Simplified rollout triggers and CRD design doc

[alex-hunt-materialize]

Simplified rollout triggers and CRD design doc

Motivation

• This PR adds a known-desirable feature.
  Part of https://linear.app/materializeinc/issue/DEP-7/design-simplifying-upgrade-rollouts-node-rolls-converted-to-project

Tips for reviewer

Checklist

• This PR has adequate test coverage / QA involvement has been duly considered. (trigger-ci for additional test/nightly runs)
• This PR has an associated up-to-date design doc, is a design doc (template), or is sufficiently small to not require a design.
• If this PR evolves an existing $T ⇔ Proto$T mapping (possibly in a backwards-incompatible way), then it is tagged with a T-proto label.
• If this PR will require changes to cloud orchestration or tests, there is a companion cloud PR to account for those changes that is tagged with the release-blocker label (example).
• If this PR includes major user-facing behavior changes, I have pinged the relevant PM to schedule a changelog post.

[doy-materialize]

once we get ready to move to a real v1, we should be able to drop the Option here - at that point, the only time we don't have a value is when the cr is first created, but we already have the spec at that point, so we can just fill it in.

[alex-hunt-materialize]

I don't think that is true. This is the last completed rollout request. A lot happens between starting a rollout and considering it complete. We save the status multiple times along the way, and we should indicate that it isn't complete in that case.

[doy-materialize]

my point though is that in all of those in progress states, the last completed hash will be different from the requested rollout hash - we aren't actually gaining any extra information from the option. the way it's described here, the option is None if and only if the hashes are equal, which i think just adds an extra invalid state for no benefit?

[alex-hunt-materialize]

I agree about the requested rollout hash, just not about the last completed hash. Specifically, what would you put there during the first rollout?

[doy-materialize]

oh, yeah, sorry if i was unclear, i was only referring to the requested rollout hash here - the last completed rollout hash being None before the first rollout makes sense to me.

[doy-materialize]

i think it'd probably be simpler to have this just always be set (not an Option) - the UpToDate condition will be an easier thing for users to check. it feels like otherwise it'd be possible to accidentally get into an invalid state (lastCompletedrolloutSpecHash == requestedRolloutSpecHash) which would be hard to figure out how to recover from, easier if we just don't make that kind of invalid state representable.

[alex-hunt-materialize]

I think you're right. We can always set it to the calculated hash of the current CR, except if we have already begun promoting.

Note to self, ensure we set any status updates after we've reached promoting state using the value from the status, not the currently calculated value.

[doy-materialize]

the service account annotations and labels are also applied immediately, so they probably shouldn't be here (although a change to serviceAccountName will require a rollout since that needs to update the corresponding field on the statefulset)

[alex-hunt-materialize]

I think they might still be load bearing, despite being applied immediately. If we change the annotations on the service account to add an AWS IAM role ARN for example, do the credentials get applied to existing pods? I'm not sure if they do.

[doy-materialize]

ah, i guess that's true. may be worth testing to see what the behavior here is, but i think you're probably right. we'll probably want to leave a comment explaining this, since it's not immediately obvious