merge from failure-domains branch

Author: wanyufe

Makefile

@@ -74,16 +74,12 @@ api/%/zz_generated.deepcopy.go: bin/controller-gen $(DEEPCOPY_GEN_INPUTS)
 
 MANAGER_BIN_INPUTS=$(shell find ./controllers ./api ./pkg -name "*mock*" -prune -o -name "*test*" -prune -o -type f -print) main.go go.mod go.sum
 .PHONY: build
-build: binaries generate-mocks generate-deepcopy manifests release-manifests ## Build manager binary.
+build: binaries generate-deepcopy lint manifests release-manifests ## Build manager binary.
 bin/manager: $(MANAGER_BIN_INPUTS)
-	go fmt ./...
-	go vet ./...
 	go build -o bin/manager main.go
 
 .PHONY: run
-run: generate-deepcopy fmt vet ## Run a controller from your host.
-	go fmt ./...
-	go vet ./...
+run: generate-deepcopy ## Run a controller from your host.
 	go run ./main.go
 
 # Using a flag file here as docker build doesn't produce a target file.
@@ -163,14 +159,14 @@ clean: ## Clean.
 export KUBEBUILDER_ASSETS=$(PROJECT_DIR)/bin
 
 .PHONY: test
-test: generate-mocks lint generate-deepcopy bin/ginkgo bin/kubectl bin/kube-apiserver bin/etcd ## Run tests. At the moment this is only unit tests.
+test: generate-mocks lint bin/ginkgo bin/kubectl bin/kube-apiserver bin/etcd ## Run tests. At the moment this is only unit tests.
 	@./hack/testing_ginkgo_recover_statements.sh --add # Add ginkgo.GinkgoRecover() statements to controllers.
 	@# The following is a slightly funky way to make sure the ginkgo statements are removed regardless the test results.
 	@ginkgo -v ./api/... ./controllers/... ./pkg/... -coverprofile cover.out; EXIT_STATUS=$$?;\
 		./hack/testing_ginkgo_recover_statements.sh --remove; exit $$EXIT_STATUS
 
 .PHONY: generate-mocks
-generate-mocks: bin/mockgen pkg/mocks/mock_client.go $(shell find ./pkg/mocks -type f -name "mock*.go") ## Generate mocks needed for testing. Primarily mocks of the cloud package.
+generate-mocks: bin/mockgen generate-deepcopy pkg/mocks/mock_client.go $(shell find ./pkg/mocks -type f -name "mock*.go") ## Generate mocks needed for testing. Primarily mocks of the cloud package.
 pkg/mocks/mock%.go: $(shell find ./pkg/cloud -type f -name "*test*" -prune -o -print)
 	go generate ./...
 

api/v1beta1/cloudstackcluster_types.go

@@ -48,7 +48,7 @@ type Network struct {
 	// + optional
 	Type string `json:"type,omitempty"`
 
-	// Name of the infrastructure identity to be used.
+	// Cloudstack Network Name the cluster is built in.
 	// +optional
 	Name string `json:"name"`
 }

api/v1beta1/cloudstackcluster_webhook_test.go

@@ -54,7 +54,7 @@ var _ = Describe("CloudStackCluster webhooks", func() {
 		})
 
 		It("Should reject a CloudStackCluster with IdentityRef not of kind 'Secret'", func() {
-			dummies.CSCluster.Spec.IdentityRef.Kind = "ConfigMap"
+			dummies.CSCluster.Spec.IdentityRef.Kind = "NewType"
 			Ω(k8sClient.Create(ctx, dummies.CSCluster)).
 				Should(MatchError(MatchRegexp(forbiddenRegex, "must be a Secret")))
 		})
@@ -69,7 +69,7 @@ var _ = Describe("CloudStackCluster webhooks", func() {
 			dummies.CSCluster.Spec.Zones = []infrav1.Zone{dummies.Zone1}
 			Ω(k8sClient.Update(ctx, dummies.CSCluster)).Should(MatchError(MatchRegexp(forbiddenRegex, "Zones and sub")))
 		})
-		It("Should reject updates to CloudStackCluster Zones", func() {
+		It("Should reject updates to Networks specified in CloudStackCluster Zones", func() {
 			dummies.CSCluster.Spec.Zones[0].Network.Name = "ArbitraryUpdateNetworkName"
 			Ω(k8sClient.Update(ctx, dummies.CSCluster)).Should(MatchError(MatchRegexp(forbiddenRegex, "Zones and sub")))
 		})
@@ -85,12 +85,12 @@ var _ = Describe("CloudStackCluster webhooks", func() {
 				Should(MatchError(MatchRegexp(forbiddenRegex, "controlplaneendpoint\\.port")))
 		})
 		It("Should reject updates to the CloudStackCluster identity reference kind", func() {
-			dummies.CSCluster.Spec.IdentityRef.Kind = "ConfigMap"
+			dummies.CSCluster.Spec.IdentityRef.Kind = "NewType"
 			Ω(k8sClient.Update(ctx, dummies.CSCluster)).
 				Should(MatchError(MatchRegexp(forbiddenRegex, "identityref\\.kind")))
 		})
 		It("Should reject updates to the CloudStackCluster identity reference name", func() {
-			dummies.CSCluster.Spec.IdentityRef.Name = "ConfigMap"
+			dummies.CSCluster.Spec.IdentityRef.Name = "NewType"
 			Ω(k8sClient.Update(ctx, dummies.CSCluster)).
 				Should(MatchError(MatchRegexp(forbiddenRegex, "identityref\\.name")))
 		})

config/crd/bases/infrastructure.cluster.x-k8s.io_cloudstackclusters.yaml

@@ -89,7 +89,8 @@ spec:
                             in.
                           type: string
                         name:
-                          description: Name of the infrastructure identity to be used.
+                          description: Cloudstack Network Name the cluster is built
+                            in.
                           type: string
                         type:
                           description: Cloudstack Network Type the cluster is built
@@ -159,7 +160,8 @@ spec:
                             in.
                           type: string
                         name:
-                          description: Name of the infrastructure identity to be used.
+                          description: Cloudstack Network Name the cluster is built
+                            in.
                           type: string
                         type:
                           description: Cloudstack Network Type the cluster is built

controllers/cloudstackmachine_controller.go

@@ -173,8 +173,7 @@ func (r *CloudStackMachineReconciler) reconcile(
 			zones[zidx] = zoneID
 			zidx++
 		}
-		rand.Seed(time.Now().Unix())
-		randNum := (rand.Int() % len(csCluster.Spec.Zones))
+		randNum := (rand.Int() % len(csCluster.Spec.Zones)) // #nosec G404 -- weak crypt rand doesn't matter here.
 		csMachine.Status.ZoneID = zones[randNum]
 	}
 
@@ -185,8 +184,8 @@ func (r *CloudStackMachineReconciler) reconcile(
 	}
 
 	// Create VM (or Fetch if present).
-	if value, found := secret.Data["value"]; found {
-		if err := r.CS.GetOrCreateVMInstance(csMachine, capiMachine, csCluster, string(value)); err == nil {
+	if data, isPresent := secret.Data["value"]; isPresent {
+		if err := r.CS.GetOrCreateVMInstance(csMachine, capiMachine, csCluster, string(data)); err == nil {
 			if !controllerutil.ContainsFinalizer(csMachine, infrav1.MachineFinalizer) { // Fetched or Created?
 				log.Info("CloudStack instance Created", "instanceStatus", csMachine.Status)
 				controllerutil.AddFinalizer(csMachine, infrav1.MachineFinalizer)
@@ -195,11 +194,10 @@ func (r *CloudStackMachineReconciler) reconcile(
 			return ctrl.Result{}, err
 		}
 	} else {
-		return ctrl.Result{}, errors.New("bootstrap secret data not ok")
+		return ctrl.Result{}, errors.New("bootstrap secret data not yet set")
 	}
 
 	// Check status of machine.
-	csMachine.Status.Ready = false
 	if csMachine.Status.InstanceState == "Running" {
 		log.Info("Machine instance is Running...")
 		csMachine.Status.Ready = true

main.go

@@ -18,8 +18,10 @@ package main
 
 import (
 	"fmt"
+	"math/rand"
 	"os"
 	"strings"
+	"time"
 
 	"github.com/aws/cluster-api-provider-cloudstack/pkg/cloud"
 	flag "github.com/spf13/pflag"
@@ -143,6 +145,9 @@ func main() {
 		os.Exit(1)
 	}
 
+	// Set a random seed for randomly placing CloudStackMachines in Zones.
+	rand.Seed(time.Now().Unix())
+
 	// Register machine and cluster reconcilers with the controller manager.
 	if err = (&controllers.CloudStackClusterReconciler{
 		Client: mgr.GetClient(),

pkg/cloud/cluster.go

@@ -93,7 +93,15 @@ func (c *client) GetOrCreateCluster(csCluster *infrav1.CloudStackCluster) (retEr
 }
 
 func (c *client) DisposeClusterResources(csCluster *infrav1.CloudStackCluster) (retError error) {
-	for _, zone := range csCluster.Spec.Zones {
+	if csCluster.Status.PublicIPID != "" {
+		if err := c.DeleteClusterTag(ResourceTypeIPAddress, csCluster.Status.PublicIPID, csCluster); err != nil {
+			return err
+		}
+		if err := c.DisassociatePublicIPAddressIfNotInUse(csCluster); err != nil {
+			return err
+		}
+	}
+	for _, zone := range csCluster.Status.Zones {
 		if err := c.RemoveClusterTagFromNetwork(csCluster, zone.Network); err != nil {
 			return err
 		}

pkg/cloud/instance.go

@@ -145,6 +145,7 @@ func (c *client) GetOrCreateVMInstance(
 		!strings.Contains(strings.ToLower(err.Error()), "no match") {
 		return err
 	}
+
 	offeringID, err := c.ResolveServiceOffering(csMachine)
 	if err != nil {
 		return err
@@ -155,10 +156,12 @@ func (c *client) GetOrCreateVMInstance(
 	}
 
 	// Create VM instance.
-	p := c.cs.VirtualMachine.NewDeployVirtualMachineParams(offeringID, templateID, csCluster.Status.ZoneID)
-	p.SetNetworkids([]string{csCluster.Status.NetworkID})
-	setIfNotEmpty(capiMachine.Name, p.SetName)
-	setIfNotEmpty(capiMachine.Name, p.SetDisplayname)
+	p := c.cs.VirtualMachine.NewDeployVirtualMachineParams(offeringID, templateID, csMachine.Status.ZoneID)
+	zone := csCluster.Status.Zones[csMachine.Status.ZoneID]
+	p.SetNetworkids([]string{zone.Network.ID})
+	setIfNotEmpty(csMachine.Name, p.SetName)
+	setIfNotEmpty(csMachine.Name, p.SetDisplayname)
+	
 	setIfNotEmpty(csMachine.Spec.SSHKey, p.SetKeypair)
 
 	compressedAndEncodedUserData, err := CompressAndEncodeString(userData)

pkg/cloud/instance_test.go

@@ -54,6 +54,8 @@ var _ = Describe("Instance", func() {
 		client = cloud.NewClientFromCSAPIClient(mockClient)
 
 		dummies.SetDummyVars()
+		dummies.SetDummyClusterStatus()
+		dummies.SetDummyCSMachineStatuses()
 	})
 
 	AfterEach(func() {

pkg/cloud/network.go

@@ -31,7 +31,7 @@ type NetworkIface interface {
 	ResolveNetwork(*capcv1.CloudStackCluster, *capcv1.Network) error
 	CreateIsolatedNetwork(*capcv1.CloudStackCluster) error
 	OpenFirewallRules(*capcv1.CloudStackCluster) error
-	ResolvePublicIPDetails(*capcv1.CloudStackCluster) (*cloudstack.PublicIpAddress, error)
+	FetchPublicIP(*capcv1.CloudStackCluster) (*cloudstack.PublicIpAddress, error)
 	ResolveLoadBalancerRuleDetails(*capcv1.CloudStackCluster) error
 	GetOrCreateLoadBalancerRule(*capcv1.CloudStackCluster) error
 	GetOrCreateIsolatedNetwork(*capcv1.CloudStackCluster) error
@@ -100,7 +100,7 @@ func (c *client) ResolveNetwork(csCluster *capcv1.CloudStackCluster, net *capcv1
 }
 
 func generateNetworkTagName(csCluster *capcv1.CloudStackCluster) string {
-	return clusterTagNamePrefix + string(csCluster.UID)
+	return ClusterTagNamePrefix + string(csCluster.UID)
 }
 
 // getOfferingID fetches an offering id.
@@ -134,19 +134,17 @@ func (c *client) CreateIsolatedNetwork(csCluster *capcv1.CloudStackCluster) (ret
 	if err != nil {
 		return err
 	}
-	if err := c.AddClusterTag(ResourceTypeNetwork, zoneStatus.Network.ID, csCluster); err != nil {
-		return err
-	}
-	if err := c.AddCreatedByCAPCTag(ResourceTypeNetwork, zoneStatus.Network.ID); err != nil {
-		return err
-	}
 
 	// Update Zone/Network status accordingly.
 	netStatus.ID = resp.Id
 	netStatus.Type = resp.Type
 	zoneStatus.Network = netStatus
 	csCluster.Status.Zones[zoneStatus.Name] = zoneStatus
 
+	if err := c.AddCreatedByCAPCTag(ResourceTypeNetwork, zoneStatus.Network.ID); err != nil {
+		return err
+	}
+
 	return nil
 }
 
@@ -171,9 +169,9 @@ func (c *client) RemoveClusterTagFromNetwork(csCluster *capcv1.CloudStackCluster
 		return err
 	}
 
-	clusterTagName := generateNetworkTagName(csCluster)
-	if tagValue := tags[clusterTagName]; tagValue != "" {
-		if err = c.DeleteTags(ResourceTypeNetwork, net.ID, map[string]string{clusterTagName: tagValue}); err != nil {
+	ClusterTagName := generateNetworkTagName(csCluster)
+	if tagValue := tags[ClusterTagName]; tagValue != "" {
+		if err = c.DeleteTags(ResourceTypeNetwork, net.ID, map[string]string{ClusterTagName: tagValue}); err != nil {
 			return err
 		}
 	}
@@ -189,19 +187,19 @@ func (c *client) DeleteNetworkIfNotInUse(csCluster *capcv1.CloudStackCluster, ne
 
 	var clusterTagCount int
 	for tagName := range tags {
-		if strings.HasPrefix(tagName, clusterTagNamePrefix) {
+		if strings.HasPrefix(tagName, ClusterTagNamePrefix) {
 			clusterTagCount++
 		}
 	}
 
-	if clusterTagCount == 0 && tags[createdByCAPCTagName] != "" {
+	if clusterTagCount == 0 && tags[CreatedByCAPCTagName] != "" {
 		return c.DestroyNetwork(net)
 	}
 
 	return nil
 }
 
-func (c *client) ResolvePublicIPDetails(csCluster *capcv1.CloudStackCluster) (*cloudstack.PublicIpAddress, error) {
+func (c *client) FetchPublicIP(csCluster *capcv1.CloudStackCluster) (*cloudstack.PublicIpAddress, error) {
 	ip := csCluster.Spec.ControlPlaneEndpoint.Host
 
 	zoneStatus := csCluster.Status.Zones.GetOne()
@@ -234,7 +232,7 @@ func (c *client) ResolvePublicIPDetails(csCluster *capcv1.CloudStackCluster) (*c
 
 // AssociatePublicIPAddress Gets a PublicIP and associates it.
 func (c *client) AssociatePublicIPAddress(csCluster *capcv1.CloudStackCluster) (retErr error) {
-	publicAddress, err := c.ResolvePublicIPDetails(csCluster)
+	publicAddress, err := c.FetchPublicIP(csCluster)
 	if err != nil {
 		return err
 	}
@@ -379,11 +377,19 @@ func (c *client) GetOrCreateIsolatedNetwork(csCluster *capcv1.CloudStackCluster)
 			return err
 		}
 	}
+	networkID := csCluster.Status.Zones.GetOne().Network.ID
+	if err := c.AddClusterTag(ResourceTypeNetwork, networkID, csCluster); err != nil {
+		return err
+	}
 
 	if csCluster.Status.PublicIPID == "" { // Don't try to get public IP again it's already been fetched.
 		if err := c.AssociatePublicIPAddress(csCluster); err != nil {
 			return err
 		}
+		// Add created by CAPC tag to public IP.
+		if err := c.AddCreatedByCAPCTag(ResourceTypeIPAddress, csCluster.Status.PublicIPID); err != nil {
+			return err
+		}
 	}
 	if err := c.GetOrCreateLoadBalancerRule(csCluster); err != nil {
 		return err