Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Check for required name parameter in dynamic client #75072

Merged
merged 1 commit into from Mar 22, 2019
Merged

Check for required name parameter in dynamic client #75072

merged 1 commit into from Mar 22, 2019

Conversation

lblackstone
Copy link
Contributor

@lblackstone lblackstone commented Mar 6, 2019
edited

What type of PR is this?
/kind bug

What this PR does / why we need it:
The dynamic client in the client-go library was not validating that the required name parameter was non-empty for the Delete, Get, and Patch requests. If an empty string was provided, these methods would panic.

This PR adds a check for empty string and returns an error rather than panicking.

Which issue(s) this PR fixes:

Fixes #75069

Special notes for your reviewer:

Does this PR introduce a user-facing change?:

Add name validation for dynamic client methods in client-go

@k8s-ci-robot k8s-ci-robot added release-note Denotes a PR that will be considered when it comes time to generate release notes. kind/bug Categorizes issue or PR as related to a bug. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. needs-sig Indicates an issue or PR lacks a `sig/foo` label and requires one. needs-priority Indicates a PR lacks a `priority/foo` label and requires one. labels Mar 6, 2019
@k8s-ci-robot
Copy link
Contributor

Hi @lblackstone. Thanks for your PR.

I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@k8s-ci-robot k8s-ci-robot added needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. sig/api-machinery Categorizes an issue or PR as relevant to SIG API Machinery. and removed needs-sig Indicates an issue or PR lacks a `sig/foo` label and requires one. labels Mar 6, 2019
@yue9944882
Copy link
Member

/ok-to-test

@k8s-ci-robot k8s-ci-robot added ok-to-test Indicates a non-member PR verified by an org member that is safe to test. and removed needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. labels Mar 7, 2019
yue9944882
yue9944882 reviewed Mar 7, 2019
View reviewed changes
staging/src/k8s.io/client-go/dynamic/simple.go
@@ -216,6 +217,9 @@ func (c *dynamicResourceClient) DeleteCollection(opts *metav1.DeleteOptions, lis
}

func (c *dynamicResourceClient) Get(name string, opts metav1.GetOptions, subresources ...string) (*unstructured.Unstructured, error) {
if name == "" {
return nil, fmt.Errorf("name is required")
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this validation should also be applied to Patch, Delete, Update, UpdateStatus.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I updated Patch and Delete. The other ones didn't have a name parameter to validate.

Copy link
Member

@liggitt liggitt Mar 21, 2019
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

update/updatestatus can use accessor.GetName()

create should also validate name if len(subresources) > 0

@k8s-ci-robot k8s-ci-robot added size/S Denotes a PR that changes 10-29 lines, ignoring generated files. and removed size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Mar 7, 2019
@lblackstone lblackstone changed the title Check for required name parameter on dynamic Get Check for required name parameter in dynamic client Mar 7, 2019
@fedebongio
Copy link
Contributor

/assign @caesarxuchao

@yue9944882
Copy link
Member

/lgtm
/cc @liggitt
for approval

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Mar 21, 2019
@lblackstone
Check for required name parameter in dynamic client
a9cba03 
The Create, Delete, Get, Patch, Update and UpdateStatus
methods in the dynamic client all expect the name
parameter to be non-empty, but did not validate this
requirement, which could lead to a panic. Add explicit
checks to these methods.
@k8s-ci-robot k8s-ci-robot removed the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Mar 21, 2019
@lblackstone
Copy link
Contributor Author

I rebased on master and added the name check to Create, Update and UpdateStatus

yue9944882
yue9944882 reviewed Mar 21, 2019
View reviewed changes
staging/src/k8s.io/client-go/dynamic/simple.go
@@ -102,6 +103,9 @@ func (c *dynamicResourceClient) Create(obj *unstructured.Unstructured, opts meta
return nil, err
}
name = accessor.GetName()
if len(name) == 0 {
return nil, fmt.Errorf("name is required")
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

name can be empty, if we set the generateName

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not when dealing with a subresource

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

oh tricked. it's subresource.

@liggitt
Copy link
Member

liggitt commented Mar 21, 2019

/lgtm
/approve

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Mar 21, 2019
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: lblackstone, liggitt

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Mar 21, 2019
@lblackstone
Copy link
Contributor Author

The pull-kubernetes-e2e-gce-100-performance test has failed several times today, but I don't think the failure would be related to this change. I'll retry again since it passed before.

@lblackstone
Copy link
Contributor Author

/retest

@fejta-bot
Copy link

/retest
This bot automatically retries jobs that failed/flaked on approved PRs (send feedback to fejta).

Review the full test history for this PR.

Silence the bot with an /lgtm cancel or /hold comment for consistent failures.

@k8s-ci-robot k8s-ci-robot merged commit 0118630 into kubernetes:master Mar 22, 2019
@lblackstone lblackstone mentioned this pull request Mar 22, 2019
Closed
@lblackstone lblackstone deleted the dynamic-get-name-validation branch April 2, 2019 03:14
This was referenced Apr 5, 2019
Merged
Merged
k8s-ci-robot added a commit that referenced this pull request May 7, 2019
@k8s-ci-robot
Merge pull request #76200 from mvladev/automated-cherry-pick-of-#7507…
405aa2e 
…2-upstream-release-1.13

Automated cherry pick of #75072: Check for required name parameter in dynamic client
k8s-ci-robot added a commit that referenced this pull request May 10, 2019
@k8s-ci-robot
Merge pull request #76199 from mvladev/automated-cherry-pick-of-#7507…
59a9c64 
…2-upstream-release-1.14

Automated cherry pick of #75072: Check for required name parameter in dynamic client
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@yue9944882 yue9944882 yue9944882 left review comments

@lavalamp lavalamp Awaiting requested review from lavalamp

@liggitt liggitt Awaiting requested review from liggitt

Assignees

@liggitt liggitt

@caesarxuchao caesarxuchao

@yue9944882 yue9944882

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. kind/bug Categorizes issue or PR as related to a bug. lgtm "Looks good to me", indicates that a PR is ready to be merged. needs-priority Indicates a PR lacks a `priority/foo` label and requires one. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note Denotes a PR that will be considered when it comes time to generate release notes. sig/api-machinery Categorizes an issue or PR as relevant to SIG API Machinery. size/S Denotes a PR that changes 10-29 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Get method for dynamic client panics on empty name
7 participants
@lblackstone @k8s-ci-robot @yue9944882 @fedebongio @liggitt @fejta-bot @caesarxuchao