Skip to content

Add ODG controller #411

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add ODG controller #411

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
58 changes: 57 additions & 1 deletion ocm_util.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,8 @@
import collections.abc
import logging
import urllib.parse

import ci.util
import cnudie.iter
import cnudie.retrieve_async
import dso.model
Expand Down Expand Up @@ -64,7 +66,7 @@ def iter_local_blob_content(
)


async def find_artefact_node(
async def find_artefact_node_async(
component_descriptor_lookup: cnudie.retrieve_async.ComponentDescriptorLookupById,
artefact: dso.model.ComponentArtefactId,
absent_ok: bool=False,
Expand Down Expand Up @@ -119,3 +121,57 @@ async def find_artefact_node(

if not absent_ok:
raise ValueError(f'could not find OCM node for {artefact=}')


def to_absolute_access(
access: ocm.OciAccess | ocm.RelativeOciAccess,
ocm_repo: ocm.OciOcmRepository=None,
) -> ocm.OciAccess:
if access.type is ocm.AccessType.OCI_REGISTRY:
return access

if access.type is ocm.AccessType.RELATIVE_OCI_REFERENCE:
if not '://' in ocm_repo.baseUrl:
base_url = urllib.parse.urlparse(f'x://{ocm_repo.baseUrl}').netloc
else:
base_url = urllib.parse.urlparse(ocm_repo.baseUrl).netloc

return ocm.OciAccess(
imageReference=ci.util.urljoin(base_url, access.reference),
)

raise NotImplementedError(access.type)


def find_artefact_node(
component: ocm.Component,
component_descriptor_lookup,
artefact_name: str,
artefact_version: str,
artefact_type: str,
node_filter: collections.abc.Callable | None,
absent_ok: bool=False,
recursion_depth: int=-1,
) -> cnudie.iter.ArtefactNode | None:
for rnode in cnudie.iter.iter(
component=component,
lookup=component_descriptor_lookup,
node_filter=node_filter,
recursion_depth=recursion_depth,
):
rnode: cnudie.iter.ResourceNode
if not (
rnode.resource.name == artefact_name
and rnode.resource.version == artefact_version
and rnode.resource.type == artefact_type
):
continue

return rnode

else:
if absent_ok:
return None

raise ValueError(f'no ocm node found for {artefact_name=} {artefact_version=} \
{artefact_type=}')
Empty file added odg_operator/__init__.py
View file
Open in desktop
Empty file.
249 changes: 249 additions & 0 deletions odg_operator/odg_controller.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,249 @@
import argparse
import collections
import collections.abc
import http
import logging
import os

import dacite
import kubernetes.client
import kubernetes.client.rest
import kubernetes.watch
import urllib3
import yaml

import ci.log
import cnudie.iter
import oci.client

import k8s.util
import lookups
import odg_operator.odg_model as odgm


ci.log.configure_default_logging()
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would prefer to new code to avoid dependencies to ci.* packages. esp. sth. basic like logging we should rather define locally (esp. considering that we might see a different logging infrastructure for ODG - e.g. conveying logs to some service, rather than (only) printing to stdout).

logger = logging.getLogger(__name__)
own_dir = os.path.abspath(os.path.dirname(__file__))
CUSTOMER_CLEANUP_FINALIZER = 'open-delivery-gear.ocm.software/customer-cluster-cleanup'
ODG_COMPONENT_NAME = 'ocm.software/ocm-gear'


def find_extension_definition(
extension_definitions: list[odgm.ExtensionDefinition],
extension_name: str,
absent_ok: bool=False,
) -> odgm.ExtensionDefinition | None:
for extension_definition in extension_definitions:
if extension_definition.name == extension_name:
return extension_definition

if absent_ok:
return None

raise ValueError(f'unknown extension-definition for {extension_name=}')


def iter_missing_dependencies(
requested: collections.abc.Container[odgm.ExtensionDefinition],
known: collections.abc.Container[odgm.ExtensionDefinition],
) -> collections.abc.Generator[odgm.ExtensionDefinition, None, None]:
'''
recursively add known extensions until all dependencies are included.
assumes extension-definitions are consistent.
'''
seen = set([e.name for e in requested])

def resolve(
dependencies,
):
for dependency in dependencies:
if dependency in seen:
continue

missing_extension_definition = find_extension_definition(
extension_definitions=known,
extension_name=dependency,
)

yield missing_extension_definition
seen.add(missing_extension_definition.name)
yield from resolve(missing_extension_definition.dependencies)

for extension_definition in requested:
yield from resolve(extension_definition.dependencies)


def outputs_as_jsonpath(
outputs_by_extension: dict,
) -> dict:
'''
convert outputs as templated by extensions to lookup dict ready to use with `jsonpaths_ng`.
'''
output_lookup = collections.defaultdict(lambda: collections.defaultdict(dict))
for name, outputs in outputs_by_extension.items():
_outputs = {}
for output in outputs:
output: odgm.ExtensionOutput
_outputs[output.name] = output.value
output_lookup['dependencies'][name]['outputs'] = _outputs
return dict(output_lookup)


def reconcile(
extension_definitions: list[odgm.ExtensionDefinition],
component_descriptor_lookup,
group: str= odgm.ODGExtensionMeta.group,
plural: str = odgm.ODGMeta.plural,
):
'''
watches for events of ODG custom-resource
creates, updates and deletes ODG installations using managed-resources
'''

logger.info(f'watching for events: {group=} {plural=}')

try:
for event in kubernetes.watch.Watch().stream(
kubernetes_api.custom_kubernetes_api.list_cluster_custom_object,
group=group,
version='v1',
plural=plural,
resource_version=resource_version,
timeout_seconds=0,
):
metadata = event['object'].get('metadata')
odg_name = metadata['name']
logger.info(f'{event["type"]} "{odg_name}" in "{metadata["namespace"]}"')

requested_extension_definitions = [
find_extension_definition(
extension_definitions=extension_definitions,
extension_name=extension_name,
)
for extension_name in event['object']['spec']['extensions']
]

requested_extension_definitions.extend(list(
iter_missing_dependencies(
requested=requested_extension_definitions,
known=extension_definitions,
)
))

context = event['object']['spec']['context']

outputs_for_extension = dict([
(
extension_definition.name,
extension_definition.templated_outputs(context),
)
for extension_definition in requested_extension_definitions
])
outputs_jsonpath = outputs_as_jsonpath(outputs_for_extension)

extension_instances = [
odgm.ExtensionInstance.from_definition(
extension_definition=extension_definition,
outputs=outputs_jsonpath,
component_descriptor_lookup=component_descriptor_lookup,
)
for extension_definition in requested_extension_definitions
]

import pprint
for extension_instance in extension_instances:
pprint.pprint(extension_instance)

# TODO: create managed resources

except kubernetes.client.rest.ApiException as e:
if e.status == http.HTTPStatus.GONE:
resource_version = ''
logger.info('API resource watching expired, will start new watch')
else:
raise e

except urllib3.exceptions.ProtocolError:
# this is a known error which has no impact on the functionality, thus rather be
# degregated to a warning or even info
# [ref](https://github.com/kiwigrid/k8s-sidecar/issues/233#issuecomment-1332358459)
resource_version = ''
logger.info('API resource watching received protocol error, will start new watch')


if __name__ == '__main__':
parser = argparse.ArgumentParser()
parser.add_argument('--kubeconfig')
parser.add_argument('--extension-definition-file')
parser.add_argument(
'--extension',
dest='extensions',
action='append',
default=[],
help='can be specified multiple times, \
expected format: <component-name>:<component-version>:<artefact-name>'
)
parsed = parser.parse_args()

oci_client = oci.client.Client(
credentials_lookup=lambda **kwargs: None, # consume public oci-images only
)
component_descriptor_lookup = lookups.init_component_descriptor_lookup(
cache_dir='./cache/ocm',
oci_client=oci_client,
)

extension_definitions = []

if parsed.extension_definition_file:
with open(parsed.extension_definition_file) as f:
extensions_raw = yaml.safe_load_all(f)
extension_definitions.extend([
dacite.from_dict(
data=extension_raw,
data_class=odgm.ExtensionDefinition,
)
for extension_raw in extensions_raw
])

for extension in parsed.extensions:
extension: str
component_id, artefact_name = extension.rsplit(':', 1)
component = component_descriptor_lookup(component_id).component
for resource_node in cnudie.iter.iter(
component=component,
recursion_depth=0,
node_filter=cnudie.iter.Filter.resources,
):
if (
resource_node.resource.type == 'odg-extension'
and resource_node.resource.name == artefact_name
):
break
else:
raise ValueError(f'no odg-extension found in {extension}')

resource_node: cnudie.iter.ResourceNode
odg_extension_raw = oci_client.blob(
image_reference=resource_node.component.current_ocm_repo.component_version_oci_ref(
name=resource_node.component.name,
version=resource_node.component.version,
),
digest=resource_node.resource.access.localReference,
stream=False,
).json()
extension_definitions.append(dacite.from_dict(
data=odg_extension_raw,
data_class=odgm.ExtensionDefinition,
))

logger.info(f'known extension definitions: {[e.name for e in extension_definitions]}')

kubernetes_api = k8s.util.kubernetes_api(kubeconfig_path=parsed.kubeconfig)
resource_version = ''

while True:
reconcile(
extension_definitions=extension_definitions,
component_descriptor_lookup=component_descriptor_lookup,
)
Loading
Loading