Add ODG controller

Reconciles ODG resources in mODG-root cluster and creates ODG-Extension
resources (via gardener-resource-manager).

Author: zkdev

ocm_util.py

@@ -1,6 +1,8 @@
 import collections.abc
 import logging
+import urllib.parse
 
+import ci.util
 import cnudie.iter
 import cnudie.retrieve_async
 import dso.model
@@ -64,7 +66,7 @@ def iter_local_blob_content(
     )
 
 
-async def find_artefact_node(
+async def find_artefact_node_async(
     component_descriptor_lookup: cnudie.retrieve_async.ComponentDescriptorLookupById,
     artefact: dso.model.ComponentArtefactId,
     absent_ok: bool=False,
@@ -119,3 +121,57 @@ async def find_artefact_node(
 
     if not absent_ok:
         raise ValueError(f'could not find OCM node for {artefact=}')
+
+
+def to_absolute_access(
+    access: ocm.OciAccess | ocm.RelativeOciAccess,
+    ocm_repo: ocm.OciOcmRepository=None,
+) -> ocm.OciAccess:
+    if access.type is ocm.AccessType.OCI_REGISTRY:
+        return access
+
+    if access.type is ocm.AccessType.RELATIVE_OCI_REFERENCE:
+        if not '://' in ocm_repo.baseUrl:
+            base_url = urllib.parse.urlparse(f'x://{ocm_repo.baseUrl}').netloc
+        else:
+            base_url = urllib.parse.urlparse(ocm_repo.baseUrl).netloc
+
+        return ocm.OciAccess(
+            imageReference=ci.util.urljoin(base_url, access.reference),
+        )
+
+    raise NotImplementedError(access.type)
+
+
+def find_artefact_node(
+    component: ocm.Component,
+    component_descriptor_lookup,
+    artefact_name: str,
+    artefact_version: str,
+    artefact_type: str,
+    node_filter: collections.abc.Callable | None,
+    absent_ok: bool=False,
+    recursion_depth: int=-1,
+) -> cnudie.iter.ArtefactNode | None:
+    for rnode in cnudie.iter.iter(
+        component=component,
+        lookup=component_descriptor_lookup,
+        node_filter=node_filter,
+        recursion_depth=recursion_depth,
+    ):
+        rnode: cnudie.iter.ResourceNode
+        if not (
+            rnode.resource.name == artefact_name
+            and rnode.resource.version == artefact_version
+            and rnode.resource.type == artefact_type
+        ):
+            continue
+
+        return rnode
+
+    else:
+        if absent_ok:
+            return None
+
+        raise ValueError(f'no ocm node found for {artefact_name=} {artefact_version=} \
+                         {artefact_type=}')

odg_operator/__init__.py

@@ -0,0 +1,232 @@
+import argparse
+import collections
+import http
+import logging
+import os
+
+import dacite
+import kubernetes.client
+import kubernetes.client.rest
+import kubernetes.watch
+import urllib3
+import yaml
+
+import ci.log
+import cnudie.iter
+import oci.client
+
+import k8s.util
+import lookups
+import odg_operator.odg_model as odgm
+
+
+ci.log.configure_default_logging()
+logger = logging.getLogger(__name__)
+own_dir = os.path.abspath(os.path.dirname(__file__))
+CUSTOMER_CLEANUP_FINALIZER = 'open-delivery-gear.ocm.software/customer-cluster-cleanup'
+ODG_COMPONENT_NAME = 'ocm.software/ocm-gear'
+
+
+def find_extension_definition(
+    extension_definitions: list[odgm.ExtensionDefinition],
+    extension_name: str,
+    absent_ok: bool=False,
+) -> odgm.ExtensionDefinition | None:
+    for extension_definition in extension_definitions:
+        if extension_definition.name == extension_name:
+            return extension_definition
+
+    if absent_ok:
+        return None
+
+    raise ValueError(f'unknown extension-definition for {extension_name=}')
+
+
+def add_missing_dependencies(
+    requested: list[odgm.ExtensionDefinition],
+    known: list[odgm.ExtensionDefinition],
+) -> list[odgm.ExtensionDefinition]:
+    '''
+    recursively add known extensions until all dependencies are included.
+    assumes extension-definitions are consistent.
+    '''
+    seen = set([e.name for e in requested])
+    for extension_definition in requested:
+        if not set(extension_definition.dependencies).issubset(seen):
+            requested.extend([
+                find_extension_definition(
+                    extension_definitions=known,
+                    extension_name=dependency,
+                )
+                for dependency in extension_definition.dependencies
+            ])
+            return add_missing_dependencies(
+                requested=requested,
+                known=known,
+            )
+
+    return requested
+
+
+def outputs_as_jsonpath(
+    outputs_by_extension: dict,
+) -> dict:
+    '''
+    convert outputs as templated by extensions to lookup dict ready to use with `jsonpaths_ng`.
+    '''
+    output_lookup = collections.defaultdict(lambda: collections.defaultdict(dict))
+    for name, outputs in outputs_by_extension.items():
+        _outputs = {}
+        for output in outputs:
+            output: odgm.ExtensionOutput
+            _outputs[output.name] = output.value
+        output_lookup['dependencies'][name]['outputs'] = _outputs
+    return dict(output_lookup)
+
+
+def reconcile(
+    extension_definitions: list[odgm.ExtensionDefinition],
+    component_descriptor_lookup,
+    kubeconfig_path: str=None,
+):
+    kubernetes_api = k8s.util.kubernetes_api(kubeconfig_path=kubeconfig_path)
+    resource_version = ''
+
+    while True:
+        group = odgm.ODGExtensionMeta.group
+        plural = odgm.ODGMeta.plural
+        logger.info(f'watching for events: {group=} {plural=}')
+        try:
+            for event in kubernetes.watch.Watch().stream(
+                kubernetes_api.custom_kubernetes_api.list_cluster_custom_object,
+                group=group,
+                version='v1',
+                plural=plural,
+                resource_version=resource_version,
+                timeout_seconds=0,
+            ):
+                metadata = event['object'].get('metadata')
+                odg_name = metadata['name']
+                logger.info(f'{event["type"]} "{odg_name}" in "{metadata["namespace"]}"')
+
+                requested_extension_definitions = [
+                    find_extension_definition(
+                        extension_definitions=extension_definitions,
+                        extension_name=extension_name,
+                    )
+                    for extension_name in event['object']['spec']['extensions']
+                ]
+
+                requested_extension_definitions = add_missing_dependencies(
+                    requested_extension_definitions,
+                    extension_definitions,
+                )
+
+                context = event['object']['spec']['context']
+
+                outputs_for_extension = dict([
+                    (
+                        extension_definition.name,
+                        extension_definition.templated_outputs(context),
+                    )
+                    for extension_definition in requested_extension_definitions
+                ])
+                outputs_jsonpath = outputs_as_jsonpath(outputs_for_extension)
+
+                extension_instances = [
+                    odgm.ExtensionInstance.from_definition(
+                        extension_definition=extension_definition,
+                        outputs=outputs_jsonpath,
+                        component_descriptor_lookup=component_descriptor_lookup,
+                    )
+                    for extension_definition in requested_extension_definitions
+                ]
+
+                import pprint
+                for extension_instance in extension_instances:
+                    pprint.pprint(extension_instance)
+
+                # TODO: create managed resources
+
+        except kubernetes.client.rest.ApiException as e:
+            if e.status == http.HTTPStatus.GONE:
+                resource_version = ''
+                logger.info('API resource watching expired, will start new watch')
+            else:
+                raise e
+
+        except urllib3.exceptions.ProtocolError:
+            # this is a known error which has no impact on the functionality, thus rather be
+            # degregated to a warning or even info
+            # [ref](https://github.com/kiwigrid/k8s-sidecar/issues/233#issuecomment-1332358459)
+            resource_version = ''
+            logger.info('API resource watching received protocol error, will start new watch')
+
+
+if __name__ == '__main__':
+    parser = argparse.ArgumentParser()
+    parser.add_argument('--kubeconfig')
+    parser.add_argument('--extension-definition-file')
+    parser.add_argument(
+        '--extension',
+        dest='extensions',
+        action='append',
+        default=[],
+        help='can be specified multiple times, expected format: <component-name>:<component-version>'
+    )
+    parsed = parser.parse_args()
+
+    oci_client = oci.client.Client(
+        credentials_lookup=lambda **kwargs: None, # consume public oci-images only
+    )
+    component_descriptor_lookup = lookups.init_component_descriptor_lookup(
+        cache_dir='./cache/ocm',
+        oci_client=oci_client,
+    )
+
+    extension_definitions = []
+
+    if parsed.extension_definition_file:
+        with open(parsed.extension_definition_file) as f:
+            extensions_raw = yaml.safe_load_all(f)
+            extension_definitions.extend([
+                dacite.from_dict(
+                    data=extension_raw,
+                    data_class=odgm.ExtensionDefinition,
+                )
+                for extension_raw in extensions_raw
+            ])
+
+    for extension in parsed.extensions:
+        component = component_descriptor_lookup(extension).component
+        for resource_node in cnudie.iter.iter(
+            component=component,
+            recursion_depth=0,
+            node_filter=cnudie.iter.Filter.resources,
+        ):
+            if resource_node.resource.type == 'odg-extension':
+                break
+        else:
+            raise ValueError(f'no odg-extension found in {extension}')
+
+        resource_node: cnudie.iter.ResourceNode
+        odg_extension_raw = oci_client.blob(
+            image_reference=resource_node.component.current_ocm_repo.component_version_oci_ref(
+                name=resource_node.component.name,
+                version=resource_node.component.version,
+            ),
+            digest=resource_node.resource.access.localReference,
+            stream=False,
+        ).json()
+        extension_definitions.append(dacite.from_dict(
+            data=odg_extension_raw,
+            data_class=odgm.ExtensionDefinition,
+        ))
+
+    logger.info(f'known extension definitions: {[e.name for e in extension_definitions]}')
+
+    reconcile(
+        kubeconfig_path=parsed.kubeconfig,
+        extension_definitions=extension_definitions,
+        component_descriptor_lookup=component_descriptor_lookup,
+    )