypick-robot]

@openshift-ci-robot: #415 failed to apply on top of branch "release-4.14":

Applying: ccm: disable unused secure-serving port and webhook
Using index info to reconstruct a base tree...
M	pkg/cloud/aws/assets/deployment.yaml
M	pkg/cloud/azure/assets/cloud-controller-manager-deployment.yaml
M	pkg/cloud/azurestack/assets/cloud-controller-manager-deployment.yaml
M	pkg/cloud/gcp/assets/cloud-controller-manager.yaml
M	pkg/cloud/nutanix/assets/cloud-controller-manager-deployment.yaml
M	pkg/cloud/openstack/assets/deployment.yaml
M	pkg/cloud/vsphere/assets/cloud-controller-manager-deployment.yaml
Falling back to patching base and 3-way merge...
Auto-merging pkg/cloud/vsphere/assets/cloud-controller-manager-deployment.yaml
CONFLICT (content): Merge conflict in pkg/cloud/vsphere/assets/cloud-controller-manager-deployment.yaml
Auto-merging pkg/cloud/openstack/assets/deployment.yaml
Auto-merging pkg/cloud/nutanix/assets/cloud-controller-manager-deployment.yaml
CONFLICT (content): Merge conflict in pkg/cloud/nutanix/assets/cloud-controller-manager-deployment.yaml
Auto-merging pkg/cloud/gcp/assets/cloud-controller-manager.yaml
CONFLICT (content): Merge conflict in pkg/cloud/gcp/assets/cloud-controller-manager.yaml
Auto-merging pkg/cloud/azurestack/assets/cloud-controller-manager-deployment.yaml
CONFLICT (content): Merge conflict in pkg/cloud/azurestack/assets/cloud-controller-manager-deployment.yaml
Auto-merging pkg/cloud/azure/assets/cloud-controller-manager-deployment.yaml
CONFLICT (content): Merge conflict in pkg/cloud/azure/assets/cloud-controller-manager-deployment.yaml
Auto-merging pkg/cloud/aws/assets/deployment.yaml
error: Failed to merge in the changes.
hint: Use 'git am --show-current-patch=diff' to see the failed patch
hint: When you have resolved this problem, run "git am --continue".
hint: If you prefer to skip this patch, run "git am --skip" instead.
hint: To restore the original branch and stop patching, run "git am --abort".
hint: Disable this message with "git config advice.mergeConflict false"
Patch failed at 0001 ccm: disable unused secure-serving port and webhook

In response to this:

@chrischdi: The following backport issues have been created:

• OCPBUGS-63164 for branch release-4.20
• OCPBUGS-63165 for branch release-4.19
• OCPBUGS-63166 for branch release-4.18
• OCPBUGS-63167 for branch release-4.17
• OCPBUGS-63168 for branch release-4.16
• OCPBUGS-63169 for branch release-4.15
• OCPBUGS-63170 for branch release-4.14

Queuing cherrypicks to the requested branches to be created after this PR merges:
/cherrypick release-4.20
/cherrypick release-4.19
/cherrypick release-4.18
/cherrypick release-4.17
/cherrypick release-4.16
/cherrypick release-4.15
/cherrypick release-4.14

In response to this:

/jira backport release-4.20,release-4.19,release-4.18,release-4.17,release-4.16,release-4.15,release-4.14

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[chrischdi]

/cherrypick release-4.20

[openshift-cherrypick-robot]

@chrischdi: new pull request created: #419

In response to this:

/cherrypick release-4.20

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[chrischdi]

/cherrypick release-4.19

[openshift-cherrypick-robot]

@chrischdi: new pull request created: #420

In response to this:

/cherrypick release-4.19

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[chrischdi]

/cherrypick release-4.18

[openshift-cherrypick-robot]

@chrischdi: new pull request created: #421

In response to this:

/cherrypick release-4.18

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[chrischdi]

/cherrypick release-4.17

/cherrypick release-4.16

[openshift-cherrypick-robot]

@chrischdi: new pull request created: #422

In response to this:

/cherrypick release-4.17

/cherrypick release-4.16

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[openshift-cherrypick-robot]

@chrischdi: new pull request created: #423

In response to this:

/cherrypick release-4.17

/cherrypick release-4.16

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[chrischdi]

/cherrypick release-4.15

[openshift-cherrypick-robot]

@chrischdi: #415 failed to apply on top of branch "release-4.15":

Applying: ccm: disable unused secure-serving port and webhook
Using index info to reconstruct a base tree...
M	pkg/cloud/aws/assets/deployment.yaml
M	pkg/cloud/azure/assets/cloud-controller-manager-deployment.yaml
M	pkg/cloud/azurestack/assets/cloud-controller-manager-deployment.yaml
M	pkg/cloud/gcp/assets/cloud-controller-manager.yaml
M	pkg/cloud/nutanix/assets/cloud-controller-manager-deployment.yaml
M	pkg/cloud/openstack/assets/deployment.yaml
M	pkg/cloud/vsphere/assets/cloud-controller-manager-deployment.yaml
Falling back to patching base and 3-way merge...
Auto-merging pkg/cloud/vsphere/assets/cloud-controller-manager-deployment.yaml
CONFLICT (content): Merge conflict in pkg/cloud/vsphere/assets/cloud-controller-manager-deployment.yaml
Auto-merging pkg/cloud/openstack/assets/deployment.yaml
Auto-merging pkg/cloud/nutanix/assets/cloud-controller-manager-deployment.yaml
CONFLICT (content): Merge conflict in pkg/cloud/nutanix/assets/cloud-controller-manager-deployment.yaml
Auto-merging pkg/cloud/gcp/assets/cloud-controller-manager.yaml
CONFLICT (content): Merge conflict in pkg/cloud/gcp/assets/cloud-controller-manager.yaml
Auto-merging pkg/cloud/azurestack/assets/cloud-controller-manager-deployment.yaml
CONFLICT (content): Merge conflict in pkg/cloud/azurestack/assets/cloud-controller-manager-deployment.yaml
Auto-merging pkg/cloud/azure/assets/cloud-controller-manager-deployment.yaml
CONFLICT (content): Merge conflict in pkg/cloud/azure/assets/cloud-controller-manager-deployment.yaml
Auto-merging pkg/cloud/aws/assets/deployment.yaml
error: Failed to merge in the changes.
hint: Use 'git am --show-current-patch=diff' to see the failed patch
hint: When you have resolved this problem, run "git am --continue".
hint: If you prefer to skip this patch, run "git am --skip" instead.
hint: To restore the original branch and stop patching, run "git am --abort".
hint: Disable this message with "git config advice.mergeConflict false"
Patch failed at 0001 ccm: disable unused secure-serving port and webhook

In response to this:

/cherrypick release-4.15

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.