[diagnose] Extract endpoints checks into declarative structure

geropl · geropl · commit 7430e6384dad · 2025-03-27T14:45:39.000Z
Tool: gitpod/catfood.gitpod.cloud
diff --git a/gitpod-network-check/cmd/checks.go b/gitpod-network-check/cmd/checks.go
@@ -25,6 +25,69 @@ import (
 	"k8s.io/apimachinery/pkg/util/wait"
 )
 
+type TestsetName string
+
+const (
+	TestsetNameAwsServicesPodSubnet  TestsetName = "aws-services-pod-subnet"
+	TestSetNameAwsServicesMainSubnet TestsetName = "aws-services-main-subnet"
+	TestSetNameHttpsHostsMainSubnet  TestsetName = "https-hosts-main-subnet"
+)
+
+type TestSet func(networkConfig *NetworkConfig) map[string]string
+
+var testSets = map[TestsetName]TestSet{
+	TestsetNameAwsServicesPodSubnet: func(networkConfig *NetworkConfig) map[string]string {
+		return map[string]string{
+			"SSM":                   fmt.Sprintf("https://ssm.%s.amazonaws.com", networkConfig.AwsRegion),
+			"SSMmessages":           fmt.Sprintf("https://ssmmessages.%s.amazonaws.com", networkConfig.AwsRegion),
+			"Autoscaling":           fmt.Sprintf("https://autoscaling.%s.amazonaws.com", networkConfig.AwsRegion),
+			"CloudFormation":        fmt.Sprintf("https://cloudformation.%s.amazonaws.com", networkConfig.AwsRegion),
+			"EC2":                   fmt.Sprintf("https://ec2.%s.amazonaws.com", networkConfig.AwsRegion),
+			"EC2messages":           fmt.Sprintf("https://ec2messages.%s.amazonaws.com", networkConfig.AwsRegion),
+			"EKS":                   fmt.Sprintf("https://eks.%s.amazonaws.com", networkConfig.AwsRegion),
+			"Elastic LoadBalancing": fmt.Sprintf("https://elasticloadbalancing.%s.amazonaws.com", networkConfig.AwsRegion),
+			"Kinesis Firehose":      fmt.Sprintf("https://firehose.%s.amazonaws.com", networkConfig.AwsRegion),
+			"KMS":                   fmt.Sprintf("https://kms.%s.amazonaws.com", networkConfig.AwsRegion),
+			"CloudWatch":            fmt.Sprintf("https://logs.%s.amazonaws.com", networkConfig.AwsRegion),
+			"SecretsManager":        fmt.Sprintf("https://secretsmanager.%s.amazonaws.com", networkConfig.AwsRegion),
+			"Sts":                   fmt.Sprintf("https://sts.%s.amazonaws.com", networkConfig.AwsRegion),
+			"ECR Api":               fmt.Sprintf("https://api.ecr.%s.amazonaws.com", networkConfig.AwsRegion),
+			"ECR":                   fmt.Sprintf("https://869456089606.dkr.ecr.%s.amazonaws.com", networkConfig.AwsRegion),
+		}
+	},
+	TestSetNameAwsServicesMainSubnet: func(networkConfig *NetworkConfig) map[string]string {
+		endpoints := map[string]string{
+			"S3":       fmt.Sprintf("https://s3.%s.amazonaws.com", networkConfig.AwsRegion),
+			"DynamoDB": fmt.Sprintf("https://dynamodb.%s.amazonaws.com", networkConfig.AwsRegion),
+		}
+		if networkConfig.ApiEndpoint != "" {
+			endpoints["ExecuteAPI"] = fmt.Sprintf("https://%s.execute-api.%s.amazonaws.com", networkConfig.ApiEndpoint, networkConfig.AwsRegion)
+		}
+		return endpoints
+	},
+	TestSetNameHttpsHostsMainSubnet: func(networkConfig *NetworkConfig) map[string]string {
+		httpHosts := map[string]string{}
+		for _, v := range networkConfig.HttpsHosts {
+			host := strings.TrimSpace(v)
+			parsedUrl, err := url.Parse(host)
+			if err != nil {
+				log.Warnf("🚧 Invalid Host: %s, skipping due to error: %v", host, err)
+				continue
+			}
+
+			if parsedUrl.Scheme == "" {
+				httpHosts[host] = fmt.Sprintf("https://%s", host)
+			} else if parsedUrl.Scheme == "https" {
+				httpHosts[host] = parsedUrl.Host
+			} else {
+				log.Warnf("🚧 Unsupported scheme: %s, skipping test for %s", parsedUrl.Scheme, host)
+				continue
+			}
+		}
+		return httpHosts
+	},
+}
+
 var checkCommand = &cobra.Command{ // nolint:gochecknoglobals
 	PersistentPreRunE: validateSubnets,
 	Use:               "diagnose",
@@ -110,53 +173,12 @@ var checkCommand = &cobra.Command{ // nolint:gochecknoglobals
 		}
 
 		log.Infof("ℹ️  Checking if the required AWS Services can be reached from the ec2 instances in the pod subnet")
-		serviceEndpoints := map[string]string{
-			"SSM":                   fmt.Sprintf("https://ssm.%s.amazonaws.com", networkConfig.AwsRegion),
-			"SSMmessages":           fmt.Sprintf("https://ssmmessages.%s.amazonaws.com", networkConfig.AwsRegion),
-			"Autoscaling":           fmt.Sprintf("https://autoscaling.%s.amazonaws.com", networkConfig.AwsRegion),
-			"CloudFormation":        fmt.Sprintf("https://cloudformation.%s.amazonaws.com", networkConfig.AwsRegion),
-			"EC2":                   fmt.Sprintf("https://ec2.%s.amazonaws.com", networkConfig.AwsRegion),
-			"EC2messages":           fmt.Sprintf("https://ec2messages.%s.amazonaws.com", networkConfig.AwsRegion),
-			"EKS":                   fmt.Sprintf("https://eks.%s.amazonaws.com", networkConfig.AwsRegion),
-			"Elastic LoadBalancing": fmt.Sprintf("https://elasticloadbalancing.%s.amazonaws.com", networkConfig.AwsRegion),
-			"Kinesis Firehose":      fmt.Sprintf("https://firehose.%s.amazonaws.com", networkConfig.AwsRegion),
-			"KMS":                   fmt.Sprintf("https://kms.%s.amazonaws.com", networkConfig.AwsRegion),
-			"CloudWatch":            fmt.Sprintf("https://logs.%s.amazonaws.com", networkConfig.AwsRegion),
-			"SecretsManager":        fmt.Sprintf("https://secretsmanager.%s.amazonaws.com", networkConfig.AwsRegion),
-			"Sts":                   fmt.Sprintf("https://sts.%s.amazonaws.com", networkConfig.AwsRegion),
-			"ECR Api":               fmt.Sprintf("https://api.ecr.%s.amazonaws.com", networkConfig.AwsRegion),
-			"ECR":                   fmt.Sprintf("https://869456089606.dkr.ecr.%s.amazonaws.com", networkConfig.AwsRegion),
-		}
-		checkServicesAvailability(cmd.Context(), ssmClient, InstanceIds, serviceEndpoints)
+		checkServicesAvailability(cmd.Context(), ssmClient, InstanceIds, testSets[TestsetNameAwsServicesPodSubnet](&networkConfig))
 
 		log.Infof("ℹ️  Checking if certain AWS Services can be reached from ec2 instances in the main subnet")
-		serviceEndpointsForMain := map[string]string{
-			"S3":       fmt.Sprintf("https://s3.%s.amazonaws.com", networkConfig.AwsRegion),
-			"DynamoDB": fmt.Sprintf("https://dynamodb.%s.amazonaws.com", networkConfig.AwsRegion),
-		}
-		if networkConfig.ApiEndpoint != "" {
-			serviceEndpointsForMain["ExecuteAPI"] = fmt.Sprintf("https://%s.execute-api.%s.amazonaws.com", networkConfig.ApiEndpoint, networkConfig.AwsRegion)
-		}
-		checkServicesAvailability(cmd.Context(), ssmClient, mainInstanceIds, serviceEndpointsForMain)
+		checkServicesAvailability(cmd.Context(), ssmClient, mainInstanceIds, testSets[TestSetNameAwsServicesMainSubnet](&networkConfig))
 
-		httpHosts := map[string]string{}
-		for _, v := range networkConfig.HttpsHosts {
-			host := strings.TrimSpace(v)
-			parsedUrl, err := url.Parse(host)
-			if err != nil {
-				log.Warnf("🚧 Invalid Host: %s, skipping due to error: %v", host, err)
-				continue
-			}
-
-			if parsedUrl.Scheme == "" {
-				httpHosts[host] = fmt.Sprintf("https://%s", host)
-			} else if parsedUrl.Scheme == "https" {
-				httpHosts[host] = parsedUrl.Host
-			} else {
-				log.Warnf("🚧 Unsupported scheme: %s, skipping test for %s", parsedUrl.Scheme, host)
-				continue
-			}
-		}
+		httpHosts := testSets[TestSetNameHttpsHostsMainSubnet](&networkConfig)
 		if len(httpHosts) > 0 {
 			log.Infof("ℹ️  Checking if hosts can be reached with HTTPS from ec2 instances in the main subnets")
 		}
