CLID-10: Generate CatalogSource files

[sherine-k]

Description

This PR contains implementation for CLID-10 :

• CatalogSource for operator catalogs
• It introduces targetCatalogSourceTemplate to the imageSetConfig, in order to allow the user customization of the catalogSource
  • if not provided, the catalogSource will not contain any updateStrategy (polling interval)
  • when provided, oc-mirror will attempt to use the template as a base for catalogSource generation, and in case of failure, it will failover to generation without template with a warning in the logs
• It removes deprecated fields targetName and originalRef from the imageSetConfig

Fixes # CLID-10.

PS: catalogSource resource name and filename use a different naming convention than v1: "cs-" + catalogRepository + "-" + date . We might need to reconsider this strategy based on how customers use these resources in the cluster. ie. Do they deploy the new catalogSource and delete the old? do they expect an update of the existing resource?

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Prior to testing, create the file clid10.yaml with content:

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
  operators:
  - catalog: registry.redhat.io/redhat/redhat-operator-index:v4.14
    packages:
    - name: aws-load-balancer-operator
    targetCatalogSourceTemplate: "/home/skhoury/go/src/github.com/openshift/oc-mirror/v2/tests/catalog-source_template.yaml"

And the catalog-source_template.yaml

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
  name: totalRubbish
  namespace: openshift-marketplace
spec:
  image: totalRubbish
  sourceType: grpc
  updateStrategy:
    registryPoll: 
      interval: 30m0s

Next, perform a mirrorToDisk + DiskToMirror

./bin/oc-mirror --v2 -c clid10.yaml file:///home/skhoury/clid-10
./bin/oc-mirror --v2 -c clid10.yaml --from file:///home/skhoury/clid-10 docker://localhost:5000 --dest-tls-verify=false

Expected Outcome

The catalogSource file is generated under the working directory, under subfolder cluster-resources. The catalog source file name is derived from the catalog name, with cs- as prefix, and the date as suffix.

Ex: cs-redhat-operator-index-2024-01-22t17-37-25z.yaml

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
  creationTimestamp: null
  name: cs-redhat-operator-index-2024-01-22t17-37-25z
  namespace: openshift-marketplace
spec:
  icon: {}
  image: localhost:5000/clid10/redhat/redhat-operator-index:v4.14
  sourceType: grpc
  updateStrategy:
    registryPoll:
      interval: 30m0s
status: {}

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR implements generation of catalog source custom resource files.

Fixes CLID-10

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Additional unit tests.
With the following imagesetconfig, do mirror to disk followed by disk to mirror(./bin/oc-mirror --v2 -c [clid-10](https://issues.redhat.com//browse/clid-10).yaml --from file:///home/skhoury/clid-10 docker://localhost:5000/cs --dest-tls-verify=false), you should get the catalog source in the working-dir/cluster-resources folder

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 operators:
 - catalog: registry.redhat.io/redhat/redhat-operator-index:v4.14
   packages:
   - name: aws-load-balancer-operator
 additionalImages:
 - name: "gcr.io/kubebuilder/kube-rbac-proxy:v0.5.0"
 - name: "quay.io/cockroachdb/cockroach-helm-operator:6.0.0"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.3"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.4"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:a5d4f4467250074216eb1ba1c36e06a3ab797d81c431427fc2aca97ecaf4e9d8"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:d3016b1507515fc7712f9c47fd9082baf9ccb070aaab58ed0ef6e5abdedde8ba"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:f42337e7b85a46d83c94694638e2312e10ca16a03542399a65ba783c94a32b63"

Expected Outcome

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 name: cs-redhat-operator-index-2024-01-19t17-17-35z
 namespace: openshift-marketplace
spec:
 image: localhost:5000/cs/redhat/redhat-operator-index:v4.14
 sourceType: grpc

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR implements generation of catalog source custom resource files.

Fixes CLID-10.

In this implementation, the custom resource name, as well as the file name are constructed as:
"cs-"+catalogImage+"-date".

This is different than the logic adopted in V1.

❓ should the custom resource name be built based on the date? still rely on the old logic? What is the impact in a disconnected cluster.

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Additional unit tests.
With the following imagesetconfig, do mirror to disk followed by disk to mirror(./bin/oc-mirror --v2 -c [clid-10](https://issues.redhat.com//browse/clid-10).yaml --from file:///home/skhoury/clid-10 docker://localhost:5000/cs --dest-tls-verify=false), you should get the catalog source in the working-dir/cluster-resources folder

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 operators:
 - catalog: registry.redhat.io/redhat/redhat-operator-index:v4.14
   packages:
   - name: aws-load-balancer-operator
 additionalImages:
 - name: "gcr.io/kubebuilder/kube-rbac-proxy:v0.5.0"
 - name: "quay.io/cockroachdb/cockroach-helm-operator:6.0.0"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.3"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.4"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:a5d4f4467250074216eb1ba1c36e06a3ab797d81c431427fc2aca97ecaf4e9d8"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:d3016b1507515fc7712f9c47fd9082baf9ccb070aaab58ed0ef6e5abdedde8ba"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:f42337e7b85a46d83c94694638e2312e10ca16a03542399a65ba783c94a32b63"

Expected Outcome

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 name: cs-redhat-operator-index-2024-01-19t17-17-35z
 namespace: openshift-marketplace
spec:
 image: localhost:5000/cs/redhat/redhat-operator-index:v4.14
 sourceType: grpc

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR implements generation of catalog source custom resource files.

Fixes CLID-10.

In this implementation, the custom resource name, as well as the file name are constructed as:
"cs-"+catalogImage+"-date".

This is different than the logic adopted in V1.

❓ should the custom resource name be built based on the date? still rely on the old logic? What is the impact in a disconnected cluster.

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Additional unit tests.
With the following imagesetconfig, do mirror to disk followed by disk to mirror(./bin/oc-mirror --v2 -c clid10.yaml --from file:///home/skhoury/clid-10 docker://localhost:5000/cs --dest-tls-verify=false), you should get the catalog source in the working-dir/cluster-resources folder

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 operators:
 - catalog: registry.redhat.io/redhat/redhat-operator-index:v4.14
   packages:
   - name: aws-load-balancer-operator
 additionalImages:
 - name: "gcr.io/kubebuilder/kube-rbac-proxy:v0.5.0"
 - name: "quay.io/cockroachdb/cockroach-helm-operator:6.0.0"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.3"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.4"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:a5d4f4467250074216eb1ba1c36e06a3ab797d81c431427fc2aca97ecaf4e9d8"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:d3016b1507515fc7712f9c47fd9082baf9ccb070aaab58ed0ef6e5abdedde8ba"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:f42337e7b85a46d83c94694638e2312e10ca16a03542399a65ba783c94a32b63"

Expected Outcome

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 name: cs-redhat-operator-index-2024-01-19t17-17-35z
 namespace: openshift-marketplace
spec:
 image: localhost:5000/cs/redhat/redhat-operator-index:v4.14
 sourceType: grpc

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR implements generation of catalog source custom resource files.

Fixes CLID-10.

In this implementation, the custom resource name, as well as the file name are constructed as:
"cs-"+catalogImage+"-date".

This is different than the logic adopted in V1.

❓ should the custom resource name be built based on the date? still rely on the old logic? What is the impact in a disconnected cluster.

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Additional unit tests.
With the following imagesetconfig, do mirror to disk followed by disk to mirror(./bin/oc-mirror --v2 -c clid10.yaml --from file:///home/skhoury/clid-10 docker://localhost:5000/cs --dest-tls-verify=false), you should get the catalog source in the working-dir/cluster-resources folder

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 operators:
 - catalog: registry.redhat.io/redhat/redhat-operator-index:v4.14
   packages:
   - name: aws-load-balancer-operator
 additionalImages:
 - name: "gcr.io/kubebuilder/kube-rbac-proxy:v0.5.0"
 - name: "quay.io/cockroachdb/cockroach-helm-operator:6.0.0"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.3"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.4"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:a5d4f4467250074216eb1ba1c36e06a3ab797d81c431427fc2aca97ecaf4e9d8"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:d3016b1507515fc7712f9c47fd9082baf9ccb070aaab58ed0ef6e5abdedde8ba"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:f42337e7b85a46d83c94694638e2312e10ca16a03542399a65ba783c94a32b63"

Expected Outcome

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 name: cs-redhat-operator-index-2024-01-19t17-17-35z
 namespace: openshift-marketplace
spec:
 image: localhost:5000/cs/redhat/redhat-operator-index:v4.14
 sourceType: grpc

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR contains implementation for CLID-10 (see jira for detailed design) :

• ImageTagMirrorSet : enabled by flag --generate-itms
• ImageDigestMirrorSet: with the following behavior
• Generated by default (when no --generate-itms flag): Contains source and mirrors for all mirrored images.
• Contains source and mirror paths namespace scoped, unless --max-nested-paths has been used
• Contains source and mirrors only for images by digest if --generate-itms is used
• Excluded: CatalogSource for operator catalogs will be in a different PR CLID-10: Generate CatalogSource files #784

Fixes # CLID-10.

Regarding IDMS/ITMS generation, a few questions are still pending in CLID-10 (see comments):

• By default, oc-mirror will generate IDMS only. Images referenced by tag will be added to that IDMS. If a cluster deploys such an IDMS, and references those images by tag, the mirror will not be used. Therefore, should we:
• keep the specified behavior, but and display warnings for images by tag (Implemented)
• By default generate IDMS and ITMS (images by tag can therefore benefit from the mirrors)
• Keep the default to generate IDMS only, exclude images by tag and display warnings for them
• To be confirmed: In this PR, we stop resolving tags to digest prior to mirroring. In V1, oc-mirror was removing replacing tags by digests before handing mappings.txt to the oc code, which in turn, created a fake tag (derived from the digest value). This V1 behavior should not be used for V2, because we have ITMS, because we don't call oc, and because we don't rebuild catalogs (the reference for the image is not modified in the declarative config).

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Prior to testing, create the file clid10.yaml with content:

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 additionalImages:
 - name: "gcr.io/kubebuilder/kube-rbac-proxy:v0.5.0"
 - name: "quay.io/cockroachdb/cockroach-helm-operator:6.0.0"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.3"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.4"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:a5d4f4467250074216eb1ba1c36e06a3ab797d81c431427fc2aca97ecaf4e9d8"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:d3016b1507515fc7712f9c47fd9082baf9ccb070aaab58ed0ef6e5abdedde8ba"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:f42337e7b85a46d83c94694638e2312e10ca16a03542399a65ba783c94a32b63"

Next, perform a mirrorToDisk

./bin/oc-mirror --v2 -c clid10.yaml file:///home/skhoury/clid-10

Test	Description	Outputs
./bin/oc-mirror --v2 -c clid10.yaml --from file:///home/skhoury/clid-10/ docker://localhost:5000/clid10/noflag --dest-tls-verify=false	Nominal use case - IDMS generation only - All tags resolved to digest - IDMS with namespace scope	idms-noflags.yaml (see below) images pushed: x,y,z
./bin/oc-mirror --v2 -c clid10.yaml --generate-itms --from file:///home/skhoury/clid-10/ docker://localhost:5000/clid10/itms --dest-tls-verify=false	with --generate-itms - generates ITMS and IDMS files, with namespace scope	idms-tagflag.yaml + itms-tagflag.yaml
./bin/oc-mirror --v2 -c clid10.yaml --max-nested-paths=2 --from file:///home/skhoury/clid-10/ docker://localhost:5000/clid10/max --dest-tls-verify=false	with --max-nested-paths - generates IDMS only, with repository scope	idms-max.yaml
./bin/oc-mirror --v2 -c clid10.yaml --max-nested-paths=2 --generate-itms --from file:///home/skhoury/clid-10/ docker://localhost:5000/clid10/maxitms --dest-tls-verify=false	with --max-nested-paths and --generate-itms - generates IDMS and ITMS, with repository scope	idms-maxitms.yaml and itms-maxitms.yaml

Expected Outcome

idms-noflags.yaml

apiVersion: config.openshift.io/v1
kind: ImageDigestMirrorSet
metadata:
 creationTimestamp: null
 name: idms-2024-01-18t15-33-28z
spec:
 imageDigestMirrors:
 - mirrors:
   - localhost:5000/clid10/noflag/kubebuilder
   source: gcr.io/kubebuilder
 - mirrors:
   - localhost:5000/clid10/noflag/cockroachdb
   source: quay.io/cockroachdb
 - mirrors:
   - localhost:5000/clid10/noflag/helmoperators
   source: quay.io/helmoperators
 - mirrors:
   - localhost:5000/clid10/noflag/openshift-community-operators
   source: quay.io/openshift-community-operators
status: {}

idms-tagflag.yaml

apiVersion: config.openshift.io/v1
kind: ImageDigestMirrorSet
metadata:
 creationTimestamp: null
 name: idms-2024-01-18t15-50-26z
spec:
 imageDigestMirrors:
 - mirrors:
   - localhost:5000/clid10/itms/openshift-community-operators
   source: quay.io/openshift-community-operators
status: {}

itms-tagflag.yaml

apiVersion: config.openshift.io/v1
kind: ImageTagMirrorSet
metadata:
 creationTimestamp: null
 name: itms-2024-01-18t15-50-26z
spec:
 imageTagMirrors:
 - mirrors:
   - localhost:5000/clid10/itms/helmoperators
   source: quay.io/helmoperators
 - mirrors:
   - localhost:5000/clid10/itms/kubebuilder
   source: gcr.io/kubebuilder
 - mirrors:
   - localhost:5000/clid10/itms/cockroachdb
   source: quay.io/cockroachdb
status: {}

idms-max.yaml

apiVersion: config.openshift.io/v1
kind: ImageDigestMirrorSet
metadata:
 creationTimestamp: null
 name: idms-2024-01-18t16-19-16z
spec:
 imageDigestMirrors:
 - mirrors:
   - localhost:5000/clid10/max-kubebuilder-kube-rbac-proxy
   source: gcr.io/kubebuilder/kube-rbac-proxy
 - mirrors:
   - localhost:5000/clid10/max-cockroachdb-cockroach-helm-operator
   source: quay.io/cockroachdb/cockroach-helm-operator
 - mirrors:
   - localhost:5000/clid10/max-helmoperators-cockroachdb
   source: quay.io/helmoperators/cockroachdb
 - mirrors:
   - localhost:5000/clid10/max-openshift-community-operators-cockroachdb
   source: quay.io/openshift-community-operators/cockroachdb
status: {}

itms-maxitms.yaml

apiVersion: config.openshift.io/v1
kind: ImageTagMirrorSet
metadata:
 creationTimestamp: null
 name: itms-2024-01-18t16-23-27z
spec:
 imageTagMirrors:
 - mirrors:
   - localhost:5000/clid10/maxitms-kubebuilder-kube-rbac-proxy
   source: gcr.io/kubebuilder/kube-rbac-proxy
 - mirrors:
   - localhost:5000/clid10/maxitms-cockroachdb-cockroach-helm-operator
   source: quay.io/cockroachdb/cockroach-helm-operator
 - mirrors:
   - localhost:5000/clid10/maxitms-helmoperators-cockroachdb
   source: quay.io/helmoperators/cockroachdb
status: {}

idms-maxitms.yaml

apiVersion: config.openshift.io/v1
kind: ImageDigestMirrorSet
metadata:
 creationTimestamp: null
 name: idms-2024-01-18t16-23-27z
spec:
 imageDigestMirrors:
 - mirrors:
   - localhost:5000/clid10/maxitms-openshift-community-operators-cockroachdb
   source: quay.io/openshift-community-operators/cockroachdb
status: {}

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR contains implementation for CLID-10 (see jira for detailed design) :

• ImageTagMirrorSet : enabled by flag --generate-itms
• ImageDigestMirrorSet: with the following behavior
• Generated by default (when no --generate-itms flag): Contains source and mirrors for all mirrored images.
• Contains source and mirror paths namespace scoped, unless --max-nested-paths has been used
• Contains source and mirrors only for images by digest if --generate-itms is used
• Excluded: CatalogSource for operator catalogs will be in a different PR CLID-10: Generate CatalogSource files #784

Fixes # CLID-10.

Regarding IDMS/ITMS generation, a few questions are still pending in CLID-10 (see comments):

• By default, oc-mirror will generate IDMS only. Images referenced by tag will be added to that IDMS. If a cluster deploys such an IDMS, and references those images by tag, the mirror will not be used. Therefore, should we:
• keep the specified behavior, but and display warnings for images by tag (Implemented)
• By default generate IDMS and ITMS (images by tag can therefore benefit from the mirrors)
• Keep the default to generate IDMS only, exclude images by tag and display warnings for them
• To be confirmed: In this PR, we stop resolving tags to digest prior to mirroring. In V1, oc-mirror was removing replacing tags by digests before handing mappings.txt to the oc code, which in turn, created a fake tag (derived from the digest value). This V1 behavior should not be used for V2, because we have ITMS, because we don't call oc, and because we don't rebuild catalogs (the reference for the image is not modified in the declarative config).

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Prior to testing, create the file clid10.yaml with content:

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 additionalImages:
 - name: "gcr.io/kubebuilder/kube-rbac-proxy:v0.5.0"
 - name: "quay.io/cockroachdb/cockroach-helm-operator:6.0.0"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.3"
 - name: "quay.io/helmoperators/cockroachdb:v5.0.4"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:a5d4f4467250074216eb1ba1c36e06a3ab797d81c431427fc2aca97ecaf4e9d8"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:d3016b1507515fc7712f9c47fd9082baf9ccb070aaab58ed0ef6e5abdedde8ba"
 - name: "quay.io/openshift-community-operators/cockroachdb@sha256:f42337e7b85a46d83c94694638e2312e10ca16a03542399a65ba783c94a32b63"

Next, perform a mirrorToDisk

./bin/oc-mirror --v2 -c clid10.yaml file:///home/skhoury/clid-10

Test	Description	Outputs
./bin/oc-mirror --v2 -c clid10.yaml --from file:///home/skhoury/clid-10/ docker://localhost:5000/clid10/noflag --dest-tls-verify=false	Nominal use case - IDMS generation only - All tags resolved to digest - IDMS with namespace scope	idms-noflags.yaml (see below) images pushed: x,y,z
./bin/oc-mirror --v2 -c clid10.yaml --generate-itms --from file:///home/skhoury/clid-10/ docker://localhost:5000/clid10/itms --dest-tls-verify=false	with --generate-itms - generates ITMS and IDMS files, with namespace scope	idms-tagflag.yaml + itms-tagflag.yaml
./bin/oc-mirror --v2 -c clid10.yaml --max-nested-paths=2 --from file:///home/skhoury/clid-10/ docker://localhost:5000/clid10/max --dest-tls-verify=false	with --max-nested-paths - generates IDMS only, with repository scope	idms-max.yaml
./bin/oc-mirror --v2 -c clid10.yaml --max-nested-paths=2 --generate-itms --from file:///home/skhoury/clid-10/ docker://localhost:5000/clid10/maxitms --dest-tls-verify=false	with --max-nested-paths and --generate-itms - generates IDMS and ITMS, with repository scope	idms-maxitms.yaml and itms-maxitms.yaml

Expected Outcome

idms-noflags.yaml

apiVersion: config.openshift.io/v1
kind: ImageDigestMirrorSet
metadata:
 creationTimestamp: null
 name: idms-2024-01-18t15-33-28z
spec:
 imageDigestMirrors:
 - mirrors:
   - localhost:5000/clid10/noflag/kubebuilder
   source: gcr.io/kubebuilder
 - mirrors:
   - localhost:5000/clid10/noflag/cockroachdb
   source: quay.io/cockroachdb
 - mirrors:
   - localhost:5000/clid10/noflag/helmoperators
   source: quay.io/helmoperators
 - mirrors:
   - localhost:5000/clid10/noflag/openshift-community-operators
   source: quay.io/openshift-community-operators
status: {}

idms-tagflag.yaml

apiVersion: config.openshift.io/v1
kind: ImageDigestMirrorSet
metadata:
 creationTimestamp: null
 name: idms-2024-01-18t15-50-26z
spec:
 imageDigestMirrors:
 - mirrors:
   - localhost:5000/clid10/itms/openshift-community-operators
   source: quay.io/openshift-community-operators
status: {}

itms-tagflag.yaml

apiVersion: config.openshift.io/v1
kind: ImageTagMirrorSet
metadata:
 creationTimestamp: null
 name: itms-2024-01-18t15-50-26z
spec:
 imageTagMirrors:
 - mirrors:
   - localhost:5000/clid10/itms/helmoperators
   source: quay.io/helmoperators
 - mirrors:
   - localhost:5000/clid10/itms/kubebuilder
   source: gcr.io/kubebuilder
 - mirrors:
   - localhost:5000/clid10/itms/cockroachdb
   source: quay.io/cockroachdb
status: {}

idms-max.yaml

apiVersion: config.openshift.io/v1
kind: ImageDigestMirrorSet
metadata:
 creationTimestamp: null
 name: idms-2024-01-18t16-19-16z
spec:
 imageDigestMirrors:
 - mirrors:
   - localhost:5000/clid10/max-kubebuilder-kube-rbac-proxy
   source: gcr.io/kubebuilder/kube-rbac-proxy
 - mirrors:
   - localhost:5000/clid10/max-cockroachdb-cockroach-helm-operator
   source: quay.io/cockroachdb/cockroach-helm-operator
 - mirrors:
   - localhost:5000/clid10/max-helmoperators-cockroachdb
   source: quay.io/helmoperators/cockroachdb
 - mirrors:
   - localhost:5000/clid10/max-openshift-community-operators-cockroachdb
   source: quay.io/openshift-community-operators/cockroachdb
status: {}

itms-maxitms.yaml

apiVersion: config.openshift.io/v1
kind: ImageTagMirrorSet
metadata:
 creationTimestamp: null
 name: itms-2024-01-18t16-23-27z
spec:
 imageTagMirrors:
 - mirrors:
   - localhost:5000/clid10/maxitms-kubebuilder-kube-rbac-proxy
   source: gcr.io/kubebuilder/kube-rbac-proxy
 - mirrors:
   - localhost:5000/clid10/maxitms-cockroachdb-cockroach-helm-operator
   source: quay.io/cockroachdb/cockroach-helm-operator
 - mirrors:
   - localhost:5000/clid10/maxitms-helmoperators-cockroachdb
   source: quay.io/helmoperators/cockroachdb
status: {}

idms-maxitms.yaml

apiVersion: config.openshift.io/v1
kind: ImageDigestMirrorSet
metadata:
 creationTimestamp: null
 name: idms-2024-01-18t16-23-27z
spec:
 imageDigestMirrors:
 - mirrors:
   - localhost:5000/clid10/maxitms-openshift-community-operators-cockroachdb
   source: quay.io/openshift-community-operators/cockroachdb
status: {}

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR contains implementation for CLID-10 :

• CatalogSource for operator catalogs
• It introduces targetCatalogSourceTemplate to the imageSetConfig, in order to allow the user customization of the catalogSource
• if not provided, the catalogSource will not contain any updateStrategy (polling interval)
• It removes deprecated fields targetName and originalRef from the imageSetConfig

Fixes # CLID-10.

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Prior to testing, create the file clid10.yaml with content:

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 operators:
 - catalog: registry.redhat.io/redhat/redhat-operator-index:v4.14
   packages:
   - name: aws-load-balancer-operator
   targetCatalogSourceTemplate: "/home/skhoury/go/src/github.com/openshift/oc-mirror/v2/tests/catalog-source_template.yaml"

And the catalog-source_template.yaml

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 name: totalRubbish
 namespace: openshift-marketplace
spec:
 image: totalRubbish
 sourceType: grpc
 updateStrategy:
   registryPoll: 
     interval: 30m0s

Next, perform a mirrorToDisk + DiskToMirror

./bin/oc-mirror --v2 -c clid10.yaml file:///home/skhoury/clid-10
./bin/oc-mirror --v2 -c clid10.yaml --from file:///home/skhoury/clid-10 docker://localhost:5000 --dest-tls-verify=false

Expected Outcome

The catalogSource file is generated under the working directory, under subfolder cluster-resources. The catalog source file name is derived from the catalog name, with cs- as prefix, and the date as suffix.

Ex: cs-redhat-operator-index-2024-01-22t17-37-25z.yaml

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 creationTimestamp: null
 name: cs-redhat-operator-index-2024-01-22t17-37-25z
 namespace: openshift-marketplace
spec:
 icon: {}
 image: localhost:5000/clid10/redhat/redhat-operator-index:v4.14
 sourceType: grpc
 updateStrategy:
   registryPoll:
     interval: 30m0s
status: {}

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR contains implementation for CLID-10 :

• CatalogSource for operator catalogs
• It introduces targetCatalogSourceTemplate to the imageSetConfig, in order to allow the user customization of the catalogSource
• if not provided, the catalogSource will not contain any updateStrategy (polling interval)
• when provided, oc-mirror will attempt to use the template as a base for catalogSource generation, and in case of failure, it will failover to generation without template with a warning in the logs
• It removes deprecated fields targetName and originalRef from the imageSetConfig

Fixes # CLID-10.

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Prior to testing, create the file clid10.yaml with content:

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 operators:
 - catalog: registry.redhat.io/redhat/redhat-operator-index:v4.14
   packages:
   - name: aws-load-balancer-operator
   targetCatalogSourceTemplate: "/home/skhoury/go/src/github.com/openshift/oc-mirror/v2/tests/catalog-source_template.yaml"

And the catalog-source_template.yaml

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 name: totalRubbish
 namespace: openshift-marketplace
spec:
 image: totalRubbish
 sourceType: grpc
 updateStrategy:
   registryPoll: 
     interval: 30m0s

Next, perform a mirrorToDisk + DiskToMirror

./bin/oc-mirror --v2 -c clid10.yaml file:///home/skhoury/clid-10
./bin/oc-mirror --v2 -c clid10.yaml --from file:///home/skhoury/clid-10 docker://localhost:5000 --dest-tls-verify=false

Expected Outcome

The catalogSource file is generated under the working directory, under subfolder cluster-resources. The catalog source file name is derived from the catalog name, with cs- as prefix, and the date as suffix.

Ex: cs-redhat-operator-index-2024-01-22t17-37-25z.yaml

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 creationTimestamp: null
 name: cs-redhat-operator-index-2024-01-22t17-37-25z
 namespace: openshift-marketplace
spec:
 icon: {}
 image: localhost:5000/clid10/redhat/redhat-operator-index:v4.14
 sourceType: grpc
 updateStrategy:
   registryPoll:
     interval: 30m0s
status: {}

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

Description

This PR contains implementation for CLID-10 :

• CatalogSource for operator catalogs
• It introduces targetCatalogSourceTemplate to the imageSetConfig, in order to allow the user customization of the catalogSource
• if not provided, the catalogSource will not contain any updateStrategy (polling interval)
• when provided, oc-mirror will attempt to use the template as a base for catalogSource generation, and in case of failure, it will failover to generation without template with a warning in the logs
• It removes deprecated fields targetName and originalRef from the imageSetConfig

Fixes # CLID-10.

PS: catalogSource resource name and filename use a different naming convention than v1: "cs-" + catalogRepository + "-" + date . We might need to reconsider this strategy based on how customers use these resources in the cluster. ie. Do they deploy the new catalogSource and delete the old? do they expect an update of the existing resource?

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

Prior to testing, create the file clid10.yaml with content:

kind: ImageSetConfiguration
apiVersion: mirror.openshift.io/v1alpha2
archiveSize: 1
mirror:
 operators:
 - catalog: registry.redhat.io/redhat/redhat-operator-index:v4.14
   packages:
   - name: aws-load-balancer-operator
   targetCatalogSourceTemplate: "/home/skhoury/go/src/github.com/openshift/oc-mirror/v2/tests/catalog-source_template.yaml"

And the catalog-source_template.yaml

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 name: totalRubbish
 namespace: openshift-marketplace
spec:
 image: totalRubbish
 sourceType: grpc
 updateStrategy:
   registryPoll: 
     interval: 30m0s

Next, perform a mirrorToDisk + DiskToMirror

./bin/oc-mirror --v2 -c clid10.yaml file:///home/skhoury/clid-10
./bin/oc-mirror --v2 -c clid10.yaml --from file:///home/skhoury/clid-10 docker://localhost:5000 --dest-tls-verify=false

Expected Outcome

The catalogSource file is generated under the working directory, under subfolder cluster-resources. The catalog source file name is derived from the catalog name, with cs- as prefix, and the date as suffix.

Ex: cs-redhat-operator-index-2024-01-22t17-37-25z.yaml

apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
 creationTimestamp: null
 name: cs-redhat-operator-index-2024-01-22t17-37-25z
 namespace: openshift-marketplace
spec:
 icon: {}
 image: localhost:5000/clid10/redhat/redhat-operator-index:v4.14
 sourceType: grpc
 updateStrategy:
   registryPoll:
     interval: 30m0s
status: {}

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[sherine-k]

/jira refresh

[openshift-ci-robot]

@sherine-k: This pull request references CLID-10 which is a valid jira issue.

In response to this:

/jira refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[sherine-k]

/hold
wait for PR #783

[aguidirh]

good catching finding this validation

[lmzuccarelli]

Agreed !!!

[lmzuccarelli]

Agreed !!!

[aguidirh]

I really like the validations happening on RFC here.

[aguidirh]

This change needs to be on CLID-14 so I would prefer to merge CLID-10 first.

[aguidirh]

This change needs to be on CLID-14 so I would prefer to merge CLID-10 first.

[aguidirh]

/lgtm

[lmzuccarelli]

@sherine-k - as usual great work

I left some nits about the messaging

[lmzuccarelli]

Agreed !!!

[lmzuccarelli]

Agreed !!!

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: lmzuccarelli, sherine-k

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [lmzuccarelli,sherine-k]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[sherine-k]

/unhold

[sherine-k]

/unhold

[openshift-ci]

@sherine-k: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[aguidirh]

/lgtm

[aguidirh]

/label acknowledge-critical-fixes-only

[openshift-bot]

[ART PR BUILD NOTIFIER]

This PR has been included in build oc-mirror-plugin-container-v4.16.0-202401311812.p0.g3b94f36.assembly.stream for distgit oc-mirror-plugin.
All builds following this will include this PR.

[cdjohnson]

By looking at the PR, I can see that the CatalogSourceTemplate that pretty much anything in the CatlogSource metadata and spec can be updated except for 4 fields:

	obj.Name = catalogSourceName
	obj.Namespace = "openshift-marketplace"
	obj.Spec.SourceType = "grpc"
	obj.Spec.Image = image

It would be helpful if the contract for "what" in the template is designed to be templatable vs. not is clearly documented. Especially hard-coding the namespace and format of the auto-generated name.

I personally think those options should be overridable, but in my use cases, I would treat the generated CatalogSource as itself a template anyway, using Kustomize to override the namespace and name to my own purposes.