Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

List of structs containing references are patched without references #1291

Closed
RedbackThomson opened this issue May 12, 2022 · 2 comments · Fixed by aws-controllers-k8s/runtime#121 or aws-controllers-k8s/code-generator#435
Closed

List of structs containing references are patched without references #1291

RedbackThomson opened this issue May 12, 2022 · 2 comments · Fixed by aws-controllers-k8s/runtime#121 or aws-controllers-k8s/code-generator#435
Assignees
@RedbackThomson
Labels
area/code-generation Issues or PRs as related to controllers or docs code generation kind/bug Categorizes issue or PR as related to a bug. priority/critical-urgent Highest priority. Must be actively worked on as someone's top priority right now.

Comments

@RedbackThomson
Copy link
Contributor

RedbackThomson commented May 12, 2022
edited
Loading

Describe the bug
After the controllers resolve resource references contained within a list of structs (such as EC2's RouteTable.Routes), they incorrectly patch the spec, adding the concrete field. I have narrowed this down to the patchResourceMetadataAndSpec method. When you pass r.kc.Patch a resource with a list of structs containing resolved references, it will overwrite all of the elements within any slices in the target resource. This is a behaviour from controller-runtime's patching mechanism - https://github.com/kubernetes-sigs/controller-runtime/blob/2f77235e25b1e42d9e4957199f3cd0f2c3fb0d72/pkg/client/patch.go#L143-L149. Using StrategicMergePatch would be the solution, as that can update structs within lists, however this is not supported for custom resources.

Steps to reproduce

  1. Apply the following manifest:
apiVersion: ec2.services.k8s.aws/v1alpha1
kind: VPC
metadata:
  name: gitops-cluster-vpc
spec:
  cidrBlock: 192.168.0.0/16
  enableDNSSupport: true
  enableDNSHostnames: true
  tagSpecifications:
  - resourceType: vpc
    tags:
    - key: Name
      value: gitops-cluster
---
apiVersion: ec2.services.k8s.aws/v1alpha1
kind: InternetGateway
metadata:
  name: gitops-cluster-igw
spec:
  vpcRef:
    from:
      name: gitops-cluster-vpc
---
apiVersion: ec2.services.k8s.aws/v1alpha1
kind: RouteTable
metadata:
  name: gitops-cluster-private-route-table-az2
spec:
  vpcRef:
    from:
      name: gitops-cluster-vpc
  routes: []
  tagSpecifications:
  - resourceType: "route-table"
    tags:
    - key: Name
      value: Private Subnets AZ2
    - key: Network
      value: Private02
  1. Update the RouteTable.Routes, adding the following reference:
- destinationCIDRBlock: 0.0.0.0/0
  gatewayRef:
    from:
      name: gitops-cluster-igw
  1. Describe the RouteTable and see Spec.Routes[0].GatewayRef does not exist anymore, but Spec.Routes[0].GatewayID has the concrete value

Expected outcome
I would expect that the reference would remain within the spec, so that changes to the gateway are reflected within the route table - as expected in a GitOps compliant system.
@RedbackThomson RedbackThomson added the kind/bug Categorizes issue or PR as related to a bug. label May 12, 2022
@RedbackThomson RedbackThomson mentioned this issue May 12, 2022
Merged
@vijtrip2 vijtrip2 added the priority/important-soon Must be staffed and worked on either currently, or very soon, ideally in time for the next release. label May 27, 2022
@ack-bot ack-bot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Aug 25, 2022
@a-hilaly
Copy link
Member

/lifecycle frozen

@ack-bot ack-bot added lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness. and removed lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. labels Aug 25, 2022
@brycahta brycahta mentioned this issue Sep 6, 2022
Open
@jaypipes jaypipes self-assigned this Sep 9, 2022
@aws-controllers-k8s aws-controllers-k8s deleted a comment from ack-bot Sep 9, 2022
@jaypipes
Copy link
Collaborator

jaypipes commented Sep 9, 2022

@RedbackThomson @brycahta @vijtrip2 seems to me that the root of the problem is that the runtime reconciler is modifying the Spec when resolving references (this is regardless of whether the reference field is in a list of structs or not). I think a safer approach would be to resolve the references but not save the resolved identifiers in the Spec, instead saving the resolved references in a separate struct that we attach to the AWSResource so that the resource managers can grab those resolved identifiers when needed.

@brycahta brycahta mentioned this issue Sep 28, 2022
Closed
@RedbackThomson RedbackThomson mentioned this issue Feb 4, 2023
Merged
@jljaco jljaco removed the lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness. label Feb 6, 2023
ack-prow bot pushed a commit to aws-controllers-k8s/code-generator that referenced this issue Feb 9, 2023
@RedbackThomson
Refactor reference resolution into Go code (#401)
8dc09b7 
Description of changes:
Refactors the `resolveReferenceFor<Field>` Go template code into direct Go code. This way we can be more intelligent about nested field references and support unit testing its output. 

Breaking change:
The previous Go template produced valid, but ultimately faulty, code for references within lists of structs. These are not supported (see aws-controllers-k8s/community#1291). As such, this update produces a panic when it detects those types of references.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
@RedbackThomson RedbackThomson mentioned this issue Feb 13, 2023
Merged
a-hilaly added a commit to aws-controllers-k8s/code-generator that referenced this issue Feb 16, 2023
@RedbackThomson @a-hilaly
Refactor reference resolution into Go code (#417)
3c89a32 
Continuation of #401

Refactors the resolveReferenceFor<Field> Go template code into direct Go code. This way we can be more intelligent about nested field references and support unit testing its output.

Breaking change:
The previous Go template produced valid, but ultimately faulty, code for references within lists of structs. These are not supported (see aws-controllers-k8s/community#1291). As such, this update produces a panic when it detects those types of references.

Co-authored-by: Amine <hilalyamine@gmail.com>
@jljaco jljaco added priority/critical-urgent Highest priority. Must be actively worked on as someone's top priority right now. and removed priority/important-soon Must be staffed and worked on either currently, or very soon, ideally in time for the next release. labels Mar 29, 2023
@jljaco jljaco added the area/code-generation Issues or PRs as related to controllers or docs code generation label Apr 6, 2023
This was linked to pull requests Apr 11, 2023
Update reference resolution interface types aws-controllers-k8s/runtime#121
Merged
Support lists of structs containing refs and ClearResolvedReferences aws-controllers-k8s/code-generator#435
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@RedbackThomson RedbackThomson

Labels
area/code-generation Issues or PRs as related to controllers or docs code generation kind/bug Categorizes issue or PR as related to a bug. priority/critical-urgent Highest priority. Must be actively worked on as someone's top priority right now.
Projects
No open projects
ACK Core Team
Status: Done
Milestone
No milestone
6 participants
@jaypipes @RedbackThomson @a-hilaly @vijtrip2 @ack-bot @jljaco