viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

k8s-version-upgrade: detector next-minor probe must follow 302 (curl -sfL)

Browse source 
The next-minor Packages query used `curl -sf` without -L. pkgs.k8s.io
302-redirects every request to a backing host, so without -L curl returned
an empty body, NEXT_MINOR_PATCH came back empty, and the detector fell
through to "No upgrade needed". That is exactly why last night's 23:00 chain
no-op'd instead of resolving the 1.35 next-minor target (1.35.6) and handing
it to the compat gate. `curl -sfL` follows the redirect and returns the
Packages file (verified: -sf -> empty, -sfL -> 1.35.6). Mirrors the same
-L fix already applied to the Release availability probe (-sILo) above.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
Viktor Barzin 2026-06-20 08:09:08 +00:00
parent 45bed1c133
commit 44a98d408e
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
stacks/k8s-version-upgrade/main.tf
View file

@ -435,7 +435,7 @@ resource "kubernetes_cron_job_v1" "k8s_version_check" {
KIND="patch" KIND="patch"
elif [ "$NEXT_MINOR_AVAILABLE" = "yes" ]; then elif [ "$NEXT_MINOR_AVAILABLE" = "yes" ]; then
NEXT_MINOR_PATCH=$($SSH wizard@k8s-master.viktorbarzin.lan \ NEXT_MINOR_PATCH=$($SSH wizard@k8s-master.viktorbarzin.lan \
"curl -sf 'https://pkgs.k8s.io/core:/stable:/v$NEXT_MINOR/deb/Packages' \ "curl -sfL 'https://pkgs.k8s.io/core:/stable:/v$NEXT_MINOR/deb/Packages' \
| grep -oE 'Version: [0-9.-]+' \ | grep -oE 'Version: [0-9.-]+' \
| awk '{print \$2}' | sed 's/-.*//' \ | awk '{print \$2}' | sed 's/-.*//' \
| sort -V | tail -1" || echo "") | sort -V | tail -1" || echo "")