Add check on account & domain limits before deploying a VM

vishesh92 · vishesh92 · commit 919ef061c88a · 2023-07-01T03:53:31.000+05:30
diff --git a/pkg/cloud/client.go b/pkg/cloud/client.go
@@ -59,6 +59,7 @@ type client struct {
 	cs            *cloudstack.CloudStackClient
 	csAsync       *cloudstack.CloudStackClient
 	config        Config
+	user          *User
 	customMetrics metrics.ACSCustomMetrics
 }
 
@@ -171,6 +172,28 @@ func NewClientFromConf(conf Config, clientConfig *corev1.ConfigMap) (Client, err
 	c.cs = cloudstack.NewAsyncClient(conf.APIUrl, conf.APIKey, conf.SecretKey, verifySSL)
 	c.csAsync = cloudstack.NewClient(conf.APIUrl, conf.APIKey, conf.SecretKey, verifySSL)
 	c.customMetrics = metrics.NewCustomMetrics()
+
+	p := c.cs.User.NewListUsersParams()
+	userResponse, err := c.cs.User.ListUsers(p)
+	if err != nil {
+		return c, err
+	}
+	user := &User{
+		ID: userResponse.Users[0].Id,
+		Account: Account{
+			Name: userResponse.Users[0].Account,
+			Domain: Domain{
+				Path: userResponse.Users[0].Domain,
+			},
+		},
+	}
+	if found, err := c.GetUserWithKeys(user); err != nil {
+		return nil, err
+	} else if !found {
+		return nil, errors.Errorf(
+			"could not find sufficient user (with API keys) in domain/account %s/%s", userResponse.Users[0].Domain, userResponse.Users[0].Account)
+	}
+	c.user = user
 	clientCache.Set(clientCacheKey, c)
 
 	return c, nil
@@ -189,6 +212,7 @@ func (c *client) NewClientInDomainAndAccount(domain string, account string) (Cli
 	}
 	c.config.APIKey = user.APIKey
 	c.config.SecretKey = user.SecretKey
+	c.user = user
 
 	return NewClientFromConf(c.config, nil)
 }
diff --git a/pkg/cloud/instance.go b/pkg/cloud/instance.go
@@ -19,6 +19,7 @@ package cloud
 import (
 	"encoding/base64"
 	"fmt"
+	"strconv"
 	"strings"
 
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -85,34 +86,34 @@ func (c *client) ResolveVMInstanceDetails(csMachine *infrav1.CloudStackMachine)
 	return errors.New("no match found")
 }
 
-func (c *client) ResolveServiceOffering(csMachine *infrav1.CloudStackMachine, zoneID string) (offeringID string, retErr error) {
+func (c *client) ResolveServiceOffering(csMachine *infrav1.CloudStackMachine, zoneID string) (offering cloudstack.ServiceOffering, retErr error) {
 	if len(csMachine.Spec.Offering.ID) > 0 {
 		csOffering, count, err := c.cs.ServiceOffering.GetServiceOfferingByID(csMachine.Spec.Offering.ID)
 		if err != nil {
 			c.customMetrics.EvaluateErrorAndIncrementAcsReconciliationErrorCounter(err)
-			return "", multierror.Append(retErr, errors.Wrapf(
+			return *csOffering, multierror.Append(retErr, errors.Wrapf(
 				err, "could not get Service Offering by ID %s", csMachine.Spec.Offering.ID))
 		} else if count != 1 {
-			return "", multierror.Append(retErr, errors.Errorf(
+			return *csOffering, multierror.Append(retErr, errors.Errorf(
 				"expected 1 Service Offering with UUID %s, but got %d", csMachine.Spec.Offering.ID, count))
 		}
 
 		if len(csMachine.Spec.Offering.Name) > 0 && csMachine.Spec.Offering.Name != csOffering.Name {
-			return "", multierror.Append(retErr, errors.Errorf(
+			return *csOffering, multierror.Append(retErr, errors.Errorf(
 				"offering name %s does not match name %s returned using UUID %s", csMachine.Spec.Offering.Name, csOffering.Name, csMachine.Spec.Offering.ID))
 		}
-		return csMachine.Spec.Offering.ID, nil
+		return *csOffering, nil
 	}
-	offeringID, count, err := c.cs.ServiceOffering.GetServiceOfferingID(csMachine.Spec.Offering.Name, cloudstack.WithZone(zoneID))
+	csOffering, count, err := c.cs.ServiceOffering.GetServiceOfferingByName(csMachine.Spec.Offering.Name, cloudstack.WithZone(zoneID))
 	if err != nil {
 		c.customMetrics.EvaluateErrorAndIncrementAcsReconciliationErrorCounter(err)
-		return "", multierror.Append(retErr, errors.Wrapf(
+		return *csOffering, multierror.Append(retErr, errors.Wrapf(
 			err, "could not get Service Offering ID from %s in zone %s", csMachine.Spec.Offering.Name, zoneID))
 	} else if count != 1 {
-		return "", multierror.Append(retErr, errors.Errorf(
+		return *csOffering, multierror.Append(retErr, errors.Errorf(
 			"expected 1 Service Offering with name %s in zone %s, but got %d", csMachine.Spec.Offering.Name, zoneID, count))
 	}
-	return offeringID, nil
+	return *csOffering, nil
 }
 
 func (c *client) ResolveTemplate(
@@ -206,9 +207,61 @@ func verifyDiskoffering(csMachine *infrav1.CloudStackMachine, c *client, diskOff
 	return diskOfferingID, nil
 }
 
+// CheckAccountLimits Checks the account's limit of VM, CPU & Memory
+// before deploying a VM.
+func (c *client) CheckAccountLimits(fd *infrav1.CloudStackFailureDomain, offering cloudstack.ServiceOffering) error {
+	if c.user.Account.CPUAvailable != "Unlimited" {
+		cpuAvailable, err := strconv.ParseInt(c.user.Account.CPUAvailable, 10, 0)
+		if err == nil && int64(offering.Cpunumber) > cpuAvailable {
+			return fmt.Errorf("CPU available (%d) in account can't fulfil the requirement: %d", cpuAvailable, offering.Cpunumber)
+		}
+	}
+
+	if c.user.Account.MemoryAvailable != "Unlimited" {
+		memoryAvailable, err := strconv.ParseInt(c.user.Account.MemoryAvailable, 10, 0)
+		if err == nil && int64(offering.Memory) > memoryAvailable {
+			return fmt.Errorf("memory available (%d) in account can't fulfil the requirement: %d", memoryAvailable, offering.Memory)
+		}
+	}
+
+	if c.user.Account.VMAvailable != "Unlimited" {
+		vmAvailable, err := strconv.ParseInt(c.user.Account.VMAvailable, 10, 0)
+		if err == nil && vmAvailable <= 0 {
+			return fmt.Errorf("VM Limit in account has reached it's maximum value")
+		}
+	}
+	return nil
+}
+
+// CheckDomainLimits Checks the domain's limit of VM, CPU & Memory
+// before deploying a VM.
+func (c *client) CheckDomainLimits(fd *infrav1.CloudStackFailureDomain, offering cloudstack.ServiceOffering) error {
+	if c.user.Account.Domain.CPUAvailable != "Unlimited" {
+		cpuAvailable, err := strconv.ParseInt(c.user.Account.Domain.CPUAvailable, 10, 0)
+		if err == nil && int64(offering.Cpunumber) > cpuAvailable {
+			return fmt.Errorf("CPU available (%d) in domain can't fulfil the requirement: %d", cpuAvailable, offering.Cpunumber)
+		}
+	}
+
+	if c.user.Account.Domain.MemoryAvailable != "Unlimited" {
+		memoryAvailable, err := strconv.ParseInt(c.user.Account.Domain.MemoryAvailable, 10, 0)
+		if err == nil && int64(offering.Memory) > memoryAvailable {
+			return fmt.Errorf("memory available (%d) in domain can't fulfil the requirement: %d", memoryAvailable, offering.Memory)
+		}
+	}
+
+	if c.user.Account.Domain.VMAvailable != "Unlimited" {
+		vmAvailable, err := strconv.ParseInt(c.user.Account.Domain.VMAvailable, 10, 0)
+		if err == nil && vmAvailable > 0 {
+			return fmt.Errorf("VM Limit in domain has reached it's maximum value")
+		}
+	}
+	return nil
+}
+
 // GetOrCreateVMInstance CreateVMInstance will fetch or create a VM instance, and
 // sets the infrastructure machine spec and status accordingly.
-func (c *client) GetOrCreateVMInstance(
+func (c *client) CheckLimitsAndCreateVM(
 	csMachine *infrav1.CloudStackMachine,
 	capiMachine *clusterv1.Machine,
 	csCluster *infrav1.CloudStackCluster,
@@ -217,27 +270,31 @@ func (c *client) GetOrCreateVMInstance(
 	userData string,
 ) error {
 
-	// Check if VM instance already exists.
-	if err := c.ResolveVMInstanceDetails(csMachine); err == nil ||
-		!strings.Contains(strings.ToLower(err.Error()), "no match") {
+	offering, err := c.ResolveServiceOffering(csMachine, fd.Spec.Zone.ID)
+	if err != nil {
 		return err
 	}
 
-	offeringID, err := c.ResolveServiceOffering(csMachine, fd.Spec.Zone.ID)
+	templateID, err := c.ResolveTemplate(csCluster, csMachine, fd.Spec.Zone.ID)
 	if err != nil {
 		return err
 	}
-	templateID, err := c.ResolveTemplate(csCluster, csMachine, fd.Spec.Zone.ID)
+	diskOfferingID, err := c.ResolveDiskOffering(csMachine, fd.Spec.Zone.ID)
 	if err != nil {
 		return err
 	}
-	diskOfferingID, err := c.ResolveDiskOffering(csMachine, fd.Spec.Zone.ID)
+
+	err = c.CheckAccountLimits(fd, offering)
 	if err != nil {
 		return err
 	}
 
-	// Create VM instance.
-	p := c.cs.VirtualMachine.NewDeployVirtualMachineParams(offeringID, templateID, fd.Spec.Zone.ID)
+	err = c.CheckDomainLimits(fd, offering)
+	if err != nil {
+		return err
+	}
+
+	p := c.cs.VirtualMachine.NewDeployVirtualMachineParams(offering.Id, templateID, fd.Spec.Zone.ID)
 	p.SetNetworkids([]string{fd.Spec.Zone.Network.ID})
 	setIfNotEmpty(csMachine.Name, p.SetName)
 	setIfNotEmpty(capiMachine.Name, p.SetDisplayname)
@@ -289,6 +346,31 @@ func (c *client) GetOrCreateVMInstance(
 		csMachine.Spec.InstanceID = pointer.String(deployVMResp.Id)
 		csMachine.Status.Status = pointer.String(metav1.StatusSuccess)
 	}
+	return nil
+}
+
+// GetOrCreateVMInstance CreateVMInstance will fetch or create a VM instance, and
+// sets the infrastructure machine spec and status accordingly.
+func (c *client) GetOrCreateVMInstance(
+	csMachine *infrav1.CloudStackMachine,
+	capiMachine *clusterv1.Machine,
+	csCluster *infrav1.CloudStackCluster,
+	fd *infrav1.CloudStackFailureDomain,
+	affinity *infrav1.CloudStackAffinityGroup,
+	userData string,
+) error {
+
+	// Check if VM instance already exists.
+	if err := c.ResolveVMInstanceDetails(csMachine); err == nil ||
+		!strings.Contains(strings.ToLower(err.Error()), "no match") {
+		return err
+	}
+
+	// Create VM instance.
+	if err := c.CheckLimitsAndCreateVM(csMachine, capiMachine, csCluster, fd, affinity, userData); err != nil {
+		return err
+	}
+
 	// Resolve uses a VM metrics request response to fill cloudstack machine status.
 	// The deployment response is insufficient.
 	return c.ResolveVMInstanceDetails(csMachine)
diff --git a/pkg/cloud/user_credentials.go b/pkg/cloud/user_credentials.go
@@ -37,16 +37,22 @@ type UserCredIFace interface {
 
 // Domain contains specifications that identify a domain.
 type Domain struct {
-	Name string
-	Path string
-	ID   string
+	Name            string
+	Path            string
+	ID              string
+	CPUAvailable    string
+	MemoryAvailable string
+	VMAvailable     string
 }
 
 // Account contains specifications that identify an account.
 type Account struct {
-	Name   string
-	Domain Domain
-	ID     string
+	Name            string
+	Domain          Domain
+	ID              string
+	CPUAvailable    string
+	MemoryAvailable string
+	VMAvailable     string
 }
 
 // User contains information uniquely identifying and scoping a user.
@@ -105,6 +111,9 @@ func (c *client) ResolveDomain(domain *Domain) error {
 		}
 		domain.Path = resp.Domains[0].Path
 		domain.Name = resp.Domains[0].Name
+		domain.CPUAvailable = resp.Domains[0].Cpuavailable
+		domain.MemoryAvailable = resp.Domains[0].Memoryavailable
+		domain.VMAvailable = resp.Domains[0].Vmavailable
 		return nil
 	}
 
@@ -120,6 +129,9 @@ func (c *client) ResolveDomain(domain *Domain) error {
 	for _, possibleDomain := range resp.Domains {
 		if possibleDomain.Path == domain.Path {
 			domain.ID = possibleDomain.Id
+			domain.CPUAvailable = possibleDomain.Cpuavailable
+			domain.MemoryAvailable = possibleDomain.Memoryavailable
+			domain.VMAvailable = possibleDomain.Vmavailable
 			return nil
 		}
 	}
@@ -150,6 +162,9 @@ func (c *client) ResolveAccount(account *Account) error {
 	}
 	account.ID = resp.Accounts[0].Id
 	account.Name = resp.Accounts[0].Name
+	account.CPUAvailable = resp.Accounts[0].Cpuavailable
+	account.MemoryAvailable = resp.Accounts[0].Memoryavailable
+	account.VMAvailable = resp.Accounts[0].Vmavailable
 	return nil
 }
 
