Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Reconcile loop rework #54

Merged
merged 8 commits into from
May 8, 2024
Merged

Reconcile loop rework #54

merged 8 commits into from
May 8, 2024

Conversation

mpryc
Copy link
Collaborator

@mpryc mpryc commented Apr 29, 2024
edited
Loading

NonAdminBackup reconcile loop major rework

Rework of the reconcile loop to include batch reconcile.

Move assignment of the Log or Context outside of the reconcile loop.

How to test

Note it's best to test this PR together with #56 which includes namespace guard (case d) in this instructions.

  1. Setup non-admin user as per instructions: https://github.com/migtools/oadp-non-admin/blob/master/docs/non_admin_user.md
  2. Create multiple NonAdminBackup objects in the namespace for which the non-admin user have namespace admin rights. After each creation see if at the end of reconcile the NonAdminBackup is correctly updated with its status and if in some cases VeleroBackup object was created in the openshift-adp namespace (as an admin).

All of the below are in the non-admin namespace nacproject:

a) Case where there is no backupSpec:

apiVersion: nac.oadp.openshift.io/v1alpha1
kind: NonAdminBackup
metadata:
  name: example-nospec
  namespace: nacproject
spec: {}

Result should be NAB in backingOff phase with BackupSpec is not defined condition message:

apiVersion: nac.oadp.openshift.io/v1alpha1
kind: NonAdminBackup
metadata:
  name: example-nospec
  namespace: nacproject
spec: {}
status:
  conditions:
    - lastTransitionTime: '2024-05-02T08:24:50Z'
      message: BackupSpec is not defined
      reason: InvalidBackupSpec
      status: 'False'
      type: Accepted
  phase: BackingOff

b) Case where there is backupSpec, but empty, should create Velero Backup with nacproject namespace in the includedNamespaces (below is not full spec, removed managedFields from it):

apiVersion: nac.oadp.openshift.io/v1alpha1
kind: NonAdminBackup
metadata:
  name: empty-backupspec
  namespace: nacproject
spec: 
  backupSpec: {}

Result should be created Velero Backup with includedNamespaces same as the origin NAB namespace and updated NonAdminBackup (below is not full spec, removed managedFields from it):

apiVersion: nac.oadp.openshift.io/v1alpha1
kind: NonAdminBackup
metadata:
  creationTimestamp: '2024-05-02T08:27:46Z'
  name: empty-backupspec
  namespace: nacproject
  resourceVersion: '71261871'
  uid: 624c270e-2711-490d-923e-aaebfcc2a420
spec:
  backupSpec:
    volumeSnapshotLocations:
      - velero-sample-1
    defaultVolumesToFsBackup: false
    csiSnapshotTimeout: 10m0s
    ttl: 720h0m0s
    itemOperationTimeout: 4h0m0s
    metadata: {}
    storageLocation: velero-sample-1
    hooks: {}
    includedNamespaces:
      - nacproject
    snapshotMoveData: false
status:
  conditions:
    - lastTransitionTime: '2024-05-02T08:27:47Z'
      message: backup accepted
      reason: BackupAccepted
      status: 'True'
      type: Accepted
    - lastTransitionTime: '2024-05-02T08:27:57Z'
      message: Created Velero Backup object
      reason: BackupScheduled
      status: 'True'
      type: Queued
  phase: Created
  veleroBackupName: nab-nacproject-d0b80d478b6a26
  veleroBackupNamespace: openshift-adp
  veleroBackupStatus:
    expiration: '2024-06-01T08:27:57Z'
    failureReason: >-
      unable to get credentials: unable to get key for secret: Secret
      "cloud-credentials" not found
    formatVersion: 1.1.0
    phase: Failed
    startTimestamp: '2024-05-02T08:27:57Z'
    version: 1

c) Perform step a) and then update/patch (a) to include empty backupSpec. The reconcile should be same as in b), so the Velero Backup should be created.

d) Create NonAdminBackup with includedNamespaces that does not match the namespace from the NonAdminBackup.

apiVersion: nac.oadp.openshift.io/v1alpha1
kind: NonAdminBackup
metadata:
  name: example-wrongnamespace
  namespace: nacproject
spec:
   backupSpec:
     includedNamespaces:
       - othernamespace

Result should be NAB in backingOff phase with spec.backupSpec.IncludedNamespaces can not contain namespaces other then: nacproject condition message:

apiVersion: nac.oadp.openshift.io/v1alpha1
kind: NonAdminBackup
metadata:
  creationTimestamp: '2024-05-02T08:33:35Z'
  generation: 1
  name: example-wrongnamespace
  namespace: nacproject
  resourceVersion: '71264312'
  uid: 2716a72d-3e44-466d-8126-5bcdeed9413b
spec:
  backupSpec:
    includedNamespaces:
      - othernamespace
status:
  conditions:
    - lastTransitionTime: '2024-05-02T08:33:45Z'
      message: >-
        spec.backupSpec.IncludedNamespaces can not contain namespaces other
        then: nacproject
      reason: InvalidBackupSpec
      status: 'False'
      type: Accepted
  phase: BackingOff

@openshift-ci openshift-ci bot requested review from kaovilai and mrnold April 29, 2024 13:18
@mpryc
Copy link
Collaborator Author

mpryc commented Apr 29, 2024

need to rebase...

@mpryc
Adjust the Status of NonAdminBackup
d1a710a 
Moves Status outside of Spec and adjusts this to reflect
Velero Backup status as well additional Status when the
Spec within NonAdminBackup is not defined.

Signed-off-by: Michal Pryc <[email protected]>
@mpryc
NonAdminBackup updates to align with updated design
3ed92ed 
Additional improvements to the NonAdminBackup:
 - Use generic condition names (Accepted, Queued)
 - Introduce VeleroBackupNamespace
 - Change Status: OadpVeleroBackup to VeleroBackupName
 - Use CammelCase for condition reasoan

Signed-off-by: Michal Pryc <[email protected]>
@mpryc
Move NonAdminCondition to it's new type
841d653 
Adjust NonAdminCondition and move it to new types, so it can
be use as well in NonAdminRestore object.

Signed-off-by: Michal Pryc <[email protected]>
@mpryc mpryc force-pushed the reconcile_loop_rework branch 2 times, most recently from 4799db7 to d081047 Compare April 29, 2024 14:22
@mpryc
NonAdminBackup reconcile loop major rework
476783c 
Rework of the reconcile loop to include batch
reconcile.

Move assignment of the Log or Context outisde of
the reconcile loop.

Signed-off-by: Michal Pryc <[email protected]>
@mpryc
Simplified error statement in the Reconcile loop.
c91e31a 
Small nit to make if statement easier to read.

Signed-off-by: Michal Pryc <[email protected]>
@mpryc
Adjust the reconcile loop to use simpler logic from reconcile batch
f4f4e55 
Change of the main reconcile loop to easy logic of the return
from the reconcile batch.

We only requeue when there is need, otherwise we do exit the reconcile
loop at the same place and individual reconcile functions control
if that should happen now or should be requeued.

Signed-off-by: Michal Pryc <[email protected]>
@mpryc
Rework of rework of reconcile functions
0d18421 
In this implementation we don't have ReconcileBatch, instead
we do have functions with arguments that has appropriate
types.

Also there was modified implementation to first check for
errors and then continue with app flow.

Signed-off-by: Michal Pryc <[email protected]>
@mpryc mpryc mentioned this pull request Apr 30, 2024
Merged
@mpryc mpryc self-assigned this Apr 30, 2024
mateusoliveira43
mateusoliveira43 requested changes Apr 30, 2024
View reviewed changes
Copy link
Contributor

@mateusoliveira43 mateusoliveira43 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

no "how to test" section in PR description

@mateusoliveira43 mateusoliveira43 mentioned this pull request Apr 30, 2024
Draft
@mpryc
Copy link
Collaborator Author

mpryc commented May 2, 2024

no "how to test" section in PR description

Added with few different use-cases.

@mpryc
Move reconcile functions inside NAB controller
957fc3c 
With this change there is no separate file per reconcile function
and we move all the reconcile related functions inside
nonadminbackup_controller.

Signed-off-by: Michal Pryc <[email protected]>
@shubham-pampattiwar
Copy link
Member

Did some high level testing, 2 issues that can be addressed separately in follow up PRs:

@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented May 6, 2024

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: mpryc, shubham-pampattiwar

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:
  • OWNERS [mpryc,shubham-pampattiwar]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@mpryc
Copy link
Collaborator Author

mpryc commented May 7, 2024

@mateusoliveira43 is there anything in this PR that requires rework or can we merge and continue with other PRs to improve code base?

@mpryc mpryc mentioned this pull request May 8, 2024
Closed
@mpryc mpryc merged commit 15f8b12 into migtools:master May 8, 2024
9 of 10 checks passed
@mpryc mpryc mentioned this pull request May 14, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@shawn-hurley shawn-hurley shawn-hurley left review comments

@PrasadJoshi12 PrasadJoshi12 PrasadJoshi12 left review comments

@shubham-pampattiwar shubham-pampattiwar shubham-pampattiwar approved these changes

@kaovilai kaovilai Awaiting requested review from kaovilai

@mrnold mrnold Awaiting requested review from mrnold

@mateusoliveira43 mateusoliveira43 Awaiting requested review from mateusoliveira43

Assignees

@mpryc mpryc

Labels
approved
Projects
OADP
Status: Merged / Ready for build
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@mpryc @shubham-pampattiwar @shawn-hurley @PrasadJoshi12 @mateusoliveira43 @openshift-merge-robot