Bug 1906732: Add E2E to ensure Cluster Wide Proxies are honoured in Machine API components

[rvanderp3]

No description provided.

[openshift-ci-robot]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[JoelSpeed]

This is great, left a few comments which are pretty much all stylistic nit picks, please update as appropriate

[rvanderp3]

/test

[openshift-ci-robot]

@rvanderp3: The /test command needs one or more targets.
The following commands are available to trigger jobs:

• /test e2e-aws-operator
• /test e2e-aws-operator-tech-preview
• /test e2e-azure-operator
• /test e2e-gcp-operator
• /test goimports
• /test golint
• /test govet
• /test images

Use /test all to run the following jobs:

• pull-ci-openshift-cluster-api-actuator-pkg-master-e2e-aws-operator
• pull-ci-openshift-cluster-api-actuator-pkg-master-e2e-azure-operator
• pull-ci-openshift-cluster-api-actuator-pkg-master-e2e-gcp-operator
• pull-ci-openshift-cluster-api-actuator-pkg-master-goimports
• pull-ci-openshift-cluster-api-actuator-pkg-master-golint
• pull-ci-openshift-cluster-api-actuator-pkg-master-govet
• pull-ci-openshift-cluster-api-actuator-pkg-master-images

In response to this:

/test

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[rvanderp3]

/test golint

[rvanderp3]

/test govet,goimports

[openshift-ci-robot]

@rvanderp3: The specified target(s) for /test were not found.
The following commands are available to trigger jobs:

• /test e2e-aws-operator
• /test e2e-aws-operator-tech-preview
• /test e2e-azure-operator
• /test e2e-gcp-operator
• /test goimports
• /test golint
• /test govet
• /test images

Use /test all to run the following jobs:

• pull-ci-openshift-cluster-api-actuator-pkg-master-e2e-aws-operator
• pull-ci-openshift-cluster-api-actuator-pkg-master-e2e-azure-operator
• pull-ci-openshift-cluster-api-actuator-pkg-master-e2e-gcp-operator
• pull-ci-openshift-cluster-api-actuator-pkg-master-goimports
• pull-ci-openshift-cluster-api-actuator-pkg-master-golint
• pull-ci-openshift-cluster-api-actuator-pkg-master-govet
• pull-ci-openshift-cluster-api-actuator-pkg-master-images

In response to this:

/test govet,goimports,govet

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[rvanderp3]

/test govet

[JoelSpeed]

I think we should be using klog/v2 now

Suggested change

	"k8s.io/klog"
	"k8s.io/klog/v2"

[alexander-demicev]

this still needs to be adressed

[rvanderp3]

thanks. i'll take care of that today.

[JoelSpeed]

Don't need to declare these vars up here, they can be created inline

Suggested change

	var machineSet *mapiv1beta1.MachineSet
	var machineSetParams MachineSetParams
	machineSetParams = BuildMachineSetParams(client, 1)
	machineSetParams := BuildMachineSetParams(client, 1)

[JoelSpeed]

Should we not check this error?

Suggested change

	client.Update(context.Background(), node)
	if err := client.Update(context.Background(), node); err != nil {
	return nil, err
	}

[JoelSpeed]

We can get rid of this one

Suggested change

TypeMeta: metav1.TypeMeta{},

[JoelSpeed]

On a WaitLong, might want to reduce the retry, perhaps RetryMedium would be more appropriate here?

[JoelSpeed]

This error message needs an update

[JoelSpeed]

All of these can be condensed to

Suggested change

	if updatedProxy.Spec.HTTPProxy != "" {
	proxy.Spec.HTTPProxy = updatedProxy.Spec.HTTPProxy
	} else {
	proxy.Spec.HTTPProxy = ""
	}
	if updatedProxy.Spec.HTTPSProxy != "" {
	proxy.Spec.HTTPSProxy = updatedProxy.Spec.HTTPSProxy
	} else {
	proxy.Spec.HTTPSProxy = ""
	}
	if updatedProxy.Spec.NoProxy != "" {
	proxy.Spec.NoProxy = updatedProxy.Spec.NoProxy
	} else {
	proxy.Spec.NoProxy = ""
	}
	proxy.Spec.HTTPProxy = updatedProxy.Spec.HTTPProxy
	proxy.Spec.HTTPSProxy = updatedProxy.Spec.HTTPSProxy
	proxy.Spec.NoProxy = updatedProxy.Spec.NoProxy

But do we really need to do this? Would we not want to just c.Update(context.Background(), updatedProxy)? Do we even need this wrapper function?

[rvanderp3]

very good call. when I wrote that I thought those variables inited to nil when undefined, which they don't. I'll make that change.

[JoelSpeed]

This either needs to be one It statement as below, or it needs to be a BeforeEach which sets up the cluster-wide proxy and an AfterEach which cleans this up again, with the It statement being the one that creates and destroys a MachineSet

Suggested change

	var machineSet *mapiv1beta1.MachineSet
	var proxyMachineSet *mapiv1beta1.MachineSet
	var machineSetParams framework.MachineSetParams
	It("reflect the configured proxy in machine-api-controller", func() {
	By("creating host for proxy")
	client, err := framework.LoadClient()
	Expect(err).NotTo(HaveOccurred())
	proxyMachineSet, err = framework.CreateProxyMachineSet(client)
	Expect(err).NotTo(HaveOccurred())
	By("deploying an HTTP proxy")
	deployment, err := framework.DeployClusterProxy(client)
	Expect(err).NotTo(HaveOccurred())
	Expect(framework.IsDeploymentAvailable(client, deployment.Name, deployment.Namespace)).To(BeTrue())
	By("configuring cluster-wide proxy")
	pods, err := framework.GetPods(client, map[string]string{"app": "squid"})
	Expect(err).NotTo(HaveOccurred())
	Expect(len(pods.Items) > 0).To(BeTrue())
	proxy := configv1.Proxy{}
	proxy.Spec.HTTPProxy = "http://" + pods.Items[0].Status.HostIP + ":80"
	proxy.Spec.HTTPSProxy = "http://" + pods.Items[0].Status.HostIP + ":80"
	framework.SetClusterProxy(client, proxy)
	Expect(err).NotTo(HaveOccurred())
	By("waiting for machine-api-controller deployment to reflect configured cluster-wide proxy")
	Expect(framework.WaitForProxyInjectionSync(client, maoManagedDeployment, framework.MachineAPINamespace, true)).To(BeTrue())
	})
	It("allow a machineset to be created and destroyed", func() {
	client, err := framework.LoadClient()
	Expect(err).NotTo(HaveOccurred())
	By("creating a machineset")
	machineSetParams = framework.BuildMachineSetParams(client, 3)
	machineSet, err = framework.CreateMachineSet(client, machineSetParams)
	Expect(err).ToNot(HaveOccurred())
	framework.WaitForMachineSet(client, machineSet.GetName())
	By("destroying a machineset")
	err = client.Delete(context.Background(), machineSet)
	Expect(err).ToNot(HaveOccurred())
	framework.WaitForMachineSetDelete(client, machineSet)
	})
	It("reflect an unconfigured proxy in machine-api-controller", func() {
	client, err := framework.LoadClient()
	Expect(err).NotTo(HaveOccurred())
	By("unconfiguring cluster-wide proxy")
	proxy := configv1.Proxy{}
	proxy.Spec.HTTPProxy = ""
	proxy.Spec.HTTPSProxy = ""
	framework.SetClusterProxy(client, proxy)
	Expect(err).NotTo(HaveOccurred())
	By("waiting for machine-api-controller deployment to reflect unconfigured cluster-wide proxy")
	Expect(framework.WaitForProxyInjectionSync(client, maoManagedDeployment, framework.MachineAPINamespace, false)).To(BeTrue())
	framework.DestroyClusterProxy(client)
	Expect(proxyMachineSet != nil).To(BeTrue())
	framework.DeleteMachineSets(client, proxyMachineSet)
	})
	It("create machines when configured behind a proxy", func() {
	By("creating host for proxy")
	client, err := framework.LoadClient()
	Expect(err).NotTo(HaveOccurred())
	proxyMachineSet, err := framework.CreateProxyMachineSet(client)
	Expect(err).NotTo(HaveOccurred())
	By("deploying an HTTP proxy")
	deployment, err := framework.DeployClusterProxy(client)
	Expect(err).NotTo(HaveOccurred())
	Expect(framework.IsDeploymentAvailable(client, deployment.Name, deployment.Namespace)).To(BeTrue())
	By("configuring cluster-wide proxy")
	pods, err := framework.GetPods(client, map[string]string{"app": "squid"})
	Expect(err).NotTo(HaveOccurred())
	Expect(len(pods.Items) > 0).To(BeTrue())
	proxy := configv1.Proxy{}
	proxy.Spec.HTTPProxy = "http://" + pods.Items[0].Status.HostIP + ":80"
	proxy.Spec.HTTPSProxy = "http://" + pods.Items[0].Status.HostIP + ":80"
	framework.SetClusterProxy(client, proxy)
	Expect(err).NotTo(HaveOccurred())
	By("waiting for machine-api-controller deployment to reflect configured cluster-wide proxy")
	Expect(framework.WaitForProxyInjectionSync(client, maoManagedDeployment, framework.MachineAPINamespace, true)).To(BeTrue())
	By("creating a machineset")
	machineSetParams = framework.BuildMachineSetParams(client, 3)
	machineSet, err = framework.CreateMachineSet(client, machineSetParams)
	Expect(err).ToNot(HaveOccurred())
	framework.WaitForMachineSet(client, machineSet.GetName())
	By("destroying a machineset")
	Expect(client.Delete(context.Background(), machineSet)).To(Succeed())
	framework.WaitForMachineSetDelete(client, machineSet)
	By("unconfiguring cluster-wide proxy")
	proxy := configv1.Proxy{}
	proxy.Spec.HTTPProxy = ""
	proxy.Spec.HTTPSProxy = ""
	framework.SetClusterProxy(client, proxy)
	Expect(err).NotTo(HaveOccurred())
	By("waiting for machine-api-controller deployment to reflect unconfigured cluster-wide proxy")
	Expect(framework.WaitForProxyInjectionSync(client, maoManagedDeployment, framework.MachineAPINamespace, false)).To(BeTrue())
	framework.DestroyClusterProxy(client)
	Expect(proxyMachineSet != nil).To(BeTrue())
	framework.DeleteMachineSets(client, proxyMachineSet)
	})

[JoelSpeed]

I don't think this can run in parallel with other tests, I think we need to mark as serial as suggested below, but I think @elmiko can confirm this

Suggested change

	var _ = Describe("[Feature:Operators] When cluster-wide proxy is configured, Machine API cluster operator should ", func() {
	var _ = Describe("[Serial][Feature:Operators] When cluster-wide proxy is configured, Machine API cluster operator should ", func() {

[JoelSpeed]

/retest

Test failures look unrelated, infrastructure issues seemingly

[JoelSpeed]

/retest

[rvanderp3]

/retest

[JoelSpeed]

/retest

[JoelSpeed]

/retest

[JoelSpeed]

/retest

[alexander-demicev]

this still needs to be adressed

[rvanderp3]

/retest

[rvanderp3]

/retest

[JoelSpeed]

There's a few nits I could make about consistency with imports and naming, but I think at this point it's better to get this merged than nitpick. Will need to create a BZ to get this merged now though. I'll get that done shortly.

/approve

Thanks for all your work on this @rvanderp3!

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: JoelSpeed

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [JoelSpeed]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[JoelSpeed]

/retitle Bug 1906732: Add E2E to ensure Cluster Wide Proxies are honoured in Machine API components

[openshift-ci-robot]

@rvanderp3: This pull request references Bugzilla bug 1906732, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker.

3 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target release (4.7.0) matches configured target release for branch (4.7.0)
• bug is in the state NEW, which is one of the valid states (NEW, ASSIGNED, ON_DEV, POST, POST)

In response to this:

Bug 1906732: Add E2E to ensure Cluster Wide Proxies are honoured in Machine API components

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[alexander-demicev]

Thanks!
/lgtm

[openshift-ci-robot]

@rvanderp3: All pull requests linked via external trackers have merged:

• openshift/cluster-api-actuator-pkg#192

Bugzilla bug 1906732 has been moved to the MODIFIED state.

In response to this:

Bug 1906732: Add E2E to ensure Cluster Wide Proxies are honoured in Machine API components

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.