Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-2881

[gcp][CORS-1774] with public/private DNS zones (of service project) specified, after destroying cluster, related record-sets are not deleted

XMLWordPrintable

    • Moderate
    • None
    • 2
    • Sprint 227, Sprint 228, Sprint 229, Sprint 230
    • 4
    • False
    • Hide

      None

      Show
      None

      Description of problem:

      with public/private DNS zones in the service project specified, after destroying cluster, related record-sets are not deleted

      Version-Release number of selected component (if applicable):

      $ openshift-install version
      openshift-install 4.12.0-0.nightly-2022-10-25-210451
      built from commit 14d496fdaec571fa97604a487f5df6a0433c0c68
      release image registry.ci.openshift.org/ocp/release@sha256:d6cc07402fee12197ca1a8592b5b781f9f9a84b55883f126d60a3896a36a9b74
      release architecture amd64
      

      How reproducible:

      Always

      Steps to Reproduce:

      1. try IPI installation to a shared VPC, with public/private DNS zones in the service project
      2. try destroying the cluster
      

      Actual results:

      After destroying the cluster, the dns record-sets created by installer are not deleted.

      Expected results:

      The dns record-sets created by the installer should be deleted when destroying the cluster.

      Additional info:

      1. the pre-configured DNS zones in the service project
      $ gcloud dns managed-zones list --filter='name=qe1'
      NAME  DNS_NAME                           DESCRIPTION  VISIBILITY
      qe1   qe1.gcp.devcluster.openshift.com.               public
      $ gcloud dns managed-zones list --filter='name=ipi-xpn-private-zone'
      NAME                  DNS_NAME                                       DESCRIPTION                         VISIBILITY
      ipi-xpn-private-zone  jiwei-1026a.qe1.gcp.devcluster.openshift.com.  Preserved private zone for IPI XPN  private
      $ 
      
      2. the install-config snippet
      $ yq-3.3.0 r test4/install-config.yaml platform
      gcp:
        projectID: openshift-qe
        region: us-central1
        computeSubnet: installer-shared-vpc-subnet-2
        controlPlaneSubnet: installer-shared-vpc-subnet-1
        createFirewallRules: Disabled
        publicDNSZone:
          id: qe1
        privateDNSZone:
          id: ipi-xpn-private-zone
        network: installer-shared-vpc
        networkProjectID: openshift-qe-shared-vpc
      $ yq-3.3.0 r test4/install-config.yaml baseDomain
      qe1.gcp.devcluster.openshift.com
      $ 
      
      3. manually create the required credentials and then try creating cluster, which failed finally (see https://issues.redhat.com/browse/OCPBUGS-2877)4. destroy the cluster and then make sure everything created by the installer would be deleted
      $ openshift-install destroy cluster --dir test4
      INFO Credentials loaded from file "/home/fedora/.gcp/osServiceAccount.json"
      INFO Stopped instance jiwei-1026a-sx4ph-worker-a-9xhnn
      INFO Stopped instance jiwei-1026a-sx4ph-worker-b-ctfw9
      INFO Stopped instance jiwei-1026a-sx4ph-master-1
      INFO Stopped instance jiwei-1026a-sx4ph-master-2
      INFO Stopped instance jiwei-1026a-sx4ph-master-0
      INFO Deleted IAM project role bindings
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a-sx4ph-w@openshift-qe.iam.gserviceaccount.com
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a--openshift-g-16867@openshift-qe.iam.gserviceaccount.com
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a-sx4ph-m@openshift-qe.iam.gserviceaccount.com
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a--openshift-g-2385@openshift-qe.iam.gserviceaccount.com 
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a--cloud-crede-22053@openshift-qe.iam.gserviceaccount.com 
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a--openshift-i-6003@openshift-qe.iam.gserviceaccount.com 
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a--openshift-i-18195@openshift-qe.iam.gserviceaccount.com 
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a--openshift-c-23280@openshift-qe.iam.gserviceaccount.com 
      INFO Deleted service account projects/openshift-qe/serviceAccounts/jiwei-1026a--openshift-m-17306@openshift-qe.iam.gserviceaccount.com 
      INFO Deleted bucket jiwei-1026a-sx4ph-image-registry-us-central1-osbvfoiraqweywmet 
      INFO Deleted instance jiwei-1026a-sx4ph-master-0  
      INFO Deleted instance jiwei-1026a-sx4ph-worker-a-9xhnn 
      INFO Deleted instance jiwei-1026a-sx4ph-master-1  
      INFO Deleted instance jiwei-1026a-sx4ph-worker-b-ctfw9 
      INFO Deleted instance jiwei-1026a-sx4ph-master-2  
      INFO Deleted disk jiwei-1026a-sx4ph-master-1      
      INFO Deleted disk jiwei-1026a-sx4ph-worker-b-ctfw9 
      INFO Deleted disk jiwei-1026a-sx4ph-master-2
      INFO Deleted disk jiwei-1026a-sx4ph-master-0
      INFO Deleted disk jiwei-1026a-sx4ph-worker-a-9xhnn
      INFO Deleted address jiwei-1026a-sx4ph-cluster-ip
      INFO Deleted address jiwei-1026a-sx4ph-cluster-public-ip
      INFO Deleted forwarding rule jiwei-1026a-sx4ph-api
      INFO Deleted forwarding rule jiwei-1026a-sx4ph-api-internal
      INFO Deleted target pool jiwei-1026a-sx4ph-api
      INFO Deleted backend service jiwei-1026a-sx4ph-api-internal
      INFO Deleted instance group jiwei-1026a-sx4ph-master-us-central1-c
      INFO Deleted instance group jiwei-1026a-sx4ph-master-us-central1-b
      INFO Deleted instance group jiwei-1026a-sx4ph-master-us-central1-a
      INFO Deleted health check jiwei-1026a-sx4ph-api-internal
      INFO Deleted HTTP health check jiwei-1026a-sx4ph-api
      INFO Time elapsed: 4m13s   
      $ 
      $ gcloud dns record-sets list --zone qe1 --format="table(type,name,rrdatas)" --filter="name~jiwei-1026a"
      TYPE  NAME                                               RRDATAS
      A     api.jiwei-1026a.qe1.gcp.devcluster.openshift.com.  ['34.71.50.187']
      $ 
      $ gcloud dns record-sets list --zone ipi-xpn-private-zone --format="table(type,name,rrdatas)" --filter="name~jiwei-1026a AND type=A"
      TYPE  NAME                                                   RRDATAS
      A     api.jiwei-1026a.qe1.gcp.devcluster.openshift.com.      ['10.0.0.10']
      A     api-int.jiwei-1026a.qe1.gcp.devcluster.openshift.com.  ['10.0.0.10']
      $
      

       

       

              rh-ee-bbarbach Brent Barbachem
              rhn-support-jiwei Jianli Wei
              Jianli Wei Jianli Wei
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: