List available rollbacks

[pchila]

What does this PR do?

Add elastic-agent upgrade list-rollbacks subcommand to show whether there are versions of agent that can be used to trigger a manual rollback with elastic-agent upgrade --rollback <version>

Available rollbacks are listed by version and include versioned home and TTL for each.
Output is available in either 'human', 'json' or 'yaml' format

Output looks similar to this

vagrant@elastic-agent-dev:/vagrant/build/distributions$ sudo elastic-agent upgrade list-rollbacks
── 9.4.0-SNAPSHOT
   ├─ VersionedHome: data/elastic-agent-9.4.0-SNAPSHOT-facbd1
   └─ ValidUntil: 2026-01-12T12:54:30Z
vagrant@elastic-agent-dev:/vagrant/build/distributions$ sudo elastic-agent upgrade list-rollbacks -o yaml
- version: 9.4.0-SNAPSHOT
  versioned_home: data/elastic-agent-9.4.0-SNAPSHOT-facbd1
  valid_until: 2026-01-12T12:54:30Z
vagrant@elastic-agent-dev:/vagrant/build/distributions$ sudo elastic-agent upgrade list-rollbacks -o json
[
  {
    "version": "9.4.0-SNAPSHOT",
    "versioned_home": "data/elastic-agent-9.4.0-SNAPSHOT-facbd1",
    "valid_until": "2026-01-12T12:54:30Z"
  }
]

Why is it important?

Checklist

• I have read and understood the pull request guidelines of this project.
• My code follows the style guidelines of this project
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• I have made corresponding change to the default configuration files
• I have added tests that prove my fix is effective or that my feature works
• I have added an entry in ./changelog/fragments using the changelog tool
• I have added an integration test or an E2E test

Disruptive User Impact

How to test this PR locally

• Package the agent from this PR (it can be packaged twice using an IAR-style version or any version greater or equal to 9.3.0-SNAPSHOT can be used)

  USE_PACKAGE_VERSION=true AGENT_PACKAGE_VERSION=9.4.0+build20260112 BEAT_VERSION=9.4.0 SNAPSHOT=true PACKAGES="tar.gz" PLATFORMS=linux/amd64 mage package && USE_PACKAGE_VERSION=true SNAPSHOT=true PACKAGES="tar.gz" PLATFORMS=linux/amd64 mage package

• unpack the initial agent package and add agent.upgrade.rollback.window: "2h" to elastic-agent.yml config file
• install elastic-agent as standalone
• upgrade agent to the version packaged from this PR

  sudo elastic-agent upgrade --skip-verify --source-uri=file://<path where the package is located> 9.4.0+build20260112-SNAPSHOT

• Wait for the upgrade to complete, then list the available rollbacks with elastic-agent upgrade list-rollbacks subcommand

  vagrant@elastic-agent-dev:/vagrant/build/distributions/elastic-agent-9.4.0-SNAPSHOT-linux-x86_64$ sudo elastic-agent upgrade list-rollbacks
  ── 9.4.0-SNAPSHOT
     ├─ VersionedHome: data/elastic-agent-9.4.0-SNAPSHOT-facbd1
     └─ ValidUntil: 2026-01-12T14:31:09Z
  vagrant@elastic-agent-dev:/vagrant/build/distributions/elastic-agent-9.4.0-SNAPSHOT-linux-x86_64$ sudo elastic-agent upgrade list-rollbacks -o json
  [
    {
      "version": "9.4.0-SNAPSHOT",
      "versioned_home": "data/elastic-agent-9.4.0-SNAPSHOT-facbd1",
      "valid_until": "2026-01-12T14:31:09Z"
    }
  ]
  vagrant@elastic-agent-dev:/vagrant/build/distributions/elastic-agent-9.4.0-SNAPSHOT-linux-x86_64$ sudo elastic-agent upgrade list-rollbacks -o yaml
  - version: 9.4.0-SNAPSHOT
    versioned_home: data/elastic-agent-9.4.0-SNAPSHOT-facbd1
    valid_until: 2026-01-12T14:31:09Z
  vagrant@elastic-agent-dev:/vagrant/build/distributions/elastic-agent-9.4.0-SNAPSHOT-linux-x86_64$ sudo elastic-agent upgrade list-rollbacks -o human
  ── 9.4.0-SNAPSHOT
     ├─ VersionedHome: data/elastic-agent-9.4.0-SNAPSHOT-facbd1
     └─ ValidUntil: 2026-01-12T14:31:09Z
  vagrant@elastic-agent-dev:/vagrant/build/distributions/elastic-agent-9.4.0-SNAPSHOT-linux-x86_64$ sudo elastic-agent upgrade list-rollbacks -o wrong
  unsupported output format "wrong": defaulting to "human"
  ── 9.4.0-SNAPSHOT
     ├─ VersionedHome: data/elastic-agent-9.4.0-SNAPSHOT-facbd1
     └─ ValidUntil: 2026-01-12T14:31:09Z
  

Related issues

• Closes Add --list-rollbacks option to elastic-agent upgrade subcommand #6888

Questions to ask yourself

• How are we going to support this in production?
• How are we going to measure its adoption?
• How are we going to debug this?
• What are the metrics I should take care of?
• ...

[elasticmachine]

Pinging @elastic/elastic-agent-control-plane (Team:Elastic-Agent-Control-Plane)

[cmacknz]

Code LGTM, is there a test that can be added to ensure this works?

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b list-available-rollbacks upstream/list-available-rollbacks
git merge upstream/main
git push upstream list-available-rollbacks

[pchila]

Code LGTM, is there a test that can be added to ensure this works?

@cmacknz
The UpgradeCmd instantiates its own client, making unit testing unnecessarily difficult (there is a need for a mockServer running with hardcoded behavior)

Request and responses messages are generated with cproto and the server operation implementation is pretty simple.

I suppose that this could be tested in an integration test (a new or an existing one) but that would seem overkill.

[cmacknz]

Adding a check for available rollbacks in an existing integration test works for me. I wouldn't write a new integration test for this if unit testing isn't convenient.

For example we could list rollbacks right before manually triggering one in the block below for example and that would cover this and seems straight forward:

elastic-agent/testing/integration/ess/upgrade_rollback_test.go

Lines 401 to 406 in 10d1902

	rollbackTrigger: func(ctx context.Context, t *testing.T, client client.Client, startFixture, endFixture *atesting.Fixture) {
	t.Logf("sending version=%s rollback=%v upgrade to agent", startFixture.Version(), true)
	retVal, err := client.Upgrade(ctx, startFixture.Version(), true, "", false, false)
	require.NoError(t, err, "error triggering manual rollback to version %s", startFixture.Version())
	t.Logf("received output %s from upgrade command", retVal)
	},

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b list-available-rollbacks upstream/list-available-rollbacks
git merge upstream/main
git push upstream list-available-rollbacks

[ebeahan]

@pchila sorry for my shenanigans with force pushing to fix the commit history 😢 . I think I correctly fixed the Beats submodule conflict with my latest commit.

[elasticmachine]

💔 Build Failed

• Buildkite Build
• Commit: 18b84ec

Failed CI Steps

• :open-pull-request: :kubernetes: v1.27.16:amd64:basic
• :open-pull-request: :kubernetes: v1.27.16:amd64:basic
• :open-pull-request: :kubernetes: v1.34.0:amd64:basic
• :open-pull-request: :kubernetes: v1.34.0:amd64:basic
• :open-pull-request: :kubernetes: v1.27.16:amd64:slim
• :open-pull-request: :kubernetes: v1.27.16:amd64:slim
• :open-pull-request: :kubernetes: v1.34.0:amd64:slim
• :open-pull-request: :kubernetes: v1.34.0:amd64:slim
• :open-pull-request: :kubernetes: v1.27.16:amd64:wolfi
• :open-pull-request: :kubernetes: v1.27.16:amd64:wolfi
• :open-pull-request: :kubernetes: v1.34.0:amd64:slim-wolfi
• :open-pull-request: :kubernetes: v1.34.0:amd64:slim-wolfi
• ESS stack cleanup

History

• 💔 Build #33300 failed c17a254
• 💔 Build #33299 failed 1e10b16
• 💔 Build #33292 failed e90fad7
• 💔 Build #33270 failed b9537d7

cc @pchila