Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[KO-338] Making the aerospike-init image namespace configurable #308

Merged
merged 10 commits into from
Sep 13, 2024
Merged
Show file tree
Hide file tree
Changes from 1 commit
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 2 additions & 1 deletion Jenkinsfile
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@ pipeline {
BUNDLE_IMG="${OPERATOR_BUNDLE_IMAGE_CANDIDATE_NAME}"

AEROSPIKE_CUSTOM_INIT_REGISTRY="568976754000.dkr.ecr.ap-south-1.amazonaws.com"
AEROSPIKE_CUSTOM_INIT_REGISTRY_NAMESPACE="aerospike"
abhishekdwivedi3060 marked this conversation as resolved.
Show resolved Hide resolved
}

stages {
Expand Down Expand Up @@ -92,7 +93,7 @@ pipeline {
dir("${env.GO_REPO}") {
sh "rsync -aK ${env.WORKSPACE}/../../aerospike-kubernetes-operator-resources/secrets/ config/samples/secrets"
sh "set +x; docker login --username AWS 568976754000.dkr.ecr.ap-south-1.amazonaws.com -p \$(aws ecr get-login-password --region ap-south-1); set -x"
sh "./test/test.sh -b ${OPERATOR_BUNDLE_IMAGE_CANDIDATE_NAME} -c ${OPERATOR_CATALOG_IMAGE_CANDIDATE_NAME} -r ${AEROSPIKE_CUSTOM_INIT_REGISTRY}"
sh "./test/test.sh -b ${OPERATOR_BUNDLE_IMAGE_CANDIDATE_NAME} -c ${OPERATOR_CATALOG_IMAGE_CANDIDATE_NAME} -r ${AEROSPIKE_CUSTOM_INIT_REGISTRY} -n ${AEROSPIKE_CUSTOM_INIT_REGISTRY_NAMESPACE}"

}
}
Expand Down
2 changes: 2 additions & 0 deletions api/v1/aerospikecluster_types.go
Original file line number Diff line number Diff line change
Expand Up @@ -318,6 +318,8 @@ type AerospikeInitContainerSpec struct { //nolint:govet // for readability
// ImageRegistry is the name of image registry for aerospike-init container image
// ImageRegistry, e.g. docker.io, redhat.access.com
ImageRegistry string `json:"imageRegistry,omitempty"`
// ImageRegistryNamespace is the name of namespace in registry for aerospike-init container image
ImageRegistryNamespace *string `json:"imageRegistryNamespace,omitempty"`
// SecurityContext that will be added to aerospike-init container created by operator.
SecurityContext *corev1.SecurityContext `json:"securityContext,omitempty"`
// Define resources requests and limits for Aerospike init Container.
Expand Down
51 changes: 41 additions & 10 deletions api/v1/utils.go
Original file line number Diff line number Diff line change
Expand Up @@ -71,6 +71,7 @@ const (
AerospikeServerContainerName = "aerospike-server"
AerospikeInitContainerName = "aerospike-init"
AerospikeInitContainerRegistryEnvVar = "AEROSPIKE_KUBERNETES_INIT_REGISTRY"
AerospikeInitContainerRegistryNamespaceEnvVar = "AEROSPIKE_KUBERNETES_INIT_REGISTRY_NAMESPACE"
AerospikeInitContainerDefaultRegistry = "docker.io"
AerospikeInitContainerDefaultRegistryNamespace = "aerospike"
AerospikeInitContainerDefaultRepoAndTag = "aerospike-kubernetes-init:2.2.1"
abhishekdwivedi3060 marked this conversation as resolved.
Show resolved Hide resolved
Expand Down Expand Up @@ -121,33 +122,63 @@ func GetWorkDirectory(aerospikeConfigSpec AerospikeConfigSpec) string {
return DefaultWorkDirectory
}

func getInitContainerImage(registry string) string {
func getInitContainerImage(registry, namespace string) string {
return fmt.Sprintf(
"%s/%s/%s", strings.TrimSuffix(registry, "/"),
strings.TrimSuffix(AerospikeInitContainerDefaultRegistryNamespace, "/"),
strings.TrimSuffix(namespace, "/"),
AerospikeInitContainerDefaultRepoAndTag,
)
}

func GetAerospikeInitContainerImage(aeroCluster *AerospikeCluster) string {
registry := getInitContainerImageRegistry(aeroCluster)
namespace := getInitContainerImageRegistryNamespace(aeroCluster)

return getInitContainerImage(registry, namespace)
}

func getInitContainerImageRegistryNamespace(aeroCluster *AerospikeCluster) string {
// Given in CR
var namespace *string
if aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec != nil {
namespace = aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistryNamespace
}

if namespace == nil {
// Given in EnvVar
envRegistryNamespace, found := os.LookupEnv(AerospikeInitContainerRegistryNamespaceEnvVar)
if found {
namespace = &envRegistryNamespace
}
}

if namespace == nil {
return AerospikeInitContainerDefaultRegistryNamespace
}

return *namespace
}

func getInitContainerImageRegistry(aeroCluster *AerospikeCluster) string {
// Given in CR
registry := ""
if aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec != nil {
registry = aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistry
}

if registry != "" {
return getInitContainerImage(registry)
if registry == "" {
// Given in EnvVar
envRegistry, found := os.LookupEnv(AerospikeInitContainerRegistryEnvVar)
if found {
registry = envRegistry
}
}

// Given in EnvVar
registry, found := os.LookupEnv(AerospikeInitContainerRegistryEnvVar)
if found {
return getInitContainerImage(registry)
if registry == "" {
return AerospikeInitContainerDefaultRegistry
}

// Use default
return getInitContainerImage(AerospikeInitContainerDefaultRegistry)
return registry
}

func ClusterNamespacedName(aeroCluster *AerospikeCluster) string {
Expand Down
5 changes: 5 additions & 0 deletions api/v1/zz_generated.deepcopy.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

8 changes: 8 additions & 0 deletions config/crd/bases/asdb.aerospike.com_aerospikeclusters.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -623,6 +623,10 @@ spec:
aerospike-init container image ImageRegistry, e.g. docker.io,
redhat.access.com
type: string
imageRegistryNamespace:
description: ImageRegistryNamespace is the name of namespace
in registry for aerospike-init container image
type: string
resources:
description: Define resources requests and limits for Aerospike
init Container. Only Memory and Cpu resources can be given
Expand Down Expand Up @@ -9996,6 +10000,10 @@ spec:
aerospike-init container image ImageRegistry, e.g. docker.io,
redhat.access.com
type: string
imageRegistryNamespace:
description: ImageRegistryNamespace is the name of namespace
in registry for aerospike-init container image
type: string
resources:
description: Define resources requests and limits for Aerospike
init Container. Only Memory and Cpu resources can be given
Expand Down
3 changes: 3 additions & 0 deletions config/manager/manager.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,9 @@ spec:
- name: AEROSPIKE_KUBERNETES_INIT_REGISTRY
# this is the registry used to pull aerospike-init image
value: docker.io
- name: AEROSPIKE_KUBERNETES_INIT_REGISTRY_NAMESPACE
# this is the namespace in registry used to pull aerospike-init image
value: aerospike
serviceAccountName: controller-manager

terminationGracePeriodSeconds: 10
9 changes: 0 additions & 9 deletions controllers/rack.go
Original file line number Diff line number Diff line change
Expand Up @@ -1081,15 +1081,6 @@ func (r *SingleClusterReconciler) rollingRestartRack(found *appsv1.StatefulSet,
}
}

if len(failedPods) != 0 && r.isAnyPodInImageFailedState(podList, ignorablePodNames) {
return found, reconcileError(
fmt.Errorf(
"cannot Rolling restart AerospikeCluster. " +
"A pod is already in failed state due to image related issues",
),
)
}

err = r.updateSTS(found, rackState)
if err != nil {
return found, reconcileError(
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -623,6 +623,10 @@ spec:
aerospike-init container image ImageRegistry, e.g. docker.io,
redhat.access.com
type: string
imageRegistryNamespace:
description: ImageRegistryNamespace is the name of namespace
in registry for aerospike-init container image
type: string
resources:
description: Define resources requests and limits for Aerospike
init Container. Only Memory and Cpu resources can be given
Expand Down Expand Up @@ -9996,6 +10000,10 @@ spec:
aerospike-init container image ImageRegistry, e.g. docker.io,
redhat.access.com
type: string
imageRegistryNamespace:
description: ImageRegistryNamespace is the name of namespace
in registry for aerospike-init container image
type: string
resources:
description: Define resources requests and limits for Aerospike
init Container. Only Memory and Cpu resources can be given
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -57,6 +57,8 @@ spec:
value: {{ .Values.watchNamespaces | quote }}
- name: AEROSPIKE_KUBERNETES_INIT_REGISTRY
value: {{ .Values.aerospikeKubernetesInitRegistry }}
- name: AEROSPIKE_KUBERNETES_INIT_REGISTRY_NAMESPACE
value: {{ .Values.aerospikeKubernetesInitRegistryNamespace }}
{{- if .Values.extraEnv }}
{{- range $key, $value := .Values.extraEnv }}
- name: "{{ $key }}"
Expand Down
3 changes: 3 additions & 0 deletions helm-charts/aerospike-kubernetes-operator/values.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,9 @@ watchNamespaces: "default"
# Registry used to pull aerospike-init image
aerospikeKubernetesInitRegistry: "docker.io"

# Namespace in registry used to pull aerospike-init image
aerospikeKubernetesInitRegistryNamespace: "aerospike"

## Resources - limits / requests
resources:
limits:
Expand Down
60 changes: 48 additions & 12 deletions test/podspec_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,7 @@ import (
"os"
"reflect"
"strings"
"time"

. "github.com/onsi/ginkgo/v2"
. "github.com/onsi/gomega"
Expand All @@ -16,8 +17,9 @@ import (
)

var (
customInitRegistryEnvVar = "CUSTOM_INIT_REGISTRY"
imagePullSecretNameEnvVar = "IMAGE_PULL_SECRET_NAME" //nolint:gosec // for testing
customInitRegistryEnvVar = "CUSTOM_INIT_REGISTRY"
customInitRegistryNamespaceEnvVar = "CUSTOM_INIT_REGISTRY_NAMESPACE"
imagePullSecretNameEnvVar = "IMAGE_PULL_SECRET_NAME" //nolint:gosec // for testing
)

var _ = Describe(
Expand Down Expand Up @@ -427,9 +429,11 @@ var _ = Describe(
}
})

It("Should be able to set/update aerospike-init custom registry", func() {
It("Should be able to set/update aerospike-init custom registry and namespace", func() {
operatorEnvVarRegistry := "docker.io"
operatorEnvVarRegistryNamespace := "aerospike"
customRegistry := getEnvVar(customInitRegistryEnvVar)
customRegistryNamespace := getEnvVar(customInitRegistryNamespaceEnvVar)
imagePullSecret := getEnvVar(imagePullSecretNameEnvVar)

By("Updating imagePullSecret")
Expand All @@ -450,21 +454,52 @@ var _ = Describe(
Expect(err).ToNot(HaveOccurred())

aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistry = customRegistry
aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistryNamespace = &customRegistryNamespace
abhishekdwivedi3060 marked this conversation as resolved.
Show resolved Hide resolved
err = updateCluster(k8sClient, ctx, aeroCluster)
Expect(err).ToNot(HaveOccurred())

validateImageRegistry(k8sClient, ctx, aeroCluster, customRegistry)
validateImageRegistryNamespace(k8sClient, ctx, aeroCluster, customRegistry, customRegistryNamespace)

By("Using envVar registry")
By("Using envVar registry and namespace")
aeroCluster, err = getCluster(k8sClient, ctx, clusterNamespacedName)
Expect(err).ToNot(HaveOccurred())

// Empty imageRegistry, should use operator envVar docker.io
aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistry = ""
aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistryNamespace = nil
err = updateCluster(k8sClient, ctx, aeroCluster)
Expect(err).ToNot(HaveOccurred())

validateImageRegistry(k8sClient, ctx, aeroCluster, operatorEnvVarRegistry)
validateImageRegistryNamespace(k8sClient, ctx, aeroCluster, operatorEnvVarRegistry,
operatorEnvVarRegistryNamespace)
})

It("Should be able to recover cluster after setting correct aerospike-init custom registry", func() {
operatorEnvVarRegistry := "docker.io"
operatorEnvVarRegistryNamespace := "aerospike"
incorrectCustomRegistry := "incorrect.registry"

By("Using incorrect registry in CR")
abhishekdwivedi3060 marked this conversation as resolved.
Show resolved Hide resolved
aeroCluster, err := getCluster(k8sClient, ctx, clusterNamespacedName)
Expect(err).ToNot(HaveOccurred())

aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistry = incorrectCustomRegistry
aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistryNamespace = &operatorEnvVarRegistryNamespace
err = updateClusterWithTO(k8sClient, ctx, aeroCluster, time.Minute*1)
Expect(err).Should(HaveOccurred())

By("Using correct registry name")
aeroCluster, err = getCluster(k8sClient, ctx, clusterNamespacedName)
Expect(err).ToNot(HaveOccurred())

// Empty imageRegistry, should use operator envVar docker.io
aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistry = operatorEnvVarRegistry
aeroCluster.Spec.PodSpec.AerospikeInitContainerSpec.ImageRegistryNamespace = &operatorEnvVarRegistryNamespace
err = updateCluster(k8sClient, ctx, aeroCluster)
Expect(err).ToNot(HaveOccurred())

validateImageRegistryNamespace(k8sClient, ctx, aeroCluster, operatorEnvVarRegistry,
operatorEnvVarRegistryNamespace)
})
})
Context(
Expand Down Expand Up @@ -521,7 +556,6 @@ var _ = Describe(
)
},
)

},
)

Expand All @@ -532,15 +566,17 @@ func getEnvVar(envVar string) string {
return envVarVal
}

func validateImageRegistry(
k8sClient client.Client, _ goctx.Context, aeroCluster *asdbv1.AerospikeCluster, registry string,
) {
func validateImageRegistryNamespace(k8sClient client.Client, _ goctx.Context, aeroCluster *asdbv1.AerospikeCluster,
registry, namespace string) {
stsList, err := getSTSList(aeroCluster, k8sClient)
Expect(err).ToNot(HaveOccurred())

expectedImagePrefix := fmt.Sprintf("%s/%s", registry, namespace)

for stsIndex := range stsList.Items {
image := stsList.Items[stsIndex].Spec.Template.Spec.InitContainers[0].Image
hasPrefix := strings.HasPrefix(image, registry)
Expect(hasPrefix).To(BeTrue(), fmt.Sprintf("expected registry %s, found image %s", registry, image))
hasPrefix := strings.HasPrefix(image, expectedImagePrefix)
Expect(hasPrefix).To(BeTrue(), fmt.Sprintf("expected registry/namespace %s, found image %s",
expectedImagePrefix, image))
}
}
5 changes: 4 additions & 1 deletion test/test.sh
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ set -e
# test.sh -c aerospike/aerospike-kubernetes-operator-bundle:1.1.0 -f ".*RackManagement.*" -a "--connect-through-network-type=hostInternal"
# test.sh -c <IMAGE> -f "<GINKGO-FOCUS-REGEXP>" -a "<PASS-THROUGHS>"

while getopts "b:c:f:a:r:p:" opt
while getopts "b:c:f:a:r:p:n:" opt
do
case "$opt" in
b ) BUNDLE="$OPTARG" ;;
Expand All @@ -20,13 +20,15 @@ do
a ) ARGS="$OPTARG" ;;
r ) REGISTRY="$OPTARG" ;;
p ) CRED_PATH="$OPTARG" ;;
n ) NAMESPACE="$OPTARG" ;;
abhishekdwivedi3060 marked this conversation as resolved.
Show resolved Hide resolved

esac
done

# Defaults
CRED_PATH=${CRED_PATH:-$HOME/.docker/config.json}
REGISTRY=${REGISTRY:-568976754000.dkr.ecr.ap-south-1.amazonaws.com}
NAMESPACE=${NAMESPACE:-aerospike}


DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"
Expand Down Expand Up @@ -60,6 +62,7 @@ echo "| Starting tests.... |"
echo "---------------------"

export CUSTOM_INIT_REGISTRY="$REGISTRY"
export CUSTOM_INIT_REGISTRY_NAMESPACE="$NAMESPACE"
export IMAGE_PULL_SECRET_NAME="$IMAGE_PULL_SECRET"

make test FOCUS="$FOCUS" ARGS="$ARGS"
Loading