OCPBUGS-93982: skip generation check when deployment was just updated

[sg00dwin]

Summary

During upgrades, the console operator updates the console deployment spec 2-4 times (new image, config changes). Each update bumps Generation, but ObservedGeneration lags by 257ms-1s until the deployment controller processes it. The generation check (introduced by PR #1169 for OCPBUGS-64688) sees this gap and reports Progressing=True — even though the operator itself just caused the gap.

These sub-second blips coincide with MCO's Progressing=True window, failing the OTA invariant test (clusteroperator/console should stay Progressing=False while MCO is Progressing=True) in ~5% of upgrade jobs.

Changes

SyncDeployment already calls ApplyDeployment, which returns a changed boolean — but it was being discarded (removed by PR #1074 for OCPBUGS-64685). This PR re-introduces it:

• SyncDeployment: Captures changed from ApplyDeployment and returns it to the caller
• sync_v400: Skips the generation check when changed=true (self-inflicted gap, guaranteed transient)

When changed=false, the generation check runs normally — catching genuine deployment rollout delays. The next sync loop always runs with changed=false if no new changes are needed, so persistent gaps are still detected.

Context

This is the 4th fix in a chain of Progressing-related bugs:

Bug	Problem	Fix
OCPBUGS-36830 / OCPBUGS-64685	Any resource change → false Progressing	Removed change tracking, used replica count
OCPBUGS-64688	Node reboots → false Progressing (30s+)	Switched to generation check
OCPBUGS-93982	Self-inflicted spec updates → false Progressing (<1s)	Guard generation check with changed flag

Tests

• New unit tests: TestDeploymentProgressingSkippedWhenChanged — 4 cases covering changed/unchanged x gap/no-gap
• Existing unit tests: TestDeploymentProgressingByGeneration — 5 cases unchanged and passing
• make test-unit passes (all packages, gofmt, govet)
• CI e2e: verify no SyncLoopRefreshProgressing blips during upgrade window

Summary by CodeRabbit

• Bug Fixes
  • Improved deployment status handling to avoid brief, misleading “Progressing” updates right after changes are applied.
  • Deployment updates now report more consistently when a change was made, helping status checks reflect the latest state.
  • Added coverage to ensure progress reporting behaves correctly across updated and unchanged deployments.

[openshift-ci-robot]

@sg00dwin: This pull request references Jira Issue OCPBUGS-93982, which is invalid:

• expected the bug to target the "5.0.0" version, but no target version was set

Comment /jira refresh to re-evaluate validity if changes to the Jira bug are made, or edit the title of this pull request to link to a different bug.

The bug has been updated to refer to the pull request using the external bug tracker.

Details

In response to this:

Summary

During upgrades, the console operator updates the console deployment spec 2-4 times (new image, config changes). Each update bumps Generation, but ObservedGeneration lags by 257ms-1s until the deployment controller processes it. The generation check (introduced by PR #1169 for OCPBUGS-64688) sees this gap and reports Progressing=True — even though the operator itself just caused the gap.

These sub-second blips coincide with MCO's Progressing=True window, failing the OTA invariant test (clusteroperator/console should stay Progressing=False while MCO is Progressing=True) in ~5% of upgrade jobs.

Changes

SyncDeployment already calls ApplyDeployment, which returns a changed boolean — but it was being discarded (removed by PR #1074 for OCPBUGS-64685). This PR re-introduces it:

• SyncDeployment: Captures changed from ApplyDeployment and returns it to the caller
• sync_v400: Skips the generation check when changed=true (self-inflicted gap, guaranteed transient)

When changed=false, the generation check runs normally — catching genuine deployment rollout delays. The next sync loop always runs with changed=false if no new changes are needed, so persistent gaps are still detected.

Context

This is the 4th fix in a chain of Progressing-related bugs:

Bug	Problem	Fix
OCPBUGS-36830 / OCPBUGS-64685	Any resource change → false Progressing	Removed change tracking, used replica count
OCPBUGS-64688	Node reboots → false Progressing (30s+)	Switched to generation check
OCPBUGS-93982	Self-inflicted spec updates → false Progressing (<1s)	Guard generation check with changed flag

Tests

• New unit tests: TestDeploymentProgressingSkippedWhenChanged — 4 cases covering changed/unchanged x gap/no-gap
• Existing unit tests: TestDeploymentProgressingByGeneration — 5 cases unchanged and passing
• make test-unit passes (all packages, gofmt, govet)
• CI e2e: verify no SyncLoopRefreshProgressing blips during upgrade window

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[coderabbitai]

Walkthrough

SyncDeployment gains a changed bool return value sourced from resourceapply.ApplyDeployment. The caller stores it as depChanged and uses it to skip checkDeploymentGenerationProgress when the deployment was just applied, avoiding transient progressing reports. A new table-driven test validates this guard.

Deployment changed flag and progressing guard

Layer / File(s)	Summary
SyncDeployment signature and changed propagation pkg/console/operator/sync_v400.go	Return type gains changed bool; ApplyDeployment's changed result is captured and returned on both success and failure paths; caller assigns depChanged and gates checkDeploymentGenerationProgress on depChanged == false.
Unit tests for progressing skip guard pkg/console/operator/sync_v400_test.go	TestDeploymentProgressingSkippedWhenChanged covers combinations of depChanged, generation, and observedGeneration, asserting the progressing check is skipped when depChanged=true.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

---

Important

Pre-merge checks failed

Please resolve all errors before merging. Addressing warnings is optional.

❌ Failed checks (1 error, 1 warning)

Check name	Status	Explanation	Resolution
No-Sensitive-Data-In-Logs	❌ Error	Fail: sync_v400.go logs raw configmap data and node/URL values at V(4), which can expose hostnames/customer-specific cluster data.	Redact or remove those debug logs; emit only non-sensitive identifiers or counts, and avoid dumping full config/data structures.
Docstring Coverage	⚠️ Warning	Docstring coverage is 50.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (13 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title is specific, concise, and matches the main change: skipping the generation check after a deployment update.
Description check	✅ Passed	The description covers root cause, solution, context, and tests, though several template sections are omitted.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Stable And Deterministic Test Names	✅ Passed	The added test uses static table-driven names via t.Run(tt.name); no dynamic values, timestamps, or generated identifiers appear in titles.
Test Structure And Quality	✅ Passed	The new table-driven unit test is single-purpose, needs no setup/cleanup or timeouts, and has clear failure messaging; it matches nearby test style.
Microshift Test Compatibility	✅ Passed	No new Ginkgo e2e tests were added; the change adds a plain Go unit test in pkg/console/operator and it uses no MicroShift-unsupported APIs.
Single Node Openshift (Sno) Test Compatibility	✅ Passed	No new Ginkgo e2e tests were added; the new test is a Go unit test and contains no SNO-sensitive multi-node assumptions.
Topology-Aware Scheduling Compatibility	✅ Passed	The PR only changes Progressing/status logic via a changed flag; it adds no affinity, nodeSelector, topology spread, replica, or toleration scheduling constraints.
Ote Binary Stdout Contract	✅ Passed	PASS: Changes are confined to sync logic and a unit test; no main/init/TestMain/BeforeSuite stdout writes were added.
Ipv6 And Disconnected Network Test Compatibility	✅ Passed	Only Go unit tests were added; no Ginkgo It/Describe/Context/When blocks or external network usage were found in the touched files.
No-Weak-Crypto	✅ Passed	Touched files only adjust deployment sync logic/tests; scan found no MD5/SHA1/DES/RC4/3DES/Blowfish/ECB, custom crypto, or secret/token comparisons.
Container-Privileges	✅ Passed	Only pkg/console/operator Go files changed; no manifest files or privilege settings like privileged/hostPID/hostNetwork/hostIPC/SYS_ADMIN were introduced.

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

_{Comment @coderabbitai help to get the list of available commands.}

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: sg00dwin
Once this PR has been reviewed and has the lgtm label, please assign therealjon for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[coderabbitai]

🧹 Nitpick comments (1)

pkg/console/operator/sync_v400.go (1)

214-224: 📐 Maintainability & Code Quality | 🔵 Trivial | ⚡ Quick win

Extract the progressing guard into a helper.

sync_v400 is already carrying several responsibilities, and this new branch is now mirrored in the unit test instead of being exercised directly. A tiny helper here would keep the sync loop slimmer and let the test call the real logic.

♻️ Proposed refactor

+func deploymentProgressingErr(depChanged bool, deployment *appsv1.Deployment) error {
+	if depChanged {
+		return nil
+	}
+	return checkDeploymentGenerationProgress(deployment)
+}
+
 func (co *consoleOperator) sync_v400(ctx context.Context, controllerContext factory.SyncContext, updatedOperatorConfig *operatorv1.Console, set configSet) error {
 	...
 	statusHandler.AddCondition(status.HandleProgressing("SyncLoopRefresh", "InProgress", func() error {
 		version := os.Getenv("OPERATOR_IMAGE_VERSION")
-		if !depChanged {
-			if err := checkDeploymentGenerationProgress(actualDeployment); err != nil {
-				return err
-			}
+		if err := deploymentProgressingErr(depChanged, actualDeployment); err != nil {
+			return err
 		}
 		...
 	}()))

As per coding guidelines, "Keep functions focused and under ~100 lines. Extract large functions with multiple responsibilities into smaller, single-purpose functions." As per path instructions, "Use /go-quality-review for all Go code to check ... functions >100 lines."

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@pkg/console/operator/sync_v400.go` around lines 214 - 224, Extract the
progressing-generation guard from sync_v400 into a small helper so the sync loop
stays focused and the test can exercise the real logic instead of duplicating
it. Move the “skip when depChanged” branch and the call to
checkDeploymentGenerationProgress(actualDeployment) into a dedicated function
with a clear name, then have sync_v400 delegate to it before continuing. Keep
the helper centered on this single responsibility and reuse it from the unit
test to cover the same behavior directly.

Sources: Coding guidelines, Path instructions

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Nitpick comments:
In `@pkg/console/operator/sync_v400.go`:
- Around line 214-224: Extract the progressing-generation guard from sync_v400
into a small helper so the sync loop stays focused and the test can exercise the
real logic instead of duplicating it. Move the “skip when depChanged” branch and
the call to checkDeploymentGenerationProgress(actualDeployment) into a dedicated
function with a clear name, then have sync_v400 delegate to it before
continuing. Keep the helper centered on this single responsibility and reuse it
from the unit test to cover the same behavior directly.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Central YAML (inherited)

Review profile: CHILL

Plan: Enterprise

Run ID: d9baf190-c0b5-4a5f-9660-2f97cabf6357

📥 Commits

Reviewing files that changed from the base of the PR and between 58e10b0 and 0d3370e.

📒 Files selected for processing (2)

• pkg/console/operator/sync_v400.go
• pkg/console/operator/sync_v400_test.go

🔗 Linked repositories identified

CodeRabbit considers these linked repositories for cross-repo context during reviews:

• openshift/console (manual)

📜 Review details

🧰 Additional context used

📓 Path-based instructions (8)

**/*.go

📄 CodeRabbit inference engine (AGENTS.md)

**/*.go: Follow Go coding standards and patterns documented in CONVENTIONS.md
Organize imports according to conventions documented in CONVENTIONS.md
Use gofmt to format Go code with standard formatting
Run go vet checks on all Go packages

Follow Go coding standards and patterns as documented in CONVENTIONS.md, including proper import organization

Organize Go code following the repository structure: main entry point in cmd/console/main.go, API constants in pkg/api/, operator command setup in pkg/cmd/operator/, and version command in pkg/cmd/version/

**/*.go: Use gofmt for formatting Go code
Follow standard Go naming conventions
Group imports in order: standard lib, 3rd party, kube/openshift, internal (marked with comments)
Use meaningful error messages with context in Go code
Set status conditions using status.Handle* functions with type prefixes (*Degraded, *Progressing, *Available, *Upgradeable)
Use typed errors and wrap errors to preserve stack context

**/*.go: Imports must be grouped with comments in the order: standard lib, 3rd party, kube, openshift, and operator (internal)
Wrap errors with context using fmt.Errorf("failed to X: %w", err) pattern to provide meaningful error messages

**/*.go: Do NOT use deprecated ioutil package functions. Use os.ReadFile() instead of ioutil.ReadFile(), os.WriteFile() instead of ioutil.WriteFile(), and io.ReadAll() instead of ioutil.ReadAll() (Go 1.16+)
Do NOT use net.Dial() directly. Use (&net.Dialer{}).DialContext() to support context cancellation
Use %w verb in fmt.Errorf() to wrap errors and maintain error chains, not %v which loses the error chain
Add descriptive context to errors when wrapping them, including relevant identifiers and state information
Use specific error type checks (e.g., apierrors.IsNotFound()) instead of string matching with strings.Contains() on error.Error()
Always propagate the parent context in function calls instead of using context.Background(), to respect parent cont...

Files:

• pkg/console/operator/sync_v400_test.go
• pkg/console/operator/sync_v400.go

---

⚙️ CodeRabbit configuration file

**/*.go: Review Go code following OpenShift operator patterns.
See CONVENTIONS.md for coding standards and patterns.

Refer to the following skills based on CODE PATTERNS, not just file paths:

Refer to /controller-review when code contains:

• Controller struct types (e.g., type *Controller struct)
• func New*Controller( factory functions
• factory.New().WithFilteredEventsInformers( pattern
• .ToController( method calls
• Sync(ctx context.Context, controllerContext factory.SyncContext) methods
• operatorConfig.Spec.ManagementState checks
• status.NewStatusHandler or status.Handle* functions

Refer to /sync-handler-review when code contains:

• Main operator sync functions (e.g., sync_v400.go content)
• Sequential resource syncing with early returns
• Incremental reconciliation loops
• Multiple resourceapply.Apply*() calls in sequence
• Dependency ordering of ConfigMaps → Secrets → Service Accounts → RBAC → Services → Deployments → Routes
• Feature gate conditional logic

Refer to /go-quality-review for all Go code to check:

• Deprecated imports: ioutil.ReadFile, ioutil.WriteFile, ioutil.ReadAll
• Deprecated patterns: Dial without DialContext
• Error handling: missing %w in fmt.Errorf
• Code smells: deep nesting (4+ levels), functions >100 lines
• Magic values: unexplained numbers/strings
• Context propagation: context.Background() instead of passed ctx
• Missing godoc on exported functions

Files:

• pkg/console/operator/sync_v400_test.go
• pkg/console/operator/sync_v400.go

**/*_test.go

📄 CodeRabbit inference engine (AGENTS.md)

Follow testing patterns and commands documented in TESTING.md

Follow testing patterns and commands as documented in TESTING.md, including running unit tests with 'make test-unit' and checks with 'make check'

**/*_test.go: Use table-driven tests for comprehensive coverage
Use httptest for HTTP handler testing in Go
Include proper cleanup functions in tests
Test both success and failure paths

Check and handle all errors in tests using t.Fatalf() or t.Errorf(); do not ignore errors with blank identifiers

Files:

• pkg/console/operator/sync_v400_test.go

---

⚙️ CodeRabbit configuration file

**/*_test.go: Review test code for quality and patterns.

Refer to /unit-test-review when test is in pkg//*_test.go:**

• Table-driven test structure with test cases
• Use of go-test/deep for struct comparisons
• Test naming conventions (TestFunctionName)
• Error handling with wantErr pattern
• Edge case coverage (nil, empty, boundary values)
• Proper assertions with helpful error messages
• Test isolation (no shared mutable state)

Refer to /e2e-test-review when test contains:

• framework.MustNewClientset(t, nil) or similar e2e framework usage
• wait.Poll or wait.PollImmediate patterns
• retry.RetryOnConflict for updates
• Cleanup via defer functions
• Console/operator CR manipulations
• Test assertions on cluster state

Suggest to use /e2e-test-review when:

• PR adds new feature requiring e2e coverage
• Test file is empty or skeleton
• Comments indicate "TODO: add test"

Review for common issues:

• Missing cleanup (defer statements)
• Using time.Sleep instead of wait.Poll
• Missing context timeouts
• Vague error messages in assertions
• Tests without table-driven structure when testing multiple cases
• Ignoring errors with _
• Tests without assertions

Files:

• pkg/console/operator/sync_v400_test.go

{pkg,cmd}/**/*.go

📄 CodeRabbit inference engine (CLAUDE.md)

Use gofmt for code formatting on pkg and cmd directories

{pkg,cmd}/**/*.go: Format code using gofmt -w ./pkg ./cmd
Run go vet checks on all Go packages in ./pkg and ./cmd

Files:

• pkg/console/operator/sync_v400_test.go
• pkg/console/operator/sync_v400.go

**/*sync*.go

📄 CodeRabbit inference engine (CONVENTIONS.md)

Implement sync loops (sync_v400) incrementally: start from zero, create/update missing requirements, and return to continue on next loop

**/*sync*.go: Sync handler implementations must use incremental sync pattern where each reconciliation loop returns early on error rather than collecting errors and continuing
Sync resources in dependency order: ConfigMaps/Secrets → Service Accounts → RBAC (Roles, RoleBindings) → Services → Deployments → Routes
Return early on errors to maintain incremental sync behavior instead of continuing execution or logging and proceeding
Use resourceapply.Apply*() functions to handle both resource creation and update operations
Ensure deleted resources are cleaned up from the cluster when removed from config, with proper handling for NotFound errors
Check feature gates before syncing gated resources to ensure conditional resource reconciliation
Status updates must reflect actual reconciliation state by adding conditions as operations complete using status handlers with HandleProgressingOrDegraded and HandleAvailable
Respect ManagementState configurations and implement cleanup logic for Removed state
Avoid mutating live objects; instead build desired state separately before applying
Do not sync all resources regardless of errors; stop reconciliation on dependency failures

Files:

• pkg/console/operator/sync_v400_test.go
• pkg/console/operator/sync_v400.go

pkg/**/*_test.go

📄 CodeRabbit inference engine (.claude/skills/unit-test-review.md)

pkg/**/*_test.go: Go unit tests in pkg/**/*_test.go files should use table-driven test pattern for clarity and completeness with struct containing test cases
Test function names should be descriptive and clearly indicate what is being tested (e.g., TestGetNodeComputeEnvironments, TestNewRouteConfig)
Test case names within table-driven tests should explain the scenario being tested (e.g., 'Custom hostname and TLS secret set'), not be vague (e.g., 'test1')
Use github.com/go-test/deep package for struct comparisons to show exact differences instead of simple equality checks or manual field-by-field comparisons
Test both success and failure paths, including edge cases such as empty inputs (nil, "", empty slices/maps), boundary values (0, -1, max int), missing labels/fields, duplicate values, and large inputs
Organize test code using Arrange-Act-Assert pattern: setup test data in Arrange phase, call the function in Act phase, verify results in Assert phase
Check error presence using pattern (err != nil) != tt.wantErr instead of ignoring errors with underscore or missing error checks
When checking specific error messages, use strings.Contains to verify error content instead of just checking error presence
Extract common test setup into helper functions rather than duplicating setup code across multiple tests
Write specific assertion error messages with context (e.g., 'expected %d nodes, got %d') rather than vague messages (e.g., 'failed')
Inline simple test data in test structs; extract complex fixtures into testdata files or helper functions
Avoid red flags in tests: no table-driven tests for multi-scenario functions, tests without subtests, tests depending on execution order, global mutable state, hardcoded sleeps, tests without assertions, ignoring errors with underscore, testing implementation details instead of behavior, or overly complex test setup

Files:

• pkg/console/operator/sync_v400_test.go

**/operator/**/*.go

📄 CodeRabbit inference engine (Custom checks)

When deployment manifests, operator code, or controllers are added/modified, ensure they do not introduce scheduling constraints assuming standard HA topology. Check ControlPlaneTopology for SingleReplica/DualReplica/HighlyAvailableArbiter/External modes before applying constraints. Use required anti-affinity with maxUnavailable >= 1 (not maxUnavailable: 0). Cap replica counts to schedulable nodes. Exclude arbiter nodes on TNA. Avoid master nodeSelectors on HyperShift. Use library-go DeploymentController hooks (WithTopologyAwareReplicasHook, WithTopologyAwareSchedulingHook, WithControlPlaneNodeSelectorHook).

Files:

• pkg/console/operator/sync_v400_test.go
• pkg/console/operator/sync_v400.go

**

⚙️ CodeRabbit configuration file

**: # OpenShift Console Operator - AI Context Hub

This file serves as the central AI documentation hub for the OpenShift Console Operator project. AI assistants (Claude, Cursor, Copilot, CodeRabbit, etc.) use this and the linked documents to understand project context.

Go Version and Dependencies

Go Version and Dependencies

• Go version: 1.24.0 (toolchain: go1.24.4)
• Dependency management: Uses go.mod with vendoring
• Build flags: Use GOFLAGS="-mod=vendor" for builds and tests to ensure vendored dependencies are used
• Key dependencies: openshift/api, openshift/library-go, k8s.io client libraries
• Go version: 1.24.0 (toolchain: go1.24.4)
• Dependency management: Uses go.mod with vendoring
• Build flags: Use GOFLAGS="-mod=vendor" for builds and tests to ensure vendored dependencies are used
• Key dependencies: openshift/api, openshift/library-go, k8s.io client libraries

Quick Reference

This Repository

Document	Purpose
ARCHITECTURE.md	System architecture, components, repository structure
CONVENTIONS.md	Go coding standards, patterns, import organization
TESTING.md	Testing patterns, commands, debugging
README.md	Project README with setup instructions

Console Repository (openshift/console)

For frontend-related guidelines, see the openshift/console repository:

Document	Purpose
STYLEGUIDE.md	Frontend code style guidelines
INTERNATIONALIZATION.md	i18n patterns and translation guidelines
CONTRIBUTING.md	Contribution guidelines for the console project

Project Summary

The **console-operator...

Files:

• pkg/console/operator/sync_v400_test.go
• pkg/console/operator/sync_v400.go

**/*.{py,js,ts,go,rs,java,rb,php,kt,swift,cs}

⚙️ CodeRabbit configuration file

**/*.{py,js,ts,go,rs,java,rb,php,kt,swift,cs}: Injection prevention (prodsec-skills):

• SQL: parameterized queries only; no string concatenation
• Command: no shell=True, os.system, or backtick exec with user input
• LDAP/XPath: escape special characters in filters
• Path traversal: canonicalize paths, reject ../
• Deserialization: no pickle/yaml.load()/eval on untrusted data
• Prototype pollution: no recursive merge of untrusted objects
• Validate at trust boundaries with allow-lists, not deny-lists
• Normalize Unicode and anchor regexes (^$); watch for ReDoS

Files:

• pkg/console/operator/sync_v400_test.go
• pkg/console/operator/sync_v400.go

🔇 Additional comments (1)

pkg/console/operator/sync_v400.go (1)

188-203: LGTM!

Also applies to: 309-348

[sg00dwin]

/test e2e-aws-console
/test e2e-aws-operator

[openshift-ci]

@sg00dwin: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-aws-operator	0d3370e	link	true	/test e2e-aws-operator
ci/prow/e2e-aws-console	0d3370e	link	true	/test e2e-aws-console

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.