-
Notifications
You must be signed in to change notification settings - Fork 25k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Do not restore autoscaling policy from snapshots #66023
Changes from 6 commits
2b5ac26
00b1c40
eeeca94
475dbc1
7a6dbd8
1aedcfb
ef1c636
85e61ae
b7b4c23
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,79 @@ | ||
/* | ||
* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one | ||
* or more contributor license agreements. Licensed under the Elastic License; | ||
* you may not use this file except in compliance with the Elastic License. | ||
*/ | ||
|
||
package org.elasticsearch.xpack.autoscaling; | ||
|
||
import org.elasticsearch.ResourceNotFoundException; | ||
import org.elasticsearch.action.admin.cluster.snapshots.create.CreateSnapshotResponse; | ||
import org.elasticsearch.action.admin.cluster.snapshots.restore.RestoreSnapshotResponse; | ||
import org.elasticsearch.client.Client; | ||
import org.elasticsearch.common.settings.Settings; | ||
import org.elasticsearch.rest.RestStatus; | ||
import org.elasticsearch.xpack.autoscaling.action.DeleteAutoscalingPolicyAction; | ||
import org.elasticsearch.xpack.autoscaling.action.GetAutoscalingPolicyAction; | ||
import org.elasticsearch.xpack.autoscaling.action.PutAutoscalingPolicyAction; | ||
import org.elasticsearch.xpack.autoscaling.policy.AutoscalingPolicy; | ||
import org.junit.Before; | ||
|
||
import java.nio.file.Path; | ||
|
||
import static org.elasticsearch.test.hamcrest.ElasticsearchAssertions.assertAcked; | ||
import static org.elasticsearch.xpack.autoscaling.AutoscalingTestCase.randomAutoscalingPolicy; | ||
import static org.hamcrest.Matchers.containsString; | ||
|
||
public class AutoscalingSnapshotsIT extends AutoscalingIntegTestCase { | ||
|
||
public static final String REPO = "repo"; | ||
public static final String SNAPSHOT = "snap"; | ||
|
||
@Before | ||
public void setup() throws Exception { | ||
Path location = randomRepoPath(); | ||
logger.info("--> creating repository [{}] [{}]", REPO, "fs"); | ||
assertAcked(clusterAdmin().preparePutRepository(REPO).setType("fs").setSettings(Settings.builder().put("location", location))); | ||
} | ||
|
||
public void testAutoscalingPolicyWillNotBeRestored() { | ||
final Client client = client(); | ||
|
||
final AutoscalingPolicy policy = randomAutoscalingPolicy(); | ||
final PutAutoscalingPolicyAction.Request request = new PutAutoscalingPolicyAction.Request( | ||
policy.name(), | ||
policy.roles(), | ||
policy.deciders() | ||
); | ||
assertAcked(client.execute(PutAutoscalingPolicyAction.INSTANCE, request).actionGet()); | ||
|
||
CreateSnapshotResponse createSnapshotResponse = client.admin() | ||
.cluster() | ||
.prepareCreateSnapshot(REPO, SNAPSHOT) | ||
.setWaitForCompletion(true) | ||
.setIncludeGlobalState(true) | ||
.get(); | ||
|
||
RestStatus status = createSnapshotResponse.getSnapshotInfo().status(); | ||
assertEquals(RestStatus.OK, status); | ||
|
||
final DeleteAutoscalingPolicyAction.Request deleteRequest = new DeleteAutoscalingPolicyAction.Request(policy.name()); | ||
assertAcked(client().execute(DeleteAutoscalingPolicyAction.INSTANCE, deleteRequest).actionGet()); | ||
|
||
RestoreSnapshotResponse restoreSnapshotResponse = client.admin() | ||
.cluster() | ||
.prepareRestoreSnapshot(REPO, SNAPSHOT) | ||
.setWaitForCompletion(true) | ||
.setRestoreGlobalState(true) | ||
.get(); | ||
assertEquals(RestStatus.OK, restoreSnapshotResponse.status()); | ||
|
||
final GetAutoscalingPolicyAction.Request getRequest = new GetAutoscalingPolicyAction.Request(policy.name()); | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. I think we should extend the test to also have the case where a policy does exist when restoring to check that it survives the restore. To protect us from "restore-global-state" clearing everything during restore. Could be just randomly doing that or the delete case. There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Good point. I have expanded the test to:
Then assert things stay the same after restore. |
||
final ResourceNotFoundException e = expectThrows( | ||
ResourceNotFoundException.class, | ||
() -> client().execute(GetAutoscalingPolicyAction.INSTANCE, getRequest).actionGet().policy() | ||
); | ||
assertThat(e.getMessage(), containsString("autoscaling policy with name [" + policy.name() + "] does not exist")); | ||
} | ||
|
||
} |
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -8,10 +8,12 @@ | |
import org.elasticsearch.client.Request; | ||
import org.elasticsearch.client.RequestOptions; | ||
import org.elasticsearch.client.ResponseException; | ||
import org.elasticsearch.common.Strings; | ||
import org.elasticsearch.common.settings.SecureString; | ||
import org.elasticsearch.common.settings.Settings; | ||
import org.elasticsearch.common.util.concurrent.ThreadContext; | ||
import org.elasticsearch.common.util.set.Sets; | ||
import org.elasticsearch.common.xcontent.json.JsonXContent; | ||
import org.elasticsearch.test.rest.ESRestTestCase; | ||
|
||
import java.io.IOException; | ||
|
@@ -28,6 +30,9 @@ | |
|
||
public class OperatorPrivilegesIT extends ESRestTestCase { | ||
|
||
private static final String OPERATOR_AUTH_HEADER = "Basic " | ||
+ Base64.getEncoder().encodeToString("test_operator:x-pack-test-password".getBytes(StandardCharsets.UTF_8)); | ||
|
||
@Override | ||
protected Settings restClientSettings() { | ||
String token = basicAuthHeaderValue("test_admin", new SecureString("x-pack-test-password".toCharArray())); | ||
|
@@ -46,17 +51,13 @@ public void testNonOperatorSuperuserWillFailToCallOperatorOnlyApiWhenOperatorPri | |
|
||
public void testOperatorUserWillSucceedToCallOperatorOnlyApi() throws IOException { | ||
final Request postVotingConfigExclusionsRequest = new Request("POST", "_cluster/voting_config_exclusions?node_names=foo"); | ||
final String authHeader = "Basic " | ||
+ Base64.getEncoder().encodeToString("test_operator:x-pack-test-password".getBytes(StandardCharsets.UTF_8)); | ||
postVotingConfigExclusionsRequest.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", authHeader)); | ||
postVotingConfigExclusionsRequest.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", OPERATOR_AUTH_HEADER)); | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. This also looks unrelated to at least the PR description, perhaps move to separate PR? There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Removed. See also above. |
||
client().performRequest(postVotingConfigExclusionsRequest); | ||
} | ||
|
||
public void testOperatorUserWillFailToCallOperatorOnlyApiIfRbacFails() throws IOException { | ||
final Request deleteVotingConfigExclusionsRequest = new Request("DELETE", "_cluster/voting_config_exclusions"); | ||
final String authHeader = "Basic " | ||
+ Base64.getEncoder().encodeToString("test_operator:x-pack-test-password".getBytes(StandardCharsets.UTF_8)); | ||
deleteVotingConfigExclusionsRequest.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", authHeader)); | ||
deleteVotingConfigExclusionsRequest.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", OPERATOR_AUTH_HEADER)); | ||
final ResponseException responseException = expectThrows( | ||
ResponseException.class, | ||
() -> client().performRequest(deleteVotingConfigExclusionsRequest) | ||
|
@@ -67,9 +68,7 @@ public void testOperatorUserWillFailToCallOperatorOnlyApiIfRbacFails() throws IO | |
|
||
public void testOperatorUserCanCallNonOperatorOnlyApi() throws IOException { | ||
final Request mainRequest = new Request("GET", "/"); | ||
final String authHeader = "Basic " | ||
+ Base64.getEncoder().encodeToString("test_operator:x-pack-test-password".getBytes(StandardCharsets.UTF_8)); | ||
mainRequest.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", authHeader)); | ||
mainRequest.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", OPERATOR_AUTH_HEADER)); | ||
client().performRequest(mainRequest); | ||
} | ||
|
||
|
@@ -100,4 +99,86 @@ public void testOperatorPrivilegesXpackUsage() throws IOException { | |
assertTrue((boolean) operatorPrivileges.get("available")); | ||
assertTrue((boolean) operatorPrivileges.get("enabled")); | ||
} | ||
|
||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. I think we should just remove this and the associated build file changes etc. from this PR? Once the real framework for avoiding to restore autoscaling policies on operator privilege enabled setups goes in, this might look different anyway. There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Agreed and all unrelated changes removed. A bit more context: I thought about deleting these changes in last commit. But I got a bit paranoid and was trying to assert that operator privileges do not interfere with the restore behaviour. Looking back now, this thinking was an artefact of how this PR evolved, which started with the assumption that operator privileges would impact the behaviour. If it had started purely from the autoscaling side, I don't think I would add anything related to operator privileges. In short, it's the right move to delete these unrelated code. |
||
// Make sure autoscaling polices are not restored by an operator user | ||
public void testAutoscalingPolicyWillNotBeRestored() throws IOException { | ||
final String repoName = "repo"; | ||
final String snapshotName = "snap"; | ||
final String policyName = "policy"; | ||
createSnapshotRepo(repoName); | ||
createAutoscalingPolicy(policyName); | ||
takeSnapshot(repoName, snapshotName); | ||
deleteAutoscalingPolicy(policyName); | ||
restoreSnapshot(repoName, snapshotName); | ||
|
||
final Request getPolicyRequest = new Request("GET", "/_autoscaling/policy/" + policyName); | ||
getPolicyRequest.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", OPERATOR_AUTH_HEADER)); | ||
final ResponseException e = expectThrows(ResponseException.class, () -> client().performRequest(getPolicyRequest)); | ||
assertThat(e.getMessage(), containsString("autoscaling policy with name [" + policyName + "] does not exist")); | ||
} | ||
|
||
private void createSnapshotRepo(String repoName) throws IOException { | ||
Request request = new Request("PUT", "/_snapshot/" + repoName); | ||
request.setJsonEntity( | ||
Strings.toString( | ||
JsonXContent.contentBuilder() | ||
.startObject() | ||
.field("type", "fs") | ||
.startObject("settings") | ||
.field("location", System.getProperty("tests.path.repo")) | ||
.endObject() | ||
.endObject() | ||
) | ||
); | ||
assertOK(client().performRequest(request)); | ||
} | ||
|
||
private void createAutoscalingPolicy(String policyName) throws IOException { | ||
final Request request = new Request("PUT", "/_autoscaling/policy/" + policyName); | ||
request.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", OPERATOR_AUTH_HEADER)); | ||
request.setJsonEntity( | ||
Strings.toString( | ||
JsonXContent.contentBuilder() | ||
.startObject() | ||
.array("roles", "master") | ||
.startObject("deciders") | ||
.startObject("fixed") | ||
.endObject() | ||
.endObject() | ||
.endObject() | ||
) | ||
); | ||
assertOK(client().performRequest(request)); | ||
} | ||
|
||
private void takeSnapshot(String repoName, String snapshotName) throws IOException { | ||
final Request request = new Request("POST", "/_snapshot/" + repoName + "/" + snapshotName); | ||
if (randomBoolean()) { | ||
request.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", OPERATOR_AUTH_HEADER)); | ||
} | ||
request.addParameter("wait_for_completion", "true"); | ||
request.setJsonEntity( | ||
Strings.toString(JsonXContent.contentBuilder().startObject().field("include_global_state", true).endObject()) | ||
); | ||
assertOK(client().performRequest(request)); | ||
} | ||
|
||
private void deleteAutoscalingPolicy(String policyName) throws IOException { | ||
final Request request = new Request("DELETE", "/_autoscaling/policy/" + policyName); | ||
request.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", OPERATOR_AUTH_HEADER)); | ||
assertOK(client().performRequest(request)); | ||
} | ||
|
||
private void restoreSnapshot(String repoName, String snapshotName) throws IOException { | ||
final Request request = new Request("POST", "/_snapshot/" + repoName + "/" + snapshotName + "/_restore"); | ||
if (randomBoolean()) { | ||
request.setOptions(RequestOptions.DEFAULT.toBuilder().addHeader("Authorization", OPERATOR_AUTH_HEADER)); | ||
} | ||
request.addParameter("wait_for_completion", "true"); | ||
request.setJsonEntity( | ||
Strings.toString(JsonXContent.contentBuilder().startObject().field("include_global_state", true).endObject()) | ||
); | ||
assertOK(client().performRequest(request)); | ||
} | ||
|
||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
nit: why not just: