Refactor createOrUpdateService() method.

This updates the code to use a different mechanism for driving desired state: - Read existing object - If it does not exist, create desired object - If it does exist, make a copy and set all the desired fields - Do a deepequal to see if an update is necessary. Signed-off-by: Matt Moyer <moyerm@vmware.com>
2021-05-26 15:03:04 -05:00 · 2021-05-26 15:03:04 -05:00 · 1932b03c39
commit 1932b03c39
parent be8118ec2e
2 changed files with 55 additions and 44 deletions
--- a/internal/controller/impersonatorconfig/impersonator_config.go
+++ b/internal/controller/impersonatorconfig/impersonator_config.go
@ -11,12 +11,12 @@ import (
 	"encoding/pem"
 	"fmt"
 	"net"
 	"reflect"
 	"strings"
 	"time"
 	"github.com/go-logr/logr"
 	v1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/api/equality"
 	k8serrors "k8s.io/apimachinery/pkg/api/errors"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/clock"
@ -232,7 +232,7 @@ func (c *impersonatorConfigController) doSync(syncCtx controllerlib.Context, cre
 		}
 	} else {
 		if err = c.ensureImpersonatorIsStopped(true); err != nil {
-			return nil, err // TODO write unit test that errors during stopping the server are returned by sync
+			return nil, err
 		}
 	}
@ -343,21 +343,6 @@ func (c *impersonatorConfigController) serviceExists(serviceName string) (bool,
 	return true, nil
 }
 func (c *impersonatorConfigController) serviceNeedsUpdate(config *v1alpha1.ImpersonationProxySpec, serviceName string) (*v1.Service, bool, error) {
 	service, err := c.servicesInformer.Lister().Services(c.namespace).Get(serviceName)
 	if err != nil {
 		return nil, false, err
 	}
 	// TODO this will break if anything other than pinniped is adding annotations
 	if !reflect.DeepEqual(service.Annotations, config.Service.Annotations) {
 		return service, true, nil
 	}
 	if service.Spec.LoadBalancerIP != config.Service.LoadBalancerIP {
 		return service, true, nil
 	}
 	return nil, false, nil
 }
 func (c *impersonatorConfigController) tlsSecretExists() (bool, *v1.Secret, error) {
 	secret, err := c.secretsInformer.Lister().Secrets(c.namespace).Get(c.tlsSecretName)
 	notFound := k8serrors.IsNotFound(err)
@ -465,7 +450,7 @@ func (c *impersonatorConfigController) ensureLoadBalancerIsStarted(ctx context.C
 			Annotations: config.Service.Annotations,
 		},
 	}
-	return c.createOrUpdateService(ctx, config, &loadBalancer)
+	return c.createOrUpdateService(ctx, &loadBalancer)
 }
 func (c *impersonatorConfigController) ensureLoadBalancerIsStopped(ctx context.Context) error {
@ -504,7 +489,7 @@ func (c *impersonatorConfigController) ensureClusterIPServiceIsStarted(ctx conte
 			Annotations: config.Service.Annotations,
 		},
 	}
-	return c.createOrUpdateService(ctx, config, &clusterIP)
+	return c.createOrUpdateService(ctx, &clusterIP)
 }
 func (c *impersonatorConfigController) ensureClusterIPServiceIsStopped(ctx context.Context) error {
@ -522,36 +507,35 @@ func (c *impersonatorConfigController) ensureClusterIPServiceIsStopped(ctx conte
 	return c.k8sClient.CoreV1().Services(c.namespace).Delete(ctx, c.generatedClusterIPServiceName, metav1.DeleteOptions{})
 }
-func (c *impersonatorConfigController) createOrUpdateService(ctx context.Context, config *v1alpha1.ImpersonationProxySpec, service *v1.Service) error {
+func (c *impersonatorConfigController) createOrUpdateService(ctx context.Context, service *v1.Service) error {
-	running, err := c.serviceExists(service.Name)
+	log := c.infoLog.WithValues("serviceType", service.Spec.Type, "service", klog.KObj(service))
 	existing, err := c.servicesInformer.Lister().Services(c.namespace).Get(service.Name)
 	if k8serrors.IsNotFound(err) {
 		log.Info("creating service for impersonation proxy")
 		_, err := c.k8sClient.CoreV1().Services(c.namespace).Create(ctx, service, metav1.CreateOptions{})
 		return err
 	}
 	if err != nil {
 		return err
 	}
-	if running {
+
-		existingService, needsUpdate, err := c.serviceNeedsUpdate(config, service.Name)
+	// Update only the specific fields that are meaningfully part of our desired state.
-		if err != nil {
+	updated := existing.DeepCopy()
-			return err
+	updated.ObjectMeta.Labels = service.ObjectMeta.Labels
-		}
+	updated.ObjectMeta.Annotations = service.ObjectMeta.Annotations
-		if needsUpdate {
+	updated.Spec.LoadBalancerIP = service.Spec.LoadBalancerIP
-			c.infoLog.Info("updating service for impersonation proxy",
+	updated.Spec.Type = service.Spec.Type
-				"serviceType", service.Spec.Type,
+	updated.Spec.Selector = service.Spec.Selector
-				"service", klog.KObj(service),
+	updated.Spec.Ports = service.Spec.Ports
-			)
+
-			// update only the annotation and loadBalancerIP fields on the service
+	// If our updates didn't change anything, we're done.
-			var newService = &v1.Service{}
+	if equality.Semantic.DeepEqual(existing, updated) {
 			existingService.DeepCopyInto(newService)
 			newService.Annotations = service.Annotations
 			newService.Spec.LoadBalancerIP = service.Spec.LoadBalancerIP
 			_, err = c.k8sClient.CoreV1().Services(c.namespace).Update(ctx, newService, metav1.UpdateOptions{})
 			return err
 		}
 		return nil
 	}
-	c.infoLog.Info("creating service for impersonation proxy",
+
-		"serviceType", service.Spec.Type,
+	// Otherwise apply the updates.
-		"service", klog.KObj(service),
+	c.infoLog.Info("updating service for impersonation proxy")
-	)
+	_, err = c.k8sClient.CoreV1().Services(c.namespace).Update(ctx, updated, metav1.UpdateOptions{})
 	_, err = c.k8sClient.CoreV1().Services(c.namespace).Create(ctx, service, metav1.CreateOptions{})
 	return err
 }
--- a/internal/controller/impersonatorconfig/impersonator_config_test.go
+++ b/internal/controller/impersonatorconfig/impersonator_config_test.go
@ -29,6 +29,7 @@ import (
 	"k8s.io/apimachinery/pkg/runtime"
 	"k8s.io/apimachinery/pkg/runtime/schema"
 	"k8s.io/apimachinery/pkg/util/clock"
 	"k8s.io/apimachinery/pkg/util/intstr"
 	kubeinformers "k8s.io/client-go/informers"
 	kubernetesfake "k8s.io/client-go/kubernetes/fake"
 	coretesting "k8s.io/client-go/testing"
@ -618,9 +619,18 @@ func TestImpersonatorConfigControllerSync(t *testing.T) {
 				ObjectMeta: metav1.ObjectMeta{
 					Name:      resourceName,
 					Namespace: installedInNamespace,
 					Labels:    labels,
 				},
 				Spec: corev1.ServiceSpec{
 					Type: corev1.ServiceTypeLoadBalancer,
 					Ports: []corev1.ServicePort{
 						{
 							TargetPort: intstr.FromInt(impersonationProxyPort),
 							Port:       defaultHTTPSPort,
 							Protocol:   corev1.ProtocolTCP,
 						},
 					},
 					Selector: map[string]string{appLabelKey: labels[appLabelKey]},
 				},
 				Status: status,
 			}
@ -631,6 +641,7 @@ func TestImpersonatorConfigControllerSync(t *testing.T) {
 				ObjectMeta: metav1.ObjectMeta{
 					Name:      resourceName,
 					Namespace: installedInNamespace,
 					Labels:    labels,
 				},
 				Spec:   spec,
 				Status: status,
@ -737,6 +748,14 @@ func TestImpersonatorConfigControllerSync(t *testing.T) {
 			clusterIPService := newClusterIPService(resourceName, corev1.ServiceStatus{}, corev1.ServiceSpec{
 				Type:      corev1.ServiceTypeClusterIP,
 				ClusterIP: clusterIP,
 				Ports: []corev1.ServicePort{
 					{
 						TargetPort: intstr.FromInt(impersonationProxyPort),
 						Port:       defaultHTTPSPort,
 						Protocol:   corev1.ProtocolTCP,
 					},
 				},
 				Selector: map[string]string{appLabelKey: labels[appLabelKey]},
 			})
 			r.NoError(client.Tracker().Add(clusterIPService))
 		}
@ -746,6 +765,14 @@ func TestImpersonatorConfigControllerSync(t *testing.T) {
 				Type:       corev1.ServiceTypeClusterIP,
 				ClusterIP:  clusterIP0,
 				ClusterIPs: []string{clusterIP0, clusterIP1},
 				Ports: []corev1.ServicePort{
 					{
 						TargetPort: intstr.FromInt(impersonationProxyPort),
 						Port:       defaultHTTPSPort,
 						Protocol:   corev1.ProtocolTCP,
 					},
 				},
 				Selector: map[string]string{appLabelKey: labels[appLabelKey]},
 			})
 			r.NoError(client.Tracker().Add(clusterIPService))
 		}