-
Notifications
You must be signed in to change notification settings - Fork 897
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Clearer documentation on driver removal process from 20200901-artifacts-cleanup.md proposal #1399
Comments
See my response from slack
Keeping this issue open as a placeholder. TLDR: I don't understand why this is still a problem, and why a "solution" to this was deleting artifacts. That seems like a drastically inappropriate response. |
Hello, some considerations about the cleanup of pre-built drivers. First of all, the Falco maintainers set a very good set of expectations around the providing of the pre-built drivers. Nevertheless, to ease the users' experience with Falco installation, even if it's able to automatically build the drivers on-the-fly (when the kernel headers are present in the host), we decided to provide a set of various pre-built drivers for various kernel release and distro combinations (as per test-infra dbg). Given all this, and given the state of Falco as an open-source project, to find a solution we'll need two types of contributions:
One very good example of how to make the experience for everyone better is the work that Jonah Jones is doing with the Prow moving back to AWS. @mmcaya I like your documentation updates suggestions, thanks for proposing them. TLDR |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. Issues labeled "cncf", "roadmap" and "help wanted" will not be automatically closed. Please refer to a maintainer to get such label added if you think this should be kept open. |
/help |
@fntlnz: Please ensure the request meets the requirements listed here. If this request no longer meets these requirements, the label can be removed In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Issues go stale after 90d of inactivity. Mark the issue as fresh with Stale issues rot after an additional 30d of inactivity and eventually close. If this issue is safe to close now please do so with Provide feedback via https://github.com/falcosecurity/community. /lifecycle stale |
Stale issues rot after 30d of inactivity. Mark the issue as fresh with Rotten issues close after an additional 30d of inactivity. If this issue is safe to close now please do so with Provide feedback via https://github.com/falcosecurity/community. /lifecycle rotten |
Rotten issues close after 30d of inactivity. Reopen the issue with Mark the issue as fresh with Provide feedback via https://github.com/falcosecurity/community. |
@poiana: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
What to document
The recent proposal to remove pre-built drivers and its subsequent execution have broken live systems that were using those pre-built drivers for releases prior to 0.24.0, and were give no actionable notice they would be removed.
Prior to the this proposal being written and merged, there was expectation from end-users that they would continue to be available for prior released versions. It is understood that the reason for this change was to support space and cost saving efforts.
Please consider the following documentation updates:
Additional, please consider retaining at least 3 released versions of the driver module to better support more stable upgrade paths.
In this specific case, 0.25.0 was released only ~7 days prior to the removal of the 0.23.0 pre-built drivers, and your documented best-effort processes for provisioning new drivers notes a potential 1-2 week delay.
As a result, end-users were only left with a single potential version (0.24.0) which all their deployments needed to be on if they are using the pre-built module download capability. This is important to organizations that have process or requirements to follow prior to component upgrades, and may not be able to maintain that fast a pace.
Related issue:
#1390
Related PRs:
481eedb#diff-7ec07c309635dee21e638c9c49ea9dab
falcosecurity/test-infra#169
falcosecurity/test-infra#170
The text was updated successfully, but these errors were encountered: