Skip to content

📖 [Docs] Single ClusterExtension ownership concept #1258

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
everettraven merged 7 commits into from
Sep 12, 2024
Merged

📖 [Docs] Single ClusterExtension ownership concept #1258

Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
b4eedaa
Add single-owner-objects.md
bentito Sep 11, 2024
09bf694
Replace openshift ref
bentito Sep 12, 2024
be3e1be
Update docs/drafts/single-owner-objects.md
bentito Sep 12, 2024
b1abe1c
Clarify bundle ClusterExtension relationship
bentito Sep 12, 2024
4c839a9
Custom resource for object at top of doc
bentito Sep 12, 2024
af5a1e7
Custom resource for object everywhere
bentito Sep 12, 2024
cb4a7d9
Update docs/drafts/single-owner-objects.md
bentito Sep 12, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
34 changes: 34 additions & 0 deletions docs/drafts/single-owner-objects.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@

# OLM Ownership Enforcement for `ClusterExtensions`

In OLM, **a Kubernetes resource can only be owned by a single `ClusterExtension` at a time**. This ensures that resources within a Kubernetes cluster are managed consistently and prevents conflicts between multiple `ClusterExtensions` attempting to control the same resource.

## Key Concept: Single Ownership

The core principle enforced by OLM is that each resource can only have one `ClusterExtension` as its owner. This prevents overlapping or conflicting management by multiple `ClusterExtensions`, ensuring that each resource is uniquely associated with only one operator bundle.

## Implications of Single Ownership

### 1. Operator Bundles That Provide a CRD Can Only Be Installed Once

Operator bundles provide `CustomResourceDefinitions` (CRDs), which are part of a `ClusterExtension`. This means a bundle can only be installed once in a cluster. Attempting to install another bundle that provides the same CRDs will result in a failure, as each custom resource can have only one `ClusterExtension` as its owner.


### 2. `ClusterExtensions` Cannot Share Objects
OLM's single-owner policy means that **`ClusterExtensions` cannot share ownership of any resources**. If one `ClusterExtension` manages a specific resource (e.g., a `Deployment`, `CustomResourceDefinition`, or `Service`), another `ClusterExtension` cannot claim ownership of the same resource. Any attempt to do so will be blocked by the system.

## Error Messages

When a conflict occurs due to multiple `ClusterExtensions` attempting to manage the same resource, `operator-controller` will return a clear error message, indicating the ownership conflict.

- **Example Error**:
```plaintext
CustomResourceDefinition 'logfilemetricexporters.logging.kubernetes.io' already exists in namespace 'kubernetes-logging' and cannot be managed by operator-controller
```

This error message signals that the resource is already being managed by another `ClusterExtension` and cannot be reassigned or "shared."

## What This Means for You

- **Uniqueness of Operator Bundles**: Ensure that operator bundles providing the same CRDs are not installed more than once. This can prevent potential installation failures due to ownership conflicts.
- **Avoid Resource Sharing**: If you need different `ClusterExtensions` to interact with similar resources, ensure they are managing separate resources. `ClusterExtensions` cannot jointly manage the same resource due to the single-owner enforcement.