diff --git a/Makefile b/Makefile index e91372f9d47c..bbef47e28b50 100644 --- a/Makefile +++ b/Makefile @@ -245,6 +245,7 @@ generate-go-deepcopy-core: $(CONTROLLER_GEN) ## Generate deepcopy go code for co paths=./$(EXP_DIR)/api/... \ paths=./$(EXP_DIR)/addons/api/... \ paths=./$(EXP_DIR)/runtime/api/... \ + paths=./$(EXP_DIR)/runtime/hooks/api/... \ paths=./cmd/clusterctl/... \ paths=./internal/test/builder/... @@ -319,6 +320,16 @@ generate-go-conversions-kubeadm-control-plane: $(CONVERSION_GEN) ## Generate con --output-file-base=zz_generated.conversion $(CONVERSION_GEN_OUTPUT_BASE) \ --go-header-file=./hack/boilerplate/boilerplate.generatego.txt +.PHONY: generate-go-conversions-runtime +generate-go-conversions-runtime: $(CONVERSION_GEN) + $(MAKE) clean-generated-conversions SRC_DIRS="./internal/runtime/catalog/test/v1alpha1,./internal/runtime/catalog/test/v1alpha2" + $(CONVERSION_GEN) \ + --input-dirs=./internal/runtime/catalog/test/v1alpha1 \ + --input-dirs=./internal/runtime/catalog/test/v1alpha2 \ + --build-tag=ignore_autogenerated_runtime \ + --output-file-base=zz_generated.conversion $(CONVERSION_GEN_OUTPUT_BASE) \ + --go-header-file=./hack/boilerplate/boilerplate.generatego.txt + .PHONY: generate-modules generate-modules: ## Run go mod tidy to ensure modules are up to date go mod tidy diff --git a/exp/runtime/hooks/api/v1alpha1/common_types.go b/exp/runtime/hooks/api/v1alpha1/common_types.go new file mode 100644 index 000000000000..94638a78fb2d --- /dev/null +++ b/exp/runtime/hooks/api/v1alpha1/common_types.go @@ -0,0 +1,29 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package v1alpha1 + +// ResponseStatus represents the status of the hook response. +// +enum +type ResponseStatus string + +const ( + // ResponseStatusSuccess represents the success response. + ResponseStatusSuccess ResponseStatus = "Success" + + // ResponseStatusFailure represents a failure response. + ResponseStatusFailure ResponseStatus = "Failure" +) diff --git a/exp/runtime/hooks/api/v1alpha1/discovery_types.go b/exp/runtime/hooks/api/v1alpha1/discovery_types.go new file mode 100644 index 000000000000..8a36c9e09087 --- /dev/null +++ b/exp/runtime/hooks/api/v1alpha1/discovery_types.go @@ -0,0 +1,91 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package v1alpha1 + +import ( + metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" + + "sigs.k8s.io/cluster-api/internal/runtime/catalog" +) + +// FailurePolicy is the type of a extension failure policy. +type FailurePolicy string + +const ( + // FailurePolicyIgnore means that an error calling the extension is ignored. + FailurePolicyIgnore FailurePolicy = "Ignore" + + // FailurePolicyFail means that an error calling the extension causes the admission to fail. + FailurePolicyFail FailurePolicy = "Fail" +) + +// Hook is a identifier of a runtime hook. +type Hook struct { + // APIVersion is the Version of the Hook + APIVersion string `json:"apiVersion"` + + // Name is the name of the hook + Name string `json:"name"` +} + +// RuntimeExtension represents the discovery information of the extension which includes +// the hook is supports. +type RuntimeExtension struct { + // Name is the name of the RuntimeExtension + Name string `json:"name"` + + // Hook defines the specific runtime event for which this RuntimeExtension calls. + Hook Hook `json:"hook"` + + // TimeoutSeconds defines the timeout duration for client calls to the Hook + TimeoutSeconds *int32 `json:"timeoutSeconds,omitempty"` + + // FailurePolicy defines how failures in calls to the Hook should be handled by a client. + FailurePolicy *FailurePolicy `json:"failurePolicy,omitempty"` +} + +// DiscoveryHookRequest foo bar baz. +// +kubebuilder:object:root=true +type DiscoveryHookRequest struct { + metav1.TypeMeta `json:",inline"` +} + +// DiscoveryHookResponse foo bar baz. +// +kubebuilder:object:root=true +type DiscoveryHookResponse struct { + metav1.TypeMeta `json:",inline"` + + // Status of the call. One of "Success" or "Failure". + Status ResponseStatus `json:"status"` + + // A human-readable description of the status of the call. + Message string `json:"message"` + + Extensions []RuntimeExtension `json:"extensions"` +} + +// Discovery represents the discovery hook. +func Discovery(*DiscoveryHookRequest, *DiscoveryHookResponse) {} + +func init() { + catalogBuilder.RegisterHook(Discovery, &catalog.HookMeta{ + Tags: []string{"Discovery"}, + Summary: "Discovery endpoint", + Description: "Discovery endpoint discovers the supported hook of a runtime extension", + Singleton: true, + }) +} diff --git a/exp/runtime/hooks/api/v1alpha1/doc.go b/exp/runtime/hooks/api/v1alpha1/doc.go new file mode 100644 index 000000000000..974d6e816c00 --- /dev/null +++ b/exp/runtime/hooks/api/v1alpha1/doc.go @@ -0,0 +1,21 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +// Package v1alpha1 contains the v1alpha1 idl implementation for extension1. +// +k8s:conversion-gen=sigs.k8s.io/cluster-api/exp/runtime/hooks/api/v1alpha3 +// +kubebuilder:object:generate=true +// +k8s:openapi-gen=true +package v1alpha1 diff --git a/exp/runtime/hooks/api/v1alpha1/groupversion_info.go b/exp/runtime/hooks/api/v1alpha1/groupversion_info.go new file mode 100644 index 000000000000..b3da8df87445 --- /dev/null +++ b/exp/runtime/hooks/api/v1alpha1/groupversion_info.go @@ -0,0 +1,37 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package v1alpha1 + +import ( + "k8s.io/apimachinery/pkg/runtime/schema" + + "sigs.k8s.io/cluster-api/internal/runtime/catalog" +) + +var ( + // GroupVersion is group version identifying rpc services defined in this package + // and their request and response types. + GroupVersion = schema.GroupVersion{Group: "hooks.runtime.cluster.x-k8s.io", Version: "v1alpha1"} + + // catalogBuilder is used to add rpc services and their request and response types + // to a Catalog. + catalogBuilder = &catalog.Builder{GroupVersion: GroupVersion} + + // AddToCatalog adds rpc services defined in this package and their request and + // response types to a catalog. + AddToCatalog = catalogBuilder.AddToCatalog +) diff --git a/exp/runtime/hooks/api/v1alpha1/zz_generated.deepcopy.go b/exp/runtime/hooks/api/v1alpha1/zz_generated.deepcopy.go new file mode 100644 index 000000000000..ed455a27cb54 --- /dev/null +++ b/exp/runtime/hooks/api/v1alpha1/zz_generated.deepcopy.go @@ -0,0 +1,122 @@ +//go:build !ignore_autogenerated +// +build !ignore_autogenerated + +/* +Copyright The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +// Code generated by controller-gen. DO NOT EDIT. + +package v1alpha1 + +import ( + runtime "k8s.io/apimachinery/pkg/runtime" +) + +// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil. +func (in *DiscoveryHookRequest) DeepCopyInto(out *DiscoveryHookRequest) { + *out = *in + out.TypeMeta = in.TypeMeta +} + +// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new DiscoveryHookRequest. +func (in *DiscoveryHookRequest) DeepCopy() *DiscoveryHookRequest { + if in == nil { + return nil + } + out := new(DiscoveryHookRequest) + in.DeepCopyInto(out) + return out +} + +// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object. +func (in *DiscoveryHookRequest) DeepCopyObject() runtime.Object { + if c := in.DeepCopy(); c != nil { + return c + } + return nil +} + +// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil. +func (in *DiscoveryHookResponse) DeepCopyInto(out *DiscoveryHookResponse) { + *out = *in + out.TypeMeta = in.TypeMeta + if in.Extensions != nil { + in, out := &in.Extensions, &out.Extensions + *out = make([]RuntimeExtension, len(*in)) + for i := range *in { + (*in)[i].DeepCopyInto(&(*out)[i]) + } + } +} + +// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new DiscoveryHookResponse. +func (in *DiscoveryHookResponse) DeepCopy() *DiscoveryHookResponse { + if in == nil { + return nil + } + out := new(DiscoveryHookResponse) + in.DeepCopyInto(out) + return out +} + +// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object. +func (in *DiscoveryHookResponse) DeepCopyObject() runtime.Object { + if c := in.DeepCopy(); c != nil { + return c + } + return nil +} + +// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil. +func (in *Hook) DeepCopyInto(out *Hook) { + *out = *in +} + +// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Hook. +func (in *Hook) DeepCopy() *Hook { + if in == nil { + return nil + } + out := new(Hook) + in.DeepCopyInto(out) + return out +} + +// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil. +func (in *RuntimeExtension) DeepCopyInto(out *RuntimeExtension) { + *out = *in + out.Hook = in.Hook + if in.TimeoutSeconds != nil { + in, out := &in.TimeoutSeconds, &out.TimeoutSeconds + *out = new(int32) + **out = **in + } + if in.FailurePolicy != nil { + in, out := &in.FailurePolicy, &out.FailurePolicy + *out = new(FailurePolicy) + **out = **in + } +} + +// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RuntimeExtension. +func (in *RuntimeExtension) DeepCopy() *RuntimeExtension { + if in == nil { + return nil + } + out := new(RuntimeExtension) + in.DeepCopyInto(out) + return out +} diff --git a/internal/runtime/catalog/catalog.go b/internal/runtime/catalog/catalog.go index f9ecc79d3a84..c463a58d31f8 100644 --- a/internal/runtime/catalog/catalog.go +++ b/internal/runtime/catalog/catalog.go @@ -334,3 +334,14 @@ func (gvh GroupVersionHook) String() string { var emptyGroupVersionHook = GroupVersionHook{} var emptyGroupVersionKind = schema.GroupVersionKind{} + +// GVHToPath calculates the path for a given GroupVersionHook. +// This func is aligned with Kubernetes paths for cluster-wide resources, e.g.: +// /apis/storage.k8s.io/v1/storageclasses/standard. +// Note: name is only appended if set, e.g. the Discovery Hook does not have a name. +func GVHToPath(gvh GroupVersionHook, name string) string { + if name == "" { + return fmt.Sprintf("/%s/%s/%s", gvh.Group, gvh.Version, strings.ToLower(gvh.Hook)) + } + return fmt.Sprintf("/%s/%s/%s/%s", gvh.Group, gvh.Version, strings.ToLower(gvh.Hook), strings.ToLower(name)) +} diff --git a/internal/runtime/catalog/test/v1alpha1/conversion.go b/internal/runtime/catalog/test/v1alpha1/conversion.go new file mode 100644 index 000000000000..b27bd6f8bbb4 --- /dev/null +++ b/internal/runtime/catalog/test/v1alpha1/conversion.go @@ -0,0 +1,37 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package v1alpha1 + +import ( + conversion "k8s.io/apimachinery/pkg/conversion" + + clusterv1alpha4 "sigs.k8s.io/cluster-api/api/v1alpha4" + clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1" + v1alpha2 "sigs.k8s.io/cluster-api/internal/runtime/catalog/test/v1alpha2" +) + +func Convert_v1alpha1_FakeResponse_To_v1alpha2_FakeResponse(in *FakeResponse, out *v1alpha2.FakeResponse, s conversion.Scope) error { + return autoConvert_v1alpha1_FakeResponse_To_v1alpha2_FakeResponse(in, out, s) +} + +func Convert_v1alpha4_Cluster_To_v1beta1_Cluster(in *clusterv1alpha4.Cluster, out *clusterv1.Cluster, s conversion.Scope) error { + return clusterv1alpha4.Convert_v1alpha4_Cluster_To_v1beta1_Cluster(in, out, s) +} + +func Convert_v1beta1_Cluster_To_v1alpha4_Cluster(in *clusterv1.Cluster, out *clusterv1alpha4.Cluster, s conversion.Scope) error { + return clusterv1alpha4.Convert_v1beta1_Cluster_To_v1alpha4_Cluster(in, out, s) +} diff --git a/internal/runtime/catalog/test/v1alpha1/conversion_test.go b/internal/runtime/catalog/test/v1alpha1/conversion_test.go new file mode 100644 index 000000000000..8af5976cb341 --- /dev/null +++ b/internal/runtime/catalog/test/v1alpha1/conversion_test.go @@ -0,0 +1,59 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package v1alpha1 + +import ( + "context" + "testing" + + . "github.com/onsi/gomega" + metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" + + clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1" + "sigs.k8s.io/cluster-api/internal/runtime/catalog" + "sigs.k8s.io/cluster-api/internal/runtime/catalog/test/v1alpha2" +) + +func TestConversion(t *testing.T) { + g := NewWithT(t) + + var c = catalog.New() + _ = AddToCatalog(c) + _ = v1alpha2.AddToCatalog(c) + + t.Run("down-convert FakeRequest v1alpha2 to v1alpha1", func(t *testing.T) { + request := &v1alpha2.FakeRequest{Cluster: clusterv1.Cluster{ObjectMeta: metav1.ObjectMeta{ + Name: "test", + }}} + requestLocal := &FakeRequest{} + + g.Expect(c.Convert(request, requestLocal, context.Background())).To(Succeed()) + g.Expect(requestLocal.Cluster.GetName()).To(Equal(request.Cluster.Name)) + }) + + t.Run("up-convert FakeResponse v1alpha1 to v1alpha2", func(t *testing.T) { + responseLocal := &FakeResponse{ + First: 1, + Second: "foo", + } + response := &v1alpha2.FakeResponse{} + g.Expect(c.Convert(responseLocal, response, context.Background())).To(Succeed()) + + g.Expect(response.First).To(Equal(responseLocal.First)) + g.Expect(response.Second).To(Equal(responseLocal.Second)) + }) +} diff --git a/internal/runtime/catalog/test/v1alpha1/doc.go b/internal/runtime/catalog/test/v1alpha1/doc.go new file mode 100644 index 000000000000..e692ed6e393f --- /dev/null +++ b/internal/runtime/catalog/test/v1alpha1/doc.go @@ -0,0 +1,21 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +// Package v1alpha1 contains types for catalog tests +// Note: they have to be in a separate package because otherwise it wouldn't +// be possible to register different versions of the same hook. +// +k8s:conversion-gen=sigs.k8s.io/cluster-api/internal/runtime/catalog/test/v1alpha2 +package v1alpha1 diff --git a/internal/runtime/catalog/test/v1alpha1/fake_types.go b/internal/runtime/catalog/test/v1alpha1/fake_types.go index e794f0a569fa..e0d29f5691df 100644 --- a/internal/runtime/catalog/test/v1alpha1/fake_types.go +++ b/internal/runtime/catalog/test/v1alpha1/fake_types.go @@ -24,6 +24,7 @@ import ( "k8s.io/apimachinery/pkg/runtime" "k8s.io/apimachinery/pkg/runtime/schema" + clusterv1alpha4 "sigs.k8s.io/cluster-api/api/v1alpha4" "sigs.k8s.io/cluster-api/internal/runtime/catalog" ) @@ -39,6 +40,12 @@ var ( // AddToCatalog adds rpc services defined in this package and their request and // response types to a catalog. AddToCatalog = catalogBuilder.AddToCatalog + + // localSchemeBuilder provide access to the SchemeBuilder used for managing rpc + // method's request and response types defined in this package. + // NOTE: this object is required to allow registration of automatically generated + // conversions func. + localSchemeBuilder = catalogBuilder ) func FakeHook(*FakeRequest, *FakeResponse) {} @@ -46,6 +53,8 @@ func FakeHook(*FakeRequest, *FakeResponse) {} type FakeRequest struct { metav1.TypeMeta `json:",inline"` + Cluster clusterv1alpha4.Cluster + Second string First int } diff --git a/internal/runtime/catalog/test/v1alpha1/zz_generated.conversion.go b/internal/runtime/catalog/test/v1alpha1/zz_generated.conversion.go new file mode 100644 index 000000000000..d37e97cfd2a2 --- /dev/null +++ b/internal/runtime/catalog/test/v1alpha1/zz_generated.conversion.go @@ -0,0 +1,115 @@ +//go:build !ignore_autogenerated_runtime +// +build !ignore_autogenerated_runtime + +/* +Copyright The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +// Code generated by conversion-gen. DO NOT EDIT. + +package v1alpha1 + +import ( + conversion "k8s.io/apimachinery/pkg/conversion" + runtime "k8s.io/apimachinery/pkg/runtime" + v1alpha4 "sigs.k8s.io/cluster-api/api/v1alpha4" + v1beta1 "sigs.k8s.io/cluster-api/api/v1beta1" + v1alpha2 "sigs.k8s.io/cluster-api/internal/runtime/catalog/test/v1alpha2" +) + +func init() { + localSchemeBuilder.Register(RegisterConversions) +} + +// RegisterConversions adds conversion functions to the given scheme. +// Public to allow building arbitrary schemes. +func RegisterConversions(s *runtime.Scheme) error { + if err := s.AddGeneratedConversionFunc((*FakeRequest)(nil), (*v1alpha2.FakeRequest)(nil), func(a, b interface{}, scope conversion.Scope) error { + return Convert_v1alpha1_FakeRequest_To_v1alpha2_FakeRequest(a.(*FakeRequest), b.(*v1alpha2.FakeRequest), scope) + }); err != nil { + return err + } + if err := s.AddGeneratedConversionFunc((*v1alpha2.FakeRequest)(nil), (*FakeRequest)(nil), func(a, b interface{}, scope conversion.Scope) error { + return Convert_v1alpha2_FakeRequest_To_v1alpha1_FakeRequest(a.(*v1alpha2.FakeRequest), b.(*FakeRequest), scope) + }); err != nil { + return err + } + if err := s.AddGeneratedConversionFunc((*v1alpha2.FakeResponse)(nil), (*FakeResponse)(nil), func(a, b interface{}, scope conversion.Scope) error { + return Convert_v1alpha2_FakeResponse_To_v1alpha1_FakeResponse(a.(*v1alpha2.FakeResponse), b.(*FakeResponse), scope) + }); err != nil { + return err + } + if err := s.AddConversionFunc((*FakeResponse)(nil), (*v1alpha2.FakeResponse)(nil), func(a, b interface{}, scope conversion.Scope) error { + return Convert_v1alpha1_FakeResponse_To_v1alpha2_FakeResponse(a.(*FakeResponse), b.(*v1alpha2.FakeResponse), scope) + }); err != nil { + return err + } + if err := s.AddConversionFunc((*v1alpha4.Cluster)(nil), (*v1beta1.Cluster)(nil), func(a, b interface{}, scope conversion.Scope) error { + return Convert_v1alpha4_Cluster_To_v1beta1_Cluster(a.(*v1alpha4.Cluster), b.(*v1beta1.Cluster), scope) + }); err != nil { + return err + } + if err := s.AddConversionFunc((*v1beta1.Cluster)(nil), (*v1alpha4.Cluster)(nil), func(a, b interface{}, scope conversion.Scope) error { + return Convert_v1beta1_Cluster_To_v1alpha4_Cluster(a.(*v1beta1.Cluster), b.(*v1alpha4.Cluster), scope) + }); err != nil { + return err + } + return nil +} + +func autoConvert_v1alpha1_FakeRequest_To_v1alpha2_FakeRequest(in *FakeRequest, out *v1alpha2.FakeRequest, s conversion.Scope) error { + if err := Convert_v1alpha4_Cluster_To_v1beta1_Cluster(&in.Cluster, &out.Cluster, s); err != nil { + return err + } + out.Second = in.Second + out.First = in.First + return nil +} + +// Convert_v1alpha1_FakeRequest_To_v1alpha2_FakeRequest is an autogenerated conversion function. +func Convert_v1alpha1_FakeRequest_To_v1alpha2_FakeRequest(in *FakeRequest, out *v1alpha2.FakeRequest, s conversion.Scope) error { + return autoConvert_v1alpha1_FakeRequest_To_v1alpha2_FakeRequest(in, out, s) +} + +func autoConvert_v1alpha2_FakeRequest_To_v1alpha1_FakeRequest(in *v1alpha2.FakeRequest, out *FakeRequest, s conversion.Scope) error { + if err := Convert_v1beta1_Cluster_To_v1alpha4_Cluster(&in.Cluster, &out.Cluster, s); err != nil { + return err + } + out.Second = in.Second + out.First = in.First + return nil +} + +// Convert_v1alpha2_FakeRequest_To_v1alpha1_FakeRequest is an autogenerated conversion function. +func Convert_v1alpha2_FakeRequest_To_v1alpha1_FakeRequest(in *v1alpha2.FakeRequest, out *FakeRequest, s conversion.Scope) error { + return autoConvert_v1alpha2_FakeRequest_To_v1alpha1_FakeRequest(in, out, s) +} + +func autoConvert_v1alpha1_FakeResponse_To_v1alpha2_FakeResponse(in *FakeResponse, out *v1alpha2.FakeResponse, s conversion.Scope) error { + out.Second = in.Second + out.First = in.First + return nil +} + +func autoConvert_v1alpha2_FakeResponse_To_v1alpha1_FakeResponse(in *v1alpha2.FakeResponse, out *FakeResponse, s conversion.Scope) error { + out.Second = in.Second + out.First = in.First + return nil +} + +// Convert_v1alpha2_FakeResponse_To_v1alpha1_FakeResponse is an autogenerated conversion function. +func Convert_v1alpha2_FakeResponse_To_v1alpha1_FakeResponse(in *v1alpha2.FakeResponse, out *FakeResponse, s conversion.Scope) error { + return autoConvert_v1alpha2_FakeResponse_To_v1alpha1_FakeResponse(in, out, s) +} diff --git a/internal/runtime/catalog/test/v1alpha2/fake_types.go b/internal/runtime/catalog/test/v1alpha2/fake_types.go index 2f9b27414b1c..478ce0befb03 100644 --- a/internal/runtime/catalog/test/v1alpha2/fake_types.go +++ b/internal/runtime/catalog/test/v1alpha2/fake_types.go @@ -24,6 +24,7 @@ import ( "k8s.io/apimachinery/pkg/runtime" "k8s.io/apimachinery/pkg/runtime/schema" + clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1" "sigs.k8s.io/cluster-api/internal/runtime/catalog" ) @@ -46,6 +47,8 @@ func FakeHook(*FakeRequest, *FakeResponse) {} type FakeRequest struct { metav1.TypeMeta `json:",inline"` + Cluster clusterv1.Cluster + Second string First int } diff --git a/internal/runtime/client/client.go b/internal/runtime/client/client.go new file mode 100644 index 000000000000..3f8b476e4eee --- /dev/null +++ b/internal/runtime/client/client.go @@ -0,0 +1,251 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +// Package client provides the Runtime SDK client. +package client + +import ( + "bytes" + "context" + "encoding/json" + "fmt" + "net" + "net/http" + "net/url" + "path" + "strconv" + "time" + + "github.com/pkg/errors" + "k8s.io/apimachinery/pkg/runtime" + utilnet "k8s.io/apimachinery/pkg/util/net" + "k8s.io/client-go/transport" + + runtimev1 "sigs.k8s.io/cluster-api/exp/runtime/api/v1alpha1" + runtimehooksv1 "sigs.k8s.io/cluster-api/exp/runtime/hooks/api/v1alpha1" + "sigs.k8s.io/cluster-api/internal/runtime/catalog" +) + +const defaultDiscoveryTimeout = 10 * time.Second + +// Options are creation options for a Client. +type Options struct { + Catalog *catalog.Catalog +} + +// New returns a new Client. +func New(options Options) Client { + return &client{ + catalog: options.Catalog, + } +} + +// Client is the runtime client to interact with hooks and extensions. +type Client interface { + // Discover makes the discovery call on the extension and updates the runtime extensions + // information in the extension status. + // TODO: Need a final decision on if we also want to run register inside discover. + Discover(context.Context, *runtimev1.ExtensionConfig) (*runtimev1.ExtensionConfig, error) +} + +var _ Client = &client{} + +type client struct { + catalog *catalog.Catalog +} + +func (c *client) Discover(ctx context.Context, ext *runtimev1.ExtensionConfig) (*runtimev1.ExtensionConfig, error) { + gvh, err := c.catalog.GroupVersionHook(runtimehooksv1.Discovery) + if err != nil { + return nil, err + } + + request := &runtimehooksv1.DiscoveryHookRequest{} + response := &runtimehooksv1.DiscoveryHookResponse{} + + // Future work: The discovery runtime extension could be operating on a different hook version than + // the latest. We will have to loop through different versions of the discover hook here to actually + // finish discovery. + opts := &httpCallOptions{ + catalog: c.catalog, + config: ext.Spec.ClientConfig, + gvh: gvh, + timeout: defaultDiscoveryTimeout, + } + + if err := httpCall(ctx, request, response, opts); err != nil { + return nil, errors.Wrap(err, "failed to call the discovery extension") + } + + modifiedExtension := &runtimev1.ExtensionConfig{} + ext.DeepCopyInto(modifiedExtension) + modifiedExtension.Status.Handlers = []runtimev1.ExtensionHandler{} + for _, extension := range response.Extensions { + modifiedExtension.Status.Handlers = append( + modifiedExtension.Status.Handlers, + runtimev1.ExtensionHandler{ + Name: extension.Name + "." + ext.Name, + RequestHook: runtimev1.GroupVersionHook{ + APIVersion: extension.Hook.APIVersion, + Hook: extension.Hook.Name, + }, + TimeoutSeconds: extension.TimeoutSeconds, + FailurePolicy: (*runtimev1.FailurePolicy)(extension.FailurePolicy), + }, + ) + } + + return modifiedExtension, nil +} + +type httpCallOptions struct { + catalog *catalog.Catalog + config runtimev1.ClientConfig + gvh catalog.GroupVersionHook + name string + timeout time.Duration +} + +func httpCall(ctx context.Context, request, response runtime.Object, opts *httpCallOptions) error { + if opts == nil || request == nil || response == nil { + return fmt.Errorf("opts, request and response cannot be nil") + } + if opts.catalog == nil { + return fmt.Errorf("opts.Catalog cannot be nil") + } + + url, err := urlForExtension(opts.config, opts.gvh, opts.name) + if err != nil { + return err + } + + requireConversion := opts.gvh.Version != request.GetObjectKind().GroupVersionKind().Version + + requestLocal := request + responseLocal := response + + if requireConversion { + var err error + requestLocal, err = opts.catalog.NewRequest(opts.gvh) + if err != nil { + return err + } + + if err := opts.catalog.Convert(request, requestLocal, ctx); err != nil { + return err + } + + responseLocal, err = opts.catalog.NewResponse(opts.gvh) + if err != nil { + return err + } + } + + if err := opts.catalog.ValidateRequest(opts.gvh, requestLocal); err != nil { + return errors.Wrapf(err, "request object is invalid for hook %v", opts.gvh) + } + if err := opts.catalog.ValidateResponse(opts.gvh, responseLocal); err != nil { + return errors.Wrapf(err, "response object is invalid for hook %v", opts.gvh) + } + + postBody, err := json.Marshal(requestLocal) + if err != nil { + return errors.Wrap(err, "failed to marshall request object") + } + + if opts.timeout != 0 { + values := url.Query() + values.Add("timeout", opts.timeout.String()) + url.RawQuery = values.Encode() + + ctx, _ = context.WithTimeout(ctx, opts.timeout) //nolint:govet + } + + httpRequest, err := http.NewRequestWithContext(ctx, http.MethodPost, url.String(), bytes.NewBuffer(postBody)) + if err != nil { + return errors.Wrap(err, "failed to create http request") + } + + // use client-go's transport.TLSConfigureFor to ensure good defaults for tls + client := http.DefaultClient + if opts.config.CABundle != nil { + tlsConfig, err := transport.TLSConfigFor(&transport.Config{ + TLS: transport.TLSConfig{ + CAData: opts.config.CABundle, + ServerName: url.Hostname(), + }, + }) + if err != nil { + return errors.Wrap(err, "failed to create tls config") + } + // this also adds http2 + client.Transport = utilnet.SetTransportDefaults(&http.Transport{ + TLSClientConfig: tlsConfig, + }) + } + resp, err := client.Do(httpRequest) + if err != nil { + return err + } + + defer resp.Body.Close() + if err := json.NewDecoder(resp.Body).Decode(responseLocal); err != nil { + return errors.Wrap(err, "failed to decode response") + } + + if requireConversion { + if err := opts.catalog.Convert(responseLocal, response, ctx); err != nil { + return err + } + } + + return nil +} + +func urlForExtension(config runtimev1.ClientConfig, gvh catalog.GroupVersionHook, name string) (*url.URL, error) { + var u *url.URL + // TODO: Add additional validation here - webhook should make this safe, but for now it might be good to do url validation in here. + if config.Service != nil { + svc := config.Service + host := svc.Name + "." + svc.Namespace + ".svc" + if svc.Port != nil { + host = net.JoinHostPort(host, strconv.Itoa(int(*svc.Port))) + } + // TODO: decide if we want to enforce https + scheme := "http" + if len(config.CABundle) > 0 { + scheme = "https" + } + u = &url.URL{ + Scheme: scheme, + Host: host, + } + if svc.Path != nil { + u.Path = *svc.Path + } + } else { + if config.URL == nil { + return nil, errors.New("at least one of Service and URL should be defined in config") + } + var err error + u, err = url.Parse(*config.URL) + if err != nil { + return nil, errors.Wrap(err, "URL in config is invalid") + } + } + u.Path = path.Join(u.Path, catalog.GVHToPath(gvh, name)) + return u, nil +} diff --git a/internal/runtime/client/client_test.go b/internal/runtime/client/client_test.go new file mode 100644 index 000000000000..e1516a6c20d4 --- /dev/null +++ b/internal/runtime/client/client_test.go @@ -0,0 +1,169 @@ +/* +Copyright 2022 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package client + +import ( + "context" + "encoding/json" + "net/http" + "net/http/httptest" + "testing" + + . "github.com/onsi/gomega" + metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" + "k8s.io/apimachinery/pkg/runtime" + "k8s.io/utils/pointer" + + "sigs.k8s.io/cluster-api/internal/runtime/catalog" + fakev1alpha1 "sigs.k8s.io/cluster-api/internal/runtime/catalog/test/v1alpha1" + fakev1alpha2 "sigs.k8s.io/cluster-api/internal/runtime/catalog/test/v1alpha2" +) + +func TestClient_httpCall(t *testing.T) { + g := NewWithT(t) + + tableTests := []struct { + name string + request runtime.Object + response runtime.Object + opts *httpCallOptions + wantErr bool + }{ + { + name: "should error if request, response and options are nil", + request: nil, + response: nil, + opts: nil, + wantErr: true, + }, + { + name: "should error if catalog is not set", + request: &fakev1alpha1.FakeRequest{}, + response: &fakev1alpha1.FakeResponse{}, + opts: &httpCallOptions{ + catalog: nil, + }, + wantErr: true, + }, + { + name: "should error if hooks is not registered with catalog", + request: &fakev1alpha1.FakeRequest{}, + response: &fakev1alpha1.FakeResponse{}, + opts: &httpCallOptions{ + catalog: catalog.New(), + }, + wantErr: true, + }, + { + name: "should succeed for valid request and response objects", + request: &fakev1alpha1.FakeRequest{ + TypeMeta: metav1.TypeMeta{ + Kind: "FakeRequest", + APIVersion: fakev1alpha1.GroupVersion.Identifier(), + }, + }, + response: &fakev1alpha1.FakeResponse{}, + opts: func() *httpCallOptions { + c := catalog.New() + c.AddHook( + fakev1alpha1.GroupVersion, + fakev1alpha1.FakeHook, + &catalog.HookMeta{}, + ) + + // get same gvh for hook by using the FakeHook and catalog + gvh, err := c.GroupVersionHook(fakev1alpha1.FakeHook) + g.Expect(err).To(Succeed()) + + return &httpCallOptions{ + catalog: c, + gvh: gvh, + } + }(), + wantErr: false, + }, + { + name: "should success if response and response are valid objects - with conversion", + request: &fakev1alpha2.FakeRequest{ + TypeMeta: metav1.TypeMeta{ + Kind: "FakeRequest", + APIVersion: fakev1alpha2.GroupVersion.Identifier(), + }, + }, + response: &fakev1alpha2.FakeResponse{}, + opts: func() *httpCallOptions { + c := catalog.New() + // register fakev1alpha1 to enable conversion + g.Expect(fakev1alpha1.AddToCatalog(c)).To(Succeed()) + c.AddHook( + fakev1alpha1.GroupVersion, + fakev1alpha1.FakeHook, + &catalog.HookMeta{}, + ) + + // get same gvh for hook by using the FakeHook and catalog + gvh, err := c.GroupVersionHook(fakev1alpha1.FakeHook) + g.Expect(err).To(Succeed()) + + return &httpCallOptions{ + catalog: c, + gvh: gvh, + } + }(), + wantErr: false, + }, + } + for _, tt := range tableTests { + t.Run(tt.name, func(t *testing.T) { + // a http server is only required if we have a valid catalog, otherwise httpCall will not reach out to the server + if tt.opts != nil && tt.opts.catalog != nil { + // create http server with fakeHookHandler + mux := http.NewServeMux() + mux.HandleFunc("/", fakeHookHandler) + srv := httptest.NewServer(mux) + defer srv.Close() + + // set url to srv for in tt.opts + tt.opts.config.URL = pointer.String(srv.URL) + } + + assert := g.Expect(httpCall(context.TODO(), tt.request, tt.response, tt.opts)) + if tt.wantErr { + assert.To(HaveOccurred()) + } else { + assert.To(Succeed()) + } + }) + } +} + +func fakeHookHandler(w http.ResponseWriter, r *http.Request) { + response := &fakev1alpha1.FakeResponse{ + TypeMeta: metav1.TypeMeta{ + Kind: "FakeHookResponse", + APIVersion: fakev1alpha1.GroupVersion.Identifier(), + }, + Second: "", + First: 1, + } + respBody, err := json.Marshal(response) + if err != nil { + panic(err) + } + w.WriteHeader(http.StatusOK) + _, _ = w.Write(respBody) +}