Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

*: Port from Update to Release for ClusterVersion status #419

Merged
merged 2 commits into from Aug 1, 2020
Merged

*: Port from Update to Release for ClusterVersion status #419

merged 2 commits into from Aug 1, 2020

Conversation

wking
Copy link
Member

@wking wking commented Jul 28, 2020

Bump dependencies to pull in openshift/api#521, and then port our status code to use the new Release type.

This is mostly mechanical, except for the next/last Actual comparison, where I had to avoid:

invalid operation: next.Actual == last.Actual (struct containing []string cannot be compared)

now that Release has a slice of channels. Now I'm comparing only Image, which is sufficient for "is this a different target?". The test suite's expected LastProgress changes are because the shift from:

{Version: "4.0.1", Image: "image/image:1"}

to:

{Version: "1.0.0-abc", Image: "image/image:1"}

no longer counts as a LastProgress-bumping change, because the Image remains unchanged.

WIP because I still have some FIXMEs in there about populating the new Release properties.

@openshift-ci-robot openshift-ci-robot added the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Jul 28, 2020
@openshift-ci-robot openshift-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jul 28, 2020
@wking wking force-pushed the release-metadata branch 2 times, most recently from f8c787d to 3a84314 Compare July 29, 2020 03:56
@wking wking mentioned this pull request Jul 29, 2020
Merged
@wking wking changed the title WIP: *: Port from Update to Release for ClusterVersion status *: Port from Update to Release for ClusterVersion status Jul 29, 2020
@openshift-ci-robot openshift-ci-robot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Jul 29, 2020
@wking
Copy link
Member Author

wking commented Jul 29, 2020

Pulling the WIP, because 3a84314 -> f666975 addresses the outstanding issues with populating the new Release properties. Review is probably most convenient via git show --word-diff=color ..., because that helps isolate the bits I touched from the bits I didn't (event when an untouched string shifts lines).

jottofar
jottofar reviewed Jul 29, 2020
View reviewed changes
pkg/cvo/cvo.go Outdated Show resolved Hide resolved
jottofar
jottofar reviewed Jul 29, 2020
View reviewed changes
pkg/cvo/cvo.go Outdated Show resolved Hide resolved
jottofar
jottofar reviewed Jul 29, 2020
View reviewed changes
pkg/cvo/cvo.go Outdated Show resolved Hide resolved
jottofar
jottofar reviewed Jul 29, 2020
View reviewed changes
pkg/cvo/cvo.go Outdated Show resolved Hide resolved
jottofar
jottofar reviewed Jul 29, 2020
View reviewed changes
pkg/cvo/status.go Outdated Show resolved Hide resolved
jottofar
jottofar reviewed Jul 29, 2020
View reviewed changes
pkg/cvo/status.go Outdated Show resolved Hide resolved
@wking wking force-pushed the release-metadata branch 9 times, most recently from 7eec1e2 to 0a0483a Compare July 30, 2020 05:05
@wking
*: Port from Update to Release for ClusterVersion status
58356de 
The next/last Actual comparison avoids:

  invalid operation: next.Actual == last.Actual (struct containing []string cannot be compared)

The image pullspec is sufficient for that matching.  The test suite's
expected LastProgress changes are because the shift from:

  {Version: "4.0.1", Image: "image/image:1"}

to:

  {Version: "1.0.0-abc", Image: "image/image:1"}

no longer counts as a LastProgress-bumping change (because we're now
only comparing the Image pullspecs).

Also adjusts the upstream/Cincinnati retrieval and payload loading
logic to preserve the additional metadata that we're now exposing.
Storing a Release on the Operator, instead of extending the previous
releaseVersion/releaseImage pattern, makes it easy to keep track of
payload-loaded metadata, so we can fall-back to upstream metadata for
properties where the payload has no opinion, as described in the
enhancement.

In findUpdateFromConfigVersion, if some crazy upstream service
declared a node with a matching version but no image, we used to say
"sorry, no match" without looking through history.  Now we skip the
useless entry and move on to consider later entries and history.  We
only say "no match" if we have no image pullspec associated with the
requested version available.
@LalatenduMohanty
Copy link
Member

@wking The commit message in 58356de is too verbose IMO and hard to read/understand. If you can reduce the text and make it more readable, it would be good.

LalatenduMohanty
LalatenduMohanty reviewed Jul 31, 2020
View reviewed changes
pkg/cvo/cvo.go
releaseVersion string
// release is the release the current operator points to and
// metadata read from the release image. It allows templating of
// the CVO deployment manifest.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This comment does not communicate properly about release API. We should reword this or we can remove the comment all together. Also we can fix this later after this PR merges.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is internal state not directly related to external APIs. Rewording suggestions?

pkg/cvo/cvo.go
// mergeReleaseMetadata returns a deep copy of the input release.
// Values from any matching availableUpdates release are used as
// fallbacks for any properties not defined in the input release.
func (optr *Operator) mergeReleaseMetadata(release configv1.Release) configv1.Release {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would have named this as updateReleaseMetadata() but we can handle this in another PR.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It doesn't update in place, it returns a new object merging data from two sources

@wking
Copy link
Member Author

wking commented Jul 31, 2020

...too verbose IMO and hard to read/understand...

The commit diff is also verbose and hard to understand. I'd like to explain my motivation behind the fiddly bits. Did you have specific sections which need rewording?

@LalatenduMohanty
Copy link
Member

The commit diff is also verbose and hard to understand. I'd like to explain my motivation behind the fiddly bits. Did you have specific sections which need rewording?

The next/last Actual comparison avoids:

  invalid operation: next.Actual == last.Actual (struct containing []string cannot be compared)

The image pullspec is sufficient for that matching.  The test suite's
expected LastProgress changes are because the shift from:

  {Version: "4.0.1", Image: "image/image:1"}

to:

  {Version: "1.0.0-abc", Image: "image/image:1"}

no longer counts as a LastProgress-bumping change (because we're now
only comparing the Image pullspecs).

@wking
Copy link
Member Author

wking commented Jul 31, 2020

The next/last Actual comparison avoids:...

Is that pivot obvious without an explanation? Or is the explanation unclear?

@LalatenduMohanty
Copy link
Member

Is that pivot obvious without an explanation? Or is the explanation unclear?

It is just hard to understand the context and why the text is there.

@wking
Copy link
Member Author

wking commented Jul 31, 2020

Context is changes like this, which you should be able to find in the diff by searching for the mentioned next.Actual == last.Actual, and the remaining text explains (or attempts to explain) why the move to Release forced me to make a change, and why I chose the change I did.

@LalatenduMohanty
Copy link
Member

Context is changes like this, which you should be able to find in the diff by searching for the mentioned next.Actual == last.Actual, and the remaining text explains (or attempts to explain) why the move to Release forced me to make a change, and why I chose the change I did.

I still cannot understand why this needs to go to the commit message.

LalatenduMohanty
LalatenduMohanty approved these changes Jul 31, 2020
View reviewed changes
Copy link
Member

@LalatenduMohanty LalatenduMohanty left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@openshift-ci-robot openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Jul 31, 2020
@openshift-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: LalatenduMohanty, wking

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:
  • OWNERS [LalatenduMohanty,wking]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@wking
Copy link
Member Author

wking commented Jul 31, 2020

I still cannot understand why this needs to go to the commit message.

So in a year when we reroll this, we remember the motivation ;)

@openshift-bot
Copy link
Contributor

/retest

Please review the full test history for this PR and help us cut down flakes.

1 similar comment
@openshift-bot
Copy link
Contributor

/retest

Please review the full test history for this PR and help us cut down flakes.

@wking
Copy link
Member Author

wking commented Jul 31, 2020

e2e had som Prom issues.

/retest

@openshift-bot
Copy link
Contributor

/retest

Please review the full test history for this PR and help us cut down flakes.

2 similar comments
@openshift-bot
Copy link
Contributor

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-merge-robot openshift-merge-robot merged commit 497fda6 into openshift:master Aug 1, 2020
@wking wking deleted the release-metadata branch August 1, 2020 05:04
@wking wking mentioned this pull request Aug 3, 2020
Merged
wking added a commit to wking/cluster-version-operator that referenced this pull request Aug 9, 2020
@wking
pkg/cvo/sync_worker: Make expected/actual version mismatch fatal
c53b9b2 
If, for example, the configured ClusterVersion spec.upstream
advertised a given image as 4.0.1, but the version baked into the
release's own metadata was 1.0.0-abc, report
VerifyPayloadVersionFailed and continue to apply the previous release
image, instead of optimistically moving on to apply the new release
image.  This protects users from compromised or man-in-the-middled
upstreams who attempt downgrade and similar attacks by misrepresenting
a recommended update.

Addressing a FIXME from 58356de (*: Port from Update to Release for
ClusterVersion status, 2020-07-24, openshift#419).
@wking wking mentioned this pull request Aug 9, 2020
Merged
wking
wking commented Aug 9, 2020
View reviewed changes
pkg/cvo/sync_worker.go
} else if payloadUpdate.Release.Version != work.Desired.Version {
err = fmt.Errorf("release image version %s does not match the expected upstream version %s", payloadUpdate.Release.Version, work.Desired.Version)
w.eventRecorder.Eventf(cvoObjectRef, corev1.EventTypeWarning, "VerifyPayloadVersionFailed", "verifying payload failed version=%q image=%q failure=%v", work.Desired.Version, work.Desired.Image, err)
/* FIXME: Ignore for now. I will make this fatal in a follow-up pivot
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I've opened #431 to address this.

wking added a commit to wking/cluster-version-operator that referenced this pull request Aug 9, 2020
@wking
pkg/cvo/sync_worker: Make expected/actual version mismatch fatal
9be6175 
If, for example, the configured ClusterVersion spec.upstream
advertised a given image as 4.0.1, but the version baked into the
release's own metadata was 1.0.0-abc, report
VerifyPayloadVersionFailed and continue to apply the previous release
image, instead of optimistically moving on to apply the new release
image.  This protects users from compromised or man-in-the-middled
upstreams who attempt downgrade and similar attacks by misrepresenting
a recommended update.

Addressing a FIXME from 58356de (*: Port from Update to Release for
ClusterVersion status, 2020-07-24, openshift#419).
@wking wking mentioned this pull request Sep 28, 2020
Closed
wking added a commit to wking/cluster-version-operator that referenced this pull request Dec 15, 2020
@wking
pkg/cvo/availableupdates: Fix "Retreived" -> "Retrieved" typo
4f4c8af 
Typo is from 58356de (*: Port from Update to Release for
ClusterVersion status, 2020-07-24, openshift#419).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@vrutkovs vrutkovs vrutkovs left review comments

@jottofar jottofar jottofar left review comments

@LalatenduMohanty LalatenduMohanty LalatenduMohanty approved these changes

@abhinavdahiya abhinavdahiya Awaiting requested review from abhinavdahiya

Assignees

@LalatenduMohanty LalatenduMohanty

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. lgtm Indicates that a PR is ready to be merged.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
7 participants
@wking @openshift-ci-robot @LalatenduMohanty @openshift-bot @vrutkovs @jottofar @openshift-merge-robot