fix with eks-a upgrade to multiple-endpoints

wanyufe · wanyufe · commit ca74261cbe3d · 2022-07-26T20:30:10.000-04:00
diff --git a/api/v1beta1/cloudstackmachine_conversion.go b/api/v1beta1/cloudstackmachine_conversion.go
@@ -21,42 +21,12 @@ import (
 	"sigs.k8s.io/controller-runtime/pkg/conversion"
 )
 
-const CloudstackMachineAnnotationPrefix string = "cloudstackmachine.infrastructure.cluster.x-k8s.io/"
-
 func (src *CloudStackMachine) ConvertTo(dstRaw conversion.Hub) error { // nolint
 	dst := dstRaw.(*v1beta2.CloudStackMachine)
-	err := Convert_v1beta1_CloudStackMachine_To_v1beta2_CloudStackMachine(src, dst, nil)
-	if err != nil {
-		return err
-	}
-	// need to save zoneId and zoneName to v1beta2s annotation in metadata
-	dst.ObjectMeta.Annotations[CloudstackMachineAnnotationPrefix+"zoneid"] = src.Spec.ZoneID
-	dst.ObjectMeta.Annotations[CloudstackMachineAnnotationPrefix+"zonename"] = src.Spec.ZoneName
-
-	// need to save failuredomainname in v1beta1's annotation to v1beta2's spec
-	if len(src.ObjectMeta.Annotations[CloudstackMachineAnnotationPrefix+"failuredomainname"]) > 0 {
-		dst.Spec.FailureDomainName = src.ObjectMeta.Annotations[CloudstackMachineAnnotationPrefix+"failuredomainname"]
-	} else {
-		defaultDomainName, err := GetDefaultFailureDomainName(src.ObjectMeta.Labels["cluster.x-k8s.io/cluster-name"], src.Spec.ZoneID, src.Spec.ZoneName)
-		if err != nil {
-			return err
-		}
-		dst.Spec.FailureDomainName = defaultDomainName
-	}
-	return nil
+	return Convert_v1beta1_CloudStackMachine_To_v1beta2_CloudStackMachine(src, dst, nil)
 }
 
 func (dst *CloudStackMachine) ConvertFrom(srcRaw conversion.Hub) error { // nolint
 	src := srcRaw.(*v1beta2.CloudStackMachine)
-	err := Convert_v1beta2_CloudStackMachine_To_v1beta1_CloudStackMachine(src, dst, nil)
-	if err != nil {
-		return err
-	}
-	// need to restore zoneid and zonename from v1beta2's annotation in metadata
-	dst.Spec.ZoneID = src.ObjectMeta.Annotations[CloudstackMachineAnnotationPrefix+"zoneid"]
-	dst.Spec.ZoneName = src.ObjectMeta.Annotations[CloudstackMachineAnnotationPrefix+"zonename"]
-
-	// need to save failuredomainname in v1beta1's annotation
-	dst.ObjectMeta.Annotations[CloudstackMachineAnnotationPrefix+"failuredomainname"] = src.Spec.FailureDomainName
-	return nil
+	return Convert_v1beta2_CloudStackMachine_To_v1beta1_CloudStackMachine(src, dst, nil)
 }
diff --git a/api/v1beta1/conversion.go b/api/v1beta1/conversion.go
@@ -17,14 +17,19 @@ limitations under the License.
 package v1beta1
 
 import (
+	"context"
 	"fmt"
+	"github.com/apache/cloudstack-go/v2/cloudstack"
 	"github.com/pkg/errors"
 	corev1 "k8s.io/api/core/v1"
 	conv "k8s.io/apimachinery/pkg/conversion"
 	"sigs.k8s.io/cluster-api-provider-cloudstack/api/v1beta2"
-	"strings"
+	clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1"
+	"sigs.k8s.io/controller-runtime/pkg/client"
 )
 
+const DefaultEndpointCredential = "global"
+
 //nolint:golint,revive,stylecheck
 func Convert_v1beta1_CloudStackCluster_To_v1beta2_CloudStackCluster(in *CloudStackCluster, out *v1beta2.CloudStackCluster, s conv.Scope) error {
 	out.ObjectMeta = in.ObjectMeta
@@ -36,27 +41,30 @@ func Convert_v1beta1_CloudStackCluster_To_v1beta2_CloudStackCluster(in *CloudSta
 			return err
 		}
 	}
+	failureDomains, err := getFailureDomains(in)
+	if err != nil {
+		return err
+	}
 	out.Spec = v1beta2.CloudStackClusterSpec{
 		ControlPlaneEndpoint: in.Spec.ControlPlaneEndpoint,
-		FailureDomains:       getFailureDomains(in),
+		FailureDomains:       failureDomains,
 		Account:              in.Spec.Account,
 		Domain:               in.Spec.Domain,
 		IdentityRef:          identifyRef,
 	}
 
 	zoneStatusMap := v1beta2.ZoneStatusMap{}
 	for zoneKey, zone := range in.Status.Zones {
-		zone1 := zone
-		zonev2 := &v1beta2.Zone{}
-		err := Convert_v1beta1_Zone_To_v1beta2_Zone(&zone1, zonev2, nil)
+		zoneV1 := zone
+		zoneV2 := &v1beta2.Zone{}
+		err := Convert_v1beta1_Zone_To_v1beta2_Zone(&zoneV1, zoneV2, nil)
 		if err != nil {
 			return err
 		}
-		zoneStatusMap[zoneKey] = *zonev2
+		zoneStatusMap[zoneKey] = *zoneV2
 	}
 	out.Status = v1beta2.CloudStackClusterStatus{
 		Zones: zoneStatusMap,
-		//CloudStackFailureDomainStatusMap: getFailureDomainsStatusMap(in),
 		FailureDomains:    in.Status.FailureDomains,
 		PublicIPID:        in.Status.PublicIPID,
 		PublicIPNetworkID: in.Status.PublicIPNetworkID,
@@ -125,57 +133,15 @@ func getZones(csCluster *v1beta2.CloudStackCluster) []Zone {
 	return zones
 }
 
-//func getZoneMap(csCluster *v1beta2.CloudStackCluster) (map[string]Zone, error) {
-//	zoneMap := map[string]Zone{}
-//	for key := range csCluster.Status.CloudStackFailureDomainStatusMap {
-//		zone, err := getZoneByMetaName(csCluster, key)
-//		if err != nil {
-//			return nil, err
-//		}
-//		zoneMap[key] = zone
-//	}
-//	return zoneMap, nil
-//}
-//
-//func getDomainID(csCluster *v1beta2.CloudStackCluster) (string, error) {
-//	var domainID string
-//	for _, value := range csCluster.Status.CloudStackFailureDomainStatusMap {
-//		if domainID == "" {
-//			domainID = value.DomainID
-//		} else if domainID != value.DomainID {
-//			return "", errors.Errorf("multiple domainId found in cloudstack failure domain status")
-//		}
-//	}
-//	return domainID, nil
-//}
-//
-//func getZoneByMetaName(csCluster *v1beta2.CloudStackCluster, metaName string) (Zone, error) {
-//	var zone Zone
-//	err := errors.Errorf("zone with meta %s not found", metaName)
-//	for _, failureDomain := range csCluster.Spec.FailureDomains {
-//		if failureDomain.Zone.MetaName() == metaName {
-//			err = nil
-//			zone = Zone{
-//				ID:   failureDomain.Zone.ID,
-//				Name: failureDomain.Zone.Name,
-//				Network: Network{
-//					ID:   failureDomain.Zone.Network.ID,
-//					Name: failureDomain.Zone.Network.Name,
-//					Type: failureDomain.Zone.Network.Type,
-//				},
-//			}
-//		}
-//	}
-//	return zone, err
-//}
-
-// getFailureDomains maps v1beta1 zones to v1beta2 failure domains
-func getFailureDomains(csCluster *CloudStackCluster) []v1beta2.CloudStackFailureDomainSpec {
+// getFailureDomains maps v1beta1 zones to v1beta2 failure domains.
+func getFailureDomains(csCluster *CloudStackCluster) ([]v1beta2.CloudStackFailureDomainSpec, error) {
 	var failureDomains []v1beta2.CloudStackFailureDomainSpec
-	index := 0
+	namespace := csCluster.Namespace
 	for _, zone := range csCluster.Spec.Zones {
-		index = index + 1
-		name := fmt.Sprintf("%s-%s-%d", csCluster.Name, "failuredomain", index)
+		name, err := GetDefaultFailureDomainName(namespace, csCluster.Name, zone.ID, zone.Name)
+		if err != nil {
+			return nil, err
+		}
 		failureDomains = append(failureDomains, v1beta2.CloudStackFailureDomainSpec{
 			Name: name,
 			Zone: v1beta2.CloudStackZoneSpec{
@@ -191,39 +157,81 @@ func getFailureDomains(csCluster *CloudStackCluster) []v1beta2.CloudStackFailure
 			Account: csCluster.Spec.Account,
 			ACSEndpoint: corev1.SecretReference{
 				Namespace: csCluster.ObjectMeta.Namespace,
-				Name:      name,
+				Name:      DefaultEndpointCredential,
 			},
 		})
 	}
-	return failureDomains
+	return failureDomains, nil
 }
 
-//
-//func getFailureDomainsStatusMap(csCluster *CloudStackCluster) map[string]v1beta2.CloudStackFailureDomainStatus {
-//	failureDomainsStatusMap := map[string]v1beta2.CloudStackFailureDomainStatus{}
-//	for _, zone := range csCluster.Spec.Zones {
-//		failureDomainsStatusMap[zone.MetaName()] = v1beta2.CloudStackFailureDomainStatus{
-//			DomainID: csCluster.Status.DomainID,
-//			Ready:    csCluster.Status.Ready,
-//		}
-//	}
-//	return failureDomainsStatusMap
-//}
+// GetDefaultFailureDomainName return zoneID as failuredomain name.
+// Default failure domain name is used when migrating an old cluster to a multiple-endpoints supported cluster, that
+// requires to convert each zone to a failure domain.
+// When upgrading cluster using eks-a, a secret named global will be created by eks-a, and it is used by following
+// method to get zoneID by calling cloudstack API.
+// When upgrading cluster using clusterctl directly, zoneID is fetched directly from kubernetes cluster in cloudstackzones.
+func GetDefaultFailureDomainName(namespace string, clusterName string, zoneID string, zoneName string) (string, error) {
+	if len(zoneID) > 0 {
+		return zoneID, nil
+	}
 
-func GetDefaultFailureDomainName(clusterName string, zoneID string, zoneName string) (string, error) {
-	zoneMetaName := ""
-	if len(zoneName) > 0 {
-		zoneMetaName = zoneName
-	} else if len(zoneID) > 0 {
-		zoneMetaName = zoneID
+	// try fetch zoneID using zoneName through cloudstack client
+	zoneID, err := fetchZoneIDUsingCloudStack(namespace, zoneName)
+	if err == nil {
+		return zoneID, nil
 	}
 
-	if len(zoneMetaName) == 0 {
-		return "", errors.Errorf("failed to generate default failureDomainName: zone id and name both empty")
+	return fetchZoneIDUsingK8s(namespace, clusterName, zoneName)
+}
+
+func fetchZoneIDUsingK8s(namespace string, clusterName string, zoneName string) (string, error) {
+	zones := &v1beta2.CloudStackZoneList{}
+	capiClusterLabel := map[string]string{clusterv1.ClusterLabelName: clusterName}
+	if err := v1beta2.K8sClient.List(
+		context.TODO(),
+		zones,
+		client.InNamespace(namespace),
+		client.MatchingLabels(capiClusterLabel),
+	); err != nil {
+		return "", err
 	}
-	if len(clusterName) == 0 {
-		return "", errors.Errorf("failed to generate default failureDomainName: clusterName empty")
+
+	for _, zone := range zones.Items {
+		if zone.Spec.Name == zoneName {
+			return zone.Spec.ID, nil
+		}
 	}
 
-	return strings.ToLower(fmt.Sprintf("%s-failuredomain-%s", clusterName, zoneMetaName)), nil
+	return "", errors.Errorf("failed to generate default failureDomainName: zone id not found for zone name: %s", zoneName)
+}
+
+func fetchZoneIDUsingCloudStack(namespace string, zoneName string) (string, error) {
+	endpointCredentials := &corev1.Secret{}
+	key := client.ObjectKey{Name: DefaultEndpointCredential, Namespace: namespace}
+	if err := v1beta2.K8sClient.Get(context.TODO(), key, endpointCredentials); err != nil {
+		return "", err
+	}
+
+	config := map[string]interface{}{}
+	for k, v := range endpointCredentials.Data {
+		config[k] = string(v)
+	}
+	// TODO change secret parsing manner.
+	if val, present := config["verify-ssl"]; present {
+		if val == "true" {
+			config["verify-ssl"] = true
+		} else if val == "false" {
+			config["verify-ssl"] = false
+		}
+	}
+
+	csClient := cloudstack.NewAsyncClient(fmt.Sprint(config["api-url"]), fmt.Sprint(config["api-key"]), fmt.Sprint(config["secret-key"]), fmt.Sprint(config["verify-ssl"]) == "true")
+
+	if zoneID, count, err := csClient.Zone.GetZoneID(zoneName); err != nil {
+		return "", err
+	} else if count != 1 {
+		return "", errors.Errorf("%v zones found for zone name %s", count, zoneName)
+	} else {
+		return zoneID, nil
+	}
 }
diff --git a/api/v1beta2/cloudstackcluster_types.go b/api/v1beta2/cloudstackcluster_types.go
@@ -21,6 +21,7 @@ import (
 
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1"
+	"sigs.k8s.io/controller-runtime/pkg/client"
 )
 
 const (
@@ -31,6 +32,8 @@ const (
 	NetworkTypeShared          = "Shared"
 )
 
+var K8sClient client.Client
+
 // CloudStackIdentityReference is a reference to an infrastructure
 // provider identity to be used to provision cluster resources.
 type CloudStackIdentityReference struct {
diff --git a/config/crd/kustomization.yaml b/config/crd/kustomization.yaml
@@ -13,7 +13,6 @@ resources:
 - bases/infrastructure.cluster.x-k8s.io_cloudstackzones.yaml
 - bases/infrastructure.cluster.x-k8s.io_cloudstackaffinitygroups.yaml
 - bases/infrastructure.cluster.x-k8s.io_cloudstackmachinestatecheckers.yaml
-- bases/infrastructure.cluster.x-k8s.io_cloudstackfailuredomains.yaml
 #+kubebuilder:scaffold:crdkustomizeresource
 
 patchesStrategicMerge:
diff --git a/main.go b/main.go
@@ -41,6 +41,7 @@ import (
 
 	controlplanev1 "sigs.k8s.io/cluster-api/controlplane/kubeadm/api/v1beta1"
 
+	infrav1b1 "sigs.k8s.io/cluster-api-provider-cloudstack/api/v1beta1"
 	infrav1b2 "sigs.k8s.io/cluster-api-provider-cloudstack/api/v1beta2"
 	"sigs.k8s.io/cluster-api-provider-cloudstack/controllers"
 	"sigs.k8s.io/cluster-api-provider-cloudstack/controllers/utils"
@@ -55,8 +56,9 @@ var (
 func init() {
 	utilruntime.Must(clientgoscheme.AddToScheme(scheme))
 	utilruntime.Must(clusterv1.AddToScheme(scheme))
-	utilruntime.Must(controlplanev1.AddToScheme(scheme))
+	utilruntime.Must(infrav1b1.AddToScheme(scheme))
 	utilruntime.Must(infrav1b2.AddToScheme(scheme))
+	utilruntime.Must(controlplanev1.AddToScheme(scheme))
 	//+kubebuilder:scaffold:scheme
 }
 
@@ -149,6 +151,7 @@ func main() {
 		Scheme:     mgr.GetScheme()}
 
 	setupReconcilers(base, mgr)
+	infrav1b2.K8sClient = base.K8sClient
 
 	// +kubebuilder:scaffold:builder
 

Original file line number	Diff line number	Diff line change
`@@ -21,6 +21,7 @@ import (`
`21`	`21`
`22`	`22`	`metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"`
`23`	`23`	`clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1"`
	`24`	`+ "sigs.k8s.io/controller-runtime/pkg/client"`
`24`	`25`	`)`
`25`	`26`
`26`	`27`	`const (`
`@@ -31,6 +32,8 @@ const (`
`31`	`32`	`NetworkTypeShared = "Shared"`
`32`	`33`	`)`
`33`	`34`
	`35`	`+var K8sClient client.Client`
	`36`	`+`
`34`	`37`	`// CloudStackIdentityReference is a reference to an infrastructure`
`35`	`38`	`// provider identity to be used to provision cluster resources.`
`36`	`39`	`type CloudStackIdentityReference struct {`